npm - agent-composer - Versions diffs - 0.3.1 → 0.4.1 - Mend

agent-composer 0.3.1 → 0.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (180) hide show

package/README.md +495 -180
package/composer.config.schema.json +206 -2
package/dist/cli/cleanup.d.ts +24 -0
package/dist/cli/cleanup.js +151 -0
package/dist/cli/cleanup.js.map +1 -0
package/dist/cli/doctor.d.ts +12 -0
package/dist/cli/doctor.js +244 -4
package/dist/cli/doctor.js.map +1 -1
package/dist/cli/goal.d.ts +28 -0
package/dist/cli/goal.js +251 -0
package/dist/cli/goal.js.map +1 -0
package/dist/cli/help.d.ts +3 -0
package/dist/cli/help.js +31 -0
package/dist/cli/help.js.map +1 -0
package/dist/cli/init.d.ts +5 -0
package/dist/cli/init.js +116 -21
package/dist/cli/init.js.map +1 -1
package/dist/cli/initArgs.d.ts +16 -0
package/dist/cli/initArgs.js +19 -0
package/dist/cli/initArgs.js.map +1 -0
package/dist/cli/installGitHook.d.ts +7 -0
package/dist/cli/installGitHook.js +61 -0
package/dist/cli/installGitHook.js.map +1 -0
package/dist/cli/mode.d.ts +6 -0
package/dist/cli/mode.js +25 -0
package/dist/cli/mode.js.map +1 -0
package/dist/cli/status.d.ts +105 -0
package/dist/cli/status.js +400 -0
package/dist/cli/status.js.map +1 -0
package/dist/config/env.d.ts +1 -1
package/dist/config/modes.d.ts +10 -0
package/dist/config/modes.js +26 -0
package/dist/config/modes.js.map +1 -0
package/dist/config/oracleRole.d.ts +10 -0
package/dist/config/oracleRole.js +11 -0
package/dist/config/oracleRole.js.map +1 -0
package/dist/config/schema.d.ts +246 -0
package/dist/config/schema.js +127 -2
package/dist/config/schema.js.map +1 -1
package/dist/evolve/reflection.d.ts +9 -0
package/dist/evolve/reflection.js +14 -0
package/dist/evolve/reflection.js.map +1 -1
package/dist/evolve/runner.d.ts +2 -1
package/dist/evolve/runner.js +2 -1
package/dist/evolve/runner.js.map +1 -1
package/dist/index.js +115 -6
package/dist/index.js.map +1 -1
package/dist/providers/AnthropicCompatibleProvider.d.ts +13 -1
package/dist/providers/AnthropicCompatibleProvider.js +115 -9
package/dist/providers/AnthropicCompatibleProvider.js.map +1 -1
package/dist/providers/CLIProvider.d.ts +18 -0
package/dist/providers/CLIProvider.js +265 -62
package/dist/providers/CLIProvider.js.map +1 -1
package/dist/providers/IProvider.d.ts +12 -0
package/dist/providers/SpendGuardProvider.d.ts +32 -0
package/dist/providers/SpendGuardProvider.js +98 -0
package/dist/providers/SpendGuardProvider.js.map +1 -0
package/dist/registry.d.ts +5 -2
package/dist/registry.js +17 -2
package/dist/registry.js.map +1 -1
package/dist/server/activeRuns.d.ts +17 -0
package/dist/server/activeRuns.js +114 -0
package/dist/server/activeRuns.js.map +1 -0
package/dist/server/codexLifecycleRunner.d.ts +29 -0
package/dist/server/codexLifecycleRunner.js +188 -0
package/dist/server/codexLifecycleRunner.js.map +1 -0
package/dist/server/configMutation.d.ts +22 -0
package/dist/server/configMutation.js +121 -0
package/dist/server/configMutation.js.map +1 -0
package/dist/server/handoffContext.d.ts +1 -0
package/dist/server/handoffContext.js +12 -0
package/dist/server/handoffContext.js.map +1 -0
package/dist/server/progress.d.ts +24 -0
package/dist/server/progress.js +109 -0
package/dist/server/progress.js.map +1 -0
package/dist/server/toolDescriptions.d.ts +60 -0
package/dist/server/toolDescriptions.js +134 -0
package/dist/server/toolDescriptions.js.map +1 -0
package/dist/server.d.ts +19 -25
package/dist/server.js +87 -377
package/dist/server.js.map +1 -1
package/dist/tools/audit.d.ts +2 -0
package/dist/tools/audit.js +66 -0
package/dist/tools/audit.js.map +1 -0
package/dist/tools/code.d.ts +2 -0
package/dist/tools/code.js +160 -0
package/dist/tools/code.js.map +1 -0
package/dist/tools/codexLifecycle.d.ts +2 -0
package/dist/tools/codexLifecycle.js +206 -0
package/dist/tools/codexLifecycle.js.map +1 -0
package/dist/tools/config.d.ts +2 -0
package/dist/tools/config.js +183 -0
package/dist/tools/config.js.map +1 -0
package/dist/tools/context.d.ts +31 -0
package/dist/tools/context.js +2 -0
package/dist/tools/context.js.map +1 -0
package/dist/tools/goal.d.ts +2 -0
package/dist/tools/goal.js +159 -0
package/dist/tools/goal.js.map +1 -0
package/dist/tools/handoff.d.ts +2 -0
