npm - @zuzuucodes/cli - Versions diffs - 1.4.0 → 1.6.0 - Mend

@zuzuucodes/cli 1.4.0 → 1.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (211) hide show

package/zuzuu/faculty/generation.mjs DELETED Viewed

@@ -1,392 +0,0 @@
-// zuzuu/faculty/generation.mjs — the generation core (WS3-T1).
-//
-// A *generation* is an immutable, content-addressed snapshot of the agent's
-// pinned faculties (the lockfile). Minting freezes the current faculty state;
-// rollback restores any past generation by *content* (we copy each pinned item's
-// bytes into generations/snapshots/<id>/ at mint time, so a rollback works even
-// for items that were never committed). Identity: Agent → Generation → Run —
-// rollback = flip the active pointer + restore content; never `git revert`.
-//
-// Layout under .zuzuu/:
-//   generations/active             {active: "gen_NNN"}  — the live pointer
-//   generations/<id>.json          the lockfile (content-addressed manifest)
-//   generations/snapshots/<id>/<faculty>/...  pinned item bytes (rollback source)
-import { createHash } from 'node:crypto';
-import { join, dirname } from 'node:path';
-import {
-  existsSync, readFileSync, writeFileSync, readdirSync, statSync, mkdirSync, renameSync,
-} from 'node:fs';
-import { reindex } from '../knowledge/index.mjs';
-/** Hex sha256 of a string or Buffer. */
-export function sha256(buf) {
-  return createHash('sha256').update(buf).digest('hex');
-}
-const read = (p) => readFileSync(p, 'utf8');
-const readJson = (p) => JSON.parse(read(p));
-const writeJson = (p, obj) => {
-  mkdirSync(dirname(p), { recursive: true });
-  writeFileSync(p, JSON.stringify(obj, null, 2) + '\n');
-};
-// --- paths ------------------------------------------------------------------
-const generationsDir = (agentDir) => join(agentDir, 'generations');
-const snapshotsDir = (agentDir) => join(generationsDir(agentDir), 'snapshots');
-const activePath = (agentDir) => join(generationsDir(agentDir), 'active');
-const lockfilePath = (agentDir, id) => join(generationsDir(agentDir), `${id}.json`);
-const agentJsonPath = (agentDir) => join(agentDir, 'agent.json');
-// --- faculty file enumeration (the pinned set) ------------------------------
-// Each entry: { id, faculty, src (absolute live path), rel (path under the
-// faculty snapshot dir), hash }. `rel` is what we mirror into snapshots/<id>/.
-function sortDirents(dir) {
-  if (!existsSync(dir)) return [];
-  return readdirSync(dir, { withFileTypes: true }).sort((a, b) => a.name.localeCompare(b.name));
-}
-function knowledgeFiles(agentDir) {
-  const dir = join(agentDir, 'knowledge', 'items');
-  return sortDirents(dir)
-    .filter((e) => e.isFile() && e.name.endsWith('.md'))
-    .map((e) => {
-      const src = join(dir, e.name);
-      return { id: e.name.replace(/\.md$/, ''), faculty: 'knowledge', src, rel: e.name, hash: sha256(readFileSync(src)) };
-    });
-}
-function actionFiles(agentDir) {
-  const dir = join(agentDir, 'actions');
-  return sortDirents(dir)
-    .filter((e) => e.isDirectory() && e.name !== 'inbox' && e.name !== 'proposals')
-    .map((e) => {
-      const adir = join(dir, e.name);
-      // Hash the dir's defining files concatenated (action.json + run.mjs/SKILL.md).
-      const parts = ['action.json', 'run.mjs', 'SKILL.md']
-        .map((f) => join(adir, f))
-        .filter((p) => existsSync(p));
-      const concat = Buffer.concat(parts.map((p) => readFileSync(p)));
-      return {
-        id: e.name, faculty: 'actions', files: parts.map((p) => p.slice(adir.length + 1)),
-        adir, hash: parts.length ? sha256(concat) : null,
-      };
-    });
-}
-function memoryFiles(agentDir) {
-  const dir = join(agentDir, 'memory', 'entries');
-  return sortDirents(dir)
-    .filter((e) => e.isFile() && e.name.endsWith('.md'))
-    .map((e) => {
-      const src = join(dir, e.name);
-      return { id: e.name.replace(/\.md$/, ''), faculty: 'memory', src, rel: e.name, hash: sha256(readFileSync(src)) };
-    });
-}
-function registryHash(agentDir) {
-  const dir = join(agentDir, 'knowledge', 'registry');
-  const files = sortDirents(dir).filter((e) => e.isFile() && e.name.endsWith('.json'));
-  if (!files.length) return null;
-  return sha256(Buffer.concat(files.map((e) => readFileSync(join(dir, e.name)))));
-}
-function fileHashOrNull(p) {
-  return existsSync(p) ? sha256(readFileSync(p)) : null;
-}
-/**
- * Snapshot the current faculty state → the `faculties` manifest object.
