npm - @vinaes/succ - Versions diffs - 1.4.0 → 1.5.37 - Mend

@vinaes/succ 1.4.0 → 1.5.37

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (683) hide show

package/README.md +64 -10
package/dist/cli.js +71 -1
package/dist/cli.js.map +1 -1
package/dist/commands/agents-md.d.ts.map +1 -1
package/dist/commands/agents-md.js +3 -2
package/dist/commands/agents-md.js.map +1 -1
package/dist/commands/analyze-profile.d.ts.map +1 -1
package/dist/commands/analyze-profile.js +32 -8
package/dist/commands/analyze-profile.js.map +1 -1
package/dist/commands/analyze-recursive.d.ts.map +1 -1
package/dist/commands/analyze-recursive.js +6 -2
package/dist/commands/analyze-recursive.js.map +1 -1
package/dist/commands/analyze-utils.d.ts.map +1 -1
package/dist/commands/analyze-utils.js +17 -4
package/dist/commands/analyze-utils.js.map +1 -1
package/dist/commands/benchmark-quality.d.ts.map +1 -1
package/dist/commands/benchmark-quality.js +11 -4
package/dist/commands/benchmark-quality.js.map +1 -1
package/dist/commands/benchmark-sqlite-vec.d.ts.map +1 -1
package/dist/commands/benchmark-sqlite-vec.js +4 -0
package/dist/commands/benchmark-sqlite-vec.js.map +1 -1
package/dist/commands/benchmark.d.ts.map +1 -1
package/dist/commands/benchmark.js +5 -1
package/dist/commands/benchmark.js.map +1 -1
package/dist/commands/codex-chat.d.ts +8 -0
package/dist/commands/codex-chat.d.ts.map +1 -0
package/dist/commands/codex-chat.js +161 -0
package/dist/commands/codex-chat.js.map +1 -0
package/dist/commands/config.d.ts.map +1 -1
package/dist/commands/config.js +32 -4
package/dist/commands/config.js.map +1 -1
package/dist/commands/daemon.d.ts.map +1 -1
package/dist/commands/daemon.js +13 -4
package/dist/commands/daemon.js.map +1 -1
package/dist/commands/index-code.d.ts +4 -0
package/dist/commands/index-code.d.ts.map +1 -1
package/dist/commands/index-code.js +1 -1
package/dist/commands/index-code.js.map +1 -1
package/dist/commands/init.d.ts.map +1 -1
package/dist/commands/init.js +305 -203
package/dist/commands/init.js.map +1 -1
package/dist/commands/memories.d.ts.map +1 -1
package/dist/commands/memories.js +25 -14
package/dist/commands/memories.js.map +1 -1
package/dist/commands/progress.d.ts.map +1 -1
package/dist/commands/progress.js +3 -2
package/dist/commands/progress.js.map +1 -1
package/dist/commands/reindex.d.ts.map +1 -1
package/dist/commands/reindex.js +54 -36
package/dist/commands/reindex.js.map +1 -1
package/dist/commands/retention.d.ts.map +1 -1
package/dist/commands/retention.js +7 -5
package/dist/commands/retention.js.map +1 -1
package/dist/commands/scan-code.d.ts +76 -0
package/dist/commands/scan-code.d.ts.map +1 -0
package/dist/commands/scan-code.js +385 -0
package/dist/commands/scan-code.js.map +1 -0
package/dist/commands/score.d.ts.map +1 -1
package/dist/commands/score.js +3 -2
package/dist/commands/score.js.map +1 -1
package/dist/commands/session.d.ts +33 -0
package/dist/commands/session.d.ts.map +1 -0
package/dist/commands/session.js +163 -0
package/dist/commands/session.js.map +1 -0
package/dist/commands/setup.d.ts.map +1 -1
package/dist/commands/setup.js +254 -15
package/dist/commands/setup.js.map +1 -1
package/dist/commands/soul.js +3 -2
package/dist/commands/soul.js.map +1 -1
package/dist/commands/status.d.ts.map +1 -1
package/dist/commands/status.js +14 -5
package/dist/commands/status.js.map +1 -1
package/dist/commands/watch.d.ts.map +1 -1
package/dist/commands/watch.js +13 -4
package/dist/commands/watch.js.map +1 -1
package/dist/daemon/analyzer.d.ts.map +1 -1
package/dist/daemon/analyzer.js +21 -5
package/dist/daemon/analyzer.js.map +1 -1
package/dist/daemon/client.d.ts.map +1 -1
package/dist/daemon/client.js +32 -8
package/dist/daemon/client.js.map +1 -1
package/dist/daemon/routes/analyzer.d.ts +3 -0
package/dist/daemon/routes/analyzer.d.ts.map +1 -0
package/dist/daemon/routes/analyzer.js +27 -0
package/dist/daemon/routes/analyzer.js.map +1 -0
package/dist/daemon/routes/hooks.d.ts +14 -0
package/dist/daemon/routes/hooks.d.ts.map +1 -0
package/dist/daemon/routes/hooks.js +1212 -0
package/dist/daemon/routes/hooks.js.map +1 -0
package/dist/daemon/routes/memory.d.ts +4 -0
package/dist/daemon/routes/memory.d.ts.map +1 -0
package/dist/daemon/routes/memory.js +71 -0
package/dist/daemon/routes/memory.js.map +1 -0
package/dist/daemon/routes/reflection.d.ts +10 -0
package/dist/daemon/routes/reflection.d.ts.map +1 -0
package/dist/daemon/routes/reflection.js +397 -0
package/dist/daemon/routes/reflection.js.map +1 -0
package/dist/daemon/routes/search.d.ts +5 -0
package/dist/daemon/routes/search.d.ts.map +1 -0
package/dist/daemon/routes/search.js +93 -0
package/dist/daemon/routes/search.js.map +1 -0
package/dist/daemon/routes/sessions.d.ts +3 -0
package/dist/daemon/routes/sessions.d.ts.map +1 -0
package/dist/daemon/routes/sessions.js +160 -0
package/dist/daemon/routes/sessions.js.map +1 -0
package/dist/daemon/routes/skills.d.ts +3 -0
package/dist/daemon/routes/skills.d.ts.map +1 -0
package/dist/daemon/routes/skills.js +36 -0
package/dist/daemon/routes/skills.js.map +1 -0
package/dist/daemon/routes/status.d.ts +3 -0
package/dist/daemon/routes/status.d.ts.map +1 -0
package/dist/daemon/routes/status.js +47 -0
package/dist/daemon/routes/status.js.map +1 -0
package/dist/daemon/routes/types.d.ts +240 -0
package/dist/daemon/routes/types.d.ts.map +1 -0
package/dist/daemon/routes/types.js +97 -0
package/dist/daemon/routes/types.js.map +1 -0
package/dist/daemon/routes/versioning.d.ts +27 -0
package/dist/daemon/routes/versioning.d.ts.map +1 -0
package/dist/daemon/routes/versioning.js +44 -0
package/dist/daemon/routes/versioning.js.map +1 -0
package/dist/daemon/routes/watcher.d.ts +3 -0
package/dist/daemon/routes/watcher.d.ts.map +1 -0
package/dist/daemon/routes/watcher.js +28 -0
package/dist/daemon/routes/watcher.js.map +1 -0
package/dist/daemon/service.d.ts +5 -23
package/dist/daemon/service.d.ts.map +1 -1
package/dist/daemon/service.js +177 -935
package/dist/daemon/service.js.map +1 -1
package/dist/daemon/session-processor.d.ts +4 -8
package/dist/daemon/session-processor.d.ts.map +1 -1
package/dist/daemon/session-processor.js +39 -38
package/dist/daemon/session-processor.js.map +1 -1
package/dist/lib/ai-readiness.d.ts.map +1 -1
package/dist/lib/ai-readiness.js +33 -8
package/dist/lib/ai-readiness.js.map +1 -1
package/dist/lib/analyze-state.d.ts.map +1 -1
package/dist/lib/analyze-state.js +25 -3
package/dist/lib/analyze-state.js.map +1 -1
package/dist/lib/auto-memory/consolidation.d.ts +41 -0
package/dist/lib/auto-memory/consolidation.d.ts.map +1 -0
package/dist/lib/auto-memory/consolidation.js +151 -0
package/dist/lib/auto-memory/consolidation.js.map +1 -0
package/dist/lib/bpe.d.ts.map +1 -1
package/dist/lib/bpe.js +9 -10
package/dist/lib/bpe.js.map +1 -1
package/dist/lib/brain-export.d.ts +65 -0
package/dist/lib/brain-export.d.ts.map +1 -0
package/dist/lib/brain-export.js +413 -0
package/dist/lib/brain-export.js.map +1 -0
package/dist/lib/checkpoint.d.ts.map +1 -1
package/dist/lib/checkpoint.js +22 -6
package/dist/lib/checkpoint.js.map +1 -1
package/dist/lib/chunker.d.ts.map +1 -1
package/dist/lib/chunker.js +6 -1
package/dist/lib/chunker.js.map +1 -1
package/dist/lib/claude-ws-transport.d.ts.map +1 -1
package/dist/lib/claude-ws-transport.js +12 -4
package/dist/lib/claude-ws-transport.js.map +1 -1
package/dist/lib/command-safety.d.ts +64 -0
package/dist/lib/command-safety.d.ts.map +1 -0
package/dist/lib/command-safety.js +625 -0
package/dist/lib/command-safety.js.map +1 -0
package/dist/lib/compact-briefing.d.ts.map +1 -1
package/dist/lib/compact-briefing.js +10 -13
package/dist/lib/compact-briefing.js.map +1 -1
package/dist/lib/config-defaults.d.ts.map +1 -1
package/dist/lib/config-defaults.js +3 -0
package/dist/lib/config-defaults.js.map +1 -1
package/dist/lib/config-display.d.ts +4 -0
package/dist/lib/config-display.d.ts.map +1 -1
package/dist/lib/config-display.js +6 -1
package/dist/lib/config-display.js.map +1 -1
package/dist/lib/config-types.d.ts +149 -0
package/dist/lib/config-types.d.ts.map +1 -1
package/dist/lib/config-validation.d.ts.map +1 -1
package/dist/lib/config-validation.js +5 -0
package/dist/lib/config-validation.js.map +1 -1
package/dist/lib/config.d.ts.map +1 -1
package/dist/lib/config.js +92 -9
package/dist/lib/config.js.map +1 -1
package/dist/lib/consolidate.d.ts.map +1 -1
package/dist/lib/consolidate.js +66 -47
package/dist/lib/consolidate.js.map +1 -1
package/dist/lib/content-sanitizer.d.ts +29 -0
package/dist/lib/content-sanitizer.d.ts.map +1 -0
package/dist/lib/content-sanitizer.js +72 -0
package/dist/lib/content-sanitizer.js.map +1 -0
package/dist/lib/cross-repo.d.ts +44 -0
package/dist/lib/cross-repo.d.ts.map +1 -0
package/dist/lib/cross-repo.js +108 -0
package/dist/lib/cross-repo.js.map +1 -0
package/dist/lib/daemon-port.d.ts +12 -0
package/dist/lib/daemon-port.d.ts.map +1 -0
package/dist/lib/daemon-port.js +20 -0
package/dist/lib/daemon-port.js.map +1 -0
package/dist/lib/db/auto-memory.d.ts +40 -0
package/dist/lib/db/auto-memory.d.ts.map +1 -0
package/dist/lib/db/auto-memory.js +74 -0
package/dist/lib/db/auto-memory.js.map +1 -0
package/dist/lib/db/bm25-indexes.d.ts.map +1 -1
package/dist/lib/db/bm25-indexes.js +16 -4
package/dist/lib/db/bm25-indexes.js.map +1 -1
package/dist/lib/db/documents.d.ts.map +1 -1
package/dist/lib/db/documents.js +4 -1
package/dist/lib/db/documents.js.map +1 -1
package/dist/lib/db/global-memories.d.ts +2 -10
package/dist/lib/db/global-memories.d.ts.map +1 -1
package/dist/lib/db/global-memories.js +13 -6
package/dist/lib/db/global-memories.js.map +1 -1
package/dist/lib/db/graph.d.ts +5 -1