package/dist/tools/handoff.js +57 -0
package/dist/tools/handoff.js.map +1 -0
package/dist/tools/oracle.d.ts +2 -0
package/dist/tools/oracle.js +248 -0
package/dist/tools/oracle.js.map +1 -0
package/dist/tools/research.d.ts +2 -0
package/dist/tools/research.js +51 -0
package/dist/tools/research.js.map +1 -0
package/dist/tools/review.d.ts +2 -0
package/dist/tools/review.js +233 -0
package/dist/tools/review.js.map +1 -0
package/dist/tools/route.d.ts +2 -0
package/dist/tools/route.js +69 -0
package/dist/tools/route.js.map +1 -0
package/dist/tools/session.d.ts +2 -0
package/dist/tools/session.js +37 -0
package/dist/tools/session.js.map +1 -0
package/dist/tools/status.d.ts +2 -0
package/dist/tools/status.js +34 -0
package/dist/tools/status.js.map +1 -0
package/dist/tools/workflow.d.ts +2 -0
package/dist/tools/workflow.js +27 -0
package/dist/tools/workflow.js.map +1 -0
package/dist/util/applyFileBlocks.d.ts +18 -0
package/dist/util/applyFileBlocks.js +163 -0
package/dist/util/applyFileBlocks.js.map +1 -0
package/dist/util/asyncControl.d.ts +14 -0
package/dist/util/asyncControl.js +106 -0
package/dist/util/asyncControl.js.map +1 -0
package/dist/util/auditLog.d.ts +56 -0
package/dist/util/auditLog.js +232 -0
package/dist/util/auditLog.js.map +1 -0
package/dist/util/codexLifecycle.d.ts +55 -0
package/dist/util/codexLifecycle.js +102 -0
package/dist/util/codexLifecycle.js.map +1 -0
package/dist/util/codexLifecycleJob.d.ts +209 -0
package/dist/util/codexLifecycleJob.js +360 -0
package/dist/util/codexLifecycleJob.js.map +1 -0
package/dist/util/composerDisabled.d.ts +6 -0
package/dist/util/composerDisabled.js +27 -0
package/dist/util/composerDisabled.js.map +1 -0
package/dist/util/dispatchHint.d.ts +5 -3
package/dist/util/dispatchHint.js +62 -2
package/dist/util/dispatchHint.js.map +1 -1
package/dist/util/goal.d.ts +132 -0
package/dist/util/goal.js +616 -0
package/dist/util/goal.js.map +1 -0
package/dist/util/goalReport.d.ts +51 -0
package/dist/util/goalReport.js +164 -0
package/dist/util/goalReport.js.map +1 -0
package/dist/util/jobPolling.d.ts +9 -0
package/dist/util/jobPolling.js +17 -0
package/dist/util/jobPolling.js.map +1 -0
package/dist/util/oracleJob.d.ts +66 -0
package/dist/util/oracleJob.js +295 -0
package/dist/util/oracleJob.js.map +1 -0
package/dist/util/oracleLock.d.ts +38 -0
package/dist/util/oracleLock.js +182 -0
package/dist/util/oracleLock.js.map +1 -0
package/dist/util/reviewDiff.d.ts +8 -0
package/dist/util/reviewDiff.js +29 -0
package/dist/util/reviewDiff.js.map +1 -0
package/dist/util/reviewJob.d.ts +57 -0
package/dist/util/reviewJob.js +207 -0
package/dist/util/reviewJob.js.map +1 -0
package/dist/util/workflowPlan.d.ts +24 -0
package/dist/util/workflowPlan.js +49 -0
package/dist/util/workflowPlan.js.map +1 -0
package/package.json +8 -1
package/plugin/composer-mastermind/commands/evolve.md +4 -0
package/plugin/composer-mastermind/hooks/boundary_guard.sh +43 -2
package/plugin/composer-mastermind/hooks/codex_warm_review.sh +161 -9
package/plugin/composer-mastermind/hooks/learn.sh +172 -32
package/plugin/composer-mastermind/hooks/precommit_codex_review.sh +438 -64
package/plugin/composer-mastermind/skills/composer-mastermind/SKILL.md +190 -4
package/scripts/composer-oracle-router-safe.sh +47 -0
package/scripts/composer-statusline-segment.mjs +40 -0
package/scripts/oracle-codex-handoff-safe.sh +49 -0
package/scripts/oracle-plan-mcp.sh +66 -0
package/scripts/oracle-pro-safe.sh +572 -0

package/plugin/composer-mastermind/hooks/precommit_codex_review.sh CHANGED Viewed

@@ -4,17 +4,22 @@
 # codexReview.preCommitHook.enabled are true, and the Codex review verdict
 # reaches the configured blockOnSeverity threshold.
 #
-# Fail-open by default: reviewer/JQ/plugin/timeout failures warn to stderr and
-# allow the commit unless codexReview.preCommitHook.failClosed is true.
+# Fail-open by default: reviewer/JQ/plugin failures warn to stderr and allow the
+# commit unless codexReview.preCommitHook.failClosed is true. EXCEPTION: a review
+# timeout/hang ALWAYS fails closed (blocks the commit) so a slow or hung reviewer
+# cannot bypass the gate; raise preCommitHook.timeoutMs if reviews need more time.