- * Tolerates missing files (empty arrays / null hashes).
- */
-export function snapshotFaculties(agentDir) {
-  return {
-    knowledge: {
-      items: knowledgeFiles(agentDir).map(({ id, hash }) => ({ id, hash })),
-      registryHash: registryHash(agentDir),
-    },
-    actions: {
-      items: actionFiles(agentDir).map(({ id, hash }) => ({ id, hash })),
-    },
-    guardrails: {
-      rulesHash: fileHashOrNull(join(agentDir, 'guardrails', 'rules.json')),
-    },
-    instructions: {
-      projectHash: fileHashOrNull(join(agentDir, 'instructions', 'project.md')),
-    },
-    memory: {
-      items: memoryFiles(agentDir).map(({ id, hash }) => ({ id, hash })),
-    },
-  };
-}
-// --- agent identity ---------------------------------------------------------
-/** Stable agent id derived from the repo root: agt_<first12 of sha256(root)>. */
-export function agentId(agentDir) {
-  // agentDir is the .zuzuu/ dir; the repo root is its parent.
-  const root = dirname(agentDir);
-  return 'agt_' + sha256(root).slice(0, 12);
-}
-/** Add/repair the agent block in agent.json (bump to v2), preserving other fields. */
-export function ensureAgent(agentDir) {
-  const path = agentJsonPath(agentDir);
-  const m = existsSync(path) ? readJson(path) : {};
-  const id = agentId(agentDir);
-  if (!m.agent || !m.agent.id) {
-    m.agent = { id, createdAt: new Date().toISOString() };
-  }
-  m.version = 2;
-  writeJson(path, m);
-  return m.agent;
-}
-// --- generation read/list ---------------------------------------------------
-/** The active generation id, or null. */
-export function activeGeneration(agentDir) {
-  const p = activePath(agentDir);
-  if (!existsSync(p)) return null;
-  try { return readJson(p).active ?? null; } catch { return null; }
-}
-/** All generation ids in ascending order. */
-export function listGenerations(agentDir) {
-  const dir = generationsDir(agentDir);
-  if (!existsSync(dir)) return [];
-  return readdirSync(dir)
-    .filter((f) => /^gen_\d+\.json$/.test(f))
-    .map((f) => f.replace(/\.json$/, ''))
-    .sort();
-}
-/** Read one lockfile, or null. */
-export function readGeneration(agentDir, id) {
-  const p = lockfilePath(agentDir, id);
-  return existsSync(p) ? readJson(p) : null;
-}
-/** Item-list faculties carry {id,hash}[]; single-file faculties a *Hash scalar. */
-const HASH_KEYS = { knowledge: 'registryHash', instructions: 'projectHash', guardrails: 'rulesHash' };
-/** Diff two item-manifest arrays → {added, changed, removed} (id lists). */
-function diffItems(parentItems = [], childItems = []) {
-  const p = new Map(parentItems.map((i) => [i.id, i.hash]));
-  const c = new Map(childItems.map((i) => [i.id, i.hash]));
-  const added = [], changed = [], removed = [];
-  for (const [id, hash] of c) {
-    if (!p.has(id)) added.push(id);
-    else if (p.get(id) !== hash) changed.push(id);
-  }
-  for (const id of p.keys()) if (!c.has(id)) removed.push(id);
-  return { added: added.sort(), changed: changed.sort(), removed: removed.sort() };
-}
-/**
- * Per-faculty diff of generation `id` against its forkedFrom parent (pure).
- * For item-list faculties (knowledge/actions/memory) reports added/changed/removed
- * id lists. For hash-only faculties (guardrails/instructions, and knowledge's
- * registry) reports a `changed` boolean when the scalar hash differs. When there
- * is no parent (forkedFrom null), everything present counts as added.
- * Returns null for an unknown id.
