agent-control-plane 0.1.9 → 0.1.12

package/tools/dashboard/app.js

@@ -2,6 +2,8 @@ const refreshButton = document.querySelector("#refresh-button");
 const generatedAtNode = document.querySelector("#generated-at");
 const overviewNode = document.querySelector("#overview");
 const profilesNode = document.querySelector("#profiles");
+const seenAlertIds = new Set();
+let notificationPermissionRequested = false;
 
 function relativeTime(input) {
   if (!input) return "n/a";
@@ -61,9 +63,10 @@ function renderOverview(snapshot) {
       acc.controllers += profile.counts.live_resident_controllers;
       acc.cooldowns += profile.counts.provider_cooldowns;
       acc.queue += profile.counts.queued_issues;
+      acc.alerts += profile.counts.alerts || 0;
       return acc;
     },
-    { activeRuns: 0, runningRuns: 0, implementedRuns: 0, reportedRuns: 0, blockedRuns: 0, controllers: 0, cooldowns: 0, queue: 0 },
+    { activeRuns: 0, runningRuns: 0, implementedRuns: 0, reportedRuns: 0, blockedRuns: 0, controllers: 0, cooldowns: 0, queue: 0, alerts: 0 },
   );
 
   overviewNode.innerHTML = [
@@ -75,6 +78,7 @@ function renderOverview(snapshot) {
     ["Blocked", totals.blockedRuns],
     ["Live Controllers", totals.controllers],
     ["Provider Cooldowns", totals.cooldowns],
+    ["Alerts", totals.alerts],
     ["Queued Issues", totals.queue],
   ]
     .map(
@@ -104,6 +108,36 @@ function renderTable(columns, rows, emptyMessage = "No data right now.") {
   return `<div class="table-wrap"><table><thead><tr>${headers}</tr></thead><tbody>${body}</tbody></table></div>`;
 }
 
+function renderAlerts(alerts) {
+  if (!alerts.length) {
+    return `<div class="empty-state">No active alerts for this profile.</div>`;
+  }
+  return `
+    <div class="alert-list">
+      ${alerts
+        .map(
+          (alert) => `
+            <article class="alert-card ${statusClass(alert.severity || "warn")}">
+              <div class="alert-header">
+                <div>
+                  <h4>${alert.title}</h4>
+                  <div class="muted mono">${alert.session || "n/a"} · ${alert.task_kind || "task"} ${alert.task_id || ""}</div>
+                </div>
+                <span class="badge warn">${alert.kind}</span>
+              </div>
+              <p>${alert.message}</p>
+              <div class="alert-meta">
+                <span>${alert.reset_at ? `Reset: ${alert.reset_at}` : "Reset: n/a"}</span>
+                <span>${alert.updated_at ? `${relativeTime(alert.updated_at)} · ${alert.updated_at}` : "updated n/a"}</span>
+              </div>
+            </article>
+          `,
+        )
+        .join("")}
+    </div>
+  `;
+}
+
 function renderProfile(profile) {
   const providerBadges = [
     profile.coding_worker ? `<span class="badge good">${profile.coding_worker}</span>` : "",
@@ -125,6 +159,7 @@ function renderProfile(profile) {
     ["Live controllers", profile.counts.live_resident_controllers],
     ["Stale controllers", profile.counts.stale_resident_controllers],
     ["Provider cooldowns", profile.counts.provider_cooldowns],
+    ["Alerts", profile.counts.alerts || 0],
     ["Issue retries", profile.counts.active_retries],
     ["Queued issues", profile.counts.queued_issues],
     ["Scheduled", profile.counts.scheduled_issues],
@@ -240,6 +275,11 @@ function renderProfile(profile) {
       </header>
       <section class="overview">${summaryCards}</section>
       <section class="profile-grid">
+        <section class="panel">
+          <h3>Host Alerts</h3>
+          <p class="panel-subtitle">High-signal operational blockers surfaced from active run logs and comment artifacts.</p>
+          ${renderAlerts(profile.alerts || [])}
+        </section>
         <section class="panel">
           <h3>Active Runs</h3>
           <p class="panel-subtitle">Lifecycle shows technical session completion. Result shows what the run achieved: implemented, reported, or blocked.</p>
@@ -275,6 +315,35 @@ function renderProfile(profile) {
   `;
 }
 