 # Config keys:
 #   codexReview.preCommitCommand, scope, base, model
-#   codexReview.preCommitHook.enabled, blockOnSeverity, timeoutMs, failClosed
+#   codexReview.preCommitHook.enabled, blockOnSeverity, timeoutMs, failClosed, maxConsecutiveBlocks
 #   codexReview.warmCache.enabled, maxAgeMinutes
 #   codexReview.notify.desktop
 set -u
-RUN_LOG="/tmp/composer-codex-review-log.jsonl"
+RUN_LOG="${RUN_LOG:-/tmp/composer-codex-review-log.jsonl}"
+PRECOMMIT_DEFAULT_TIMEOUT_MS=120000
+PRECOMMIT_MIN_HARD_CAP_MS=120000
+PRECOMMIT_MAX_HARD_CAP_MS=180000
 composer_disabled() {
   case "${COMPOSER_ENABLED:-}" in
@@ -45,6 +50,10 @@ json_escape_fallback() {
 emit_json() {
   local message="$1"
+  if [[ "${GITHOOK:-0}" == "1" ]]; then
+    printf '%s\n' "$message" >&2
+    return 0
+  fi
   jq -nc --arg systemMessage "$message" \
     '{systemMessage:$systemMessage,suppressOutput:true}' 2>/dev/null \
     || printf '{"systemMessage":"%s","suppressOutput":true}\n' "$(json_escape_fallback "$message")"
@@ -53,6 +62,11 @@ emit_json() {
 emit_deny() {
   local reason="$1"
   local message="${2:-$reason}"
+  if [[ "${GITHOOK:-0}" == "1" ]]; then
+    printf '%s\n' "$message" >&2
+    printf 'commit blocked by Codex pre-commit review: %s\n' "$reason" >&2
+    exit 1
+  fi
   jq -nc --arg r "$reason" --arg systemMessage "$message" \
     '{systemMessage:$systemMessage,suppressOutput:true,hookSpecificOutput:{hookEventName:"PreToolUse", permissionDecision:"deny", permissionDecisionReason:$r}}' 2>/dev/null \
     || printf '{"systemMessage":"%s","suppressOutput":true,"hookSpecificOutput":{"hookEventName":"PreToolUse","permissionDecision":"deny","permissionDecisionReason":"%s"}}\n' "$(json_escape_fallback "$message")" "$(json_escape_fallback "$reason")"
@@ -67,6 +81,8 @@ append_run_log() {
   local findings="$5"
   local scope="$6"
   local diff_hash="$7"
+  local reason_code="${8:-}"
+  local stage="${9:-precommit_codex_review}"
   jq -nc \
     --arg ts "$(date -u +%Y-%m-%dT%H:%M:%SZ)" \
     --arg verdict "$verdict" \
@@ -74,9 +90,11 @@ append_run_log() {
     --arg source "$source" \
     --arg scope "$scope" \
     --arg diff_hash "$diff_hash" \
+    --arg reason_code "$reason_code" \
+    --arg stage "$stage" \
     --argjson duration_ms "${duration_ms:-0}" \
     --argjson findings "${findings:-0}" \
-    '{ts:$ts,verdict:$verdict,decision:$decision,source:$source,duration_ms:$duration_ms,findings:$findings,scope:$scope,diff_hash:$diff_hash}' \
+    '{ts:$ts,verdict:$verdict,decision:$decision,source:$source,duration_ms:$duration_ms,elapsed_wall_ms:$duration_ms,findings:$findings,scope:$scope,diff_hash:$diff_hash,stage:$stage,reason_code:(if $reason_code == "" then null else $reason_code end)}' \
     >> "$RUN_LOG" 2>/dev/null || true
 }
@@ -84,16 +102,41 @@ fail_review() {
   local fail_closed="$1"
   local reason="$2"
   local duration_ms="${3:-0}"
+  local reason_code="${4:-review_unavailable}"
   if [[ "$fail_closed" == "true" ]]; then
-    append_run_log "error" "deny" "sync" "$duration_ms" 0 "${SCOPE:-}" "${DIFF_HASH:-}"
+    append_run_log "error" "deny" "sync" "$duration_ms" 0 "${SCOPE:-}" "${DIFF_HASH:-}" "$reason_code"
     emit_deny "codex pre-commit review unavailable (fail-closed): $reason" "⛔ Codex review unavailable (fail-closed): $reason"
   fi
   printf 'codex pre-commit review skipped: %s\n' "$reason" >&2
-  append_run_log "skip" "allow" "sync" "$duration_ms" 0 "${SCOPE:-}" "${DIFF_HASH:-}"
+  append_run_log "skip" "allow" "sync" "$duration_ms" 0 "${SCOPE:-}" "${DIFF_HASH:-}" "$reason_code"
   emit_json "⚠️ Codex pre-commit review skipped: $reason — commit allowed (fail-open)"
   exit 0
 }
+resolve_precommit_hard_cap_ms() {
+  local configured="${COMPOSER_PRECOMMIT_HOOK_MAX_TIMEOUT_MS:-$PRECOMMIT_MAX_HARD_CAP_MS}"
+  case "$configured" in
+    ''|*[!0-9]*) configured="$PRECOMMIT_MAX_HARD_CAP_MS" ;;
+  esac
+  if [[ "$configured" -lt "$PRECOMMIT_MIN_HARD_CAP_MS" ]]; then
+    configured="$PRECOMMIT_MIN_HARD_CAP_MS"
+  elif [[ "$configured" -gt "$PRECOMMIT_MAX_HARD_CAP_MS" ]]; then
+    configured="$PRECOMMIT_MAX_HARD_CAP_MS"
+  fi
+  printf '%s\n' "$configured"
+}
+normalize_precommit_timeout_ms() {
+  local requested="$1"
+  local cap
+  cap="$(resolve_precommit_hard_cap_ms)"
+  if [[ "$requested" -gt "$cap" ]]; then
+    printf '%s\n' "$cap"
+  else
+    printf '%s\n' "$requested"
+  fi
+}
 rank_severity() {
   case "$1" in
     critical) printf '4' ;;
@@ -128,6 +171,14 @@ hash_stdin_16() {
   fi
 }
+git_timeout() {
+  if command -v timeout >/dev/null 2>&1; then
+    timeout 5 git "$@"
+  else
+    git "$@"
+  fi
+}
 compute_repo_hash() {
   printf '%s' "$1" | hash_stdin_16
 }
@@ -174,12 +225,12 @@ compute_diff_hash() {
   local base_ref merge_base branch_diff
   # blockOnSeverity is excluded because threshold is re-applied at gate-read time from the cached findings array.
   {
-    git -C "$root" diff HEAD 2>/dev/null
-    git -C "$root" diff --cached 2>/dev/null
+    git_timeout -C "$root" diff HEAD 2>/dev/null
+    git_timeout -C "$root" diff --cached 2>/dev/null
     if [[ "$scope" == "branch" ]]; then
-      if base_ref="$(git -C "$root" rev-parse --verify "${base}^{commit}" 2>/dev/null)" \
-        && merge_base="$(git -C "$root" merge-base "$base" HEAD 2>/dev/null)" \
-        && branch_diff="$(git -C "$root" diff "$base...HEAD" 2>/dev/null)"; then
+      if base_ref="$(git_timeout -C "$root" rev-parse --verify "${base}^{commit}" 2>/dev/null)" \
+        && merge_base="$(git_timeout -C "$root" merge-base "$base" HEAD 2>/dev/null)" \
+        && branch_diff="$(git_timeout -C "$root" diff "$base...HEAD" 2>/dev/null)"; then
         printf '\ncomposer-codex-review-branch\nbaseRef=%s\nmergeBase=%s\n' "$base_ref" "$merge_base"
         printf '%s' "$branch_diff"
         printf '\n'
@@ -191,7 +242,7 @@ compute_diff_hash() {
 find_git_root() {
   local start="${CLAUDE_PROJECT_DIR:-.}"
-  git -C "$start" rev-parse --show-toplevel 2>/dev/null || git rev-parse --show-toplevel 2>/dev/null
+  git_timeout -C "$start" rev-parse --show-toplevel 2>/dev/null || git_timeout rev-parse --show-toplevel 2>/dev/null
 }
 find_codex_plugin_root() {
@@ -226,22 +277,56 @@ find_codex_plugin_root() {
   fi
 }
+# kill_tree: fallback teardown when no process group could be created. STOP
+# each node BEFORE enumerating its children so it cannot fork a new child
+# mid-teardown (the race), then CONT so a delivered TERM is actually acted
+# on. Note: a descendant that has already reparented (double-fork) is not
+# reachable via pgrep -P walking — the process-group path below handles that.
