agentic-orchestrator 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (439) hide show
  1. package/.dockerignore +24 -0
  2. package/.github/workflows/mcp-contract-validation.yml +38 -0
  3. package/Agentic-Orchestrator.iml +9 -0
  4. package/LICENSE +21 -0
  5. package/README.md +679 -0
  6. package/agentic/orchestrator/agents.yaml +14 -0
  7. package/agentic/orchestrator/gates.yaml +31 -0
  8. package/agentic/orchestrator/policy.yaml +145 -0
  9. package/agentic/orchestrator/prompts/builder.system.md +1 -0
  10. package/agentic/orchestrator/prompts/planner.system.md +15 -0
  11. package/agentic/orchestrator/prompts/qa.system.md +1 -0
  12. package/agentic/orchestrator/schemas/agents.schema.json +49 -0
  13. package/agentic/orchestrator/schemas/gates.schema.json +65 -0
  14. package/agentic/orchestrator/schemas/index.schema.json +108 -0
  15. package/agentic/orchestrator/schemas/plan.schema.json +127 -0
  16. package/agentic/orchestrator/schemas/policy.schema.json +227 -0
  17. package/agentic/orchestrator/schemas/qa_test_index.schema.json +53 -0
  18. package/agentic/orchestrator/schemas/state.schema.json +92 -0
  19. package/agentic/orchestrator/tools/catalog.json +399 -0
  20. package/agentic/orchestrator/tools/errors.schema.json +21 -0
  21. package/agentic/orchestrator/tools/protocol.json +8 -0
  22. package/agentic/orchestrator/tools/schemas/input/collisions.scan.input.schema.json +7 -0
  23. package/agentic/orchestrator/tools/schemas/input/evidence.latest.input.schema.json +15 -0
  24. package/agentic/orchestrator/tools/schemas/input/feature.delete.input.schema.json +42 -0
  25. package/agentic/orchestrator/tools/schemas/input/feature.discover_specs.input.schema.json +7 -0
  26. package/agentic/orchestrator/tools/schemas/input/feature.get_context.input.schema.json +15 -0
  27. package/agentic/orchestrator/tools/schemas/input/feature.init.input.schema.json +21 -0
  28. package/agentic/orchestrator/tools/schemas/input/feature.log_append.input.schema.json +26 -0
  29. package/agentic/orchestrator/tools/schemas/input/feature.ready_to_merge.input.schema.json +34 -0
  30. package/agentic/orchestrator/tools/schemas/input/feature.state_get.input.schema.json +15 -0
  31. package/agentic/orchestrator/tools/schemas/input/feature.state_patch.input.schema.json +28 -0
  32. package/agentic/orchestrator/tools/schemas/input/gates.list.input.schema.json +11 -0
  33. package/agentic/orchestrator/tools/schemas/input/gates.run.input.schema.json +29 -0
  34. package/agentic/orchestrator/tools/schemas/input/locks.acquire.input.schema.json +29 -0
  35. package/agentic/orchestrator/tools/schemas/input/locks.release.input.schema.json +26 -0
  36. package/agentic/orchestrator/tools/schemas/input/mutating.schema.json +14 -0
  37. package/agentic/orchestrator/tools/schemas/input/plan.get.input.schema.json +15 -0
  38. package/agentic/orchestrator/tools/schemas/input/plan.submit.input.schema.json +28 -0
  39. package/agentic/orchestrator/tools/schemas/input/plan.update.input.schema.json +29 -0
  40. package/agentic/orchestrator/tools/schemas/input/qa.test_index_get.input.schema.json +15 -0
  41. package/agentic/orchestrator/tools/schemas/input/qa.test_index_update.input.schema.json +38 -0
  42. package/agentic/orchestrator/tools/schemas/input/read.schema.json +6 -0
  43. package/agentic/orchestrator/tools/schemas/input/repo.apply_patch.input.schema.json +25 -0
  44. package/agentic/orchestrator/tools/schemas/input/repo.diff.input.schema.json +21 -0
  45. package/agentic/orchestrator/tools/schemas/input/repo.diff_bundle.input.schema.json +15 -0
  46. package/agentic/orchestrator/tools/schemas/input/repo.ensure_worktree.input.schema.json +21 -0
  47. package/agentic/orchestrator/tools/schemas/input/repo.read_file.input.schema.json +20 -0
  48. package/agentic/orchestrator/tools/schemas/input/repo.search.input.schema.json +20 -0
  49. package/agentic/orchestrator/tools/schemas/input/repo.status.input.schema.json +15 -0