+async function maybeNotifyAlerts(snapshot) {
+  const alerts = (snapshot.alerts || []).filter((alert) => alert && alert.id);
+  if (!alerts.length || typeof window.Notification === "undefined") return;
+
+  if (window.Notification.permission === "default" && !notificationPermissionRequested) {
+    notificationPermissionRequested = true;
+    try {
+      await window.Notification.requestPermission();
+    } catch (_error) {
+      return;
+    }
+  }
+
+  if (window.Notification.permission !== "granted") return;
+
+  for (const alert of alerts) {
+    if (seenAlertIds.has(alert.id)) continue;
+    seenAlertIds.add(alert.id);
+    const bodyParts = [];
+    if (alert.session) bodyParts.push(alert.session);
+    if (alert.reset_at) bodyParts.push(`reset ${alert.reset_at}`);
+    if (alert.message) bodyParts.push(alert.message);
+    new window.Notification(alert.title || "ACP alert", {
+      body: bodyParts.join(" · ").slice(0, 240),
+      tag: alert.id,
+    });
+  }
+}
+
 async function loadSnapshot() {
   refreshButton.disabled = true;
   try {
@@ -286,6 +355,7 @@ async function loadSnapshot() {
     generatedAtNode.textContent = `Snapshot: ${snapshot.generated_at}`;
     renderOverview(snapshot);
     profilesNode.innerHTML = snapshot.profiles.map(renderProfile).join("");
+    await maybeNotifyAlerts(snapshot);
   } catch (error) {
     generatedAtNode.textContent = `Snapshot load failed: ${error.message}`;
     profilesNode.innerHTML = `<article class="profile"><div class="empty-state">${error.message}</div></article>`;

package/tools/dashboard/dashboard_snapshot.py

@@ -143,6 +143,19 @@ def file_mtime_iso(path: Path) -> str:
     return datetime.fromtimestamp(path.stat().st_mtime, tz=timezone.utc).strftime("%Y-%m-%dT%H:%M:%SZ")
 
 
+def read_tail_text(path: Path, max_bytes: int = 65536) -> str:
+    if not path.is_file():
+        return ""
+    try:
+        with path.open("rb") as handle:
+            size = path.stat().st_size
+            if size > max_bytes:
+                handle.seek(size - max_bytes)
+            return handle.read().decode("utf-8", errors="replace")
+    except OSError:
+        return ""
+
+
 def classify_run_result(status: str, outcome: str, failure_reason: str) -> tuple[str, str]:
     normalized_status = (status or "").strip().upper()
     normalized_outcome = (outcome or "").strip()
@@ -167,6 +180,59 @@ def classify_run_result(status: str, outcome: str, failure_reason: str) -> tuple
     return ("unknown", normalized_status or "Unknown")
 
 
+GITHUB_RATE_LIMIT_PATTERNS = [
+    re.compile(
+        r"GitHub core API[^\n]*?rate limit[^\n]*(?:reset(?:s| into)?(?: at)?\s+(?P<reset>[^.\n]+))?",
+        re.IGNORECASE,
+    ),
+    re.compile(
+        r"gh:\s*API rate limit exceeded[^\n]*(?:reset(?:s| into)?(?: at)?\s+(?P<reset>[^.\n]+))?",
+        re.IGNORECASE,
+    ),
+]
+
+
+def summarize_whitespace(text: str) -> str:
+    return re.sub(r"\s+", " ", text).strip()
+
+
+def extract_github_rate_limit_alert(run_dir: Path, run: dict[str, Any]) -> dict[str, Any] | None:
+    candidate_files = [
+        run_dir / "issue-comment.md",
+        run_dir / "pr-comment.md",
+        run_dir / f"{run['session']}.log",
+    ]
+    for path in candidate_files:
+        text = read_tail_text(path)
+        if not text:
+            continue
+        for pattern in GITHUB_RATE_LIMIT_PATTERNS:
+            match = pattern.search(text)
+            if not match:
+                continue
+            summary = summarize_whitespace(match.group(0))
+            reset_match = re.search(r"reset(?:s| into)?(?: at)?\s+([^.\n]+)", summary, re.IGNORECASE)
+            reset_at = summarize_whitespace((reset_match.group(1) if reset_match else "") or match.groupdict().get("reset") or "")
+            if not summary:
+                summary = "GitHub core API rate limit is blocking host-side actions."
+            if reset_at and reset_at not in summary:
+                summary = f"{summary} Reset: {reset_at}."
+            return {
+                "id": f"github-core-rate-limit:{run['session']}:{reset_at or path.name}",
+                "kind": "github-core-rate-limit",
+                "severity": "warn",
+                "title": "GitHub core API rate limit blocks host actions",
+                "message": summary,
+                "session": run.get("session", ""),
+                "task_kind": run.get("task_kind", ""),
+                "task_id": run.get("task_id", ""),
+                "reset_at": reset_at,
+                "updated_at": run.get("updated_at", "") or file_mtime_iso(path),
+                "source_file": str(path),
+            }
+    return None
+
+
 def collect_runs(runs_root: Path) -> list[dict[str, Any]]:
     if not runs_root.is_dir():
         return []
@@ -221,6 +287,8 @@ def collect_runs(runs_root: Path) -> list[dict[str, Any]]:
             "provider_pool_name": run_env.get("ACTIVE_PROVIDER_POOL_NAME", ""),
             "run_dir": str(run_dir),
         }
+        alert = extract_github_rate_limit_alert(run_dir, item)
+        item["alerts"] = [alert] if alert else []
         runs.append(item)
     return runs
 
