@vheins/local-memory-mcp 0.15.0 → 0.15.1

package/dist/{chunk-SWYPZXG3.js → chunk-NTU2HEEH.js}

@@ -81,8 +81,8 @@ function loadServerInstructions() {
 // src/mcp/capabilities.ts
 var __dirname2 = path2.dirname(fileURLToPath2(import.meta.url));
 var pkgVersion = "0.1.0";
-if ("0.15.0") {
-  pkgVersion = "0.15.0";
+if ("0.15.1") {
+  pkgVersion = "0.15.1";
 } else {
   let searchDir = __dirname2;
   for (let i = 0; i < 5; i++) {

package/dist/dashboard/server.js

@@ -16,7 +16,7 @@ import {
   handleTaskClaim,
   listResources,
   logger
-} from "../chunk-SWYPZXG3.js";
+} from "../chunk-NTU2HEEH.js";
 
 // src/dashboard/server.ts
 import express from "express";

package/dist/mcp/server.js

@@ -60,7 +60,7 @@ import {
   toContextSlug,
   updateSessionFromInitialize,
   updateSessionRoots
-} from "../chunk-SWYPZXG3.js";
+} from "../chunk-NTU2HEEH.js";
 
 // src/mcp/server.ts
 import readline from "readline";

package/dist/prompts/architecture-design.md

@@ -14,14 +14,15 @@ category: planning
 tags: [architecture, system-design, components, data-flow, adr]
 ---
 
-## FSM
+## Architecture Design
 
-Entry=S0 → S1 → S2 Exit=done
+Entry=S0 → S1 → S2 → S3 Exit=done
 Guard: S(N) req S(N-1)✅
 
 S0 | review tech_stack & requirements | — | component list, data flow map | —
 S1 | design: component diagram(blocks+responsibilities) + data flow(information movement) + ADRs(rationale) + scalability/reliability(growth+failure) + security(identity,protection,boundaries) | S0✅ | design decisions | —
 S2 | document artifacts | S1✅ | architecture docs | design/architecture/
+S3 | verify: validate component completeness, data flow coherence, ADR traceability, security coverage, scalability assumptions | S2✅ | verified | —
 
 ## Chain
 

package/dist/prompts/create-task.md

@@ -11,15 +11,16 @@ version: "1.0.0"
 tags: [workflow, task-creation, planning, mcp]
 ---
 
-## FSM
+## Create Task
 
-Entry=S0 → S1 → S2 → S3 Exit=created
+Entry=S0 → S1 → S2 → S3 → S4  Exit=created
 Guard: S(N) req S(N-1)✅; NO code/edit/delete — MCP tools ONLY (allowed: task-create, task-list, task-detail, task-update, memory-store, memory-search, standard-search, standard-store, handoff-list, handoff-update, read)
 
 S0 | pre_analysis: memory-search(architecture/history) + standard-search(if task leads to code/test/refactor/migrate decisions) + handoff-list(pending; close stale that describe completed work) + read code(verify paths+impl) + task-list dedup(DO NOT duplicate; link via parent_id/depends_on) | — | context | —
 S1 | design tasks: atomic(1 logical change), layered(DB/Service/State/UI), context(paths+symbols+APIs), min 1 pos+1 neg test | S0✅ | task specs | —
 S2 | assign attributes: task_code(optional — auto-generated as TASK-xxx if omitted), phase(Discovery|Implementation|Testing), priority(1=Low..5=Critical), strict description format | S1✅ | task attrs | —
 S3 | create via task-create(bulk max 500) + log decisions via memory-store(arch/feature changes; skip simple bugs) | S2✅ | MCP tasks created | —
+S4 | verify: validate task count, description format compliance, parent/depends_on integrity, no duplicates | S3✅ | verified | —
 G1 | blueprint? | src=idea-to-blueprint | → route blueprint flow | —
 G2 | sprint? | src=.agents/documents/tasks/sprints/ | → route sprint flow | —
 

package/dist/prompts/csl-from-docs.md

@@ -11,9 +11,9 @@ version: "1.0.0"
 tags: [workflow, csl, coding-standards, documentation, mcp]
 ---
 
-## FSM
+## CSL from Docs
 
-Entry=G0 → S0 → S1 → S2 → S3  Exit=stored|refused
+Entry=G0 → S0 → S1 → S2 → S3 → S4 Exit=stored|refused
 Guard: S(N) req S(N-1)✅
 
 G0 | path exists + readable + normative? | path provided? | → S0 / refuse | —
@@ -21,5 +21,48 @@ S0 | discover: if dir→list_directory then read_file each; if file→read_file
 S1 | extract atomic rules: 1 entry=1 rule, keep code examples, split bundled, preserve source meaning, ignore boilerplate | S0✅ | atomic entries | —
 S2 | dedup via standard-search (skip if high-confidence match; update if new source more authoritative) | S1✅ | filtered entries | —
 S3 | store via standard-store: parent first→children with parent_id; context=topic area; version=1.0.0(default); is_global=true(unless repo-specific); metadata={original_path, evidence_excerpt} | S2✅ | CSL entries stored | —
+S4 | verify: confirm stored count matches extracted, validate parent/child linkage, check metadata provenance | S3✅ | verified | —
+
+## Atomic Entry Rules
+
+- One entry = one rule. Split bundled guidance into separate entries.
+- DO NOT emit duplicates. If standard-search returns a high-confidence match, skip the entry or update it if the new source is more authoritative.
+- Use parent/child only for genuine hierarchy: parent = umbrella principle, child = narrower enforceable specialization.
+- Keep content concise, imperative, and implementation-relevant.
+- ALWAYS include relevant code examples or snippets from the source that illustrate or enforce the rule.
+- Preserve the source meaning without inventing requirements.
+- Ignore boilerplate, non-normative text, or metadata noise. Do NOT ignore code examples.
+- Do not infer version, language, stack, or scope unless the source makes them explicit.
+- Use metadata to preserve provenance, including the original file path and a short evidence_excerpt for each entry.
+
+## Output Contract
+
+- If tool calls are available:
+  - First, emit standard-search calls to verify existing data.
+  - Then, emit standard-store calls for every unique/new accepted entry.
+  - When parent/child hierarchy exists, emit the parent first, then emit children with parent_id referencing the created parent standard ID.
+- If tool calls are unavailable, return a JSON object with:
+  - standards: Array of standard-store-compatible payloads.
+- Use title-like names for the name field and store the atomic rule text along with its code examples in content.
+- Use context for the topic area (e.g., naming, error-handling, routing, testing, hooks, security).
+- Default version to 1.0.0 only when the source gives no versioning signal.
+- Prefer is_global=true unless the content is clearly repo-specific.
+
+## Refusal Rules
+
+- Refuse when the path does not exist or is not readable.
+- Refuse when the file content is not documentation or not clearly normative reference content.
+- Refuse when the request asks you to guess, invent, or fill missing guidance from prior knowledge.
+- Refuse when no source-backed coding standards can be extracted.
+
+If you refuse, return exactly:
+
+```json
+{
+	"action": "refuse",
+	"reason": "<short explanation>",
+	"missing": ["<missing evidence or source requirement>"]
+}
+```
 