package/dist/lib/db/graph.d.ts.map +1 -1
package/dist/lib/db/graph.js +38 -8
package/dist/lib/db/graph.js.map +1 -1
package/dist/lib/db/hybrid-search.d.ts +4 -2
package/dist/lib/db/hybrid-search.d.ts.map +1 -1
package/dist/lib/db/hybrid-search.js +29 -11
package/dist/lib/db/hybrid-search.js.map +1 -1
package/dist/lib/db/index.d.ts +6 -1
package/dist/lib/db/index.d.ts.map +1 -1
package/dist/lib/db/index.js +5 -1
package/dist/lib/db/index.js.map +1 -1
package/dist/lib/db/memories.d.ts +19 -14
package/dist/lib/db/memories.d.ts.map +1 -1
package/dist/lib/db/memories.js +100 -37
package/dist/lib/db/memories.js.map +1 -1
package/dist/lib/db/parse-helpers.d.ts +14 -0
package/dist/lib/db/parse-helpers.d.ts.map +1 -0
package/dist/lib/db/parse-helpers.js +59 -0
package/dist/lib/db/parse-helpers.js.map +1 -0
package/dist/lib/db/recall-events.d.ts +49 -0
package/dist/lib/db/recall-events.d.ts.map +1 -0
package/dist/lib/db/recall-events.js +196 -0
package/dist/lib/db/recall-events.js.map +1 -0
package/dist/lib/db/retention.d.ts +4 -3
package/dist/lib/db/retention.d.ts.map +1 -1
package/dist/lib/db/retention.js +12 -1
package/dist/lib/db/retention.js.map +1 -1
package/dist/lib/db/schema.d.ts +2 -0
package/dist/lib/db/schema.d.ts.map +1 -1
package/dist/lib/db/schema.js +140 -80
package/dist/lib/db/schema.js.map +1 -1
package/dist/lib/db/skills.d.ts.map +1 -1
package/dist/lib/db/skills.js +10 -6
package/dist/lib/db/skills.js.map +1 -1
package/dist/lib/diff-brain.d.ts +24 -0
package/dist/lib/diff-brain.d.ts.map +1 -0
package/dist/lib/diff-brain.js +114 -0
package/dist/lib/diff-brain.js.map +1 -0
package/dist/lib/diff-parser.d.ts +74 -0
package/dist/lib/diff-parser.d.ts.map +1 -0
package/dist/lib/diff-parser.js +200 -0
package/dist/lib/diff-parser.js.map +1 -0
package/dist/lib/embedding-pool.d.ts.map +1 -1
package/dist/lib/embedding-pool.js +5 -1
package/dist/lib/embedding-pool.js.map +1 -1
package/dist/lib/embeddings.d.ts +12 -0
package/dist/lib/embeddings.d.ts.map +1 -1
package/dist/lib/embeddings.js +77 -19
package/dist/lib/embeddings.js.map +1 -1
package/dist/lib/errors.d.ts +2 -0
package/dist/lib/errors.d.ts.map +1 -1
package/dist/lib/errors.js +4 -0
package/dist/lib/errors.js.map +1 -1
package/dist/lib/fault-logger.d.ts.map +1 -1
package/dist/lib/fault-logger.js +22 -7
package/dist/lib/fault-logger.js.map +1 -1
package/dist/lib/git/co-change.d.ts +39 -0
package/dist/lib/git/co-change.d.ts.map +1 -0
package/dist/lib/git/co-change.js +139 -0
package/dist/lib/git/co-change.js.map +1 -0
package/dist/lib/graph/bridge-edges.d.ts +93 -0
package/dist/lib/graph/bridge-edges.d.ts.map +1 -0
package/dist/lib/graph/bridge-edges.js +276 -0
package/dist/lib/graph/bridge-edges.js.map +1 -0
package/dist/lib/graph/centrality.d.ts +11 -0
package/dist/lib/graph/centrality.d.ts.map +1 -1
package/dist/lib/graph/centrality.js +51 -3
package/dist/lib/graph/centrality.js.map +1 -1
package/dist/lib/graph/cleanup.d.ts.map +1 -1
package/dist/lib/graph/cleanup.js +2 -1
package/dist/lib/graph/cleanup.js.map +1 -1
package/dist/lib/graph/community-detection.d.ts +17 -2
package/dist/lib/graph/community-detection.d.ts.map +1 -1
package/dist/lib/graph/community-detection.js +147 -48
package/dist/lib/graph/community-detection.js.map +1 -1
package/dist/lib/graph/community-summaries.d.ts +26 -0
package/dist/lib/graph/community-summaries.d.ts.map +1 -0
package/dist/lib/graph/community-summaries.js +130 -0
package/dist/lib/graph/community-summaries.js.map +1 -0
package/dist/lib/graph/contextual-proximity.d.ts.map +1 -1
package/dist/lib/graph/contextual-proximity.js +11 -4
package/dist/lib/graph/contextual-proximity.js.map +1 -1
package/dist/lib/graph/graphology-bridge.d.ts +101 -0
package/dist/lib/graph/graphology-bridge.d.ts.map +1 -0
package/dist/lib/graph/graphology-bridge.js +488 -0
package/dist/lib/graph/graphology-bridge.js.map +1 -0
package/dist/lib/graph/llm-relations.d.ts.map +1 -1
package/dist/lib/graph/llm-relations.js +27 -5
package/dist/lib/graph/llm-relations.js.map +1 -1
package/dist/lib/graph-export.d.ts.map +1 -1
package/dist/lib/graph-export.js +2 -2
package/dist/lib/graph-export.js.map +1 -1
package/dist/lib/graph-scheduler.d.ts +0 -5
package/dist/lib/graph-scheduler.d.ts.map +1 -1
package/dist/lib/graph-scheduler.js +5 -1
package/dist/lib/graph-scheduler.js.map +1 -1
package/dist/lib/guardrails.d.ts +50 -0
package/dist/lib/guardrails.d.ts.map +1 -0
package/dist/lib/guardrails.js +502 -0
package/dist/lib/guardrails.js.map +1 -0
package/dist/lib/hook-rules.d.ts +1 -1
package/dist/lib/hook-rules.d.ts.map +1 -1
package/dist/lib/hook-rules.js +8 -2
package/dist/lib/hook-rules.js.map +1 -1
package/dist/lib/ifc/file-labels.d.ts +35 -0
package/dist/lib/ifc/file-labels.d.ts.map +1 -0
package/dist/lib/ifc/file-labels.js +208 -0
package/dist/lib/ifc/file-labels.js.map +1 -0
package/dist/lib/ifc/label.d.ts +38 -0
package/dist/lib/ifc/label.d.ts.map +1 -0
package/dist/lib/ifc/label.js +80 -0
package/dist/lib/ifc/label.js.map +1 -0
package/dist/lib/ifc/session-ifc.d.ts +92 -0
package/dist/lib/ifc/session-ifc.d.ts.map +1 -0
package/dist/lib/ifc/session-ifc.js +222 -0
package/dist/lib/ifc/session-ifc.js.map +1 -0
package/dist/lib/indexer.js +2 -2
package/dist/lib/indexer.js.map +1 -1
package/dist/lib/injection-detector.d.ts +83 -0
package/dist/lib/injection-detector.d.ts.map +1 -0
package/dist/lib/injection-detector.js +586 -0
package/dist/lib/injection-detector.js.map +1 -0
package/dist/lib/injection-semantic.d.ts +31 -0
package/dist/lib/injection-semantic.d.ts.map +1 -0
package/dist/lib/injection-semantic.js +230 -0
package/dist/lib/injection-semantic.js.map +1 -0
package/dist/lib/llm.d.ts.map +1 -1
package/dist/lib/llm.js +19 -4
package/dist/lib/llm.js.map +1 -1
package/dist/lib/lock.d.ts.map +1 -1
package/dist/lib/lock.js +24 -3
package/dist/lib/lock.js.map +1 -1
package/dist/lib/md-fetch.d.ts.map +1 -1
package/dist/lib/md-fetch.js +9 -2
package/dist/lib/md-fetch.js.map +1 -1
package/dist/lib/observability.d.ts +75 -0
package/dist/lib/observability.d.ts.map +1 -0
package/dist/lib/observability.js +201 -0
package/dist/lib/observability.js.map +1 -0
package/dist/lib/ort-session.d.ts +26 -0
package/dist/lib/ort-session.d.ts.map +1 -1
package/dist/lib/ort-session.js +107 -3
package/dist/lib/ort-session.js.map +1 -1
package/dist/lib/prd/codebase-context.d.ts.map +1 -1
package/dist/lib/prd/codebase-context.js +9 -2
package/dist/lib/prd/codebase-context.js.map +1 -1
package/dist/lib/prd/context.d.ts.map +1 -1
package/dist/lib/prd/context.js +11 -3
package/dist/lib/prd/context.js.map +1 -1
package/dist/lib/prd/export.js +1 -1
package/dist/lib/prd/export.js.map +1 -1
package/dist/lib/prd/generate.d.ts.map +1 -1
package/dist/lib/prd/generate.js +17 -4
package/dist/lib/prd/generate.js.map +1 -1
package/dist/lib/prd/parse.d.ts.map +1 -1
package/dist/lib/prd/parse.js +6 -1
package/dist/lib/prd/parse.js.map +1 -1
package/dist/lib/prd/runner.d.ts +1 -2
package/dist/lib/prd/runner.d.ts.map +1 -1
package/dist/lib/prd/runner.js +43 -32
package/dist/lib/prd/runner.js.map +1 -1
package/dist/lib/prd/worktree.d.ts +1 -2
package/dist/lib/prd/worktree.d.ts.map +1 -1
package/dist/lib/prd/worktree.js +62 -70
package/dist/lib/prd/worktree.js.map +1 -1
package/dist/lib/precompute-context.d.ts.map +1 -1
package/dist/lib/precompute-context.js +15 -34
package/dist/lib/precompute-context.js.map +1 -1
package/dist/lib/pricing.d.ts.map +1 -1
package/dist/lib/pricing.js +5 -1
package/dist/lib/pricing.js.map +1 -1
package/dist/lib/process-registry.js +3 -3
package/dist/lib/process-registry.js.map +1 -1
package/dist/lib/public-api.d.ts +41 -1
package/dist/lib/public-api.d.ts.map +1 -1
package/dist/lib/public-api.js +38 -0
package/dist/lib/public-api.js.map +1 -1
package/dist/lib/quality.d.ts.map +1 -1
package/dist/lib/quality.js +15 -6
package/dist/lib/quality.js.map +1 -1
package/dist/lib/query-expansion.d.ts +32 -0
package/dist/lib/query-expansion.d.ts.map +1 -1
package/dist/lib/query-expansion.js +62 -1
package/dist/lib/query-expansion.js.map +1 -1
package/dist/lib/reference-embeddings.d.ts.map +1 -1
package/dist/lib/reference-embeddings.js +17 -4
package/dist/lib/reference-embeddings.js.map +1 -1
package/dist/lib/reflection-synthesizer.d.ts.map +1 -1
package/dist/lib/reflection-synthesizer.js +7 -1
package/dist/lib/reflection-synthesizer.js.map +1 -1
package/dist/lib/reranker.d.ts +41 -0
package/dist/lib/reranker.d.ts.map +1 -0
package/dist/lib/reranker.js +294 -0
package/dist/lib/reranker.js.map +1 -0
package/dist/lib/retrieval-feedback.d.ts +100 -0
package/dist/lib/retrieval-feedback.d.ts.map +1 -0
package/dist/lib/retrieval-feedback.js +174 -0
package/dist/lib/retrieval-feedback.js.map +1 -0
package/dist/lib/review/context-pack.d.ts +58 -0
package/dist/lib/review/context-pack.d.ts.map +1 -0
package/dist/lib/review/context-pack.js +300 -0
package/dist/lib/review/context-pack.js.map +1 -0
package/dist/lib/search/hierarchical-summaries.d.ts +65 -0
package/dist/lib/search/hierarchical-summaries.d.ts.map +1 -0
package/dist/lib/search/hierarchical-summaries.js +423 -0
package/dist/lib/search/hierarchical-summaries.js.map +1 -0
package/dist/lib/search/hyde.d.ts +27 -0
package/dist/lib/search/hyde.d.ts.map +1 -0
package/dist/lib/search/hyde.js +141 -0
package/dist/lib/search/hyde.js.map +1 -0
package/dist/lib/search/late-chunking.d.ts +53 -0
package/dist/lib/search/late-chunking.d.ts.map +1 -0
package/dist/lib/search/late-chunking.js +230 -0
package/dist/lib/search/late-chunking.js.map +1 -0
package/dist/lib/search/ppr-retrieval.d.ts +49 -0