+kill_tree() {
+  local sig="$1" root="$2" child
+  kill -STOP "$root" 2>/dev/null || true
+  for child in $(pgrep -P "$root" 2>/dev/null); do
+    kill_tree "$sig" "$child"
+  done
+  kill -"$sig" "$root" 2>/dev/null || true
+  kill -CONT "$root" 2>/dev/null || true
+}
+# teardown_reviewer: prefer an ATOMIC process-group signal (kill -SIG -PGID)
+# when the reviewer leads its own group — this also reaches descendants that
+# reparented away from the immediate child. Fall back to kill_tree otherwise.
+teardown_reviewer() {
+  local sig="$1" pid="$2" pgid_mode="$3"
+  if [[ "$pgid_mode" == "1" ]] && kill -"$sig" "-$pid" 2>/dev/null; then
+    return 0
+  fi
+  kill_tree "$sig" "$pid"
+}
 run_reviewer() {
   local timeout_seconds="$1"
   shift
-  if [[ "${COMPOSER_FORCE_BASH_TIMEOUT:-}" != "1" ]] && command -v timeout >/dev/null 2>&1; then
-    timeout "$timeout_seconds" "$@"
-    return $?
-  fi
-  if [[ "${COMPOSER_FORCE_BASH_TIMEOUT:-}" != "1" ]] && command -v gtimeout >/dev/null 2>&1; then
-    gtimeout "$timeout_seconds" "$@"
-    return $?
-  fi
-  local pid watchdog status marker
+  local pid watchdog status marker pgid_mode
   marker="${TMPDIR:-/tmp}/composer-timeout.$$.$RANDOM"
-  "$@" &
-  pid=$!
+  # Launch the reviewer as the leader of a NEW process group so the watchdog
+  # can signal the whole subtree atomically (catching reparented grandchildren
+  # that hold the stdout pipe). setsid (Linux) or perl setpgrp (portable;
+  # ships on macOS where setsid does not) make the child its own group leader.
+  # If neither exists, fall back to in-group launch + kill_tree teardown.
+  pgid_mode=0
+  if command -v setsid >/dev/null 2>&1; then
+    setsid "$@" &
+    pid=$!
+    pgid_mode=1
+  elif command -v perl >/dev/null 2>&1; then
+    perl -e 'setpgrp(0,0); exec @ARGV or die "exec failed: $!"' "$@" &
+    pid=$!
+    pgid_mode=1
+  else
+    "$@" &
+    pid=$!
+  fi
   (
     sleeper=""
     trap '[[ -n "$sleeper" ]] && kill "$sleeper" 2>/dev/null || true; exit 0' TERM INT
@@ -249,9 +334,9 @@ run_reviewer() {
     sleeper=$!
     wait "$sleeper" 2>/dev/null || exit 0
     printf '1' >"$marker" 2>/dev/null || true
-    kill -TERM "$pid" 2>/dev/null || true
+    teardown_reviewer TERM "$pid" "$pgid_mode"
     sleep 5
-    kill -KILL "$pid" 2>/dev/null || true
+    teardown_reviewer KILL "$pid" "$pgid_mode"
   ) &
   watchdog=$!
   wait "$pid"
@@ -312,6 +397,68 @@ write_cache() {
     > "$tmp" 2>/dev/null && chmod 600 "$tmp" 2>/dev/null && mv "$tmp" "$cache_file" 2>/dev/null || rm -f "$tmp"
 }
+compute_work_hash() {
+  local root="$1"
+  local base="$2"
+  local branch
+  branch="$(git -C "$root" rev-parse --abbrev-ref HEAD 2>/dev/null || printf 'unknown')"
+  printf 'branch=%s\nbase=%s\n' "$branch" "$base" | hash_stdin_16
+}
+read_block_counter() {
+  local counter_file="$1"
+  if ! cache_file_is_trusted "$counter_file"; then
+    printf '0'
+    return 0
+  fi
+  jq -r 'if (.count | type) == "number" and (.count >= 0) then (.count | floor) else 0 end' \
+    "$counter_file" 2>/dev/null || printf '0'
+}
+write_block_counter() {
+  local counter_file="$1"
+  local count="$2"
+  local tmp="${counter_file}.$$"
+  jq -nc \
+    --arg ts "$(date -u +%Y-%m-%dT%H:%M:%SZ)" \
+    --argjson count "$count" \
+    '{count:$count,ts:$ts}' \
+    > "$tmp" 2>/dev/null && chmod 600 "$tmp" 2>/dev/null && mv "$tmp" "$counter_file" 2>/dev/null || rm -f "$tmp"
+}
+reset_block_counter() {
+  local counter_file="${BLOCK_COUNTER_FILE:-}"
+  [[ -n "$counter_file" ]] || return 0
+  rm -f "$counter_file" 2>/dev/null || true
+}
+maybe_allow_after_block_cap() {
+  local source="$1"
+  local duration_ms="$2"
+  local findings="$3"
+  local duration_s="$4"
+  [[ "${MAX_CONSECUTIVE_BLOCKS:-0}" =~ ^[0-9]+$ ]] || return 1
+  [[ "$MAX_CONSECUTIVE_BLOCKS" -gt 0 ]] || return 1
+  [[ -n "${BLOCK_COUNTER_FILE:-}" ]] || return 1
+  local current_count next_count
+  current_count="$(read_block_counter "$BLOCK_COUNTER_FILE")"
+  [[ "$current_count" =~ ^[0-9]+$ ]] || current_count=0
+  if [[ "$current_count" -ge "$MAX_CONSECUTIVE_BLOCKS" ]]; then
+    reset_block_counter
+    notify_desktop "Codex pre-commit review allowed after oscillation cap"
+    append_run_log "needs-attention" "allow-cap" "$source" "$duration_ms" "$findings" "$SCOPE" "${DIFF_HASH:-}"
+    emit_json "⚠️ Codex gate: allowed after ${current_count} consecutive blocks (oscillation cap reached) — review the diff manually / see the PR (${duration_s}s)"
+    exit 0
+  fi
+  next_count=$((current_count + 1))