 Path: {{path}} Repo: {{current_repo}}

package/dist/prompts/csl-scrapper.md

@@ -11,9 +11,9 @@ version: "1.0.0"
 tags: [workflow, csl, scraping, coding-standards, mcp]
 ---
 
-## FSM
+## CSL Scrapper
 
-Entry=G0 → S0 → G1 → S1 → S2 → S3 → S4  Exit=stored|refused
+Entry=G0 → S0 → G1 → S1 → S2 → S3 → S4 → S5 Exit=stored|refused
 Guard: S(N) req S(N-1)✅
 
 G0 | source_url provided? | source_url arg exists? | → S0 / refuse | —
@@ -23,5 +23,51 @@ S1 | extract atomic rules: 1 entry=1 rule, keep code examples, detect nav menus
 S2 | dedup via standard-search (skip if high-confidence match; update if new source more authoritative) | S1✅ | filtered entries | —
 S3 | store via standard-store: parent first→children with parent_id; context=topic area; version=1.0.0(default); is_global=true(unless repo-specific); metadata={source_url, evidence_excerpt} | S2✅ | CSL entries stored | —
 S4 | create scrape tasks for each sub-page URL via task-create | sub-page URLs exist? | MCP tasks queued | —
+S5 | verify: confirm stored entries match extracted count, validate parent/child linkage, verify sub-page tasks created | S4✅ | verified | —
+
+## Atomic Entry Rules
+
+- One entry = one rule. Split bundled guidance into separate entries.
+- DO NOT emit duplicates. If standard-search returns a high-confidence match, skip the entry or update it if the new source is more authoritative.
+- Use parent/child only for genuine hierarchy: parent = umbrella principle, child = narrower enforceable specialization.
+- Keep content concise, imperative, and implementation-relevant.
+- ALWAYS include relevant code examples or snippets from the source that illustrate or enforce the rule.
+- Preserve the source meaning without inventing requirements.
+- Ignore marketing copy, release notes, and changelog noise. Do NOT ignore code examples.
+- Do not infer version, language, stack, or scope unless the source makes them explicit.
+- Use metadata to preserve provenance, including the source_url and a short evidence_excerpt for each entry.
+
+## Output Contract
+
+- If tool calls are available:
+  - First, emit standard-search calls to verify existing data.
+  - Emit one standard-store call per unique/new accepted entry.
+  - When parent/child hierarchy exists, emit the parent first, then emit children with parent_id referencing the created parent standard ID.
+  - Emit one task-create call for each discovered documentation sub-page URL. Task title: "Scrape: [URL]".
+- If tool calls are unavailable, return a JSON object with:
+  - standards: Array of standard-store-compatible payloads.
+  - next_urls: Array of sub-page URLs to scrape.
+- Use title-like names for the name field and store the atomic rule text along with its code examples in content.
+- Use context for the topic area (e.g., naming, error-handling, routing, testing, hooks, security).
+- Use parent_id only when the source explicitly shows the rule is nested under a broader parent concept.
+- Default version to 1.0.0 only when the source gives no versioning signal.
+- Prefer is_global=true unless the source is clearly repo-specific.
+
+## Refusal Rules
+
+- Refuse when the URL content is not reachable, not documentation, or not clearly normative reference content.
+- Refuse when the source is too incomplete to verify atomic rules.
+- Refuse when the request asks you to guess, invent, or fill missing guidance from prior knowledge.
+- Refuse when no source-backed coding standards can be extracted.
+
+If you refuse, return exactly:
+
+```json
+{
+	"action": "refuse",
+	"reason": "<short explanation>",
+	"missing": ["<missing evidence or source requirement>"]
+}
+```
 
 Source: {{source_url}} Repo: {{current_repo}}

package/dist/prompts/documentation-sync.md

@@ -8,12 +8,13 @@ version: "1.0.0"
 tags: [workflow, documentation, memory, sync]
 ---
 
-## FSM
+## Documentation Sync
 
-Entry=S0 → S1 → S2 → S3 Exit=aligned
+Entry=S0 → S1 → S2 → S3 → S4 Exit=aligned
 Guard: S(N) req S(N-1)✅
 
 S0 | search decision memories via memory-search | — | memory entries | —
 S1 | read_file(README.md) + glob & read_file(docs/**/\*.md, .agents/documents/**/_, .kiro/\*\*/_) | S0✅ | doc content | —
 S2 | compare: identify missing/outdated knowledge | S1✅ | gap list | —
 S3 | propose specific changes to align docs | S2✅ | update proposals | —
+S4 | verify: confirm proposal covers all gaps, no contradictory updates | S3✅ | verified | —

package/dist/prompts/export-task-to-github.md

@@ -3,10 +3,10 @@ name: export-task-to-github
 description: Export local tasks to GitHub Issues
 arguments:
   - name: owner
-    description: GitHub repo owner (hint: run `git remote -v` to extract from origin URL)
+    description: "GitHub repo owner (hint: run `git remote -v` to extract from origin URL)"
     required: true
   - name: repo
-    description: GitHub repo name (hint: run `git remote -v` to extract from origin URL)
+    description: "GitHub repo name (hint: run `git remote -v` to extract from origin URL)"
     required: true
   - name: task_id
     description: Local task ID
@@ -17,9 +17,9 @@ version: "1.0.0"
 tags: [workflow, github, task-sync, mcp]
 ---
 