- */
-export function diffGenerations(agentDir, id) {
-  const child = readGeneration(agentDir, id);
-  if (!child) return null;
-  const parent = child.forkedFrom ? readGeneration(agentDir, child.forkedFrom) : null;
-  const cf = child.faculties || {};
-  const pf = parent?.faculties || {};
-  const faculties = {};
-  for (const f of ['knowledge', 'actions', 'memory']) {
-    faculties[f] = diffItems(pf[f]?.items, cf[f]?.items);
-    // knowledge also has a registry hash
-    if (f === 'knowledge') {
-      faculties[f].registryChanged = (cf.knowledge?.registryHash ?? null) !== (pf.knowledge?.registryHash ?? null);
-    }
-  }
-  for (const f of ['guardrails', 'instructions']) {
-    const key = HASH_KEYS[f];
-    faculties[f] = { changed: (cf[f]?.[key] ?? null) !== (pf[f]?.[key] ?? null) };
-  }
-  return {
-    id,
-    forkedFrom: child.forkedFrom ?? null,
-    mintedFrom: Array.isArray(child.mintedFrom) ? child.mintedFrom : [],
-    mintedAt: child.mintedAt ?? null,
-    faculties,
-  };
-}
-function nextGenId(agentDir) {
-  const ids = listGenerations(agentDir);
-  const max = ids.reduce((m, id) => Math.max(m, parseInt(id.slice(4), 10) || 0), 0);
-  return 'gen_' + String(max + 1).padStart(3, '0');
-}
-// --- mint -------------------------------------------------------------------
-function copySnapshot(agentDir, id) {
-  const base = join(snapshotsDir(agentDir), id);
-  for (const it of knowledgeFiles(agentDir)) {
-    const dest = join(base, 'knowledge', it.rel);
-    mkdirSync(dirname(dest), { recursive: true });
-    writeFileSync(dest, readFileSync(it.src));
-  }
-  for (const it of memoryFiles(agentDir)) {
-    const dest = join(base, 'memory', it.rel);
-    mkdirSync(dirname(dest), { recursive: true });
-    writeFileSync(dest, readFileSync(it.src));
-  }
-  for (const a of actionFiles(agentDir)) {
-    for (const rel of a.files) {
-      const dest = join(base, 'actions', a.id, rel);
-      mkdirSync(dirname(dest), { recursive: true });
-      writeFileSync(dest, readFileSync(join(a.adir, rel)));
-    }
-  }
-  // single-file faculties
-  const rules = join(agentDir, 'guardrails', 'rules.json');
-  if (existsSync(rules)) {
-    const dest = join(base, 'guardrails', 'rules.json');
-    mkdirSync(dirname(dest), { recursive: true });
-    writeFileSync(dest, readFileSync(rules));
-  }
-  const proj = join(agentDir, 'instructions', 'project.md');
-  if (existsSync(proj)) {
-    const dest = join(base, 'instructions', 'project.md');
-    mkdirSync(dirname(dest), { recursive: true });
-    writeFileSync(dest, readFileSync(proj));
-  }
-}
-/**
- * Mint a new generation: freeze the current faculty state into a content-addressed
- * lockfile + a byte-for-byte snapshot, and make it active.
- */
-export function mintGeneration(agentDir, { forkedFrom = null, mintedFrom = [] } = {}) {
-  const agent = ensureAgent(agentDir).id;
-  const id = nextGenId(agentDir);
-  const lockfile = {
-    id,
-    agent,
-    mintedAt: new Date().toISOString(),
-    forkedFrom,
-    mintedFrom,
-    faculties: snapshotFaculties(agentDir),
-  };
-  copySnapshot(agentDir, id);
-  writeJson(lockfilePath(agentDir, id), lockfile);
-  writeJson(activePath(agentDir), { active: id });
-  return lockfile;
-}
-// --- rollback ---------------------------------------------------------------
-function archive(agentDir, faculty, src) {
-  // Park (never delete) under <faculty>/_rolledback/<basename> — by basename so
-  // a restore is a simple, flat audit trail of what the rollback displaced.
-  const dest = join(agentDir, faculty, '_rolledback', src.slice(dirname(src).length + 1));
-  mkdirSync(dirname(dest), { recursive: true });
-  renameSync(src, dest);
-}
-/**
- * Restore a past generation by content: write each snapshotted item back to its
- * live faculty path; MOVE (never delete) active items absent from the target into
- * <faculty>/_rolledback/; reindex knowledge; flip the active pointer.