package/dist/lib/search/ppr-retrieval.d.ts.map +1 -0
package/dist/lib/search/ppr-retrieval.js +135 -0
package/dist/lib/search/ppr-retrieval.js.map +1 -0
package/dist/lib/search/repo-map.d.ts +43 -0
package/dist/lib/search/repo-map.d.ts.map +1 -0
package/dist/lib/search/repo-map.js +165 -0
package/dist/lib/search/repo-map.js.map +1 -0
package/dist/lib/session-analyzer.d.ts +90 -0
package/dist/lib/session-analyzer.d.ts.map +1 -0
package/dist/lib/session-analyzer.js +467 -0
package/dist/lib/session-analyzer.js.map +1 -0
package/dist/lib/session-observations.d.ts.map +1 -1
package/dist/lib/session-observations.js +13 -3
package/dist/lib/session-observations.js.map +1 -1
package/dist/lib/session-summary.d.ts.map +1 -1
package/dist/lib/session-summary.js +57 -50
package/dist/lib/session-summary.js.map +1 -1
package/dist/lib/session-surgeon.d.ts +53 -0
package/dist/lib/session-surgeon.d.ts.map +1 -0
package/dist/lib/session-surgeon.js +501 -0
package/dist/lib/session-surgeon.js.map +1 -0
package/dist/lib/similarity-utils.d.ts +26 -0
package/dist/lib/similarity-utils.d.ts.map +1 -0
package/dist/lib/similarity-utils.js +66 -0
package/dist/lib/similarity-utils.js.map +1 -0
package/dist/lib/skills.d.ts.map +1 -1
package/dist/lib/skills.js +11 -11
package/dist/lib/skills.js.map +1 -1
package/dist/lib/storage/backends/interface.d.ts +13 -3
package/dist/lib/storage/backends/interface.d.ts.map +1 -1
package/dist/lib/storage/backends/postgresql.d.ts +52 -3
package/dist/lib/storage/backends/postgresql.d.ts.map +1 -1
package/dist/lib/storage/backends/postgresql.js +694 -49
package/dist/lib/storage/backends/postgresql.js.map +1 -1
package/dist/lib/storage/benchmark.js +2 -2
package/dist/lib/storage/benchmark.js.map +1 -1
package/dist/lib/storage/dispatcher/base.d.ts +114 -0
package/dist/lib/storage/dispatcher/base.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/base.js +160 -0
package/dist/lib/storage/dispatcher/base.js.map +1 -0
package/dist/lib/storage/dispatcher/documents.d.ts +25 -0
package/dist/lib/storage/dispatcher/documents.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/documents.js +194 -0
package/dist/lib/storage/dispatcher/documents.js.map +1 -0
package/dist/lib/storage/dispatcher/embeddings.d.ts +34 -0
package/dist/lib/storage/dispatcher/embeddings.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/embeddings.js +144 -0
package/dist/lib/storage/dispatcher/embeddings.js.map +1 -0
package/dist/lib/storage/dispatcher/export-import.d.ts +139 -0
package/dist/lib/storage/dispatcher/export-import.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/export-import.js +191 -0
package/dist/lib/storage/dispatcher/export-import.js.map +1 -0
package/dist/lib/storage/dispatcher/file-hashes.d.ts +13 -0
package/dist/lib/storage/dispatcher/file-hashes.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/file-hashes.js +36 -0
package/dist/lib/storage/dispatcher/file-hashes.js.map +1 -0
package/dist/lib/storage/dispatcher/global-memories.d.ts +28 -0
package/dist/lib/storage/dispatcher/global-memories.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/global-memories.js +151 -0
package/dist/lib/storage/dispatcher/global-memories.js.map +1 -0
package/dist/lib/storage/dispatcher/graph.d.ts +32 -0
package/dist/lib/storage/dispatcher/graph.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/graph.js +146 -0
package/dist/lib/storage/dispatcher/graph.js.map +1 -0
package/dist/lib/storage/dispatcher/index.d.ts +34 -0
package/dist/lib/storage/dispatcher/index.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/index.js +139 -0
package/dist/lib/storage/dispatcher/index.js.map +1 -0
package/dist/lib/storage/dispatcher/memories.d.ts +65 -0
package/dist/lib/storage/dispatcher/memories.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/memories.js +466 -0
package/dist/lib/storage/dispatcher/memories.js.map +1 -0
package/dist/lib/storage/dispatcher/mixin-helper.d.ts +6 -0
package/dist/lib/storage/dispatcher/mixin-helper.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/mixin-helper.js +10 -0
package/dist/lib/storage/dispatcher/mixin-helper.js.map +1 -0
package/dist/lib/storage/dispatcher/retention.d.ts +20 -0
package/dist/lib/storage/dispatcher/retention.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/retention.js +123 -0
package/dist/lib/storage/dispatcher/retention.js.map +1 -0
package/dist/lib/storage/dispatcher/search.d.ts +34 -0
package/dist/lib/storage/dispatcher/search.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/search.js +222 -0
package/dist/lib/storage/dispatcher/search.js.map +1 -0
package/dist/lib/storage/dispatcher/skills.d.ts +53 -0
package/dist/lib/storage/dispatcher/skills.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/skills.js +98 -0
package/dist/lib/storage/dispatcher/skills.js.map +1 -0
package/dist/lib/storage/dispatcher/token-stats.d.ts +23 -0
package/dist/lib/storage/dispatcher/token-stats.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/token-stats.js +92 -0
package/dist/lib/storage/dispatcher/token-stats.js.map +1 -0
package/dist/lib/storage/dispatcher/web-search.d.ts +10 -0
package/dist/lib/storage/dispatcher/web-search.d.ts.map +1 -0
package/dist/lib/storage/dispatcher/web-search.js +39 -0
package/dist/lib/storage/dispatcher/web-search.js.map +1 -0
package/dist/lib/storage/dispatcher-export.d.ts.map +1 -1
package/dist/lib/storage/dispatcher-export.js +48 -39
package/dist/lib/storage/dispatcher-export.js.map +1 -1
package/dist/lib/storage/dispatcher.d.ts +1 -468
package/dist/lib/storage/dispatcher.d.ts.map +1 -1
package/dist/lib/storage/dispatcher.js +1 -1931
package/dist/lib/storage/dispatcher.js.map +1 -1
package/dist/lib/storage/index.d.ts +20 -5
package/dist/lib/storage/index.d.ts.map +1 -1
package/dist/lib/storage/index.js +36 -7
package/dist/lib/storage/index.js.map +1 -1
package/dist/lib/storage/migration/export-import.d.ts.map +1 -1
package/dist/lib/storage/migration/export-import.js +9 -2
package/dist/lib/storage/migration/export-import.js.map +1 -1
package/dist/lib/storage/types.d.ts +152 -10
package/dist/lib/storage/types.d.ts.map +1 -1
package/dist/lib/storage/types.js +13 -0
package/dist/lib/storage/types.js.map +1 -1
package/dist/lib/storage/vector/interface.d.ts +4 -0
package/dist/lib/storage/vector/interface.d.ts.map +1 -1
package/dist/lib/storage/vector/qdrant.d.ts +13 -2
package/dist/lib/storage/vector/qdrant.d.ts.map +1 -1
package/dist/lib/storage/vector/qdrant.js +147 -61
package/dist/lib/storage/vector/qdrant.js.map +1 -1
package/dist/lib/token-budget.d.ts.map +1 -1
package/dist/lib/token-budget.js +9 -2
package/dist/lib/token-budget.js.map +1 -1
package/dist/lib/transcript-utils.d.ts +60 -0
package/dist/lib/transcript-utils.d.ts.map +1 -0
package/dist/lib/transcript-utils.js +69 -0
package/dist/lib/transcript-utils.js.map +1 -0
package/dist/lib/tree-sitter/extractor.d.ts +1 -1
package/dist/lib/tree-sitter/extractor.d.ts.map +1 -1
package/dist/lib/tree-sitter/extractor.js +34 -9
package/dist/lib/tree-sitter/extractor.js.map +1 -1
package/dist/lib/tree-sitter/parser.d.ts.map +1 -1
package/dist/lib/tree-sitter/parser.js +45 -11
package/dist/lib/tree-sitter/parser.js.map +1 -1
package/dist/lib/tree-sitter/public.d.ts +12 -0
package/dist/lib/tree-sitter/public.d.ts.map +1 -1
package/dist/lib/tree-sitter/public.js +33 -1
package/dist/lib/tree-sitter/public.js.map +1 -1
package/dist/lib/tree-sitter/queries.d.ts.map +1 -1
package/dist/lib/tree-sitter/queries.js +8 -0
package/dist/lib/tree-sitter/queries.js.map +1 -1
package/dist/lib/working-memory-pipeline.d.ts.map +1 -1
package/dist/lib/working-memory-pipeline.js +12 -3
package/dist/lib/working-memory-pipeline.js.map +1 -1
package/dist/lib/worktree-detect.d.ts +43 -0
package/dist/lib/worktree-detect.d.ts.map +1 -0
package/dist/lib/worktree-detect.js +154 -0
package/dist/lib/worktree-detect.js.map +1 -0
package/dist/lsp/client.d.ts +96 -0
package/dist/lsp/client.d.ts.map +1 -0
package/dist/lsp/client.js +435 -0
package/dist/lsp/client.js.map +1 -0
package/dist/lsp/installer.d.ts +39 -0
package/dist/lsp/installer.d.ts.map +1 -0
package/dist/lsp/installer.js +275 -0
package/dist/lsp/installer.js.map +1 -0
package/dist/lsp/manager.d.ts +62 -0
package/dist/lsp/manager.d.ts.map +1 -0
package/dist/lsp/manager.js +234 -0
package/dist/lsp/manager.js.map +1 -0
package/dist/lsp/servers.d.ts +52 -0
package/dist/lsp/servers.d.ts.map +1 -0
package/dist/lsp/servers.js +162 -0
package/dist/lsp/servers.js.map +1 -0
package/dist/mcp/helpers.d.ts.map +1 -1
package/dist/mcp/helpers.js +8 -2
package/dist/mcp/helpers.js.map +1 -1
package/dist/mcp/profile.js +1 -1
package/dist/mcp/server.d.ts +3 -2
package/dist/mcp/server.d.ts.map +1 -1
package/dist/mcp/server.js +19 -7
package/dist/mcp/server.js.map +1 -1
package/dist/mcp/tools/config.d.ts.map +1 -1
package/dist/mcp/tools/config.js +28 -118
package/dist/mcp/tools/config.js.map +1 -1
package/dist/mcp/tools/dead-end.d.ts.map +1 -1
package/dist/mcp/tools/dead-end.js +4 -3
package/dist/mcp/tools/dead-end.js.map +1 -1
package/dist/mcp/tools/debug.d.ts.map +1 -1
package/dist/mcp/tools/debug.js +27 -112
package/dist/mcp/tools/debug.js.map +1 -1
package/dist/mcp/tools/graph.d.ts.map +1 -1
package/dist/mcp/tools/graph.js +164 -176
package/dist/mcp/tools/graph.js.map +1 -1
package/dist/mcp/tools/indexing.d.ts +1 -1
package/dist/mcp/tools/indexing.d.ts.map +1 -1
package/dist/mcp/tools/indexing.js +63 -164
package/dist/mcp/tools/indexing.js.map +1 -1
package/dist/mcp/tools/memory/forget.d.ts +3 -0
package/dist/mcp/tools/memory/forget.d.ts.map +1 -0
package/dist/mcp/tools/memory/forget.js +175 -0