+  write_block_counter "$BLOCK_COUNTER_FILE" "$next_count"
+  return 1
+}
 review_from_cache() {
   local cache_file="$1"
   jq -c '{verdict:(.verdict // "error"), summary:(.summary // ""), findings:(if (.findings | type) == "array" then .findings else [] end), next_steps:[]}' "$cache_file" 2>/dev/null
@@ -322,22 +469,171 @@ cache_age_minutes() {
   jq -r '((now - (.ts | fromdateiso8601)) / 60 | floor)' "$cache_file" 2>/dev/null || printf '0'
 }
-review_has_parse_error() {
-  jq -e '
-    (.parseError // null) as $error
-    | ($error != null and $error != false and (($error | tostring) | length) > 0)
-  ' >/dev/null 2>&1
+review_parse_error_message() {
+  local review_output="$1"
+  jq -r '
+    def parsed_json($value):
+      if ($value | type) == "string" then (($value | fromjson?) // {}) else {} end;
+    def first_error($items):
+      [
+        $items[]
+        | select(. != null and . != false and ((. | tostring) | length) > 0)
+      ]
+      | first // "";
+    (parsed_json(.rawOutput? // null)) as $rawOutputJson
+    | (parsed_json(.codex.stdout? // null)) as $codexStdoutJson
+    | first_error([
+        .parseError?,
+        .result.parseError?,
+        .review?.parseError?,
+        .review?.result?.parseError?,
+        .data?.parseError?,
+        .data?.result?.parseError?,
+        .output?.parseError?,
+        .output?.result?.parseError?,
+        .response?.parseError?,
+        .response?.result?.parseError?,
+        .payload?.parseError?,
+        .payload?.result?.parseError?,
+        $rawOutputJson.parseError?,
+        $rawOutputJson.result.parseError?,
+        $codexStdoutJson.parseError?,
+        $codexStdoutJson.result.parseError?
+      ])
+  ' <<<"$review_output" 2>/dev/null
 }
 normalize_review_output() {
   local review_output="$1"
   jq -c '
-    def array_or_empty($value): if ($value | type) == "array" then $value else [] end;
-    {
-      verdict: (.result.verdict // .verdict // null),
-      summary: (.result.summary // .summary // ""),
-      findings: array_or_empty(.result.findings // .findings // []),
-      next_steps: array_or_empty(.result.next_steps // .next_steps // [])
+    def parsed_json($value):
+      if ($value | type) == "string" then (($value | fromjson?) // {}) else {} end;
+    def first_value($items):
+      [
+        $items[]
+        | select(. != null and . != "")
+      ]
+      | first // null;
+    def first_text($items):
+      [
+        $items[]
+        | select((. | type) == "string" and length > 0)
+      ]
+      | first // "";
+    def first_array($items):
+      [
+        $items[]
+        | select((. | type) == "array")
+      ]
+      | first // [];
+    (parsed_json(.rawOutput? // null)) as $rawOutputJson
+    | (parsed_json(.codex.stdout? // null)) as $codexStdoutJson
+    | (parsed_json(.stdout? // null)) as $stdoutJson
+    | {
+      verdict: first_value([
+        .result.verdict?,
+        .verdict?,
+        .review?.result?.verdict?,
+        .review?.verdict?,
+        .data?.result?.verdict?,
+        .data?.verdict?,
+        .output?.result?.verdict?,
+        .output?.verdict?,
+        .response?.result?.verdict?,
+        .response?.verdict?,
+        .payload?.result?.verdict?,
+        .payload?.verdict?,
+        $rawOutputJson.result.verdict?,
+        $rawOutputJson.verdict?,
+        $rawOutputJson.review?.result?.verdict?,
+        $rawOutputJson.review?.verdict?,
+        $codexStdoutJson.result.verdict?,
+        $codexStdoutJson.verdict?,
+        $codexStdoutJson.review?.result?.verdict?,
+        $codexStdoutJson.review?.verdict?,
+        $stdoutJson.result.verdict?,
+        $stdoutJson.verdict?
+      ]),
+      summary: (first_text([
+        .result.summary?,
+        .summary?,
+        .review?.result?.summary?,
+        .review?.summary?,
+        .data?.result?.summary?,
+        .data?.summary?,
+        .output?.result?.summary?,
+        .output?.summary?,
+        .response?.result?.summary?,
+        .response?.summary?,
+        .payload?.result?.summary?,
+        .payload?.summary?,
+        $rawOutputJson.result.summary?,
+        $rawOutputJson.summary?,
+        $rawOutputJson.review?.result?.summary?,
+        $rawOutputJson.review?.summary?,
+        $codexStdoutJson.result.summary?,
+        $codexStdoutJson.summary?,
+        $codexStdoutJson.review?.result?.summary?,
+        $codexStdoutJson.review?.summary?,
+        $stdoutJson.result.summary?,
+        $stdoutJson.summary?