- */
-export function rollback(agentDir, id) {
-  const target = readGeneration(agentDir, id);
-  if (!target) throw new Error(`no generation '${id}'`);
-  const base = join(snapshotsDir(agentDir), id);
-  let restored = 0;
-  // 1) restore snapshotted knowledge items
-  const targetKnowledge = new Set((target.faculties.knowledge?.items ?? []).map((i) => i.id));
-  for (const i of target.faculties.knowledge?.items ?? []) {
-    const snap = join(base, 'knowledge', `${i.id}.md`);
-    if (existsSync(snap)) {
-      const dest = join(agentDir, 'knowledge', 'items', `${i.id}.md`);
-      mkdirSync(dirname(dest), { recursive: true });
-      writeFileSync(dest, readFileSync(snap));
-      restored++;
-    }
-  }
-  // archive live knowledge items not in the target
-  const kdir = join(agentDir, 'knowledge', 'items');
-  if (existsSync(kdir)) {
-    for (const e of readdirSync(kdir, { withFileTypes: true })) {
-      if (e.isFile() && e.name.endsWith('.md') && !targetKnowledge.has(e.name.replace(/\.md$/, ''))) {
-        archive(agentDir, 'knowledge', join(kdir, e.name));
-      }
-    }
-  }
-  // 2) restore snapshotted memory items + archive extras
-  const targetMemory = new Set((target.faculties.memory?.items ?? []).map((i) => i.id));
-  for (const i of target.faculties.memory?.items ?? []) {
-    const snap = join(base, 'memory', `${i.id}.md`);
-    if (existsSync(snap)) {
-      const dest = join(agentDir, 'memory', 'entries', `${i.id}.md`);
-      mkdirSync(dirname(dest), { recursive: true });
-      writeFileSync(dest, readFileSync(snap));
-      restored++;
-    }
-  }
-  const mdir = join(agentDir, 'memory', 'entries');
-  if (existsSync(mdir)) {
-    for (const e of readdirSync(mdir, { withFileTypes: true })) {
-      if (e.isFile() && e.name.endsWith('.md') && !targetMemory.has(e.name.replace(/\.md$/, ''))) {
-        archive(agentDir, 'memory', join(mdir, e.name));
-      }
-    }
-  }
-  // 3) restore snapshotted actions + archive extras
-  const targetActions = new Set((target.faculties.actions?.items ?? []).map((i) => i.id));
-  const asnap = join(base, 'actions');
-  if (existsSync(asnap)) {
-    for (const slugEnt of readdirSync(asnap, { withFileTypes: true })) {
-      if (!slugEnt.isDirectory()) continue;
-      const sdir = join(asnap, slugEnt.name);
-      for (const f of readdirSync(sdir)) {
-        const dest = join(agentDir, 'actions', slugEnt.name, f);
-        mkdirSync(dirname(dest), { recursive: true });
-        writeFileSync(dest, readFileSync(join(sdir, f)));
-      }
-      restored++;
-    }
-  }
-  const adir = join(agentDir, 'actions');
-  if (existsSync(adir)) {
-    for (const e of readdirSync(adir, { withFileTypes: true })) {
-      if (e.isDirectory() && e.name !== 'inbox' && e.name !== 'proposals' && e.name !== '_rolledback' && !targetActions.has(e.name)) {
-        archive(agentDir, 'actions', join(adir, e.name));
-      }
-    }
-  }
-  // 4) restore single-file faculties from the snapshot
-  const grules = join(base, 'guardrails', 'rules.json');
-  if (existsSync(grules)) {
-    const dest = join(agentDir, 'guardrails', 'rules.json');
-    mkdirSync(dirname(dest), { recursive: true });
-    writeFileSync(dest, readFileSync(grules));
-    restored++;
-  }
-  const proj = join(base, 'instructions', 'project.md');
-  if (existsSync(proj)) {
-    const dest = join(agentDir, 'instructions', 'project.md');
-    mkdirSync(dirname(dest), { recursive: true });
-    writeFileSync(dest, readFileSync(proj));
-    restored++;
-  }
-  // 5) regenerate the derived knowledge index + flip the pointer
-  try { reindex(agentDir); } catch { /* derived index; tolerate absence of node:sqlite features */ }
-  writeJson(activePath(agentDir), { active: id });
-  return { ok: true, restored };
-}

package/zuzuu/guardrails/adapter.mjs DELETED Viewed

@@ -1,134 +0,0 @@
-// zuzuu/guardrails/adapter.mjs
-// The Guardrails faculty adapter (WS2-T4). Wraps the rules engine behind the
-// faculty-spine adapter contract — { name, ingest, validate, apply, render } —
-// so `zuzuu review` can surface and approve/reject rule proposals the same way it
-// does Knowledge proposals.