package/dist/mcp/tools/memory/forget.js.map +1 -0
package/dist/mcp/tools/memory/memory-helpers.d.ts +45 -0
package/dist/mcp/tools/memory/memory-helpers.d.ts.map +1 -0
package/dist/mcp/tools/memory/memory-helpers.js +291 -0
package/dist/mcp/tools/memory/memory-helpers.js.map +1 -0
package/dist/mcp/tools/memory/recall.d.ts +3 -0
package/dist/mcp/tools/memory/recall.d.ts.map +1 -0
package/dist/mcp/tools/memory/recall.js +495 -0
package/dist/mcp/tools/memory/recall.js.map +1 -0
package/dist/mcp/tools/memory/remember.d.ts +3 -0
package/dist/mcp/tools/memory/remember.d.ts.map +1 -0
package/dist/mcp/tools/memory/remember.js +256 -0
package/dist/mcp/tools/memory/remember.js.map +1 -0
package/dist/mcp/tools/memory/temporal-query.d.ts +8 -0
package/dist/mcp/tools/memory/temporal-query.d.ts.map +1 -0
package/dist/mcp/tools/memory/temporal-query.js +68 -0
package/dist/mcp/tools/memory/temporal-query.js.map +1 -0
package/dist/mcp/tools/memory.d.ts +0 -11
package/dist/mcp/tools/memory.d.ts.map +1 -1
package/dist/mcp/tools/memory.js +6 -1228
package/dist/mcp/tools/memory.js.map +1 -1
package/dist/mcp/tools/prd.d.ts.map +1 -1
package/dist/mcp/tools/prd.js +19 -70
package/dist/mcp/tools/prd.js.map +1 -1
package/dist/mcp/tools/review.d.ts +8 -0
package/dist/mcp/tools/review.d.ts.map +1 -0
package/dist/mcp/tools/review.js +133 -0
package/dist/mcp/tools/review.js.map +1 -0
package/dist/mcp/tools/search.d.ts.map +1 -1
package/dist/mcp/tools/search.js +79 -8
package/dist/mcp/tools/search.js.map +1 -1
package/dist/mcp/tools/status.d.ts.map +1 -1
package/dist/mcp/tools/status.js +34 -75
package/dist/mcp/tools/status.js.map +1 -1
package/dist/mcp/tools/web-fetch.d.ts.map +1 -1
package/dist/mcp/tools/web-fetch.js +5 -1
package/dist/mcp/tools/web-fetch.js.map +1 -1
package/dist/mcp/tools/web-search.d.ts.map +1 -1
package/dist/mcp/tools/web-search.js +25 -103
package/dist/mcp/tools/web-search.js.map +1 -1
package/dist/prompts/guardrails.d.ts +14 -0
package/dist/prompts/guardrails.d.ts.map +1 -0
package/dist/prompts/guardrails.js +115 -0
package/dist/prompts/guardrails.js.map +1 -0
package/dist/prompts/index.d.ts +2 -1
package/dist/prompts/index.d.ts.map +1 -1
package/dist/prompts/index.js +3 -1
package/dist/prompts/index.js.map +1 -1
package/dist/prompts/prd.d.ts +0 -2
package/dist/prompts/prd.d.ts.map +1 -1
package/dist/prompts/prd.js +0 -2
package/dist/prompts/prd.js.map +1 -1
package/hooks/core/__tests__/adapter.test.cjs +340 -0
package/hooks/core/adapter.cjs +463 -0
package/hooks/core/config.cjs +83 -0
package/hooks/core/daemon-boot.cjs +140 -0
package/hooks/core/log.cjs +41 -0
package/hooks/core/worktree.cjs +119 -0
package/hooks/succ-post-tool.cjs +198 -134
package/hooks/succ-pre-compact.cjs +262 -0
package/hooks/succ-pre-tool.cjs +526 -182
package/hooks/succ-session-end.cjs +40 -64
package/hooks/succ-session-start.cjs +484 -430
package/hooks/succ-stop-reflection.cjs +36 -62
package/hooks/succ-user-prompt.cjs +137 -180
package/package.json +17 -6

package/dist/daemon/routes/hooks.js ADDED Viewed

@@ -0,0 +1,1212 @@
+/**
+ * HTTP Hook Routes — handle Claude Code hook events directly via HTTP POST.
+ *
+ * Replaces the .cjs command hooks when Claude Code v2.1.63+ is detected.
+ * All routes are fail-open: return 200 {} on errors so hooks never block Claude.
+ */
+import path from 'path';
+import fs from 'fs';
+import { z } from 'zod';
+import { getMemoriesByTag, saveMemory } from '../../lib/storage/index.js';
+import { getEmbedding } from '../../lib/embeddings.js';
+import { matchRules } from '../../lib/hook-rules.js';
+import { checkDangerous, extractSafetyConfig, checkFileOperation, isExfilUrl, } from '../../lib/command-safety.js';
+import { sanitizeForContext, sanitizeFileName, wrapSanitized, } from '../../lib/content-sanitizer.js';
+import { detectInjectionAsync, isMemorySafeAsync } from '../../lib/injection-detector.js';
+import { quickFileLabel, labelByContent } from '../../lib/ifc/file-labels.js';
+import { createSessionIFC, raiseLabel, addTaint, grantTrustedAction, checkWriteDown, recordOutboundStep, summarizeIFC, } from '../../lib/ifc/session-ifc.js';
+import { isBottom, formatLabel } from '../../lib/ifc/label.js';
+import { classifySensitivity, evaluateCodePolicy, detectInjectionLLM, formatViolations, } from '../../lib/guardrails.js';
+import { removeObservations } from '../../lib/session-observations.js';
+import { flushBudgets, removeBudget } from '../../lib/token-budget.js';
+import { getConfig } from '../../lib/config.js';
+import { spawnClaudeCLI } from '../../lib/llm.js';
+import { logWarn } from '../../lib/fault-logger.js';
+import { scanSensitive, formatMatches } from '../../lib/sensitive-filter.js';
+import { parseRequestBody } from './types.js';
+// ─── Schemas ─────────────────────────────────────────────────────────
+const HookBaseSchema = z
+    .object({
+    hookEventName: z.string().optional(),
+    session_id: z.string().optional(),
+    cwd: z.string().optional(),
+    transcript_path: z.string().optional(),
+})
+    .passthrough();
+const PreToolSchema = HookBaseSchema.extend({
+    tool_name: z.string().optional(),
+    tool_input: z.unknown().optional(),
+});
+const PostToolSchema = HookBaseSchema.extend({
+    tool_name: z.string().optional(),
+    tool_input: z.unknown().optional(),
+    tool_output: z.unknown().optional(),
+    tool_response: z.unknown().optional(),
+    tool_error: z.unknown().optional(),
+});
+const PermissionSchema = HookBaseSchema.extend({
+    tool_name: z.string().optional(),
+    tool_input: z.unknown().optional(),
+});
+const SubagentStopSchema = HookBaseSchema.extend({
+    agent_type: z.string().optional(),
+    tool_output: z.string().optional(),
+});
+// ─── Helpers ─────────────────────────────────────────────────────────
+const HOOK_RULES_CACHE_TTL = 60_000;
+let hookRulesCache = null;
+async function getHookRuleMemories() {
+    const now = Date.now();
+    if (hookRulesCache && now - hookRulesCache.timestamp <= HOOK_RULES_CACHE_TTL) {
+        return hookRulesCache.memories;
+    }
+    const memories = await getMemoriesByTag('hook-rule', 50);
+    hookRulesCache = { memories, timestamp: now };
+    return memories;
+}
+/**
+ * Parse MEMORY.md bullets, classify by section header.
+ * Returns [{ text, tags }] for each bullet worth saving.
+ */
+function parseMemoryMdBullets(content) {
+    const results = [];
+    let currentSection = '';
+    for (const line of content.split('\n')) {
+        const headerMatch = line.match(/^##\s+(.+)/);
+        if (headerMatch) {
+            currentSection = headerMatch[1].trim().toLowerCase();
+            continue;
+        }
+        const bulletMatch = line.match(/^-\s+(.+)/);
+        if (!bulletMatch)
+            continue;
+        const text = bulletMatch[1].trim();
+        if (text.length < 10)
+            continue;
+        const tags = ['memory-md'];
+        if (/gotcha/i.test(currentSection))
+            tags.push('gotcha');
+        else if (/learning|lesson/i.test(currentSection))
+            tags.push('learning');
+        else if (/decision|chose/i.test(currentSection))
+            tags.push('decision');
+        else if (/pattern/i.test(currentSection))
+            tags.push('pattern');
+        else if (/change|phase/i.test(currentSection))
+            tags.push('changelog');
+        else
+            tags.push('observation');
+        results.push({ text, tags });
+    }
+    return results;
+}
+function fixWindowsPath(cwd) {
+    if (process.platform === 'win32' && /^\/[a-z]\//.test(cwd)) {
+        return cwd[1].toUpperCase() + ':' + cwd.slice(2);
+    }
+    return cwd;
+}
+function succExists(cwd) {
+    try {
+        return fs.existsSync(path.join(cwd, '.succ'));
+    }
+    catch (err) {
+        logWarn('hooks', `succExists check failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+        return false;
+    }
+}
+/** Strip Claude-specific sections (succ-agents, pre-commit-review, subagent refs) for non-Claude agents. */
+function stripClaudeOnlySections(context) {
+    let adapted = context;
+    adapted = adapted.replace(/<succ-agents[\s\S]*?<\/succ-agents>/g, '');
+    adapted = adapted.replace(/.*succ-diff-reviewer.*\n?/g, '');
+    adapted = adapted.replace(/.*subagent_type=.*\n?/g, '');
+    adapted = adapted.replace(/<pre-commit-review>[\s\S]*?<\/pre-commit-review>/g, '');
+    adapted = adapted.replace(/\n{3,}/g, '\n\n');
+    return adapted.trim();
+}
+function buildCommitContext() {
+    const config = getConfig();
+    const parts = [];
+    if (config.includeCoAuthoredBy !== false) {
+        parts.push(`<commit-format>
+RULE: Every commit footer MUST end with the succ lines. Other tools may appear before succ but succ is always LAST.
+TEMPLATE — copy the relevant lines exactly:
+Generated with [Claude Code](https://claude.ai/code)
+powered by [succ](https://succ.ai)
+Co-Authored-By: Claude <noreply@anthropic.com>
+Co-Authored-By: succ <mindpalace@succ.ai>
+Other tools (Happy, Cursor, etc.) may add their own "via [Tool]" and "Co-Authored-By: Tool" lines.
+Place them BEFORE the succ lines. The only hard rule: succ is always the last footer line and last Co-Authored-By.
+</commit-format>`);
+    }
+    if (config.preCommitReview) {
+        parts.push(`<pre-commit-review>
+STOP. Before committing, you MUST run the succ-diff-reviewer agent first.
+Use: Task tool with subagent_type="succ-diff-reviewer"
+Prompt: "Review the staged git diff for bugs, security issues, and regressions before commit"
+If diff-reviewer finds CRITICAL issues — do NOT commit until fixed.