+      ]) // ""),
+      findings: first_array([
+        .result.findings?,
+        .findings?,
+        .review?.result?.findings?,
+        .review?.findings?,
+        .data?.result?.findings?,
+        .data?.findings?,
+        .output?.result?.findings?,
+        .output?.findings?,
+        .response?.result?.findings?,
+        .response?.findings?,
+        .payload?.result?.findings?,
+        .payload?.findings?,
+        $rawOutputJson.result.findings?,
+        $rawOutputJson.findings?,
+        $rawOutputJson.review?.result?.findings?,
+        $rawOutputJson.review?.findings?,
+        $codexStdoutJson.result.findings?,
+        $codexStdoutJson.findings?,
+        $codexStdoutJson.review?.result?.findings?,
+        $codexStdoutJson.review?.findings?,
+        $stdoutJson.result.findings?,
+        $stdoutJson.findings?
+      ]),
+      next_steps: first_array([
+        .result.next_steps?,
+        .next_steps?,
+        .review?.result?.next_steps?,
+        .review?.next_steps?,
+        .data?.result?.next_steps?,
+        .data?.next_steps?,
+        .output?.result?.next_steps?,
+        .output?.next_steps?,
+        .response?.result?.next_steps?,
+        .response?.next_steps?,
+        .payload?.result?.next_steps?,
+        .payload?.next_steps?,
+        $rawOutputJson.result.next_steps?,
+        $rawOutputJson.next_steps?,
+        $rawOutputJson.review?.result?.next_steps?,
+        $rawOutputJson.review?.next_steps?,
+        $codexStdoutJson.result.next_steps?,
+        $codexStdoutJson.next_steps?,
+        $codexStdoutJson.review?.result?.next_steps?,
+        $codexStdoutJson.review?.next_steps?,
+        $stdoutJson.result.next_steps?,
+        $stdoutJson.next_steps?
+      ]),
+      raw_text: first_text([
+        .codex.stdout?,
+        .rawOutput?,
+        .stdout?,
+        .review?
+      ])
     }
   ' <<<"$review_output" 2>/dev/null
 }
@@ -358,6 +654,7 @@ evaluate_review_output() {
   case "$verdict" in
     approve)
       printf 'codex pre-commit review: approve\n' >&2
+      reset_block_counter
       append_run_log "approve" "allow" "$source" "$duration_ms" 0 "$SCOPE" "${DIFF_HASH:-}"
       if [[ "$source" == "cache" ]]; then
         emit_json "✅ Codex pre-commit review: approve (cached, ${cache_age}m old)"
@@ -369,6 +666,11 @@ evaluate_review_output() {
     needs-attention)
       ;;
     *)
+      local raw_text_len
+      raw_text_len="$(jq -r '(.raw_text // "" | length)' <<<"$review_output" 2>/dev/null || printf '0')"
+      if [[ -z "$verdict" && "$raw_text_len" =~ ^[0-9]+$ && "$raw_text_len" -gt 0 ]]; then
+        fail_review "$FAIL_CLOSED" "structured review verdict missing; use codexReview.preCommitCommand=adversarial-review for mechanical gates" "$duration_ms"
+      fi
       fail_review "$FAIL_CLOSED" "unknown review verdict: ${verdict:-missing}" "$duration_ms"
       ;;
   esac
@@ -399,44 +701,88 @@ evaluate_review_output() {
       | join(" | ")
     ' <<<"$review_output" 2>/dev/null || true)"
     finding_summary="$(compact_text "$finding_summary")"
+    maybe_allow_after_block_cap "$source" "$duration_ms" "$finding_count" "$duration_s"
     notify_desktop "Codex pre-commit review blocked: ${max_severity}"
     append_run_log "needs-attention" "deny" "$source" "$duration_ms" "$finding_count" "$SCOPE" "${DIFF_HASH:-}"
     emit_deny "Codex pre-commit review: needs-attention (>= $BLOCK_ON_SEVERITY). $summary | $finding_summary" "⛔ Codex pre-commit review: blocked (${max_severity}, ${duration_s}s)"
   fi
   printf 'codex pre-commit review: needs-attention but all findings below %s; allowing\n' "$BLOCK_ON_SEVERITY" >&2
+  reset_block_counter
   append_run_log "needs-attention" "allow" "$source" "$duration_ms" "$finding_count" "$SCOPE" "${DIFF_HASH:-}"
   emit_json "🟡 Codex pre-commit review: needs-attention below ${BLOCK_ON_SEVERITY} threshold — allowing (${duration_s}s)"
   exit 0
 }
-if ! command -v jq >/dev/null 2>&1; then
-  printf 'codex pre-commit review skipped: jq missing\n' >&2
-  exit 0
+GITHOOK=0
+if [[ "${1:-}" == "--git-hook" || "${COMPOSER_PRECOMMIT_GITHOOK:-}" == "1" ]]; then
+  GITHOOK=1
 fi
-INPUT="$(cat || true)"
-if [[ -z "$INPUT" ]]; then
-  exit 0
-fi
+if [[ "$GITHOOK" == "1" ]]; then
+  # Real git pre-commit hook: git provides no PreToolUse JSON on stdin. jq is
+  # still needed to parse config; if it is missing, honor failClosed via Node.
+  if ! command -v jq >/dev/null 2>&1; then
+    PREFLIGHT_CONFIG_PATH="${COMPOSER_CONFIG:-${CLAUDE_PROJECT_DIR:-.}/composer.config.json}"
+    PREFLIGHT_FLAGS="0 0"
+    if [[ -f "$PREFLIGHT_CONFIG_PATH" ]] && command -v node >/dev/null 2>&1; then
+      PREFLIGHT_FLAGS="$(node -e 'try{const c=JSON.parse(require("fs").readFileSync(process.argv[1],"utf8"));const r=c.codexReview||{};const h=r.preCommitHook||{};process.stdout.write((r.enabled===true&&h.enabled===true?"1":"0")+" "+(h.failClosed===true?"1":"0"))}catch(e){process.stdout.write("0 0")}' "$PREFLIGHT_CONFIG_PATH" 2>/dev/null || printf '0 0')"
+    fi
+    if [[ "${PREFLIGHT_FLAGS%% *}" == "1" && "${PREFLIGHT_FLAGS##* }" == "1" ]]; then
+      emit_deny "codex pre-commit review unavailable: jq not installed (fail-closed)" "⛔ Codex pre-commit gate requires jq (fail-closed). Install jq (brew install jq)."