  50. package/agentic/orchestrator/tools/schemas/input/report.dashboard.input.schema.json +7 -0
  51. package/agentic/orchestrator/tools/schemas/input/report.feature_summary.input.schema.json +15 -0
  52. package/agentic/orchestrator/tools/schemas/output/collisions.scan.output.schema.json +17 -0
  53. package/agentic/orchestrator/tools/schemas/output/evidence.latest.output.schema.json +20 -0
  54. package/agentic/orchestrator/tools/schemas/output/feature.delete.output.schema.json +224 -0
  55. package/agentic/orchestrator/tools/schemas/output/feature.discover_specs.output.schema.json +32 -0
  56. package/agentic/orchestrator/tools/schemas/output/feature.get_context.output.schema.json +40 -0
  57. package/agentic/orchestrator/tools/schemas/output/feature.init.output.schema.json +24 -0
  58. package/agentic/orchestrator/tools/schemas/output/feature.log_append.output.schema.json +24 -0
  59. package/agentic/orchestrator/tools/schemas/output/feature.ready_to_merge.output.schema.json +30 -0
  60. package/agentic/orchestrator/tools/schemas/output/feature.state_get.output.schema.json +18 -0
  61. package/agentic/orchestrator/tools/schemas/output/feature.state_patch.output.schema.json +24 -0
  62. package/agentic/orchestrator/tools/schemas/output/gates.list.output.schema.json +42 -0
  63. package/agentic/orchestrator/tools/schemas/output/gates.run.output.schema.json +37 -0
  64. package/agentic/orchestrator/tools/schemas/output/locks.acquire.output.schema.json +34 -0
  65. package/agentic/orchestrator/tools/schemas/output/locks.release.output.schema.json +24 -0
  66. package/agentic/orchestrator/tools/schemas/output/plan.get.output.schema.json +26 -0
  67. package/agentic/orchestrator/tools/schemas/output/plan.submit.output.schema.json +23 -0
  68. package/agentic/orchestrator/tools/schemas/output/plan.update.output.schema.json +23 -0
  69. package/agentic/orchestrator/tools/schemas/output/qa.test_index_get.output.schema.json +22 -0
  70. package/agentic/orchestrator/tools/schemas/output/qa.test_index_update.output.schema.json +19 -0
  71. package/agentic/orchestrator/tools/schemas/output/repo.apply_patch.output.schema.json +33 -0
  72. package/agentic/orchestrator/tools/schemas/output/repo.diff.output.schema.json +19 -0
  73. package/agentic/orchestrator/tools/schemas/output/repo.diff_bundle.output.schema.json +32 -0
  74. package/agentic/orchestrator/tools/schemas/output/repo.ensure_worktree.output.schema.json +29 -0
  75. package/agentic/orchestrator/tools/schemas/output/repo.read_file.output.schema.json +24 -0
  76. package/agentic/orchestrator/tools/schemas/output/repo.search.output.schema.json +26 -0
  77. package/agentic/orchestrator/tools/schemas/output/repo.status.output.schema.json +27 -0
  78. package/agentic/orchestrator/tools/schemas/output/report.dashboard.output.schema.json +21 -0
  79. package/agentic/orchestrator/tools/schemas/output/report.feature_summary.output.schema.json +36 -0
  80. package/agentic/orchestrator/tools/schemas/output/standard_success.schema.json +6 -0
  81. package/agentic/orchestrator/tools.md +32 -0
  82. package/apps/control-plane/project.json +39 -0
  83. package/apps/control-plane/scripts/validate-architecture-rules.mjs +170 -0
  84. package/apps/control-plane/scripts/validate-docker-mcp-contract.mjs +84 -0
  85. package/apps/control-plane/scripts/validate-mcp-contracts.ts +61 -0
  86. package/apps/control-plane/src/application/services/collision-queue-service.ts +227 -0
  87. package/apps/control-plane/src/application/services/feature-deletion-service.ts +459 -0
  88. package/apps/control-plane/src/application/services/feature-lifecycle-service.ts +177 -0
  89. package/apps/control-plane/src/application/services/feature-state-service.ts +125 -0
  90. package/apps/control-plane/src/application/services/gate-service.ts +232 -0
  91. package/apps/control-plane/src/application/services/lock-service.ts +298 -0
  92. package/apps/control-plane/src/application/services/merge-service.ts +246 -0
  93. package/apps/control-plane/src/application/services/patch-service.ts +259 -0