-## FSM
+## Export Task to GitHub
 
-Entry=S0 → S1 → G1 → S2 → S3 → S4 Exit=exported|skipped
+Entry=S0 → S1 → G1 → S2 → S3 → S4 → S5 Exit=exported|skipped
 Guard: S(N) req S(N-1)✅; MCP + GitHub tools ONLY
 
 S0 | fetch task via task-detail | task_id exists? | task data | —
@@ -28,3 +28,4 @@ G1 | dedup gate — if exists→update local task metadata with URL, DO NOT re-c
 S2 | create issue via issue_write (match title/body, append task_code+id) | G1→new | GitHub issue created | —
 S3 | post comments via add_issue_comment | S2✅ | comments transferred | —
 S4 | link: task-update with GitHub URL + comment | S3✅ | task updated | —
+S5 | verify: confirm issue exists on GitHub, check URL in task metadata | S4✅ | verified | —

package/dist/prompts/fix-suggestion.md

@@ -17,13 +17,14 @@ category: debugging
 tags: [fix, patch, bug-fix, code-change, test-case, debugging]
 ---
 
-## FSM
+## Fix Suggestion
 
-Entry=S0 → S1 Exit=suggestion
+Entry=S0 → S1 → S2 Exit=suggestion
 Guard: S(N) req S(N-1)✅
 
 S0 | analyze inputs (tech_stack, bug_description, root_cause) | all req provided? | diagnosis | —
 S1 | produce: explanation + before/after diff(`diff ... `) + meta checklist + regression test | S0✅ | fix suggestion | —
+S2 | verify: confirm fix addresses root cause, test covers regression | S1✅ | verified | —
 
 ## Output Format (S1)
 

package/dist/prompts/import-github-issues.md

@@ -8,9 +8,9 @@ version: "1.0.0"
 tags: [workflow, github, issue-import, mcp]
 ---
 
-## FSM
+## Import GitHub Issues
 
-Entry=S0 → S1 → S2 → S3 → S4 Exit=imported
+Entry=S0 → S1 → S2 → S3 → S4 → S5 Exit=imported
 Guard: S(N) req S(N-1)✅
 Hint: If repo not auto-detected, run `git remote -v` to get owner/repo from origin URL.
 
@@ -19,3 +19,4 @@ S1 | dedup via task-list (skip if GH-{number} exists) | S0✅ | filtered issues
 S2 | create MCP tasks: task_code=GH-{number} (auto-generated as TASK-xxx if omitted), EXACT title/body (DO NOT summarize), tags=labels, phase=backlog|triage, metadata=URL | S1✅ | tasks created | —
 S3 | import comments via issue_read → task-update | S2✅ | comments linked | —
 S4 | report created count | S3✅ | summary | —
+S5 | verify: confirm created task count matches new issues, no duplicates | S4✅ | verified | —

package/dist/prompts/learning-retrospective.md

@@ -11,12 +11,19 @@ version: "1.0.0"
 tags: [workflow, retrospective, memory, knowledge-management]
 ---
 
-## FSM
+## Learning Retrospective
 
-Entry=S0 → S1  Exit=stored
+Entry=S0 → S1 → S2 Exit=stored
 Guard: S(N) req S(N-1)✅
 
 S0 | identify: mistakes (bugs/quirks), decisions (trade-offs/pivots), patterns (conventions) | task_id? | knowledge items | —
 S1 | store via memory-store (type=mistake|decision|pattern, include tech tags, concise) | S0✅ | durable memories | —
+S2 | verify: confirm stored count matches identified items, check type correctness | S1✅ | verified | —
+
+## Directives
+
+- Use type: mistake | decision | pattern.
+- Include technology tags.
+- Keep content concise.
 
 Task: {{task_id}}

package/dist/prompts/memory-agent-core.md

@@ -8,9 +8,22 @@ version: "1.0.0"
 tags: [memory, workflow, guardrails, mcp]
 ---
 
-## FSM — Execution Policy
+## Memory Guardian Protocol
 
-Entry=S0 → S1 → S2 → S3 → S4 → S5  Exit=act
+You are a memory-aware agent. Memory is project truth, not a suggestion.
+
+## Core Rules
+
+- Use hybrid search (70% Cosine + 30% BM25) with 0.55 threshold.
+- NEVER contradict stored decisions without memory-update or supersedes.
+- Use ONLY highly relevant memories + standards.
+- Acknowledge after code gen using memory: memory-acknowledge(used|irrelevant|contradictory).
+- Store ONLY if durable + affects future behavior.
+- NEVER store coordination state (claims, file ownership) as memory.
+
+## Execution Policy
+
+Entry=S0 → S1 → S2 → S3 → S4 → S5 → S6 Exit=act
 Guard: S(N) req S(N-1)✅; NEVER contradict stored decisions without memory-update or supersedes
 
 S0 | orient: task-list + handoff-list (close stale pending) | session start? | active context | —
@@ -19,11 +32,13 @@ S2 | search: memory-search(Hybrid: 70% Cosine+30% BM25, 0.55 threshold) + standa
 S3 | retrieve: memory-detail for full content if pointer rows insufficient | S2✅ | hydrated entries | —
 S4 | select: use ONLY highly relevant memories + standards | S3✅ | filtered knowledge | —
 S5 | acknowledge: after code gen using memory → memory-acknowledge(used|irrelevant|contradictory) | code generated? | feedback | —
+S6 | verify: confirm no stored decisions contradicted, acknowledge called after code gen | S5✅ | verified | —
 
-## FSM — Creation Policy
+## Creation Policy
 
-Entry=S0 → S1  Exit=stored
+Entry=S0 → S1 → S2 Exit=stored
 Guard: store ONLY if durable + affects future behavior; use supersedes for overrides
 