+    fi
+    printf 'codex pre-commit review skipped: jq not installed\n' >&2
+    exit 0
+  fi
+else
+  INPUT="$(cat || true)"
+  if [[ -z "$INPUT" ]]; then
+    exit 0
+  fi
-TOOL="$(jq -r '.tool_name // empty' <<<"$INPUT" 2>/dev/null || true)"
-if [[ -z "$TOOL" ]]; then
-  exit 0
-fi
-if [[ "$TOOL" != "Bash" ]]; then
-  exit 0
-fi
+  # jq is required to parse the hook payload. If it is missing we cannot run the
+  # gate; honor failClosed via a jq-free (Node) config read so a configured
+  # fail-closed gate cannot silently fail open. Only an actual Bash `git commit`
+  # payload is gated; everything else is allowed through unchanged.
+  if ! command -v jq >/dev/null 2>&1; then
+    if grep -Eq '"tool_name"[[:space:]]*:[[:space:]]*"Bash"' <<<"$INPUT" \
+       && grep -Eq 'git[^"]*commit' <<<"$INPUT"; then
+      PREFLIGHT_CONFIG_PATH="${COMPOSER_CONFIG:-${CLAUDE_PROJECT_DIR:-.}/composer.config.json}"
+      PREFLIGHT_FLAGS="0 0"
+      if [[ -f "$PREFLIGHT_CONFIG_PATH" ]] && command -v node >/dev/null 2>&1; then
+        PREFLIGHT_FLAGS="$(node -e 'try{const c=JSON.parse(require("fs").readFileSync(process.argv[1],"utf8"));const r=c.codexReview||{};const h=r.preCommitHook||{};process.stdout.write((r.enabled===true&&h.enabled===true?"1":"0")+" "+(h.failClosed===true?"1":"0"))}catch(e){process.stdout.write("0 0")}' "$PREFLIGHT_CONFIG_PATH" 2>/dev/null || printf '0 0')"
+      fi
+      if [[ "${PREFLIGHT_FLAGS%% *}" == "1" && "${PREFLIGHT_FLAGS##* }" == "1" ]]; then
+        emit_deny "codex pre-commit review unavailable: jq not installed (fail-closed)" "⛔ Codex pre-commit gate requires jq (fail-closed). Install jq (brew install jq)."
+      fi
+    fi
+    printf 'codex pre-commit review skipped: jq not installed\n' >&2
+    exit 0
+  fi
-COMMAND_TEXT="$(jq -r '.tool_input.command // empty' <<<"$INPUT" 2>/dev/null || true)"
-if [[ -z "$COMMAND_TEXT" ]]; then
-  exit 0
-fi
-if grep -Eq '(^|[^[:alnum:]])(commit-tree|commit-graph)([^[:alnum:]]|$)|--dry-run' <<<"$COMMAND_TEXT"; then
-  exit 0
+  TOOL="$(jq -r '.tool_name // empty' <<<"$INPUT" 2>/dev/null || true)"
+  if [[ -z "$TOOL" ]]; then
+    exit 0
+  fi
+  if [[ "$TOOL" != "Bash" ]]; then
+    exit 0
+  fi
+  COMMAND_TEXT="$(jq -r '.tool_input.command // empty' <<<"$INPUT" 2>/dev/null || true)"
+  if [[ -z "$COMMAND_TEXT" ]]; then
+    exit 0
+  fi
+  if grep -Eq '(^|[^[:alnum:]])(commit-tree|commit-graph)([^[:alnum:]]|$)|--dry-run' <<<"$COMMAND_TEXT"; then
+    exit 0
+  fi
+  if ! grep -Eq '(^|[^[:alnum:]])git([[:space:]]|[[:space:]].*[[:space:]])commit([[:space:]]|$)' <<<"$COMMAND_TEXT"; then
+    exit 0
+  fi
 fi
-if ! grep -Eq '(^|[^[:alnum:]])git([[:space:]]|[[:space:]].*[[:space:]])commit([[:space:]]|$)' <<<"$COMMAND_TEXT"; then
-  exit 0
+# Library mode: allow tests to source helpers without running the gate.
+if [[ "${COMPOSER_PRECOMMIT_LIB_ONLY:-0}" == "1" ]]; then
+  return 0 2>/dev/null || exit 0
 fi
 CONFIG_PATH="${COMPOSER_CONFIG:-${CLAUDE_PROJECT_DIR:-.}/composer.config.json}"
@@ -460,8 +806,9 @@ SCOPE="$(jq -r '.codexReview.scope // "working-tree"' <<<"$CONFIG_JSON" 2>/dev/n
 BASE="$(jq -r '.codexReview.base // "main"' <<<"$CONFIG_JSON" 2>/dev/null || printf 'main')"
 CODEX_MODEL="$(jq -r '.codexReview.model // empty' <<<"$CONFIG_JSON" 2>/dev/null || true)"
 BLOCK_ON_SEVERITY="$(jq -r '.codexReview.preCommitHook.blockOnSeverity // "high"' <<<"$CONFIG_JSON" 2>/dev/null || printf 'high')"
-TIMEOUT_MS="$(jq -r '.codexReview.preCommitHook.timeoutMs // 120000' <<<"$CONFIG_JSON" 2>/dev/null || printf '120000')"
+TIMEOUT_MS="$(jq -r ".codexReview.preCommitHook.timeoutMs // $PRECOMMIT_DEFAULT_TIMEOUT_MS" <<<"$CONFIG_JSON" 2>/dev/null || printf '%s' "$PRECOMMIT_DEFAULT_TIMEOUT_MS")"
 FAIL_CLOSED="$(jq -r '.codexReview.preCommitHook.failClosed // false' <<<"$CONFIG_JSON" 2>/dev/null || printf 'false')"
+MAX_CONSECUTIVE_BLOCKS="$(jq -r '(.codexReview.preCommitHook.maxConsecutiveBlocks // 0) | if type == "number" and . >= 0 and . == floor then . else 0 end' <<<"$CONFIG_JSON" 2>/dev/null || printf '0')"