  94. package/apps/control-plane/src/application/services/plan-service.ts +302 -0
  95. package/apps/control-plane/src/application/services/qa-index-service.ts +98 -0
  96. package/apps/control-plane/src/application/services/reporting-service.ts +120 -0
  97. package/apps/control-plane/src/application/services/run-lease-service.ts +340 -0
  98. package/apps/control-plane/src/application/tools/tool-metadata.ts +56 -0
  99. package/apps/control-plane/src/application/tools/tool-router.ts +43 -0
  100. package/apps/control-plane/src/cli/aop.ts +31 -0
  101. package/apps/control-plane/src/cli/cli-argument-parser.ts +116 -0
  102. package/apps/control-plane/src/cli/delete-command-handler.ts +90 -0
  103. package/apps/control-plane/src/cli/io.ts +14 -0
  104. package/apps/control-plane/src/cli/resume-command-handler.ts +228 -0
  105. package/apps/control-plane/src/cli/run-command-handler.ts +57 -0
  106. package/apps/control-plane/src/cli/spec-ingestion-service.ts +88 -0
  107. package/apps/control-plane/src/cli/spec-input-resolver.ts +95 -0
  108. package/apps/control-plane/src/cli/spec-utils.ts +40 -0
  109. package/apps/control-plane/src/cli/status-command-handler.ts +17 -0
  110. package/apps/control-plane/src/cli/stop-command-handler.ts +5 -0
  111. package/apps/control-plane/src/cli/tooling.ts +36 -0
  112. package/apps/control-plane/src/cli/types.ts +34 -0
  113. package/apps/control-plane/src/core/collisions.ts +121 -0
  114. package/apps/control-plane/src/core/constants.ts +72 -0
  115. package/apps/control-plane/src/core/error-codes.ts +54 -0
  116. package/apps/control-plane/src/core/frontmatter.ts +42 -0
  117. package/apps/control-plane/src/core/fs.ts +173 -0
  118. package/apps/control-plane/src/core/gates.ts +361 -0
  119. package/apps/control-plane/src/core/git.ts +115 -0
  120. package/apps/control-plane/src/core/kernel.ts +1077 -0
  121. package/apps/control-plane/src/core/patch.ts +152 -0
  122. package/apps/control-plane/src/core/path-layout.ts +113 -0
  123. package/apps/control-plane/src/core/path-rules.ts +71 -0
  124. package/apps/control-plane/src/core/qa-index.ts +179 -0
  125. package/apps/control-plane/src/core/response.ts +62 -0
  126. package/apps/control-plane/src/core/runtime-sessions.ts +20 -0
  127. package/apps/control-plane/src/core/schemas.ts +125 -0
  128. package/apps/control-plane/src/index.ts +21 -0
  129. package/apps/control-plane/src/interfaces/cli/bootstrap.ts +100 -0
  130. package/apps/control-plane/src/mcp/kernel-tool-executor.ts +39 -0
  131. package/apps/control-plane/src/mcp/mcp-server-adapter.ts +74 -0
  132. package/apps/control-plane/src/mcp/operation-ledger.ts +108 -0
  133. package/apps/control-plane/src/mcp/protocol-contract.ts +9 -0
  134. package/apps/control-plane/src/mcp/runtime-factory.ts +105 -0
  135. package/apps/control-plane/src/mcp/runtime-types.ts +44 -0
  136. package/apps/control-plane/src/mcp/token-auth-verifier.ts +63 -0
  137. package/apps/control-plane/src/mcp/token-claims-validator.ts +72 -0
  138. package/apps/control-plane/src/mcp/token-codec.ts +62 -0
  139. package/apps/control-plane/src/mcp/tool-authorizer.ts +43 -0
  140. package/apps/control-plane/src/mcp/tool-client.ts +78 -0
  141. package/apps/control-plane/src/mcp/tool-contract-validator.ts +83 -0
  142. package/apps/control-plane/src/mcp/tool-registry-loader.ts +135 -0
  143. package/apps/control-plane/src/mcp/tool-runtime.ts +336 -0
  144. package/apps/control-plane/src/mcp/tools-markdown-generator.ts +26 -0
  145. package/apps/control-plane/src/mcp/transport-types.ts +16 -0
  146. package/apps/control-plane/src/mcp/types.ts +2 -0
  147. package/apps/control-plane/src/providers/providers.ts +177 -0
  148. package/apps/control-plane/src/supervisor/build-wave-executor.ts +55 -0
  149. package/apps/control-plane/src/supervisor/lease-heartbeat-service.ts +22 -0
  150. package/apps/control-plane/src/supervisor/planning-wave-executor.ts +316 -0