@@ -430,6 +498,7 @@ def build_profile_snapshot(profile_id: str, registry_root: Path) -> dict[str, An
     scheduled = collect_scheduled_issues(state_root)
     retries = collect_issue_retries(state_root)
     queue = collect_issue_queue(state_root)
+    alerts = [alert for run in runs for alert in run.get("alerts", [])]
 
     return {
         "id": profile_id,
@@ -471,8 +540,10 @@ def build_profile_snapshot(profile_id: str, registry_root: Path) -> dict[str, An
             "provider_cooldowns": sum(1 for item in cooldowns if item["active"]),
             "active_retries": sum(1 for item in retries if not item.get("ready", True)),
             "scheduled_issues": len(scheduled),
+            "alerts": len(alerts),
         },
         "runs": runs,
+        "alerts": alerts,
         "resident_controllers": controllers,
         "resident_workers": resident_workers,
         "provider_cooldowns": cooldowns,
@@ -485,11 +556,14 @@ def build_profile_snapshot(profile_id: str, registry_root: Path) -> dict[str, An
 def build_snapshot() -> dict[str, Any]:
     registry_root = profile_registry_root()
     profiles = [build_profile_snapshot(profile_id, registry_root) for profile_id in list_profile_ids(registry_root)]
+    alerts = [alert for profile in profiles for alert in profile.get("alerts", [])]
     return {
         "generated_at": utc_now_iso(),
         "flow_skill_dir": str(ROOT_DIR),
         "profile_registry_root": str(registry_root),
         "profile_count": len(profiles),
+        "alert_count": len(alerts),
+        "alerts": alerts,
         "profiles": profiles,
     }
 

package/tools/dashboard/styles.css

@@ -230,6 +230,49 @@ button:hover {
   font-size: 14px;
 }
 
+.alert-list {
+  display: grid;
+  gap: 12px;
+}
+
+.alert-card {
+  padding: 14px 16px;
+  border-radius: 18px;
+  border: 1px solid var(--line);
+  background: var(--panel-strong);
+}
+
+.alert-card.warn {
+  border-color: #e7c76d;
+  background: #fff6dd;
+}
+
+.alert-card h4 {
+  margin: 0;
+  font-size: 17px;
+}
+
+.alert-card p {
+  margin: 10px 0 0;
+  line-height: 1.5;
+}
+
+.alert-header {
+  display: flex;
+  gap: 12px;
+  justify-content: space-between;
+  align-items: flex-start;
+}
+
+.alert-meta {
+  margin-top: 10px;
+  display: flex;
+  flex-wrap: wrap;
+  gap: 12px;
+  color: var(--muted);
+  font-size: 13px;
+}
+
 .table-wrap {
   overflow-x: auto;
 }

package/tools/templates/issue-prompt-template.md

@@ -12,67 +12,28 @@ Implement issue #{ISSUE_ID} in `{REPO_SLUG}`.
 {ISSUE_RECURRING_CONTEXT}
 {ISSUE_BLOCKER_CONTEXT}
 
-# MANDATORY WORKFLOW (follow in order, no skipping)
+# Required Contract
 
-You MUST complete ALL 5 phases in order. Do not skip any phase. Do not commit until Phase 4 passes.
+Follow this order:
 