 S0 | categorize: type + tech tags; NEVER store coordination state (claims, file ownership) as memory | is durable? | classified | —
 S1 | store: memory-store(decisions/patterns) or standard-store(normative rules) or handoff-create(transfer ctx) | S0✅ | stored | —
+S2 | verify: confirm stored entity matches category, no forbidden types mixed in | S1✅ | verified | —

package/dist/prompts/memory-guided-review.md

@@ -11,14 +11,15 @@ version: "1.0.0"
 tags: [code-review, memory, compliance, mcp]
 ---
 
-## FSM
+## Memory Guided Review
 
-Entry=S0 → S1 → S2 → S3  Exit=reviewed
+Entry=S0 → S1 → S2 → S3 → S4  Exit=reviewed
 Guard: S(N) req S(N-1)✅
 
 S0 | search: memory-search (file_path) + standard-search (lang, stack, repo) | file_path provided? | relevant rules | —
 S1 | hydrate: memory-detail for relevant pointers | S0✅ | full rules | —
 S2 | evaluate compliance vs patterns, documented mistakes, standards | S1✅ | violation list | —
 S3 | feedback: suggest fixes citing source (memory|standard) | S2✅ | review report | —
+S4 | verify: confirm all relevant rules evaluated, no missed violations | S3✅ | verified | —
 
 File: {{file_path}}

package/dist/prompts/memory-index-policy.md

@@ -8,15 +8,16 @@ version: "1.0.0"
 tags: [memory, indexing, policy, mcp]
 ---
 
-## FSM
+## Memory Index Policy
 
-Entry=G0 → S0 → S1 → S2  Exit=stored|rejected
+Entry=G0 → S0 → S1 → S2 → S3  Exit=stored|rejected
 Guard: S(N) req S(N-1)✅
 
 G0 | is durable + project-specific? NOT forbidden types? | content provided? | → S0 / reject | —
 S0 | classify type (code_fact|decision|mistake|pattern|task_archive) + tech tags | G0✅ | classified | —
 S1 | scope: is_global ONLY if cross-repo applicable | S0✅ | scoped | —
 S2 | store via memory-store | S1✅ | memory created | —
+S3 | verify: confirm type matches content, scope is correct, tags are accurate | S2✅ | verified | —
 
 ## Forbidden (G0→reject)
 

package/dist/prompts/project-briefing.md

@@ -8,9 +8,9 @@ version: "1.0.0"
 tags: [workflow, briefing, onboarding, memory, backlog]
 ---
 
-## FSM
+## Project Briefing
 
-Entry=S0 → S1-4(parallel) → S5 → S6  Exit=briefed
+Entry=S0 → S1-4(parallel) → S5 → S6 → S7  Exit=briefed
 Guard: S(N) req S(N-1)✅
 
 S0 | identify current repo | — | repo context | —
@@ -20,3 +20,4 @@ S3 | load memory: memory-search or memory-recap; hydrate via memory-detail | S0
 S4 | load standards: standard-search (repo, stack) | S0✅ | applicable standards | —
 S5 | summarize core: active task + pending handoffs + standards + top decisions | S1-4✅ | briefing | —
 S6 | propose next steps based on active queue; priority: 1=Low 2=Normal 3=Medium 4=High 5=Critical | S5✅ | action plan | —
+S7 | verify: confirm all sources loaded (tasks, handoffs, memory, standards), briefing complete | S6✅ | verified | —

package/dist/prompts/review-and-audit.md

@@ -11,15 +11,26 @@ version: "1.0.0"
 tags: [workflow, audit, ux, gap-analysis, mcp]
 ---
 
-## FSM
+## Review and Audit
 
-Entry=S0 → S1 → S2 → S3 Exit=done
+Entry=S0 → S1 → S2 → S3 → S4 Exit=done
 Guard: S(N) req S(N-1)✅; NO code/edit/delete — read+MCP tools ONLY
 
 S0 | sequential discovery: docs → code → UI (chrome-dev-tools) | — | findings | —
 S1 | pre-task analysis: memory-search (0.55 threshold) + standard-search + handoff-list + task-list dedup | S0✅ | context | —
 S2 | design tasks: atomic, attributes (task_code optional — auto-generated as TASK-xxx, phase, priority, agent, model), strict description format | S1✅ | task specs | —
 S3 | create via task-create + log decisions via memory-store + standard-store for coding rules | S2✅ | MCP tasks | —
+S4 | verify: confirm task count matches gap count, description format compliance, parent/child linkage | S3✅ | verified | —
+
+## FORBIDDEN: NON-EXECUTION
+
+DO NOT edit/create/delete files, run commands, or implement code.
+Allowed: Read code, chrome-dev-tools, task-create, memory-store, task-list, memory-search, standard-search, handoff-list, handoff-update.
+
+## SELF-CHECK
+
+- No implementation.
+- ONLY MCP tool calls.
 
 ## Description Format (STRICT — used in S2)
 

package/dist/prompts/review-and-post-issue.md

@@ -3,10 +3,10 @@ name: review-and-post-issue
 description: Audit documentation against implementation; generate GitHub issues for gaps.
 arguments:
   - name: owner
-    description: GitHub repo owner. (hint: run `git remote -v` to extract from origin URL)
+    description: "GitHub repo owner. (hint: run `git remote -v` to extract from origin URL)"
     required: true
   - name: repo
-    description: GitHub repo name. (hint: run `git remote -v` to extract from origin URL)
+    description: "GitHub repo name. (hint: run `git remote -v` to extract from origin URL)"
     required: true
   - name: target
     description: Module, feature, or component to audit.
@@ -17,15 +17,31 @@ version: "1.0.0"
 tags: [workflow, audit, github, issue-triage]
 ---
 
-## FSM
+## Review and Post Issue
 
-Entry=S0 → S1 → S2 → S3 Exit=done
+Entry=S0 → S1 → S2 → S3 → S4 Exit=done
 Guard: S(N) req S(N-1)✅; NO code/edit/delete — GitHub+MCP tools ONLY
 
 S0 | sequential discovery: docs → code → UI (chrome-dev-tools if applicable) | — | findings | —
 S1 | pre-issue analysis: memory-search (0.55 threshold) + search_issues dedup (comment on related if distinct) | S0✅ | context | —
 S2 | design issues: atomic, strict body format, labels | S1✅ | issue specs | —
 S3 | create via issue_write(method=create) | S2✅ | GitHub issues | —
+S4 | verify: confirm issue count matches gap count, all issues created on GitHub | S3✅ | verified | —
+
+## FORBIDDEN: NON-EXECUTION
+
+DO NOT edit/create/delete files, run commands, or implement code.
+Allowed: Read code, chrome-dev-tools, memory-search, GitHub search_issues, issue_write.
+
+## OUTPUT: GITHUB ONLY
+
+ONLY call: search_issues, issue_write (method: create), memory-search.
+No prose. No external plans.
+
+## SELF-CHECK
+
+- No implementation.
+- ONLY GitHub/Memory tool calls.
 