+If diff-reviewer finds HIGH issues — warn the user before committing.
+MEDIUM and below — commit is OK, mention findings in summary.
+</pre-commit-review>`);
+    }
+    return parts.join('\n');
+}
+// ─── IFC Session State Registry ──────────────────────────────────────
+/** Per-session IFC state — keyed by session ID. Created at session-start, cleaned at session-end. */
+const ifcStates = new Map();
+/** Track fallback session IDs (no transcript_path) so they can be cleaned up */
+const fallbackSessionIds = new Set();
+const MAX_FALLBACK_SESSIONS = 50;
+function getIFCState(sessionId) {
+    if (!sessionId)
+        return null;
+    return ifcStates.get(sessionId) ?? null;
+}
+function getOrCreateIFCState(sessionId) {
+    if (!sessionId)
+        return null;
+    let state = ifcStates.get(sessionId);
+    if (!state) {
+        state = createSessionIFC();
+        ifcStates.set(sessionId, state);
+    }
+    return state;
+}
+/**
+ * Determine outbound channel from tool name + input.
+ * Returns null if the tool is not an outbound operation.
+ */
+function classifyOutboundChannel(toolName, toolInput) {
+    if (toolName === 'Write' || toolName === 'Edit')
+        return 'file_write';
+    if (toolName === 'WebFetch')
+        return 'web_fetch';
+    if (toolName === 'Bash') {
+        const cmd = toolInput.command || '';
+        // Network commands
+        if (/\b(curl|wget|ssh|scp|rsync|nc|ncat|netcat|ftp|sftp)\b/.test(cmd))
+            return 'bash_network';
+        // Git push/commit
+        if (/\bgit\s+(push|commit)\b/.test(cmd))
+            return 'git_commit';
+        // Default: not outbound
+        return null;
+    }
+    return null;
+}
+// ─── Routes ──────────────────────────────────────────────────────────
+export function hookRoutes(ctx) {
+    return {
+        // ═══════════════════════════════════════════════════════════════
+        // PreToolUse — hook-rules + file-linked memories + safety guard
+        // ═══════════════════════════════════════════════════════════════
+        'POST /api/hooks/pre-tool': async (body) => {
+            try {
+                const input = parseRequestBody(PreToolSchema, body);
+                const cwd = fixWindowsPath(input.cwd || '');
+                if (!cwd || !succExists(cwd))
+                    return {};
+                const toolName = input.tool_name || '';
+                const toolInput = input.tool_input && typeof input.tool_input === 'object'
+                    ? input.tool_input
+                    : {};
+                const filePath = toolInput.file_path || '';
+                const command = toolInput.command || '';
+                const contextParts = [];
+                let askReason = null;
+                // Detect bypass permission mode — prefer session-registered value (trusted),
+                // fall back to request body for sessions started before this feature.
+                const sessionId0 = input.session_id;
+                const registeredIfc = sessionId0 ? ifcStates.get(sessionId0) : null;
+                const permissionMode = registeredIfc?.permissionMode ?? body?.permission_mode;
+                const isBypassMode = permissionMode === 'bypassPermissions';
+                const secConfig = getConfig().security;
+                const trustBypass = isBypassMode && secConfig?.trustAgentPermissions === true;
+                // 0. Injection scan on tool input (Tier 1 + Tier 2 regex + Tier 2.C semantic)
+                // Scan all input fields: path, command, url, AND content body
+                const inputParts = [
+                    filePath,
+                    command,
+                    toolInput.url,
+                    typeof toolInput.content === 'string' && toolInput.content.length < 50000
+                        ? toolInput.content
+                        : '',
+                ].filter(Boolean);
+                const inputToScan = inputParts.join('\n');
+                if (inputToScan) {
+                    const injectionResult = await detectInjectionAsync(inputToScan);
+                    if (injectionResult && injectionResult.severity === 'definite') {
+                        return {
+                            hookSpecificOutput: {
+                                hookEventName: 'PreToolUse',
+                                permissionDecision: 'deny',
+                                permissionDecisionReason: `[succ security] Prompt injection detected in tool input: ${injectionResult.description}`,
+                            },
+                        };
+                    }
+                    if (injectionResult && injectionResult.severity === 'probable') {
+                        askReason = `Possible prompt injection: ${injectionResult.description}`;
+                    }
+                }
+                // 0b. File operation guard (Read/Write/Edit)
+                if (filePath && (toolName === 'Read' || toolName === 'Write' || toolName === 'Edit')) {
+                    const operation = toolName === 'Read' ? 'read' : 'write';
+                    const fileGuardResult = checkFileOperation(operation, filePath);
+                    if (fileGuardResult) {
+                        if (trustBypass) {
+                            contextParts.push(`<security-warning type="file-guard">[succ file guard — bypassed] ${sanitizeForContext(fileGuardResult.reason, 300)}</security-warning>`);
+                        }
+                        else {
+                            return {
+                                hookSpecificOutput: {
+                                    hookEventName: 'PreToolUse',
+                                    permissionDecision: fileGuardResult.mode === 'ask' ? 'ask' : 'deny',
+                                    permissionDecisionReason: `[succ file guard] ${fileGuardResult.reason}`,
+                                },
+                            };
+                        }
+                    }
+                }
+                // 0c. Exfiltration URL check (WebFetch)
+                if (toolName === 'WebFetch' && toolInput.url) {
+                    const url = toolInput.url;
+                    if (isExfilUrl(url)) {
+                        if (trustBypass) {
+                            contextParts.push(`<security-warning type="exfiltration">[succ security — bypassed] URL ${sanitizeForContext(url, 200)} is on the exfiltration blocklist.</security-warning>`);
+                        }
+                        else {
+                            return {
+                                hookSpecificOutput: {
+                                    hookEventName: 'PreToolUse',
+                                    permissionDecision: 'ask',
+                                    permissionDecisionReason: `[succ security] URL ${sanitizeForContext(url, 200)} is on the exfiltration blocklist.`,
+                                },
+                            };
+                        }
+                    }
+                }
+                // 0d. IFC: Proactive label raising on file Read + Write-down check on outbound
+                const sessionId = input.session_id;
+                const ifcState = getOrCreateIFCState(sessionId);
+                if (ifcState) {
+                    // Proactive: raise label BEFORE file reads (so subsequent actions are gated)
+                    if (filePath && (toolName === 'Read' || toolName === 'Write' || toolName === 'Edit')) {
+                        const fileLabel = quickFileLabel(filePath);
+                        if (!isBottom(fileLabel)) {
+                            const raised = raiseLabel(ifcState, fileLabel, `${toolName} ${path.basename(filePath)}`);
+                            if (raised) {
+                                ctx.log(`[hooks/ifc] Session ${sessionId} label raised to ${formatLabel(ifcState.label)} by ${path.basename(filePath)}`);
+                            }
+                        }
+                    }
+                    // Write-down check on outbound channels
+                    const channel = classifyOutboundChannel(toolName, toolInput);
+                    if (channel && !isBottom(ifcState.label)) {
+                        const destLabel = channel === 'file_write' && filePath ? quickFileLabel(filePath) : undefined;
+                        const actionId = `${channel}:step${ifcState.outboundStepCount}`;
+                        const wdResult = checkWriteDown(ifcState, channel, {
+                            destinationLabel: destLabel,
+                            actionId,
+                            stepLimits: secConfig?.ifc?.stepLimits,
+                        });
+                        if (wdResult.action === 'deny') {
+                            if (trustBypass) {
+                                contextParts.push(`<security-warning type="ifc">[succ IFC — bypassed] ${sanitizeForContext(wdResult.reason || '', 300)}</security-warning>`);
+                            }
+                            else {
+                                return {
+                                    hookSpecificOutput: {
+                                        hookEventName: 'PreToolUse',
+                                        permissionDecision: 'deny',
+                                        permissionDecisionReason: `[succ IFC] ${wdResult.reason}`,
+                                    },
+                                };
+                            }
+                        }
+                        if (wdResult.action === 'ask') {
+                            if (trustBypass) {
+                                contextParts.push(`<security-warning type="ifc">[succ IFC — bypassed] ${sanitizeForContext(wdResult.reason || '', 300)}</security-warning>`);
+                            }
+                            else {
+                                if (!askReason)
+                                    askReason = `[IFC] ${wdResult.reason}`;
+                            }
+                        }
+                        // Step counting moved to PostToolUse — counted only when tool actually runs
+                        if (wdResult.action === 'warn') {
+                            contextParts.push(`<security-warning type="ifc">${sanitizeForContext(wdResult.reason || '', 300)}</security-warning>`);
+                        }
+                    }
+                }
+                // 1. Dynamic hook rules
+                const memories = await getHookRuleMemories();
+                const rules = matchRules(memories, toolName, toolInput);
+                for (const rule of rules) {
+                    // Scan rule content for injection before using (Tier 1+2+2.C)
+                    const ruleInjection = await detectInjectionAsync(rule.content, {
+                        tier2: true,
+                        tier2Semantic: true,
+                    });
+                    if (ruleInjection && ruleInjection.severity === 'definite') {
+                        ctx.log(`[hooks/pre-tool] Skipping poisoned hook-rule #${rule.id}: ${ruleInjection.description}`);
+                        continue;
+                    }
+                    if (rule.action === 'deny') {
+                        if (trustBypass) {
+                            contextParts.push(wrapSanitized('security-warning', `[succ rule — bypassed] ${sanitizeForContext(rule.content, 500)}`));
+                        }
+                        else {
+                            return {
+                                hookSpecificOutput: {
+                                    hookEventName: 'PreToolUse',
+                                    permissionDecision: 'deny',
+                                    permissionDecisionReason: `[succ rule] ${sanitizeForContext(rule.content, 500)}`,
+                                },
+                            };
+                        }
+                    }
+                    if (rule.action === 'ask' && !askReason) {
+                        if (trustBypass) {
+                            contextParts.push(wrapSanitized('security-warning', `[succ rule — bypassed] ${sanitizeForContext(rule.content, 500)}`));
+                        }
+                        else {
+                            askReason = sanitizeForContext(rule.content, 500);
+                        }
+                    }
+                    if (rule.action === 'inject' || rule.action === 'allow') {
+                        contextParts.push(wrapSanitized('hook-rule', rule.content));
+                    }
+                }
+                // 2. File-linked memories (Edit/Write only)
+                if ((toolName === 'Edit' || toolName === 'Write') && filePath) {
+                    try {
+                        const fileName = path.basename(filePath);
+                        const fileMemories = await getMemoriesByTag(`file:${fileName}`, 5);
+                        if (fileMemories.length > 0) {
+                            const lines = fileMemories.map((m) => `- [${m.type || 'observation'}] ${sanitizeForContext(m.content, 200)}`);
+                            contextParts.push(`<file-context file="${sanitizeFileName(fileName)}">\nRelated memories:\n${lines.join('\n')}\n</file-context>`);
+                        }
+                    }
+                    catch (err) {
+                        logWarn('hooks', `File-linked memories failed: ${err instanceof Error ? err.message : String(err)}`);
+                    }
+                }
+                // 3. Command safety guard (Bash only)
+                if (command) {
+                    const config = getConfig();
+                    const safetyConfig = extractSafetyConfig(config.commandSafetyGuard);
+                    const dangerResult = checkDangerous(command, safetyConfig);
+                    if (dangerResult) {
+                        if (trustBypass) {
+                            contextParts.push(`<security-warning type="command-safety">[succ guard — bypassed] ${sanitizeForContext(dangerResult.reason, 300)}</security-warning>`);
+                        }
+                        else {
+                            return {
+                                hookSpecificOutput: {
+                                    hookEventName: 'PreToolUse',
+                                    permissionDecision: dangerResult.mode === 'ask' ? 'ask' : 'deny',
+                                    permissionDecisionReason: `[succ guard] ${dangerResult.reason}`,
+                                },
+                            };
+                        }
+                    }
+                    // 4. Git commit guidelines
+                    if (/\bgit\s+commit\b/.test(command)) {
+                        const commitContext = buildCommitContext();
+                        if (commitContext)
+                            contextParts.push(commitContext);
+                    }
+                }
+                // Hook rule askReason deferred to after guardrails checks (5b/5c) below
+                // 5b. Guardrails: Code policy evaluation (Write/Edit source code — Phase 3, Tier 3)