-## Phase 1: READ & SCOPE
-
-- Read the repo instructions: `AGENTS.md`, relevant spec or design docs, and any repo conventions tied to this issue.
-- Identify the single primary product surface you will touch.
-- If the issue spans multiple surfaces, pick ONE and create follow-up issues for the rest using:
-  ```bash
-  bash "$ACP_FLOW_TOOLS_DIR/create-follow-up-issue.sh" --parent {ISSUE_ID} --title "..." --body-file /tmp/follow-up.md
-  ```
-- Treat a broad umbrella issue as a coordination brief rather than permission to ship every slice in one PR.
-- Write down your scope decision before coding.
-
-## Phase 2: IMPLEMENT
-
-- Make the smallest root-cause fix that satisfies the issue.
-- Work only inside the dedicated worktree.
-- Add or update tests when feasible.
-- STOP after implementation. Do not commit yet.
-
-## Phase 3: VERIFY (MANDATORY)
-
-After implementing, you MUST run verification commands and record each one.
-Every successful command must be recorded or the host publish will fail.
-After each successful verification command, record it with `record-verification.sh`.
+1. Read `AGENTS.md`, choose one narrow target, and stay within that slice.
+2. If the issue is broader than one safe slice, stop and create follow-up issues instead of forcing a large patch:
+   ```bash
+   bash "$ACP_FLOW_TOOLS_DIR/create-follow-up-issue.sh" --parent {ISSUE_ID} --title "..." --body-file /tmp/follow-up.md
+   ```
+3. Implement the smallest root-cause fix in this worktree only.
+4. Run verification and record every successful command with `record-verification.sh`.
 
 ```bash
 {ISSUE_VERIFICATION_COMMAND_SNIPPET}
 ```
 
-Required verification coverage:
-- Run the narrowest repo-supported `typecheck`, `build`, `test`, or `lint` command that proves the touched surface is safe.
-- If you changed tests only, run the most relevant targeted test command and record it.
-- If you changed localization resources or user-facing copy, run repo locale validation or hardcoded-copy scans if the repo provides them.
-- If a verification command fails, fix the issue and rerun until it passes.
-
-CRITICAL: `verification.jsonl` must exist in `$ACP_RUN_DIR` with at least one `pass` entry before you can write `OUTCOME=implemented`.
-
-## Phase 4: SELF-REVIEW (MANDATORY)
-
-Before committing, perform this checklist:
-
-- [ ] Run `git diff --check`.
-- [ ] Count non-test product files: if the change is broad, stop and split scope instead of publishing one large PR.
-- [ ] If you touched auth, login, session, or reset flows, verify existing users and legacy data still behave correctly.
-- [ ] If you touched public endpoints, public routes, or operator workflows, search downstream consumers in `scripts/`, `docs/`, and specs.
-- [ ] If you changed localization resources or user-facing copy, confirm localization coverage and scanning are still valid.
-- [ ] If you touched mobile routes or screens, keep route scope narrow and verify loading, empty, and error states.
-
-Before committing, verify the journal exists:
-```bash
-test -s "$ACP_RUN_DIR/verification.jsonl" && echo "OK: verification.jsonl exists" || echo "BLOCKED: missing verification.jsonl"
-```
-
-## Phase 5: COMMIT & REPORT
-
-- Commit with a conventional commit message.
-- Do NOT push or open a PR; the host handles that.
-- Write `$ACP_RESULT_FILE`:
+5. Before committing, run at least:
+   ```bash
+   git diff --check
+   test -s "$ACP_RUN_DIR/verification.jsonl" && echo "OK: verification.jsonl exists" || echo "BLOCKED: missing verification.jsonl"
+   ```
+6. If verification passes, commit locally and write `$ACP_RESULT_FILE`:
   ```bash
   cat > "$ACP_RESULT_FILE" <<'OUTER_EOF'
   OUTCOME=implemented
@@ -80,16 +41,7 @@ test -s "$ACP_RUN_DIR/verification.jsonl" && echo "OK: verification.jsonl exists
   ISSUE_ID={ISSUE_ID}
   OUTER_EOF
   ```
-- In your final output, include the changed files, verification commands actually run, and one short self-review note naming the main regression risk you checked.
-
-# STOP CONDITIONS
-
-Stop and report blocked if:
-- The issue is ambiguous, blocked by missing credentials, or expands into high-risk scope.
-- You cannot complete verification successfully.
-- The issue needs full decomposition into focused follow-up issues.
-
-If stopped blocked, write `$ACP_RUN_DIR/issue-comment.md` with a blocker summary, then:
+7. If blocked, write `$ACP_RUN_DIR/issue-comment.md` and then write:
 ```bash
 cat > "$ACP_RESULT_FILE" <<'OUTER_EOF'
 OUTCOME=blocked
@@ -98,7 +50,7 @@ ISSUE_ID={ISSUE_ID}
 OUTER_EOF
 ```
 