 ## Issue Body Format (STRICT — used in S2)
 

package/dist/prompts/root-cause-analysis.md

@@ -17,14 +17,15 @@ version: "1.0.0"
 tags: [root-cause, 5-why, debugging, diagnosis]
 ---
 
-## FSM
+## Root Cause Analysis
 
-Entry=S0 → S1 → S2 → S3  Exit=diagnosis
+Entry=S0 → S1 → S2 → S3 → S4  Exit=diagnosis
 Guard: S(N) req S(N-1)✅
 
 S0 | restate symptom: technical problem statement | tech_stack + bug_description provided? | symptom statement | —
 S1 | 5-why analysis: causal chain from symptom to core failure | S0✅ | causal chain | —
 S2 | identify root cause: "root cause is [X] because [Y], allowing [Z]" | S1✅ | root cause | —
 S3 | recommend fix addressing root cause + prevention (monitoring/test) | S2✅ | recommendation | —
+S4 | verify: confirm causal chain is logically sound, root cause is minimal sufficient explanation | S3✅ | verified | —
 
 Stack: {{tech_stack}} Bug: {{bug_description}} Symptoms: {{symptoms}}

package/dist/prompts/security-triage.md

@@ -17,15 +17,20 @@ version: "1.0.0"
 tags: [security, triage, vulnerability, cvss, appsec]
 ---
 
-## FSM
+## Security Triage
 
-Entry=S0 → S1 → S2 → S3 → S4  Exit=assessment
+Entry=S0 → S1 → S2 → S3 → S4 → S5 Exit=assessment
 Guard: S(N) req S(N-1)✅
 
-S0 | classify: type, CVE, CVSS vector, score | tech_stack + vuln_report provided? | classification | —
+S0 | classify: web_search (CVE/CVSS details) → type, CVE, CVSS vector, score | tech_stack + vuln_report provided? | classification | —
 S1 | assess exploitability: reachability + attack scenarios | S0✅ | exploit scenarios | —
 S2 | assess impact: CIA triad | S1✅ | impact assessment | —
 S3 | remediate: priority P0-P3 + fix steps | S2✅ | remediation plan | —
 S4 | verify: testing method to confirm fix | S3✅ | verification plan | —
+S5 | verify: confirm remediation addresses all exploit scenarios, verification plan is actionable | S4✅ | verified | —
 
 Stack: {{tech_stack}} Report: {{vulnerability_report}} Context: {{codebase_context}}
+
+## Delegation
+
+Web search MUST be delegated to a coding subagent (general/explore). Main agent must NOT execute web_search directly.

package/dist/prompts/senior-code-review.md

@@ -14,14 +14,15 @@ category: coding
 tags: [code-review, production-readiness, security, observability, senior-review, architecture]
 ---
 
-## FSM
+## Senior Code Review
 
-Entry=S0 → S1 → S2 → S3  Exit=decision
+Entry=S0 → S1 → S2 → S3 → S4  Exit=decision
 Guard: S(N) req S(N-1)✅; cite code evidence only; ONE fix option per finding
 
 S0 | audit 6 dimensions: errors, security, performance (N+1, cache, complexity), observability (logs, metrics, traces), testing (coverage, quality), docs (clarity) | tech_stack provided? | findings[] | —
 S1 | check cross-domain invariants: lifecycle, concurrency guard, derived state, upload safety, file>500→refactor, doc hierarchy | S0✅ | invariant results | —
 S2 | assign severity: CRITICAL (bug/data loss) | HIGH (concurrency/arch) | MEDIUM (maintainability) | LOW (cosmetic) | S0-1✅ | scored findings | —
 S3 | produce: DECISION (APPROVE|REQUEST_CHANGES|NOT_READY) + SEVERITY_SCORE + MESSAGE (blockers only) | S2✅ | review decision | —
+S4 | verify: confirm all 6 dimensions covered, severity scoring correct, no missed findings | S3✅ | verified | —
 
 Stack: {{tech_stack}} Context: {{context}}

package/dist/prompts/sentinel-issue-resolver.md

@@ -11,9 +11,9 @@ version: "1.0.0"
 tags: [workflow, github, issue-resolution, sentinel]
 ---
 
-## FSM
+## Sentinel Issue Resolver
 
-Entry=S0 → S1 → S2 → S3 → S4 → S5 → S6 → S7 → S8 Exit=resolved
+Entry=S0 → S1 → S2 → S3 → S4 → S5 → S6 → S7 → S8 → S9 Exit=resolved
 Guard: S(N) req S(N-1)✅; autonomous — no permission per step
 Hint: If repo not auto-detected from issue_url, run `git remote -v` to get owner/repo from origin URL.
 
