npm - @zonease/aiworker-cli - Versions diffs - 0.10.2 → 0.10.4 - Mend

@zonease/aiworker-cli 0.10.2 → 0.10.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/README.md +143 -60
package/aiworker-bun.js +588 -680
package/package.json +1 -1
package/web/fleet/assets/index-bti7BCPc.js +1372 -0
package/web/fleet/index.html +1 -1
package/web/worker/assets/{index-K99vOXUf.js → index-DMK6sJoi.js} +193 -307
package/web/worker/index.html +1 -1
package/web/fleet/assets/index-RizR7tk6.js +0 -1486

package/README.md CHANGED Viewed

@@ -7,48 +7,105 @@ Self-hosted, lightweight **Project Brain + Worker/Fleet aggregation runtime**.
 - **Worker** owns the Project Brain (filesystem is the source of truth), worker.db, and conversations. External executors (Codex / Claude Code / Hermes / OpenClaw / Cursor, etc.) are invoked through a thin adapter only.
 - **Gateway is an optional control plane**: a single worker runs without one. With multiple workers, the gateway aggregates presence, routing, and audit — it never holds brain or conversation data.
+## Why AIWorker exists
+AIWorker is not trying to be a smarter coding assistant or a new executor
+platform. If all you need is a better one-off chat or coding agent, use Codex,
+Claude Code, Cursor, Hermes, OpenClaw, or another executor directly.
+Use AIWorker when you already trust external executors, but need to run them as
+durable, governed workers bound to a real business scope:
+- **Project Brain as an owned asset**: each worker has a filesystem-first,
+  reviewable, portable brain for scope identity, persona, policy, memories,
+  rollups, and brain skills.
+- **Governed self-iteration**: an executor can propose durable brain changes,
+  but memory and brain-skill writes must pass admission, approval,
+  secret-scan, provenance, and audit.
+- **Bring your own executor**: AIWorker does not replace the executor's tool
+  loop, MCP, plugins, sandbox, native sessions, auth, or model routing. It
+  wraps them with scope context, persistence, observation, and governance.
+- **Worker/Fleet operations**: one worker can run alone; many workers can be
+  aggregated by a gateway for presence, routing, logs, approvals, cron, and
+  audit without copying brain, conversations, or secrets into fleet.db.
+In short: AIWorker turns existing AI agents into self-hosted, scope-bound,
+auditable business workers. The competitive edge is not "better model output";
+it is durable Project Brain plus governance and fleet operations around the
+executors customers already use.
+## Who needs AIWorker
+AIWorker is a good fit when you want AI agents to behave less like disposable
+chat windows and more like managed workers tied to real work.
+- **Teams that already use AI executors** and want durable scope memory,
+  policy, persona, and reviewable brain files around them.
+- **Operators running agents for business scopes**, such as a code repository,
+  hiring pipeline, finance period, support queue, compliance folder, or
+  operational runbook.
+- **Organizations that need governance before self-learning**, where memory or
+  brain-skill changes can be proposed by an agent but must be reviewed,
+  approved, and audited.
+- **People running more than one worker**, where presence, routing, logs,
+  approvals, schedules, and enrollment need one control plane without moving
+  private brain or conversation data into that control plane.
+- **Customers who need to keep their own data local**, while still using the
+  executor, model, auth, and tool ecosystem they already trust.
+If you only need a one-off coding session, a single chat, or a better model
+answer, AIWorker is probably more infrastructure than you need.
+## Topology
 ```text
-                Operator / Admin
-                      |  aiworker fleet ...