-If fully decomposed into follow-up issues, start the first line of `issue-comment.md` with exactly:
+If you fully decompose the work, the first line of `issue-comment.md` must be:
 `Superseded by focused follow-up issues: #...`
 
 # Git Rules
@@ -106,4 +58,4 @@ If fully decomposed into follow-up issues, start the first line of `issue-commen
 - Do NOT push the branch from inside the worker.
 - Do NOT open a PR from inside the worker.
 - Do NOT comment on the source issue with a PR URL from inside the worker.
-- Exit successfully after writing the result file.
+- Exit after writing the result file.

package/tools/templates/legacy/issue-prompt-template-pre-slim.md

@@ -0,0 +1,109 @@
+# Task
+
+Implement issue #{ISSUE_ID} in `{REPO_SLUG}`.
+
+# Issue Context
+
+- Title: {ISSUE_TITLE}
+- URL: {ISSUE_URL}
+- Auto-merge requested: {ISSUE_AUTOMERGE}
+
+{ISSUE_BODY}
+{ISSUE_RECURRING_CONTEXT}
+{ISSUE_BLOCKER_CONTEXT}
+
+# MANDATORY WORKFLOW (follow in order, no skipping)
+
+You MUST complete ALL 5 phases in order. Do not skip any phase. Do not commit until Phase 4 passes.
+
+## Phase 1: READ & SCOPE
+
+- Read the repo instructions: `AGENTS.md`, relevant spec or design docs, and any repo conventions tied to this issue.
+- Identify the single primary product surface you will touch.
+- If the issue spans multiple surfaces, pick ONE and create follow-up issues for the rest using:
+  ```bash
+  bash "$ACP_FLOW_TOOLS_DIR/create-follow-up-issue.sh" --parent {ISSUE_ID} --title "..." --body-file /tmp/follow-up.md
+  ```
+- Treat a broad umbrella issue as a coordination brief rather than permission to ship every slice in one PR.
+- Write down your scope decision before coding.
+
+## Phase 2: IMPLEMENT
+
+- Make the smallest root-cause fix that satisfies the issue.
+- Work only inside the dedicated worktree.
+- Add or update tests when feasible.
+- STOP after implementation. Do not commit yet.
+
+## Phase 3: VERIFY (MANDATORY)
+
+After implementing, you MUST run verification commands and record each one.
+Every successful command must be recorded or the host publish will fail.
+After each successful verification command, record it with `record-verification.sh`.
+
+```bash
+{ISSUE_VERIFICATION_COMMAND_SNIPPET}
+```
+
+Required verification coverage:
+- Run the narrowest repo-supported `typecheck`, `build`, `test`, or `lint` command that proves the touched surface is safe.
+- If you changed tests only, run the most relevant targeted test command and record it.
+- If you changed localization resources or user-facing copy, run repo locale validation or hardcoded-copy scans if the repo provides them.
+- If a verification command fails, fix the issue and rerun until it passes.
+
+CRITICAL: `verification.jsonl` must exist in `$ACP_RUN_DIR` with at least one `pass` entry before you can write `OUTCOME=implemented`.
+
+## Phase 4: SELF-REVIEW (MANDATORY)
+
+Before committing, perform this checklist:
+
+- [ ] Run `git diff --check`.
+- [ ] Count non-test product files: if the change is broad, stop and split scope instead of publishing one large PR.
+- [ ] If you touched auth, login, session, or reset flows, verify existing users and legacy data still behave correctly.
+- [ ] If you touched public endpoints, public routes, or operator workflows, search downstream consumers in `scripts/`, `docs/`, and specs.
+- [ ] If you changed localization resources or user-facing copy, confirm localization coverage and scanning are still valid.
+- [ ] If you touched mobile routes or screens, keep route scope narrow and verify loading, empty, and error states.
+
+Before committing, verify the journal exists:
+```bash
+test -s "$ACP_RUN_DIR/verification.jsonl" && echo "OK: verification.jsonl exists" || echo "BLOCKED: missing verification.jsonl"
+```
+
+## Phase 5: COMMIT & REPORT
+
+- Commit with a conventional commit message.
+- Do NOT push or open a PR; the host handles that.
+- Write `$ACP_RESULT_FILE`:
+  ```bash
+  cat > "$ACP_RESULT_FILE" <<'OUTER_EOF'
+  OUTCOME=implemented
+  ACTION=host-publish-issue-pr
+  ISSUE_ID={ISSUE_ID}
+  OUTER_EOF
+  ```
+- In your final output, include the changed files, verification commands actually run, and one short self-review note naming the main regression risk you checked.
+
+# STOP CONDITIONS
+
+Stop and report blocked if:
+- The issue is ambiguous, blocked by missing credentials, or expands into high-risk scope.
+- You cannot complete verification successfully.
+- The issue needs full decomposition into focused follow-up issues.
+
+If stopped blocked, write `$ACP_RUN_DIR/issue-comment.md` with a blocker summary, then:
+```bash
+cat > "$ACP_RESULT_FILE" <<'OUTER_EOF'
+OUTCOME=blocked
+ACTION=host-comment-blocker
+ISSUE_ID={ISSUE_ID}
+OUTER_EOF
+```
+
+If fully decomposed into follow-up issues, start the first line of `issue-comment.md` with exactly:
+`Superseded by focused follow-up issues: #...`
+
+# Git Rules
+
+- Do NOT push the branch from inside the worker.
+- Do NOT open a PR from inside the worker.
+- Do NOT comment on the source issue with a PR URL from inside the worker.
+- Exit successfully after writing the result file.