@@ -26,5 +26,36 @@ S5 | research: memory-search + standard-search + codebase exploration (trace cal
 S6 | register: task-create (link issue URL) + task-claim + task-update→in_progress | S5✅ | MCP task | —
 S7 | implement fix + validate: tests, linters, e2e | S6✅ | verified changes | —
 S8 | finalize: commit (type(scope): msg — fix #N) + task-update→completed + issue comment summary | S7✅ | resolution | —
+S9 | verify: confirm commit pushed, issue comment posted, task marked completed | S8✅ | verified | —
+
+## SENTINEL Protocol
+
+You are SENTINEL, an elite issue resolution agent. Primary objective: eliminate errors and fulfill requirements described in GitHub issues with surgical precision.
+
+## OUTPUT: AUTONOMOUS ACTION
+
+Do not ask for permission for each step. Analyze, plan, fix, and verify. Provide a final summary of the resolution to the user.
+
+## Intelligence Gathering
+
+1. Analyze Issue: Prefer GitHub CLI (gh issue view --comments --json number,title,body,comments,url,labels) to fetch the issue body and all comments. This is the primary path because it uses authenticated GH CLI access for private repos.
+2. Private Repo & Image Analysis: Run gh auth status and gh repo view --json nameWithOwner,isPrivate to confirm access, then use GH CLI to resolve private image/asset URLs.
+3. Context Synthesis: Combine issue data with local codebase knowledge. Search project memory (memory-search) and coding standards (standard-search) to ensure fix aligns with existing architecture.
+4. Task Registration: Use task-create to register your plan in MCP. Link the task to the GitHub Issue URL in metadata.
+
+## Finalization & Commit
+
+1. Identity: Use the local Git configuration (name/email) for all commits.
+2. Commit Format:
+   type(scope): commit message
+   - {{task_title}}
+     {{summary_task}}
+
+   {{keyword}} #{{issue_number}}
+
+   Use fix for bug fixes, closes for features/chores, resolve as general. Extract issue number from issue_url.
+
+3. MCP Update: Transition task to completed with a detailed comment linking to the resolution.
+4. Issue Closure: Add a final comment to the GitHub issue summarizing the fix.
 
 Target: {{issue_url}}

package/dist/prompts/server/instructions.md

@@ -5,7 +5,7 @@ description: Main instructions for the MCP server
 
 Local Memory MCP — persistent memory, task coordination, and coding standards for AI agents.
 
-## Session Start FSM
+## Session Start Mode
 
 Entry=orient → hydrate → ready Guard: S(N) req S(N-1)✅
 
@@ -40,16 +40,28 @@ S2 | continue to task or respond | S1✅ | ready | —
 
 ## Available Prompts (slash commands)
 
-- `session-planner` — orient and plan at session start
-- `task-memory-executor` — execute tasks with memory and standard enforcement
-- `senior-code-review` — full code review against stored standards
-- `memory-guided-review` — review using project memory as context
 - `architecture-design` — architectural planning and ADR generation
-- `technical-planning` — feature planning with task decomposition
-- `root-cause-analysis` — structured bug / incident investigation
+- `create-task` — create structured, atomic tasks in Local Memory MCP
+- `csl-from-docs` — create atomic CSL coding standards entries from a local file or directory path
+- `csl-scrapper` — scrape trusted documentation from a URL into atomic CSL coding standards entries
+- `documentation-sync` — sync docs with current codebase state
+- `export-task-to-github` — export local tasks to GitHub Issues
 - `fix-suggestion` — propose and validate fixes
-- `security-triage` — security risk assessment
-- `sentinel-issue-resolver` — autonomous GitHub issue resolution (SENTINEL identity)
+- `import-github-issues` — import GitHub Issues as local tasks
 - `learning-retrospective` — capture lessons and update memory
-- `documentation-sync` — sync docs with current codebase state
+- `memory-agent-core` — behavioral contract for memory-aware agents
+- `memory-guided-review` — review using project memory as context
+- `memory-index-policy` — strict memory storage criteria
 - `project-briefing` — generate repository briefing from memory
+- `review-and-audit` — audit documentation against implementation; generate local tasks for gaps
+- `review-and-post-issue` — audit documentation against implementation; generate GitHub issues for gaps
+- `root-cause-analysis` — structured bug / incident investigation
+- `security-triage` — security risk assessment
+- `senior-code-review` — full code review against stored standards
+- `sentinel-issue-resolver` — autonomous GitHub issue resolution (SENTINEL identity)
+- `session-planner` — orient and plan at session start
+- `task-management-guidelines` — task tracking and progress management standards
+- `task-memory-executor` — execute tasks with memory and standard enforcement
+- `tech-affinity-scout` — scout best practices from similar tech projects
+- `technical-planning` — feature planning with task decomposition
+- `tool-usage-guidelines` — tool usage standards and data integrity

package/dist/prompts/session-planner.md

@@ -11,9 +11,9 @@ version: "1.0.0"
 tags: [workflow, planning, task-breakdown]
 ---
 
-## FSM
+## Session Planner
 
-Entry=S0 → S1 → S2 → S3 → S4 → S5 Exit=planned
+Entry=S0 → S1 → S2 → S3 → S4 → S5 → S6 Exit=planned
 Guard: S(N) req S(N-1)✅
 
 S0 | orient: task-list (avoid dupes) + standard-search (if code edits) + handoff-list (close stale) | objective provided? | existing state | —
@@ -22,5 +22,6 @@ S2 | phase: group into research / implementation / validation | S1✅ | phased t
 S3 | hierarchy: parent_id + depends_on for sequencing; priority 1-5 scale | S2✅ | structured plan | —
 S4 | create via task-create (stable task_code or omit for auto-generated TASK-xxx, tags, suggested_skills if relevant, acceptance criteria) | S3✅ | MCP tasks | —
 S5 | display final plan to user | S4✅ | user output | —
+S6 | verify: confirm task count is 3-7, phases assigned, hierarchy correct | S5✅ | verified | —
 
 Objective: {{objective}}

package/dist/prompts/task-management-guidelines.md

@@ -8,9 +8,9 @@ version: "1.0.0"
 tags: [workflow, tasks, status-management, mcp]
 ---
 
-## FSM — Task Lifecycle
+## Task Lifecycle
 
-Entry=S0 → S1 → S2 → S3 → S4   Exit=done|archived
+Entry=S0 → S1 → S2 → S3 → S4 → S5 Exit=done|archived
 Guard: S(N) req S(N-1)✅; MUST transition backlog/pending → in_progress → completed
 