-                      |  WS  basicauth + token
-                      v
-   +------------------------------------------------+
-   |  AIWorker Gateway   (optional control plane)   |
-   |  fleet.db : pointers + audit only              |
-   |  no brain  no chat data  no secrets            |
-   +------+-------------+-------------+-------------+
-          v             v             v   WS relay
-      Worker A      Worker B  ...  Worker N
-          |
-          |   a single worker also runs without a gateway
-          v
-   +------------------------------------------------+
-   |  Per-worker data plane                         |
-   |                                                |
-   |  worker.db       identity / config / chat      |
-   |                  AES-256-GCM                   |
-   |                                                |
-   |  Project Brain   filesystem authoritative      |
-   |                  AGENT / SOUL / USER           |
-   |                  memories / brain skills       |
-   |                  policy / admission state      |
-   |                                                |
-   |  Thin Adapter    health / run / stream         |
-   |                  cancel / resume               |
-   |       |                                        |
-   |       v   invoke                               |
-   |  External Engine                               |
-   |       Codex / Claude Code / Hermes             |
-   |       OpenClaw / Cursor / ACP / MCP / HTTP     |
-   |       |                                        |
-   |       v   loads ambient                        |
-   |  user/host MCP / skills / plugins              |
-   |  auth / native sessions                        |
-   |  (not owned by AIWorker)                       |
-   +------------------------------------------------+
+Operator / Admin
+  runs `aiworker fleet ...`
+        |
+        | WebSocket control traffic
+        | basicauth + device token
+        v
++--------------------------------------------------------------------------------+
+| AIWorker Gateway (optional control plane)                                      |
+|                                                                                |
+| fleet.db stores: worker pointers, presence, enrollment state, audit events     |
+| fleet.db does not store: Project Brain, conversations, worker secrets          |
++---------------------------+----------------------------+-----------------------+
+                            |                            |
+                            | WS relay / routing         | WS relay / routing
+                            v                            v
+                 +----------------------+      +----------------------+
+                 | Worker A             |      | Worker B ... N       |
+                 | owns its own data    |      | owns its own data    |
+                 +----------------------+      +----------------------+
+A single worker can also run without the gateway:
++--------------------------------------------------------------------------------+
+| One worker data plane                                                          |
+|                                                                                |
+|  Project Brain (filesystem)        worker.db                                   |
+|  - SOUL / USER / MEMORY            - identity and config                       |
+|  - memories and governance         - conversations and messages                |
+|  - managed native skill            - encrypted local state                     |
+|    projection manifest                                                         |
+|  - native skill files in                                                       |
+|    .agents / .claude                                                           |
+|  - policy and capabilities                                                     |
+|  - admission proposals                                                         |
+|                                                                                |
+|  AIWorker thin adapter                                                         |
+|  - adds scope context and governance                                           |
+|  - observes run / stream / cancel / resume                                     |
+|  - does not replace the executor tool loop                                     |
+|                                                                                |
+|  External executor                                                             |
+|  - Codex / Claude Code / Hermes / OpenClaw / Cursor / ACP / MCP / HTTP         |
+|  - keeps its own MCP, skills, plugins, auth, sandbox, and native sessions      |
++--------------------------------------------------------------------------------+
 ```
-A single worker can run standalone — the gateway is needed only when you want to aggregate multiple workers. The control plane and the data plane are physically isolated: fleet.db never stores brain / conversations / secrets, and worker.db is never reverse-fetched by the gateway. Full architecture and dual-view mermaid diagrams: [`docs/architecture.md`](docs/architecture.md). Whether this build meets the Project Brain governance node target: [`docs/governance-node-status.md`](docs/governance-node-status.md).
+A single worker can run standalone — the gateway is needed only when you want to aggregate multiple workers. The control plane and the data plane are physically isolated: fleet.db never stores brain / conversations / secrets, and worker.db is never reverse-fetched by the gateway. Full architecture and dual-view diagrams: [`docs/architecture.md`](docs/architecture.md). Production-readiness notes and remaining boundaries: [`docs/governance-node-status.md`](docs/governance-node-status.md).
 ---
@@ -60,22 +117,37 @@ bun install -g @zonease/aiworker-cli
 # or `npx` / `npm install -g` (Bun is still required at runtime)
 ```
-The CLI is Bun-native. The first run mints a master key and writes it to `~/.aiworker/.env` (chmod 0600). **The master key must be backed up offline at the org level** — if it is lost, worker.db / fleet.db cannot be decrypted and every worker must re-enroll.
+The CLI is Bun-native. The first worker initialization mints a master key and writes it to the worker-local `.env` (project workers use `<project>/.aiworker/local/.env`; explicit/user homes use `<AIWORKER_HOME>/.env`). **The master key must be backed up offline at the org level** — if it is lost, worker.db / fleet.db cannot be decrypted and every worker must re-enroll.
 Full install and per-platform binaries: [`docs/deployment.md`](docs/deployment.md).