 WARM_CACHE_ENABLED="$(jq -r '.codexReview.warmCache.enabled // false' <<<"$CONFIG_JSON" 2>/dev/null || printf 'false')"
 WARM_CACHE_MAX_AGE_MINUTES="$(jq -r '.codexReview.warmCache.maxAgeMinutes // 30' <<<"$CONFIG_JSON" 2>/dev/null || printf '30')"
 NOTIFY_DESKTOP="$(jq -r '.codexReview.notify.desktop // false' <<<"$CONFIG_JSON" 2>/dev/null || printf 'false')"
@@ -477,6 +824,13 @@ esac
 case "$TIMEOUT_MS" in
   ''|*[!0-9]*) fail_review "$FAIL_CLOSED" "invalid timeoutMs: $TIMEOUT_MS" ;;
 esac
+TIMEOUT_MS="$(normalize_precommit_timeout_ms "$TIMEOUT_MS")"
+case "$MAX_CONSECUTIVE_BLOCKS" in
+  ''|*[!0-9]*) MAX_CONSECUTIVE_BLOCKS=0 ;;
+esac
+if [[ "$(printf '%s' "$CODEX_MODEL" | tr '[:upper:]' '[:lower:]')" == "gpt-5.5-pro" ]]; then
+  fail_review "$FAIL_CLOSED" "gpt-5.5-pro is the ChatGPT-Pro/Oracle browser lane, not a Codex CLI model"
+fi
 case "$WARM_CACHE_MAX_AGE_MINUTES" in
   ''|*[!0-9]*) WARM_CACHE_MAX_AGE_MINUTES=30 ;;
 esac
@@ -488,10 +842,19 @@ fi
 DIFF_HASH=""
 CACHE_FILE=""
+BLOCK_COUNTER_FILE=""
+GIT_ROOT="$(find_git_root || true)"
+if [[ -n "$GIT_ROOT" && "$MAX_CONSECUTIVE_BLOCKS" -gt 0 ]]; then
+  REPO_HASH="$(compute_repo_hash "$GIT_ROOT" 2>/dev/null || true)"
+  WORK_HASH="$(compute_work_hash "$GIT_ROOT" "$BASE" 2>/dev/null || true)"
+  STATE_DIR="$(ensure_state_dir 2>/dev/null || true)"
+  if [[ -n "$REPO_HASH" && -n "$WORK_HASH" && -n "$STATE_DIR" ]]; then
+    BLOCK_COUNTER_FILE="$STATE_DIR/codex-review-blocks-${REPO_HASH}-${WORK_HASH}.json"
+  fi
+fi
 if [[ -n "${COMPOSER_CODEX_REVIEW_CMD:-}" ]]; then
   : # Test seam commands are not equivalent reviewer policy, so they never read or write warm-cache verdicts.
 elif [[ "$WARM_CACHE_ENABLED" == "true" ]]; then
-  GIT_ROOT="$(find_git_root || true)"
   if [[ -n "$GIT_ROOT" ]]; then
     REPO_HASH="$(compute_repo_hash "$GIT_ROOT" 2>/dev/null || true)"
     DIFF_HASH="$(compute_diff_hash "$GIT_ROOT" "$REVIEW_COMMAND" "$SCOPE" "$BASE" "$CODEX_MODEL" 2>/dev/null || true)"
@@ -535,9 +898,19 @@ END_SECONDS="$(date +%s)"
 DURATION_MS=$(( (END_SECONDS - START_SECONDS) * 1000 ))
 if [[ "$REVIEW_STATUS" -eq 124 ]]; then
-  fail_review "$FAIL_CLOSED" "review timed out after ${TIMEOUT_SECONDS}s" "$DURATION_MS"
+  # A reviewer timeout/hang must NOT silently open the gate — otherwise a slow or
+  # hung reviewer could bypass review entirely. The timeout path always fails
+  # closed, regardless of the configured failClosed. If legitimate reviews need
+  # more time, raise codexReview.preCommitHook.timeoutMs instead.
+  fail_review "true" "review timed out after ${TIMEOUT_SECONDS}s" "$DURATION_MS" "hook_timeout"
 fi
 if [[ "$REVIEW_STATUS" -ne 0 ]]; then
+  if [[ -n "$REVIEW_OUTPUT" ]] && jq -e . >/dev/null 2>&1 <<<"$REVIEW_OUTPUT"; then
+    PARSE_ERROR_MESSAGE="$(review_parse_error_message "$REVIEW_OUTPUT")"
+    if [[ -n "$PARSE_ERROR_MESSAGE" ]]; then
+      fail_review "$FAIL_CLOSED" "review parseError: $PARSE_ERROR_MESSAGE" "$DURATION_MS"
+    fi
+  fi
   fail_review "$FAIL_CLOSED" "review command exited $REVIEW_STATUS" "$DURATION_MS"
 fi
 if [[ -z "$REVIEW_OUTPUT" ]]; then
@@ -546,8 +919,9 @@ fi
 if ! jq -e . >/dev/null 2>&1 <<<"$REVIEW_OUTPUT"; then
   fail_review "$FAIL_CLOSED" "review returned unparseable JSON" "$DURATION_MS"
 fi
-if review_has_parse_error <<<"$REVIEW_OUTPUT"; then
-  fail_review "$FAIL_CLOSED" "review parseError: $(jq -r '.parseError | tostring' <<<"$REVIEW_OUTPUT" 2>/dev/null || printf 'unknown')" "$DURATION_MS"
+PARSE_ERROR_MESSAGE="$(review_parse_error_message "$REVIEW_OUTPUT")"
+if [[ -n "$PARSE_ERROR_MESSAGE" ]]; then
+  fail_review "$FAIL_CLOSED" "review parseError: $PARSE_ERROR_MESSAGE" "$DURATION_MS"
 fi
 NORMALIZED_REVIEW_OUTPUT="$(normalize_review_output "$REVIEW_OUTPUT" || true)"
 if [[ -z "$NORMALIZED_REVIEW_OUTPUT" ]] || ! jq -e . >/dev/null 2>&1 <<<"$NORMALIZED_REVIEW_OUTPUT"; then