 S0 | plan: task-create for full lifecycle (Research→Strategy→Execution→Validation) | — | tasks | —
@@ -18,12 +18,41 @@ S1 | claim: task-claim with task_code; inspect via claim-list | S0✅, not claim
 S2 | progress: task-update → in_progress | S1✅ | active work | —
 S3 | validate: tests pass / explicit doc why verification skipped | S2✅ | evidence | —
 S4 | complete: task-update → completed (auto-releases claims, expires handoffs, archives) | S3✅ | completion | —
+S5 | verify: confirm completion evidence documented, auto-cleanup triggered | S4✅ | verified | —
 
-## FSM — Navigation
+## Navigation
 
-Entry=S0 → S1 → S2   Exit=mutated
+Entry=S0 → S1 → S2 → S3 Exit=mutated
 Guard: S(N) req S(N-1)✅
 
 S0 | list: task-list (in_progress, pending) | — | pointer table | —
 S1 | detail: task-detail after selecting (includes claims + handoffs) | S0✅ | full context | —
 S2 | mutate: task-create | task-update | task-delete | S1✅ | changed | —
+S3 | verify: confirm mutation succeeded, check task-list reflects change | S2✅ | verified | —
+
+## Navigation (task-list)
+
+- Sync: Call task-list at every session start (default: in_progress,pending).
+- Format: Compact pointer table: id, task_code, title, status, priority, updated_at, comments_count. Use query for keyword search.
+- Priority Scale: Interpret priority with MCP semantics: 1=Low, 2=Normal, 3=Medium, 4=High, 5=Critical.
+- Retrieve: Fetch full context via task-detail AFTER selecting a task. Hydrated task includes current coordination state (active claims, pending handoffs).
+- Coordination: Check active ownership with task-claim and claim-list. NEVER work on tasks claimed by others. Focus on ONE task at a time.
+
+## Detail Tools
+
+- Tasks: Call task-detail for history/comments (ID or task_code).
+- Memory: Call memory-detail for full entry content.
+- Standards: Call standard-search before any code edit, test edit, refactor, migration, or implementation decision. If no relevant standards returned, note that.
+- Handoffs: Call handoff-list to discover pending context transfers before starting a task. Close stale handoffs with handoff-update.
+
+## Workflow Rules
+
+- Planning: Create tasks for full lifecycle (Research → Strategy → Execution → Validation).
+- Transition Safety: MUST move from backlog/pending → in_progress → completed. Skipping in_progress is forbidden.
+- Automatic Cleanup: task-update to completed or canceled automatically releases active claims and expires pending handoffs linked to that task.
+- Claiming: Use task-claim when taking ownership, with task_code when working from human-visible queues.
+- Claim Inspection: Use claim-list when ownership is unclear or when triaging stale work.
+- Claim Release: Use claim-release to clear stale ownership when a task is being handed back or reassigned.
+- Handoff: Use handoff-create only when pausing or transferring unfinished work. Do not use pending handoffs for completion summaries.
+- Validation: Only mark completed after passing tests or explicitly documenting why verification could not run.
+- Archiving: Completion triggers auto-archive to task_archive memory with token reporting.

package/dist/prompts/task-memory-executor.md

@@ -11,9 +11,9 @@ version: "1.5.4"
 tags: [workflow, task-execution, memory]
 ---
 
-## FSM — Main Loop
+## Main Loop
 
-Entry=S0 → S1 → G0 → S2 → S3 → S4 → S5 → S6 → S7 → S8 Exit=exhausted|blocked
+Entry=S0 → S1 → G0 → S2 → S3 → S4 → S5 → S6 → S7 → S8 → S9 Exit=exhausted|blocked
 Guard: S(N) req S(N-1)✅; dependency-ready filter (depends_on+parent_id done)
 
 S0 | sync: resolve identity (arg→auto `<runner>-<randomName>`, 1x reuse all loop) + task-list(ONCE) + handoff-list(pending, close stale) + audit stale in_progress(>30m, hydrate via task-detail) | — | filtered queue | —
@@ -26,6 +26,7 @@ S5 | validate: tests + linters + type-check + browser(if UI — MANDATORY: conso
 S6 | finalize: task-update→completed(evidence: inspected files, verified logic, test results) + memory-store(insights) + standard-store(rules) + handoff(if work remains — with identity) + retrospective + report | S5✅ | completion | —
 S7 | commit: `type(scope): msg — {{task_title}} {{summary_task}} {{keyword}} #N` (fix|closes|resolve, extract N from metadata/URL) | S6✅ | git commit | —
 S8 | repeat → S0 | queue not empty | next task | —
+S9 | verify: confirm commit format compliance, task updated completed, no stale handoffs remain | S8✅ | verified | —
 
 ## Design Note
 
@@ -37,15 +38,16 @@ Main loop is intentionally infinite — runs until MCP task queue is fully exhau
 - **Max 2** parallel sub-agents; each executes EXACTLY 1 task
 - Fallback: sequential (1 concurrent) if no sub-agent capability
 
-## FSM — Blocker Handling
+## Blocker Handling
 
-Entry=S0 → S1 → G1|G2 → S2 Exit=unblocked|deferred
+Entry=S0 → S1 → G1|G2 → S2 → S3 Exit=unblocked|deferred
 
 S0 | detect: task-update→blocked with reason | is blocked? | blocker comment | —
 S1 | classify: regex-match comment against patterns below | S0✅ | internal solvable | external | —
 G1 | internal solvable? | S1✅ | → S2 auto-create | —
 G2 | external? (awaiting user, API down) | S1✅→external | → keep blocked, no auto task | —
 S2 | create fix task: code=`{parent}-FIX-{unix}`, title=`FIX: [{parent_title}] — Resolve: {reason}`, priority=4(HIGH), phase=blocker-resolution, parent=current_id, depends_on=parent, tags=[blocker-fix,auto-generated], metadata={triggered_by, blocker_reason, timestamp, identity} | G1✅ | blocker fix task | —
+S3 | verify: confirm fix task created, parent task dependency linked | S2✅ | verified | —
 
 ### Blocker Regex Patterns
 
@@ -56,10 +58,11 @@ S2 | create fix task: code=`{parent}-FIX-{unix}`, title=`FIX: [{parent_title}]
 | Config    | `/(config\|configuration\|setup\|env\|environment)\s+(missing\|not\s+set\|invalid)/i`                    | `DATABASE_URL not set`                            |
 | Test fail | `/(test\|build\|compile\|type\s+check)\s+(failed\|error)/i`                                              | `Type error: Property 'user' not on 'Request'`    |
 
-## FSM — Backlog Maintenance
+## Backlog Maintenance
 
-Entry=S0 → S1 Exit=promoted
+Entry=S0 → S1 → S2 Exit=promoted
 Guard: active queue empty?
 