+                if ((toolName === 'Write' || toolName === 'Edit') && filePath && toolInput.content) {
+                    const content = toolInput.content;
+                    if (/\.(ts|tsx|js|jsx|py|go|rs|java|rb|php)$/i.test(filePath) && content.length < 10000) {
+                        try {
+                            const policyResult = await evaluateCodePolicy(content, filePath);
+                            if (policyResult && !policyResult.safe) {
+                                const critical = policyResult.violations.filter((v) => v.severity === 'critical');
+                                const high = policyResult.violations.filter((v) => v.severity === 'high');
+                                if (critical.length > 0) {
+                                    if (trustBypass) {
+                                        contextParts.push(`<security-warning type="code-policy">[succ guardrails — bypassed] Critical security vulnerabilities:\n${sanitizeForContext(formatViolations(critical), 500)}</security-warning>`);
+                                    }
+                                    else {
+                                        return {
+                                            hookSpecificOutput: {
+                                                hookEventName: 'PreToolUse',
+                                                permissionDecision: 'deny',
+                                                permissionDecisionReason: `[succ guardrails] Critical security vulnerabilities detected:\n${sanitizeForContext(formatViolations(critical), 500)}`,
+                                            },
+                                        };
+                                    }
+                                }
+                                if (high.length > 0 && !askReason) {
+                                    if (trustBypass) {
+                                        contextParts.push(`<security-warning type="code-policy">[succ guardrails — bypassed] High severity issues:\n${sanitizeForContext(formatViolations(high), 500)}</security-warning>`);
+                                    }
+                                    else {
+                                        askReason = `[guardrails] Security issues detected:\n${sanitizeForContext(formatViolations(high), 500)}`;
+                                    }
+                                }
+                                if (policyResult.violations.length > 0) {
+                                    contextParts.push(`<security-warning type="code-policy">\nCode security review:\n${sanitizeForContext(formatViolations(policyResult.violations), 800)}\n</security-warning>`);
+                                }
+                            }
+                        }
+                        catch (err) {
+                            logWarn('hooks', `Code policy evaluation failed: ${err instanceof Error ? err.message : String(err)}`);
+                        }
+                    }
+                }
+                // 5c. Guardrails: Tier 3 LLM injection detection on tool input (supplements Tier 1+2)
+                if (inputToScan && inputToScan.length > 20) {
+                    try {
+                        const llmInjection = await detectInjectionLLM(inputToScan);
+                        if (llmInjection && llmInjection.isInjection && llmInjection.confidence > 0.8) {
+                            return {
+                                hookSpecificOutput: {
+                                    hookEventName: 'PreToolUse',
+                                    permissionDecision: 'deny',
+                                    permissionDecisionReason: `[succ guardrails/T3] LLM injection detected (${llmInjection.category}, confidence: ${llmInjection.confidence.toFixed(2)}): ${sanitizeForContext(llmInjection.reasoning, 300)}`,
+                                },
+                            };
+                        }
+                        if (llmInjection && llmInjection.isInjection && llmInjection.confidence > 0.5) {
+                            if (!askReason) {
+                                askReason = `[guardrails/T3] Possible injection (${llmInjection.category}): ${sanitizeForContext(llmInjection.reasoning, 200)}`;
+                            }
+                        }
+                    }
+                    catch (err) {
+                        logWarn('hooks', `LLM injection detection failed: ${err instanceof Error ? err.message : String(err)}`);
+                    }
+                }
+                // Return ask if accumulated (from injection scan, IFC, guardrails, or hook rules)
+                if (askReason) {
+                    return {
+                        hookSpecificOutput: {
+                            hookEventName: 'PreToolUse',
+                            permissionDecision: 'ask',
+                            permissionDecisionReason: `[succ] ${askReason}`,
+                        },
+                    };
+                }
+                // 6. Emit combined context
+                if (contextParts.length > 0) {
+                    return {
+                        hookSpecificOutput: {
+                            hookEventName: 'PreToolUse',
+                            additionalContext: contextParts.join('\n'),
+                        },
+                    };
+                }
+                return {};
+            }
+            catch (err) {
+                logWarn('hooks', `pre-tool handler failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                return {};
+            }
+        },
+        // ═══════════════════════════════════════════════════════════════
+        // PostToolUse — auto-capture (git, deps, tests, files, MEMORY.md sync, subagents)
+        // ═══════════════════════════════════════════════════════════════
+        'POST /api/hooks/post-tool': async (body) => {
+            try {
+                const input = parseRequestBody(PostToolSchema, body);
+                const cwd = fixWindowsPath(input.cwd || '');
+                if (!cwd || !succExists(cwd))
+                    return {};
+                if (input.tool_error)
+                    return {}; // skip failed tool calls
+                const toolName = input.tool_name || '';
+                const toolInput = input.tool_input || {};
+                // Keep raw value for Task subagent parsing (may be object), stringify for text matching
+                const rawToolOutput = input.tool_output ?? input.tool_response ?? '';
+                const toolOutput = typeof rawToolOutput === 'string' ? rawToolOutput : '';
+                const remember = async (content, tags) => {
+                    try {
+                        // Scan for injection before persisting to memory (Tier 1+2 regex + Tier 2.C semantic)
+                        const memSafety = await isMemorySafeAsync(content);
+                        if (!memSafety.safe) {
+                            ctx.log(`[hooks/post-tool] Blocked poisoned memory save: ${memSafety.result?.description}`);
+                            return;
+                        }
+                        const embedding = await getEmbedding(content);
+                        const saveTags = [...tags, 'auto-capture'];
+                        if (memSafety.result)
+                            saveTags.push('injection-warned');
+                        await saveMemory(content, embedding, saveTags, 'auto-capture', {
+                            type: 'observation',
+                        });
+                    }
+                    catch (err) {
+                        logWarn('hooks', `Memory auto-capture failed: ${err instanceof Error ? err.message : String(err)}`);
+                    }
+                };
+                // IFC: Get session state for taint propagation
+                const postSessionId = input.session_id;
+                const postIfcState = getIFCState(postSessionId);
+                // IFC: Record outbound step for completed tool use
+                // Step counting is done here (not PreToolUse) so ask-approved and
+                // allow/warn actions are both counted exactly once, and denied/
+                // ask-rejected actions (which never reach PostToolUse) are not counted.
+                if (postIfcState) {
+                    const postChannel = classifyOutboundChannel(toolName, toolInput);
+                    if (postChannel && !isBottom(postIfcState.label)) {
+                        recordOutboundStep(postIfcState);
+                    }
+                }
+                // Post-tool secret scanning on Bash output
+                if (toolName === 'Bash' && toolOutput && toolOutput.length > 0) {
+                    try {
+                        const sensitiveResult = scanSensitive(toolOutput);
+                        if (sensitiveResult.hasSensitive) {
+                            // IFC: Taint session on secret detection
+                            if (postIfcState) {
+                                const matchTypes = sensitiveResult.matches.map((m) => m.type);
+                                if (matchTypes.some((t) => t.includes('key') ||
+                                    t.includes('token') ||
+                                    t.includes('entropy') ||
+                                    t === 'jwt')) {
+                                    addTaint(postIfcState, 'secrets_detected', `Bash output (${matchTypes[0]})`);
+                                }
+                                if (matchTypes.some((t) => t === 'private_key' || t.includes('password'))) {
+                                    addTaint(postIfcState, 'credentials_detected', `Bash output (${matchTypes[0]})`);
+                                }
+                                if (matchTypes.some((t) => t.includes('pii') ||
+                                    t.includes('ssn') ||
+                                    t.includes('phone') ||
+                                    t.includes('name'))) {
+                                    addTaint(postIfcState, 'pii_detected', `Bash output (${matchTypes[0]})`);
+                                }
+                            }
+                            const summary = formatMatches(sensitiveResult.matches);
+                            return {
+                                hookSpecificOutput: {
+                                    hookEventName: 'PostToolUse',
+                                    additionalContext: `<security-warning type="secrets-in-output">\nSensitive information detected in command output:\n${sanitizeForContext(summary, 1000)}\nAvoid including these values in code, commits, or messages.\n</security-warning>`,
+                                },
+                            };
+                        }
+                    }
+                    catch (err) {
+                        logWarn('hooks', `Post-tool secret scanning failed: ${err instanceof Error ? err.message : String(err)}`);
+                    }
+                }
+                // Post-tool: IFC content-based label raising for Read output
+                if (postIfcState &&
+                    toolName === 'Read' &&
+                    toolOutput &&
+                    toolOutput.length > 0 &&
+                    toolOutput.length < 100000) {
+                    const contentLabel = labelByContent(toolOutput);
+                    if (!isBottom(contentLabel)) {
+                        const filePath2 = toolInput.file_path || 'unknown';
+                        raiseLabel(postIfcState, contentLabel, `Read content of ${path.basename(filePath2)}`);
+                    }
+                }
+                // Post-tool: Guardrails LLM sensitivity classification (Phase 3, Layer 4)
+                if (postIfcState &&
+                    toolName === 'Read' &&
+                    toolOutput &&
+                    toolOutput.length > 50 &&
+                    toolOutput.length < 10000) {
+                    try {
+                        const sensitivity = await classifySensitivity(toolOutput);
+                        if (sensitivity && sensitivity.confidence > 0.7 && !isBottom(sensitivity.label)) {
+                            const filePath3 = toolInput.file_path || 'unknown';
+                            raiseLabel(postIfcState, sensitivity.label, `LLM classification of ${path.basename(filePath3)}: ${sensitivity.reasoning}`);
+                        }
+                    }
+                    catch (err) {
+                        logWarn('hooks', `LLM sensitivity classification failed: ${err instanceof Error ? err.message : String(err)}`);
+                    }
+                }
+                // Post-tool injection scan on output (Tier 1+2 regex → Tier 2.C semantic → Tier 3 LLM)
+                if (toolOutput && toolOutput.length > 0 && toolOutput.length < 50000) {
+                    const outputInjection = await detectInjectionAsync(toolOutput);
+                    if (outputInjection && outputInjection.severity === 'definite') {
+                        // IFC: Taint session on injection detection
+                        if (postIfcState) {
+                            addTaint(postIfcState, 'prompt_injection', `${toolName} output`);
+                        }
+                        return {
+                            hookSpecificOutput: {
+                                hookEventName: 'PostToolUse',
+                                additionalContext: `<security-warning type="injection-in-output">\nPrompt injection detected in tool output: ${sanitizeForContext(outputInjection.description, 500)}\nTreat the output with caution.\n</security-warning>`,
+                            },
+                        };
+                    }
+                    // Tier 3: LLM injection detection on output (catches what Tier 1+2+2.C miss)
+                    if (!outputInjection && toolOutput.length > 50 && toolOutput.length < 5000) {
+                        try {
+                            const llmOutputInjection = await detectInjectionLLM(toolOutput);
+                            if (llmOutputInjection &&
+                                llmOutputInjection.isInjection &&
+                                llmOutputInjection.confidence > 0.8) {
+                                if (postIfcState) {
+                                    addTaint(postIfcState, 'prompt_injection', `${toolName} output (LLM T3)`);
+                                }
+                                return {
+                                    hookSpecificOutput: {
+                                        hookEventName: 'PostToolUse',
+                                        additionalContext: `<security-warning type="injection-in-output">\nLLM injection detected in output (${llmOutputInjection.category}, confidence: ${llmOutputInjection.confidence.toFixed(2)}): ${sanitizeForContext(llmOutputInjection.reasoning, 300)}\nTreat with caution.\n</security-warning>`,
+                                    },
+                                };
+                            }