-//
-// A guardrails proposal payload is a single rule record:
-//   { id, action: deny|ask|allow, tool, pattern, reason }
-//
-// apply: loads .zuzuu/guardrails/rules.json (seeding {version:1,rules:[]} if
-//        absent), appends the rule or replaces an existing one with the same id,
-//        then writes the file back.
-//
-// Registers itself on import.
-import { join } from 'node:path';
-import { existsSync, readFileSync, writeFileSync, mkdirSync } from 'node:fs';
-import * as registry from '../faculty/registry.mjs';
-const name = 'guardrails';
-const VALID_ACTIONS = new Set(['deny', 'ask', 'allow']);
-// ---------------------------------------------------------------------------
-// helpers
-// ---------------------------------------------------------------------------
-function rulesPath(agentDir) {
-  return join(agentDir, 'guardrails', 'rules.json');
-}
-function loadRulesFile(agentDir) {
-  const path = rulesPath(agentDir);
-  if (!existsSync(path)) return { version: 1, rules: [] };
-  try {
-    return JSON.parse(readFileSync(path, 'utf8'));
-  } catch {
-    return { version: 1, rules: [] };
-  }
-}
-// ---------------------------------------------------------------------------
-// adapter contract
-// ---------------------------------------------------------------------------
-/**
- * Ingest a raw rule object. Pass-through: rule fields are the payload.
- * @param {string} agentDir
- * @param {object} raw  — expected shape: { id, action, tool, pattern, reason }
- *                         or { payload: { ... } } from the spine
- */
-function ingest(_agentDir, raw) {
-  const payload = raw?.payload ?? raw ?? {};
-  return { payload, analysis: {}, dedupeKey: payload.id };
-}
-/**
- * Validate a rule payload.
- * @returns {{ok:boolean, errors:string[], warnings:string[]}}
- */
-function validate(_agentDir, payload) {
-  const errors = [];
-  if (!payload?.id || typeof payload.id !== 'string' || !payload.id.trim()) {
-    errors.push('rule id is required (non-empty string slug)');
-  }
-  if (!VALID_ACTIONS.has(payload?.action)) {
-    errors.push(`action must be one of deny|ask|allow (got '${payload?.action}')`);
-  }
-  if (!payload?.tool || typeof payload.tool !== 'string') {
-    errors.push('tool is required (exact tool name or \'*\')');
-  }
-  if (typeof payload?.pattern !== 'string' || !payload.pattern) {
-    errors.push('pattern is required (a non-empty regex string)');
-  } else {
-    try {
-      new RegExp(payload.pattern); // eslint-disable-line no-new
-    } catch (e) {
-      errors.push(`pattern does not compile as a RegExp: ${e.message}`);
-    }
-  }
-  if (!payload?.reason || !String(payload.reason).trim()) {
-    errors.push('reason is required (non-empty)');
-  }
-  return { ok: errors.length === 0, errors, warnings: [] };
-}
-/**
- * Apply an approved rule proposal: upsert into rules.json.
- * @returns {{ok:boolean, action:string, itemIds:string[]}}
- */
-function apply(agentDir, proposal) {
-  const rule = proposal?.payload ?? {};
-  const id = rule.id;
-  // Ensure the guardrails dir exists
-  mkdirSync(join(agentDir, 'guardrails'), { recursive: true });
-  const data = loadRulesFile(agentDir);
-  if (!Array.isArray(data.rules)) data.rules = [];
-  const idx = data.rules.findIndex((r) => r.id === id);
-  // Store only the canonical fields (id, action, tool, pattern, reason)
-  const entry = {
-    id: rule.id,
-    action: rule.action,
-    tool: rule.tool,
-    pattern: rule.pattern,
-    reason: rule.reason,
-  };
-  if (idx >= 0) {
-    data.rules[idx] = entry;
-  } else {
-    data.rules.push(entry);
-  }
-  writeFileSync(rulesPath(agentDir), JSON.stringify(data, null, 2) + '\n');
-  return { ok: true, action: `added rule ${id}`, itemIds: [id] };
-}
-/**
- * Render a rule proposal for the human gate.
- * @returns {{line:string, card:string}}
- */
-function render(proposal) {
-  const r = proposal?.payload ?? {};
-  const summary = `${r.action ?? '?'} ${r.tool ?? '*'} /${r.pattern ?? ''}/ — ${r.reason ?? ''}`;
-  return {
-    line: `${r.id ?? ''}  [rule]  ${summary}`,
-    card: summary,
-  };
-}
-export const adapter = { name, ingest, validate, apply, render };
-registry.register(adapter);

package/zuzuu/guardrails.mjs DELETED Viewed

@@ -1,89 +0,0 @@
-// The Guardrails faculty — v1 rule engine (pure; I/O lives in the hook command).