package/bin/audit-issue-routing.sh

@@ -1,74 +0,0 @@
-#!/usr/bin/env bash
-set -euo pipefail
-
-SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
-# shellcheck source=/dev/null
-source "${SCRIPT_DIR}/../tools/bin/flow-config-lib.sh"
-
-CONFIG_YAML="$(resolve_flow_config_yaml "${BASH_SOURCE[0]}")"
-REPO_SLUG="$(flow_resolve_repo_slug "${CONFIG_YAML}")"
-AGENT_PR_PREFIXES_JSON="$(flow_managed_pr_prefixes_json "${CONFIG_YAML}")"
-AGENT_PR_ISSUE_CAPTURE_REGEX="$(flow_managed_issue_branch_regex "${CONFIG_YAML}")"
-MIN_AGE_MINUTES="${1:-30}"
-
-open_agent_pr_issue_ids="$(
-  gh pr list -R "$REPO_SLUG" --state open --limit 100 --json headRefName,body,labels,comments \
-    | jq --argjson agentPrPrefixes "${AGENT_PR_PREFIXES_JSON}" --arg branchIssueRegex "${AGENT_PR_ISSUE_CAPTURE_REGEX}" '
-        map(
-          . as $pr
-          | select(
-              any($agentPrPrefixes[]; (($pr.headRefName // "") | startswith(.)))
-              or any(($pr.labels // [])[]?; .name == "agent-handoff")
-              or any(($pr.comments // [])[]?; ((.body // "") | test("^## PR (final review blocker|repair worker summary|repair summary|repair update)"; "i")))
-            )
-          | [
-              (
-                $pr.headRefName
-                | capture($branchIssueRegex)?
-                | .id
-              ),
-              (
-                ($pr.body // "")
-                | capture("(?i)\\b(?:close[sd]?|fix(?:e[sd])?|resolve[sd]?)\\s+#(?<id>[0-9]+)\\b")?
-                | .id
-              )
-            ]
-          | .[]
-          | select(. != null and . != "")
-        )
-        | unique
-      '
-)"
-
-gh issue list -R "$REPO_SLUG" --state open --limit 100 --json number,title,createdAt,updatedAt,labels \
-  | jq -r --argjson openAgentPrIssueIds "$open_agent_pr_issue_ids" --argjson minAgeMinutes "$MIN_AGE_MINUTES" '
-      def label_names: [.labels[]?.name];
-      def age_minutes:
-        ((now - ((.createdAt | sub("\\.[0-9]+Z$"; "Z") | fromdateiso8601))) / 60);
-      def has_open_agent_pr:
-        ((.number | tostring) as $issueId | ($openAgentPrIssueIds | index($issueId)) != null);
-      map(
-        . + {
-          reason:
-            (if any(label_names[]?; . == "agent-running") and (has_open_agent_pr | not) then
-              "stale-agent-running"
-            elif any(label_names[]?; . == "agent-blocked") then
-              "blocked-manual-review"
-            else
-              ""
-            end)
-        }
-      )
-      | map(select(.reason != "" and (age_minutes >= $minAgeMinutes)))
-      | sort_by(.createdAt, .number)
-      | .[]
-      | [
-          (.number | tostring),
-          .reason,
-          .createdAt,
-          .updatedAt,
-          (label_names | join(",")),
-          .title
-        ]
-      | @tsv
-    '