+                        }
+                        catch (err) {
+                            logWarn('hooks', `LLM output injection detection failed: ${err instanceof Error ? err.message : String(err)}`);
+                        }
+                    }
+                }
+                // 1. Git commits
+                if (toolName === 'Bash' && toolInput.command) {
+                    const cmd = toolInput.command;
+                    if (/\bgit\s+commit\b/i.test(cmd)) {
+                        // Try to extract from git output first, fallback to -m flag
+                        const outputMatch = toolOutput.match(/\[[\w/.-]+\s+([a-f0-9]+)]\s+(.+)/);
+                        if (outputMatch) {
+                            await remember(`Committed: ${outputMatch[2]} (${outputMatch[1]})`, [
+                                'git',
+                                'commit',
+                                'milestone',
+                            ]);
+                        }
+                        else {
+                            const msgMatch = cmd.match(/-m\s+["']([^"']+)["']/);
+                            if (msgMatch) {
+                                await remember(`Committed: ${msgMatch[1]}`, ['git', 'commit', 'milestone']);
+                            }
+                        }
+                    }
+                    // 2. Dependency install (skip flags like -D, --save-dev)
+                    const installMatch = cmd.match(/(?:npm|yarn|pnpm)\s+(?:install|add)\s+(.+?)(?:\s*[;&|]|$)/i);
+                    if (installMatch) {
+                        const tokens = installMatch[1].split(/\s+/).filter((t) => !t.startsWith('-'));
+                        const pkgName = tokens[0];
+                        if (pkgName) {
+                            await remember(`Added dependency: ${pkgName}`, ['dependency', 'package']);
+                        }
+                    }
+                    // 3. Test run detection
+                    if (/(?:npm\s+test|yarn\s+test|pytest|jest|vitest)/i.test(cmd)) {
+                        const passed = /pass|success|ok|✓/i.test(toolOutput);
+                        const failed = /fail|error|✗|✘/i.test(toolOutput);
+                        if (passed && !failed) {
+                            await remember('Tests passed after changes', ['test', 'success']);
+                        }
+                    }
+                }
+                // 4. File creation
+                if (toolName === 'Write' && toolInput.file_path) {
+                    const filePath = toolInput.file_path;
+                    const relativePath = path.relative(cwd, filePath);
+                    if (!relativePath.includes('node_modules') &&
+                        !relativePath.includes('.tmp') &&
+                        !relativePath.startsWith('.') &&
+                        /\.(ts|tsx|js|jsx|py|go|rs|md)$/.test(relativePath)) {
+                        const content = toolInput.content || '';
+                        if (content.length < 5000) {
+                            await remember(`Created file: ${relativePath}`, ['file', 'created']);
+                        }
+                    }
+                }
+                // 5. Task/subagent results → save findings to long-term memory
+                if (toolName === 'Task' && toolInput.subagent_type) {
+                    const agentType = toolInput.subagent_type;
+                    if (/^(Explore|Plan|feature-dev|succ-)/.test(agentType)) {
+                        let text = '';
+                        try {
+                            const parsed = typeof rawToolOutput === 'string' ? JSON.parse(rawToolOutput) : rawToolOutput;
+                            if (parsed && typeof parsed === 'object' && Array.isArray(parsed.content)) {
+                                text = parsed.content
+                                    .filter((c) => c.type === 'text' && c.text)
+                                    .map((c) => c.text)
+                                    .join('\n\n');
+                            }
+                            else if (typeof parsed === 'string') {
+                                text = parsed;
+                            }
+                        }
+                        catch (err) {
+                            logWarn('hooks', `Task output JSON parse failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                            text = typeof rawToolOutput === 'string' ? rawToolOutput : '';
+                        }
+                        if (text.length > 50 && text.length < 20000) {
+                            const agentAlreadySaved = /^succ-/.test(agentType) &&
+                                /succ_remember|saved to memory|memory \(id:/i.test(text);
+                            if (!agentAlreadySaved) {
+                                const desc = (toolInput.description || '').slice(0, 100);
+                                const content = `[${agentType}] ${desc}\n\n${text.slice(0, 3000)}`;
+                                await remember(content, ['subagent', agentType.toLowerCase()]);
+                            }
+                        }
+                    }
+                }
+                // 6. MEMORY.md sync — parse bullets, save each to long-term memory
+                if ((toolName === 'Edit' || toolName === 'Write') && toolInput.file_path) {
+                    const filePath = toolInput.file_path;
+                    if (path.basename(filePath) === 'MEMORY.md') {
+                        try {
+                            const memContent = fs.readFileSync(filePath, 'utf8');
+                            const bullets = parseMemoryMdBullets(memContent);
+                            await Promise.allSettled(bullets.map(async (bullet) => {
+                                try {
+                                    // Scan each bullet for injection before persisting (Tier 1+2 + Tier 2.C semantic)
+                                    const memSafe = await isMemorySafeAsync(bullet.text);
+                                    if (!memSafe.safe) {
+                                        ctx.log(`[hooks/memory-sync] Skipping MEMORY.md bullet with injection: ${memSafe.result?.description}`);
+                                        return;
+                                    }
+                                    const embedding = await getEmbedding(bullet.text);
+                                    await saveMemory(bullet.text, embedding, bullet.tags, 'memory-md-sync', {
+                                        type: 'observation',
+                                    });
+                                }
+                                catch (err) {
+                                    logWarn('hooks', `Memory bullet save failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                                }
+                            }));
+                        }
+                        catch (err) {
+                            logWarn('hooks', `MEMORY.md sync failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                        }
+                    }
+                }
+                return {};
+            }
+            catch (err) {
+                logWarn('hooks', `post-tool handler failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                return {};
+            }
+        },
+        // ═══════════════════════════════════════════════════════════════
+        // UserPromptSubmit — compact fallback + activity + skill suggestions
+        // ═══════════════════════════════════════════════════════════════
+        'POST /api/hooks/user-prompt': async (body) => {
+            try {
+                const input = parseRequestBody(HookBaseSchema, body);
+                const cwd = fixWindowsPath(input.cwd || '');
+                if (!cwd || !succExists(cwd))
+                    return {};
+                const sessionId = input.session_id;
+                const tmpDir = path.join(cwd, '.succ', '.tmp');
+                // Track user activity
+                if (sessionId && ctx.sessionManager) {
+                    try {
+                        ctx.sessionManager.activity(sessionId, 'user_prompt');
+                    }
+                    catch (err) {
+                        logWarn('hooks', `Session activity update failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                    }
+                }
+                // Compact-pending fallback
+                const compactPendingFile = path.join(tmpDir, 'compact-pending');
+                if (fs.existsSync(compactPendingFile)) {
+                    try {
+                        const pendingContext = fs.readFileSync(compactPendingFile, 'utf8');
+                        fs.unlinkSync(compactPendingFile);
+                        if (pendingContext.trim()) {
+                            // Scan re-injected context for injection (Tier 1+2+2.C)
+                            const compactInjection = await detectInjectionAsync(pendingContext);
+                            const sanitizedPending = compactInjection?.severity === 'definite'
+                                ? `[Content removed — injection detected: ${sanitizeForContext(compactInjection.description, 200)}]`
+                                : sanitizeForContext(pendingContext);
+                            return {
+                                hookSpecificOutput: {
+                                    hookEventName: 'UserPromptSubmit',
+                                    additionalContext: `<compact-fallback reason="SessionStart output may have been lost">\n${sanitizedPending}\n</compact-fallback>`,
+                                },
+                            };
+                        }
+                    }
+                    catch (err) {
+                        logWarn('hooks', `Compact-pending fallback failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                    }
+                }
+                // Skill suggestions are handled by the .cjs hook for now (needs daemon skill service)
+                // TODO: port skill suggestion logic when full HTTP migration is complete
+                return {};
+            }
+            catch (err) {
+                logWarn('hooks', `user-prompt handler failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                return {};
+            }
+        },
+        // ═══════════════════════════════════════════════════════════════
+        // Stop — record stop activity
+        // ═══════════════════════════════════════════════════════════════
+        'POST /api/hooks/stop': async (body) => {
+            try {
+                const input = parseRequestBody(HookBaseSchema, body);
+                const cwd = fixWindowsPath(input.cwd || '');
+                if (!cwd || !succExists(cwd))
+                    return {};
+                const sessionId = input.session_id;
+                if (sessionId && ctx.sessionManager) {
+                    try {
+                        ctx.sessionManager.activity(sessionId, 'stop');
+                    }
+                    catch (err) {
+                        logWarn('hooks', `Session activity update failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                    }
+                }
+                return {};
+            }
+            catch (err) {
+                logWarn('hooks', `stop handler failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                return {};
+            }
+        },
+        // ═══════════════════════════════════════════════════════════════
+        // PermissionRequest — auto-approve/deny based on hook-rules
+        // ═══════════════════════════════════════════════════════════════
+        'POST /api/hooks/permission': async (body) => {
+            try {
+                const input = parseRequestBody(PermissionSchema, body);
+                const cwd = fixWindowsPath(input.cwd || '');
+                if (!cwd || !succExists(cwd))
+                    return {};
+                const toolName = input.tool_name || '';
+                if (!toolName)
+                    return {};
+                const toolInput = input.tool_input && typeof input.tool_input === 'object'
+                    ? input.tool_input
+                    : {};
+                // Detect bypass mode (same logic as pre-tool)
+                const permSessionId = input.session_id;
+                const permIfc = permSessionId ? ifcStates.get(permSessionId) : null;
+                const permMode = permIfc?.permissionMode ?? body?.permission_mode;
+                const permBypass = permMode === 'bypassPermissions' && getConfig().security?.trustAgentPermissions === true;
+                // Run command safety guard FIRST (deny always wins over allow rules)
+                const command = toolInput.command || '';
+                if (command) {
+                    const config = getConfig();
+                    const safetyConfig = extractSafetyConfig(config.commandSafetyGuard);
+                    const dangerResult = checkDangerous(command, safetyConfig);
+                    if (dangerResult && dangerResult.mode === 'deny') {
+                        if (permBypass) {
+                            ctx.log(`[hooks/permission] Safety guard bypassed (trustAgentPermissions): ${dangerResult.reason}`);
+                            return {
+                                hookSpecificOutput: {
+                                    hookEventName: 'PermissionRequest',
+                                    additionalContext: `<security-warning type="command-safety">[succ guard — bypassed] ${sanitizeForContext(dangerResult.reason, 300)}</security-warning>`,
+                                },
+                            };
+                        }
+                        ctx.log(`[hooks/permission] Safety guard denied: ${dangerResult.reason}`);
+                        return {
+                            hookSpecificOutput: {
+                                hookEventName: 'PermissionRequest',
+                                decision: {
+                                    behavior: 'deny',
+                                    message: `[succ guard] ${dangerResult.reason}`,
+                                },
+                            },
+                        };
+                    }
+                }
+                // Query hook-rules
+                const memories = await getHookRuleMemories();
+                const rules = matchRules(memories, toolName, toolInput);
+                if (rules.length === 0)
+                    return {}; // pass-through to user
+                // First rule wins (sorted: deny → ask → allow → inject)
+                const topRule = rules[0];
+                // Scan top rule for injection before acting on it (Tier 1+2+2.C, prevents privilege escalation)
+                const permRuleInjection = await detectInjectionAsync(topRule.content);
+                if (permRuleInjection && permRuleInjection.severity === 'definite') {