 ---
+## CLI discovery
+`aiworker --help` is intentionally short and shows the first-run path. Use
+`aiworker commands` for the complete command index, or scoped help for a role:
+```sh
+aiworker --help
+aiworker commands
+aiworker worker --help
+aiworker fleet --help
+aiworker gateway --help
+```
+---
 ## Start a worker (single host, no gateway)
 The most common path: turn the current business directory into a worker scope, start a local server + admin UI, and chat through the CLI. **No fleet credentials required.**
 ```sh
 cd ~/code/my-project
-aiworker up --soul developer            # one shot: init + executor select + doctor + serve
+aiworker up --soul developer            # one shot: init + doctor + executor readiness + serve
 ```
-`aiworker up` lays down the Project Brain layout under `<cwd>/.aiworker/` (worker.db, master key, persona, brain skills), runs the preflight checks, and starts the worker HTTP/admin server (default `:9217`). Pick a Soul from `developer` / `hr-recruiting` / `finance-ops` / `qa-reviewer` / `general-assistant` — Souls shape persona / risk preferences / default brief sections; governance kernel behavior is the same across all Souls.
+`aiworker up` lays down the Project Brain layout under `<cwd>/.aiworker/` (worker.db, master key, persona, policy, memories, native skill projection manifest) and projects managed `aiworker-*` executor-native skills under `.agents/skills` and `.claude/skills`. It then runs preflight checks, reports executor readiness, and starts the worker HTTP/admin server (default `:9217`). It does not choose an executor for you; use `aiworker executor select --engine <id> --apply` for that. Pick a Soul from `developer` / `hr-recruiting` / `finance-ops` / `qa-reviewer` / `general-assistant` — Souls shape persona / risk preferences / default brief sections; governance kernel behavior is the same across all Souls.
 Step-by-step alternative:
@@ -95,6 +167,11 @@ After it is running:
 - Bearer token: `<scope>/.aiworker/local/bootstrap-token.txt`. REST calls must include `Authorization: Bearer <token>`.
 - Brain and conversations stay local. The only outbound traffic is whatever the external executor itself talks to (its own LLM provider).
+New worker-local `.env` files reserve commented gateway enrollment examples.
+`aiworker doctor` also reports gateway enrollment as standalone/configured and
+prints the exact `aiworker env ...` commands when enrollment is optional but not
+yet configured.
 Full CLI reference: [`docs/cli.md`](docs/cli.md).
 ---
@@ -130,14 +207,16 @@ The most common path — the worker side carries no fleet credentials, the opera
 ```sh
 # Worker side:
 aiworker init --soul developer
-printf '%s\n' \
-  "AIWORKER_GATEWAY_URL=wss://your-gateway.example/" \
-  "AIWORKER_DISPLAY_NAME=my-laptop" \
-  >> .aiworker/local/.env
+aiworker env gateway-url wss://your-gateway.example/
+aiworker env display-name my-laptop
 aiworker serve
 # stdout prints an OTP, e.g.  YDCR-ZD8M
 ```
+`aiworker init` also leaves commented `AIWORKER_GATEWAY_URL` /
+`AIWORKER_DISPLAY_NAME` examples in the worker-local `.env`; keep them
+commented unless you intentionally configure gateway enrollment.
 ```sh
 # Operator side:
 aiworker fleet enroll list                  # see pending OTPs
@@ -234,8 +313,8 @@ See [`docs/deployment.md`](docs/deployment.md).