 S0 | list backlog: task-list(status=backlog) | active queue empty? | backlog tasks | —
 S1 | promote top 20 by priority(5→1) to pending via task-update | S0✅ | tasks→pending | —
+S2 | verify: confirm promoted task count, check priority ordering correct | S1✅ | verified | —

package/dist/prompts/tech-affinity-scout.md

@@ -11,14 +11,19 @@ version: "1.0.0"
 tags: [planning, patterns, memory, tech-affinity]
 ---
 
-## FSM
+## Tech Affinity Scout
 
-Entry=S0 → S1 → S2 → S3  Exit=scouted
+Entry=S0 → S1 → S2 → S3 → S4 Exit=scouted
 Guard: S(N) req S(N-1)✅
 
-S0 | search: memory-search (current_tags=[tags]) + standard-search (stack=[tags]) | tags provided? | pointer rows | —
+S0 | search: memory-search (current_tags=[tags]) + standard-search (stack=[tags]) + web_search (current practices for stack) | tags provided? | pointer rows + web results | —
 S1 | hydrate: memory-detail for relevant pointers | S0✅ | full entries | —
-S2 | filter: pattern + decision + coding standard entries from similar stacks | S1✅ | applicable knowledge | —
-S3 | adapt: explain adaptation to current project; separate memory-derived vs standards | S2✅ | adaptation guide | —
+S2 | filter: pattern + decision + coding standard + web_search entries from similar stacks | S1✅ | applicable knowledge | —
+S3 | adapt: explain adaptation to current project; separate memory-derived vs standards vs web_search | S2✅ | adaptation guide | —
+S4 | verify: confirm all relevant patterns evaluated, adaptation guidance is actionable | S3✅ | verified | —
 
 Tags: {{tags}}
+
+## Delegation
+
+Web search MUST be delegated to a coding subagent (general/explore). Main agent must NOT execute web_search directly.

package/dist/prompts/technical-planning.md

@@ -11,7 +11,7 @@ version: "1.0.0"
 tags: [workflow, technical-planning]
 ---
 
-## FSM
+## Technical Planning
 
 Entry=create-task → task-claim  Exit=task-update completed|blocked
 Guard: A(N) req all prev A✅
@@ -26,6 +26,7 @@ A5 | api-contract-design | G2✅ | API contract | design/api/
 G3 | approve API contracts | A5✅ | → proceed | —
 A6 | derive total_sprints from roadmap timeline+capacity → generate 1 sprint-planning task per sprint(N) + allocation audit + MCP task tree(parent/child + depends_on) | G3✅ | roadmap + sprints-1..N + audit + tasks | tasks/ + MCP
 GF | final approve — blocked if sprint-N.md missing or MCP task tree not created | A6✅ | → documentation | —
+V1 | verify: confirm all artifacts exist at documented output paths, gate approvals recorded | GF✅ | verified | —
 
 ## Optional
 

package/dist/prompts/tool-usage-guidelines.md

@@ -8,9 +8,9 @@ version: "1.0.0"
 tags: [workflow, tooling, memory, policy, mcp]
 ---
 
-## FSM — Memory Flow
+## Memory Flow
 
-Entry=S0 → S1 → S2 → S3 → S4   Exit=maintained
+Entry=S0 → S1 → S2 → S3 → S4 → S5   Exit=maintained
 Guard: S(N) req S(N-1)✅
 
 S0 | navigate: memory-recap (overview) / memory-search (targeted) | — | pointer rows | —
@@ -18,22 +18,25 @@ S1 | hydrate: memory-detail (id or code) before relying on content | S0✅ | ful
 S2 | store: memory-store (durable only, tech tags, human title, aux in metadata) | — | stored | —
 S3 | maintain: memory-update / supersedes for changes; avoid duplicates | — | updated | —
 S4 | acknowledge: memory-acknowledge (used|irrelevant|contradictory) after code gen | code generated? | feedback | —
+S5 | verify: confirm acknowledge called after code gen, no duplicate memories created | S4✅ | verified | —
 
-## FSM — Standards Flow
+## Standards Flow
 
-Entry=S0 → S1 → S2   Exit=done
+Entry=S0 → S1 → S2 → S3   Exit=done
 Guard: S(N) req S(N-1)✅
 
 S0 | search: standard-search mandatory before code edit/test/refactor/migrate (query, lang, stack, repo) | — | applicable | —
 S1 | apply precisely as implementation rules | S0✅ | compliant code | —
 S2 | store: standard-store (1 rule/entry, name, content, context, version, lang, stack, tags, scope) | — | new entry | —
+S3 | verify: confirm standard-search was called, scope and tags correct | S2✅ | verified | —
 
-## FSM — Handoff & Claim Flow
+## Handoff & Claim Flow
 
-Entry=S0 → S1 → S2 → S3   Exit=resolved
+Entry=S0 → S1 → S2 → S3 → S4   Exit=resolved
 Guard: S(N) req S(N-1)✅
 
 S0 | check: handoff-list (status, from/to agent) + claim-list | — | active state | —
 S1 | ensure: NO handoff for completion summaries — use task-update or memory | — | valid | —
 S2 | create: handoff-create (unfinished work only, summary + structured context) / task-claim (ownership) | S0✅ | pending | claimed | —
 S3 | close: handoff-update (accepted|rejected|expired) / claim-release (stale ownership) | consumed | stale | resolved | —
+S4 | verify: confirm no stale handoffs remain, claims reflect actual ownership | S3✅ | verified | —

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "@vheins/local-memory-mcp",
-	"version": "0.15.0",
+	"version": "0.15.1",
 	"description": "MCP Local Memory Service for coding copilot agents",
 	"mcpName": "io.github.vheins/local-memory-mcp",
 	"type": "module",