+                    ctx.log(`[hooks/permission] Poisoned hook-rule #${topRule.id} skipped: ${permRuleInjection.description}`);
+                    return {}; // pass-through to user instead of acting on poisoned rule
+                }
+                if (topRule.action === 'deny') {
+                    if (permBypass) {
+                        ctx.log(`[hooks/permission] Hook-rule #${topRule.id} deny bypassed (trustAgentPermissions)`);
+                        return {
+                            hookSpecificOutput: {
+                                hookEventName: 'PermissionRequest',
+                                additionalContext: `<security-warning>[succ rule #${topRule.id} — bypassed] ${sanitizeForContext(topRule.content, 300)}</security-warning>`,
+                            },
+                        };
+                    }
+                    ctx.log(`[hooks/permission] Auto-denied ${toolName} by rule #${topRule.id}`);
+                    return {
+                        hookSpecificOutput: {
+                            hookEventName: 'PermissionRequest',
+                            decision: {
+                                behavior: 'deny',
+                                message: `Blocked by hook-rule #${topRule.id}: ${sanitizeForContext(topRule.content, 500)}`,
+                            },
+                        },
+                    };
+                }
+                if (topRule.action === 'allow') {
+                    ctx.log(`[hooks/permission] Auto-approved ${toolName} by rule #${topRule.id}`);
+                    return {
+                        hookSpecificOutput: {
+                            hookEventName: 'PermissionRequest',
+                            decision: { behavior: 'allow' },
+                        },
+                    };
+                }
+                // 'ask' and 'inject' — pass-through to user dialog
+                return {};
+            }
+            catch (err) {
+                logWarn('hooks', `permission handler failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                return {};
+            }
+        },
+        // ═══════════════════════════════════════════════════════════════
+        // SubagentStop — save subagent results to memory
+        // ═══════════════════════════════════════════════════════════════
+        'POST /api/hooks/subagent-stop': async (body) => {
+            try {
+                const input = parseRequestBody(SubagentStopSchema, body);
+                const cwd = fixWindowsPath(input.cwd || '');
+                if (!cwd || !succExists(cwd))
+                    return {};
+                const agentType = input.agent_type || '';
+                const toolOutput = input.tool_output || '';
+                // Save results for exploration/planning agents
+                if (toolOutput &&
+                    toolOutput.length > 50 &&
+                    (agentType.includes('Explore') ||
+                        agentType.includes('Plan') ||
+                        agentType.startsWith('succ-'))) {
+                    try {
+                        const truncated = toolOutput.length > 2000 ? toolOutput.slice(0, 2000) + '...' : toolOutput;
+                        const content = `[${agentType} result] ${truncated}`;
+                        const embedding = await getEmbedding(content);
+                        await saveMemory(content, embedding, ['subagent', `agent:${agentType}`, 'auto-capture'], 'auto-capture', { type: 'observation' });
+                        ctx.log(`[hooks/subagent-stop] Saved ${agentType} result (${toolOutput.length} chars)`);
+                    }
+                    catch (err) {
+                        logWarn('hooks', 'Failed to save subagent result', {
+                            error: err instanceof Error ? err.message : String(err),
+                        });
+                    }
+                }
+                return {};
+            }
+            catch (err) {
+                logWarn('hooks', `subagent-stop handler failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                return {};
+            }
+        },
+        // ═══════════════════════════════════════════════════════════════
+        // SessionStart — context assembly for HTTP hook mode
+        // ═══════════════════════════════════════════════════════════════
+        'POST /api/hooks/session-start': async (body, searchParams) => {
+            try {
+                const input = parseRequestBody(HookBaseSchema, body);
+                const cwd = fixWindowsPath(input.cwd || '');
+                if (!cwd || !succExists(cwd))
+                    return {};
+                // Detect requesting agent (default: claude)
+                const agent = (searchParams.get('agent') || 'claude').toLowerCase();
+                const succDir = path.join(cwd, '.succ');
+                const projectName = path.basename(cwd);
+                const contextParts = [];
+                // Commit format (if enabled)
+                const commitContext = buildCommitContext();
+                if (commitContext) {
+                    contextParts.push(commitContext);
+                }
+                // Soul document (sanitized)
+                const soulPaths = [
+                    path.join(succDir, 'soul.md'),
+                    path.join(succDir, 'SOUL.md'),
+                    path.join(cwd, 'soul.md'),
+                    path.join(cwd, 'SOUL.md'),
+                ];
+                for (const soulPath of soulPaths) {
+                    if (fs.existsSync(soulPath)) {
+                        const soulContent = fs.readFileSync(soulPath, 'utf8').trim();
+                        if (soulContent) {
+                            // Scan soul.md for injection (cross-session vector, Tier 1+2+2.C)
+                            const soulInjection = await detectInjectionAsync(soulContent);
+                            if (soulInjection && soulInjection.severity === 'definite') {
+                                contextParts.push(`<security-warning>soul.md contains possible injection: ${sanitizeForContext(soulInjection.description, 200)}</security-warning>`);
+                            }
+                            else {
+                                contextParts.push(wrapSanitized('soul', soulContent, {}));
+                            }
+                        }
+                        break;
+                    }
+                }
+                // Precomputed context from previous session (sanitized + scanned)
+                const precomputedPath = path.join(succDir, 'next-session-context.md');
+                if (fs.existsSync(precomputedPath)) {
+                    try {
+                        const precomputed = fs.readFileSync(precomputedPath, 'utf8').trim();
+                        if (precomputed) {
+                            // Scan for cross-session injection (Tier 1+2+2.C)
+                            const ctxInjection = await detectInjectionAsync(precomputed);
+                            if (ctxInjection && ctxInjection.severity === 'definite') {
+                                contextParts.push(`<security-warning>next-session-context.md contains possible injection: ${sanitizeForContext(ctxInjection.description, 200)}</security-warning>`);
+                            }
+                            else {
+                                contextParts.push(wrapSanitized('previous-session', precomputed));
+                            }
+                            // Archive
+                            const archiveDir = path.join(succDir, '.context-archive');
+                            if (!fs.existsSync(archiveDir))
+                                fs.mkdirSync(archiveDir, { recursive: true });
+                            const ts = new Date().toISOString().replace(/[:.]/g, '-');
+                            fs.renameSync(precomputedPath, path.join(archiveDir, `context-${ts}.md`));
+                        }
+                    }
+                    catch (err) {
+                        logWarn('hooks', `Precomputed context archive failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                    }
+                }
+                // Register session + initialize IFC state
+                const transcriptPath = input.transcript_path || '';
+                const sessionId = transcriptPath
+                    ? path.basename(transcriptPath, '.jsonl')
+                    : `session-${Date.now()}`;
+                if (ctx.sessionManager) {
+                    ctx.sessionManager.register(sessionId, transcriptPath, false);
+                    ctx.log(`[hooks/session-start] Registered session: ${sessionId}`);
+                }
+                // Initialize clean IFC state for this session
+                const ifcState = createSessionIFC();
+                // Store permission mode from session start (trusted source of truth)
+                const startPermMode = body?.permission_mode;
+                const VALID_PERMISSION_MODES = [
+                    'default',
+                    'plan',
+                    'acceptEdits',
+                    'dontAsk',
+                    'bypassPermissions',
+                ];
+                if (typeof startPermMode === 'string' && VALID_PERMISSION_MODES.includes(startPermMode)) {
+                    ifcState.permissionMode = startPermMode;
+                }
+                ifcStates.set(sessionId, ifcState);
+                // Track fallback IDs for cleanup (prevent memory leak)
+                if (!transcriptPath) {
+                    fallbackSessionIds.add(sessionId);
+                    // Evict oldest fallback sessions if over limit
+                    if (fallbackSessionIds.size > MAX_FALLBACK_SESSIONS) {
+                        const oldest = fallbackSessionIds.values().next().value;
+                        if (oldest) {
+                            fallbackSessionIds.delete(oldest);
+                            ifcStates.delete(oldest);
+                        }
+                    }
+                }
+                if (contextParts.length === 0)
+                    return {};
+                let additionalContext = `<session project="${sanitizeFileName(projectName)}">\n${contextParts.join('\n\n')}\n</session>`;
+                // Strip Claude-only sections for non-Claude agents
+                if (agent !== 'claude') {
+                    additionalContext = stripClaudeOnlySections(additionalContext);
+                }
+                return {
+                    hookSpecificOutput: {
+                        hookEventName: 'SessionStart',
+                        additionalContext,
+                    },
+                };
+            }
+            catch (err) {
+                logWarn('hooks', 'session-start failed', {
+                    error: err instanceof Error ? err.message : String(err),
+                });
+                return {};
+            }
+        },
+        // ═══════════════════════════════════════════════════════════════
+        // SessionEnd — unregister session + trigger processing
+        // ═══════════════════════════════════════════════════════════════
+        'POST /api/hooks/session-end': async (body) => {
+            try {
+                const input = parseRequestBody(HookBaseSchema, body);
+                const cwd = fixWindowsPath(input.cwd || '');
+                if (!cwd || !succExists(cwd))
+                    return {};
+                const transcriptPath = input.transcript_path || '';
+                const sessionId = transcriptPath ? path.basename(transcriptPath, '.jsonl') : '';
+                if (!sessionId)
+                    return {};
+                if (ctx.sessionManager) {
+                    ctx.sessionManager.unregister(sessionId);
+                    ctx.clearBriefingCache(sessionId);
+                    ctx.log(`[hooks/session-end] Unregistered session: ${sessionId}`);
+                }
+                // Cleanup independent of sessionManager
+                ifcStates.delete(sessionId); // Discard IFC state — new session = clean slate
+                removeBudget(sessionId);
+                removeObservations(sessionId);
+                flushBudgets();
+                return {};
+            }
+            catch (err) {
+                logWarn('hooks', `session-end handler failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                return {};
+            }
+        },
+        // ═══════════════════════════════════════════════════════════════
+        // TaskCompleted — save event + trigger memory curator
+        // ═══════════════════════════════════════════════════════════════
+        'POST /api/hooks/task-completed': async (body) => {
+            try {
+                const input = parseRequestBody(HookBaseSchema, body);
+                const cwd = fixWindowsPath(input.cwd || '');
+                if (!cwd || !succExists(cwd))
+                    return {};
+                ctx.log('[hooks/task-completed] Task completed, triggering memory curator');
+                // Trigger memory curator in background (fire-and-forget)
+                void (async () => {
+                    try {
+                        const curatorAgentPath = path.join(cwd, '.claude', 'agents', 'succ-memory-curator.md');
+                        if (!fs.existsSync(curatorAgentPath)) {
+                            ctx.log('[hooks/task-completed] Curator agent not found, skipping');
+                            return;
+                        }
+                        // SUCC_SERVICE_SESSION=1 is already set in CLAUDE_SPAWN_ENV (llm.ts)
+                        await spawnClaudeCLI('Run memory curator: consolidate, deduplicate, link related memories, archive stale ones. Be thorough but fast.', { timeout: 120_000 });
+                        ctx.log('[hooks/task-completed] Memory curator completed');
+                    }
+                    catch (err) {
+                        logWarn('hooks', 'Memory curator failed', {
+                            error: err instanceof Error ? err.message : String(err),
+                        });
+                    }
+                })();
+                return {};
+            }
+            catch (err) {
+                logWarn('hooks', `task-completed handler failed (fail-open): ${err instanceof Error ? err.message : String(err)}`);
+                return {};
+            }
+        },
+    };
+}
+export function resetHookRoutesState() {
+    hookRulesCache = null;
+}
+/** Get IFC summary for a session (used by session routes / status API) */
+export function getSessionIFCSummary(sessionId) {
+    const state = ifcStates.get(sessionId);
+    return state ? summarizeIFC(state) : null;
+}
+/** Grant a trusted-subject escalation for a session (used by permission routes) */
+export function grantSessionTrustedAction(sessionId, actionId) {
+    const state = ifcStates.get(sessionId);
+    if (!state)
+        return false;
+    grantTrustedAction(state, actionId);
+    return true;
+}
+//# sourceMappingURL=hooks.js.map