-//
-// Rules are DATA, not code: .zuzuu/guardrails/rules.json, ordered, declarative —
-// a *definition* in the pin-definitions sense (versioned in git, graduates via
-// proposals like every faculty's contents).
-//
-//   { "version": 1,
-//     "rules": [ { "id": "no-root-wipe", "action": "deny",
-//                  "tool": "Bash",              // exact tool name, or "*"
-//                  "pattern": "rm\\s+-rf\\s+/", // regex over the tool INPUT (stringified)
-//                  "reason": "destructive root delete" } ] }
-//
-// Evaluation: collect every matching rule, then severity wins — deny > ask >
-// allow (an explicit allow can whitelist past a later ask/deny only if it is
-// NOT outweighed; severity beats file order so a sloppy rule ordering can never
-// silently disarm a deny).
-//
-// FAIL-OPEN: any malformed rule/file yields { ok:false } and no decision — the
-// host proceeds through its normal permission flow. A guardrail bug must never
-// brick the agent; misses are logged, not fatal.
-import { readFileSync } from 'node:fs';
-const SEVERITY = { deny: 3, ask: 2, allow: 1 };
-const ACTIONS = new Set(Object.keys(SEVERITY));
-/** Parse + validate a rules file. Fail-open: returns ok:false on any problem. */
-export function loadRules(path) {
-  try {
-    const data = JSON.parse(readFileSync(path, 'utf8'));
-    if (!Array.isArray(data.rules)) return { ok: false, rules: [], error: 'rules is not an array' };
-    const rules = [];
-    for (const r of data.rules) {
-      if (!r || typeof r !== 'object' || !ACTIONS.has(r.action) || typeof r.pattern !== 'string') {
-        return { ok: false, rules: [], error: `malformed rule: ${JSON.stringify(r).slice(0, 80)}` };
-      }
-      try {
-        rules.push({ id: String(r.id ?? `rule-${rules.length}`), action: r.action, tool: r.tool || '*', re: new RegExp(r.pattern, 'i'), reason: String(r.reason ?? '') });
-      } catch (e) {
-        return { ok: false, rules: [], error: `bad pattern in ${r.id}: ${e.message}` };
-      }
-    }
-    return { ok: true, rules };
-  } catch (e) {
-    return { ok: false, rules: [], error: e.message };
-  }
-}
-/**
- * Evaluate a tool call against loaded rules.
- * @param {Array} rules        from loadRules().rules
- * @param {{tool:string, input:any}} call
- * @returns {null | {action:'deny'|'ask'|'allow', rule:string, reason:string}}
- *          null = no rule matched → defer to the host's normal permission flow
- */
-export function evaluate(rules, { tool, input }) {
-  const haystack = typeof input === 'string' ? input : JSON.stringify(input ?? {});
-  let winner = null;
-  for (const r of rules) {
-    if (r.tool !== '*' && r.tool !== tool) continue;
-    if (!r.re.test(haystack)) continue;
-    if (!winner || SEVERITY[r.action] > SEVERITY[winner.action]) {
-      winner = { action: r.action, rule: r.id, reason: r.reason || `matched guardrail ${r.id}` };
-    }
-  }
-  return winner;
-}
-/**
- * Gemini CLI block shape: stdout JSON { decision: "deny", reason } (exit 0).
- * Gemini has no "ask" decision → defer (null) so its own approval flow runs.
- * Only an explicit deny blocks.
- */
-export function toGeminiDecision(verdict) {
-  if (!verdict || verdict.action !== 'deny') return null;
-  return { decision: 'deny', reason: `guardrail ${verdict.rule}: ${verdict.reason}` };
-}
-/** Map a verdict to Claude Code's PreToolUse hookSpecificOutput (verified schema). */
-export function toPreToolUseDecision(verdict) {
-  if (!verdict || verdict.action === 'allow') return null; // no output → normal flow (fail-open / explicit allow)
-  return {
-    hookSpecificOutput: {
-      hookEventName: 'PreToolUse',
-      permissionDecision: verdict.action, // 'deny' | 'ask'
-      permissionDecisionReason: `guardrail ${verdict.rule}: ${verdict.reason}`,
-    },
-  };
-}