 |---|---|
 | `AIWORKER_MASTER_KEY` | 64 hex; AES master key for worker / gateway databases; **must be backed up offline** |
 | `INTERNAL_SHARED_SECRET` | Remote-operator bearer when the gateway is exposed publicly or off loopback (≥16 chars) |
-| `AIWORKER_GATEWAY_URL` | Worker-side gateway URL (path + basicauth); for project workers prefer `.aiworker/local/.env` |
-| `AIWORKER_DISPLAY_NAME` | Worker label in the fleet list (defaults to hostname); persisted per worker in `.aiworker/local/.env` |
+| `AIWORKER_GATEWAY_URL` | Optional worker-side gateway URL (path + basicauth); set with `aiworker env gateway-url <url>` |
+| `AIWORKER_DISPLAY_NAME` | Optional worker label in the fleet list (defaults to hostname / worker id); set with `aiworker env display-name <name>` |
 | `AIWORKER_HOME` | Explicit worker state root; project scope auto-resolves to `<project>/.aiworker/local` |
 | `AIWORKER_ADMIN_EXTERNAL_AUTH` | Set to `1` if `/admin/*` is fronted by Caddy / Cloudflare Access / Logto / etc. |
@@ -245,14 +324,13 @@ Full list: `apps/api/.env.example` + `ops/compose/.env.example`, or [`docs/archi
 ## More
-- [`docs/architecture.md`](docs/architecture.md) — monorepo layout, data flow, security model, Brain Governance Kernel decision, full env table
-- [`docs/governance-node-status.md`](docs/governance-node-status.md) — source-backed assessment of whether this build meets the Project Brain governance node target
+- [`docs/architecture.md`](docs/architecture.md) — system layout, data flow, security model, Brain governance boundary, full env table
+- [`docs/governance-node-status.md`](docs/governance-node-status.md) — production-readiness checklist and remaining boundaries
 - [`docs/gateway.md`](docs/gateway.md) — WS protocol (METHODS / EVENTS) and the four enrollment paths
 - [`docs/deployment.md`](docs/deployment.md) — three deployment shapes runbook + troubleshooting + backup checklist
 - [`docs/deployment-public-https.md`](docs/deployment-public-https.md) — public-internet Cloudflare + Caddy overlay (including the BUG-007 fail-closed fix)
 - [`docs/executor-engines.md`](docs/executor-engines.md) — per-engine auth/install
 - [`docs/cli.md`](docs/cli.md) — full CLI reference
-- [`scripts/governance-kernel-harness.ts`](scripts/governance-kernel-harness.ts) — Brain Governance Kernel regression harness (compact / full × source-local / cli-release-local)
 - [`docs/changelog.md`](docs/changelog.md) — release history and end-to-end test notes
 ---
@@ -265,24 +343,29 @@ cd aiworker && bun install
 bun run typecheck && bun run lint && bun run test
 ```
-New features go through the `/pma` skill in three stages: investigate → proposal → implement. Backend uses `/pma-bun`, frontend uses `/pma-web`, code review uses `/pma-cr`. Docs: [`docs/plan/`](docs/plan/) / [`docs/task/`](docs/task/) / [`docs/changelog.md`](docs/changelog.md).
+For local development, run focused package checks while iterating and the full
+gate before publishing or merging. Planning notes, implementation history, and
+release records live in [`docs/plan/`](docs/plan/), [`docs/task/`](docs/task/),
+and [`docs/changelog.md`](docs/changelog.md).
 ---
 ## Status
-> Before going to production, read the conformance table and residual-boundary section in [`docs/governance-node-status.md`](docs/governance-node-status.md). Pre-1.0 the CLI / API / config does not guarantee backwards compatibility (an explicit AGENTS.md commitment).
+> Before going to production, read the readiness table and remaining-boundary
+> section in [`docs/governance-node-status.md`](docs/governance-node-status.md).
+> Before 1.0.0, CLI / API / config shapes may still change.
-CLI npm latest: **0.10.2**.
+CLI npm latest: **0.10.4**.
 | Module | Status |
 |---|---|
-| Worker / Fleet control plane / 4 enrollment paths / 6 LLM engines / 5 channel webhooks / cron / per-tool approvals / hot reload | ✅ Production |
-| Brain Governance Kernel (admission state machine + secret-scan defense + canonical memory boundary + truthful decision events + bypass detection) | ✅ GA |
-| Governance Kernel regression harness (5×2 matrix on source + cli-release-local with 800+ checks) + long-running serve multi-turn REST regression | ✅ GA |
-| Brain admission `memory-add` materializer | ✅ MVP (other kinds return `unsupported`; post-apply rollback not yet implemented) |
-| Heavy LLM-backed Brain decider | 🔜 opt-in; defaults to `evaluator=heuristic` `mode=observe_only` |
-| Cross-scope hard isolation (runtime-enforced) | 🔜 currently filesystem-conventional, not runtime-isolated |
+| Worker and Fleet operations: control plane, enrollment, executor adapters, webhooks, schedules, per-tool approvals, hot reload | ✅ Production |
+| Project Brain governance: reviewed memory changes, secret scanning, provenance events, canonical memory boundary, bypass checks | ✅ GA |
+| Governance regression coverage: 800+ checks across source and packaged CLI, plus long-running worker REST regression | ✅ GA |
+| Memory-write automation | ✅ MVP (`memory-add` is available; other proposal types are rejected until implemented) |
+| Optional LLM-backed Brain reviewer | 🔜 opt-in; default is observe-only heuristic review |
+| Cross-scope runtime isolation | 🔜 currently convention / filesystem only |
 | Web SPA pending UI / Multi-host HA | 🔜 Stage-2 |
 ---