  151. package/apps/control-plane/src/supervisor/prompt-bundle-loader.ts +62 -0
  152. package/apps/control-plane/src/supervisor/qa-wave-executor.ts +99 -0
  153. package/apps/control-plane/src/supervisor/run-coordinator.ts +224 -0
  154. package/apps/control-plane/src/supervisor/runtime.ts +347 -0
  155. package/apps/control-plane/src/supervisor/session-orchestrator.ts +268 -0
  156. package/apps/control-plane/src/supervisor/types.ts +149 -0
  157. package/apps/control-plane/src/supervisor/worker-decision-loop.ts +299 -0
  158. package/apps/control-plane/test/aop.spec.ts +101 -0
  159. package/apps/control-plane/test/cli-helpers.spec.ts +102 -0
  160. package/apps/control-plane/test/cli.spec.ts +12 -0
  161. package/apps/control-plane/test/cli.unit.spec.ts +609 -0
  162. package/apps/control-plane/test/collision-queue.spec.ts +158 -0
  163. package/apps/control-plane/test/collisions.spec.ts +138 -0
  164. package/apps/control-plane/test/core-utils.spec.ts +102 -0
  165. package/apps/control-plane/test/delete-command-handler.spec.ts +202 -0
  166. package/apps/control-plane/test/epoch-tracking.spec.ts +121 -0
  167. package/apps/control-plane/test/gates.spec.ts +452 -0
  168. package/apps/control-plane/test/helpers.ts +68 -0
  169. package/apps/control-plane/test/index.spec.ts +18 -0
  170. package/apps/control-plane/test/kernel-collision-replay.spec.ts +222 -0
  171. package/apps/control-plane/test/kernel.branches.spec.ts +321 -0
  172. package/apps/control-plane/test/kernel.coverage.spec.ts +408 -0
  173. package/apps/control-plane/test/kernel.spec.ts +369 -0
  174. package/apps/control-plane/test/mcp-helpers.spec.ts +195 -0
  175. package/apps/control-plane/test/mcp.spec.ts +776 -0
  176. package/apps/control-plane/test/merge-service.spec.ts +357 -0
  177. package/apps/control-plane/test/plan-service.spec.ts +195 -0
  178. package/apps/control-plane/test/planning-wave-executor.spec.ts +229 -0
  179. package/apps/control-plane/test/providers.spec.ts +168 -0
  180. package/apps/control-plane/test/qa-index-service.spec.ts +187 -0
  181. package/apps/control-plane/test/qa-index.spec.ts +317 -0
  182. package/apps/control-plane/test/response.spec.ts +55 -0
  183. package/apps/control-plane/test/run-coordinator.spec.ts +334 -0
  184. package/apps/control-plane/test/schema-date-time.spec.ts +170 -0
  185. package/apps/control-plane/test/service-retry-paths.spec.ts +305 -0
  186. package/apps/control-plane/test/services.spec.ts +693 -0
  187. package/apps/control-plane/test/spec-input-resolver.spec.ts +76 -0
  188. package/apps/control-plane/test/supervisor-collaborators.spec.ts +201 -0
  189. package/apps/control-plane/test/supervisor.calltool.spec.ts +120 -0
  190. package/apps/control-plane/test/supervisor.spec.ts +415 -0
  191. package/apps/control-plane/test/supervisor.unit.spec.ts +522 -0
  192. package/apps/control-plane/test/token-auth-verifier.spec.ts +111 -0
  193. package/apps/control-plane/test/tool-registry-loader.spec.ts +268 -0
  194. package/apps/control-plane/test/tool-runtime.spec.ts +294 -0
  195. package/apps/control-plane/test/worker-decision-loop.spec.ts +587 -0
  196. package/apps/control-plane/tsconfig.build.json +17 -0
  197. package/apps/control-plane/tsconfig.json +11 -0
  198. package/apps/control-plane/vitest.config.ts +28 -0
  199. package/dist/apps/control-plane/application/services/collision-queue-service.d.ts +69 -0
  200. package/dist/apps/control-plane/application/services/collision-queue-service.js +158 -0
  201. package/dist/apps/control-plane/application/services/collision-queue-service.js.map +1 -0
  202. package/dist/apps/control-plane/application/services/feature-deletion-service.d.ts +79 -0
  203. package/dist/apps/control-plane/application/services/feature-deletion-service.js +336 -0
  204. package/dist/apps/control-plane/application/services/feature-deletion-service.js.map +1 -0
  205. package/dist/apps/control-plane/application/services/feature-lifecycle-service.d.ts +81 -0
  206. package/dist/apps/control-plane/application/services/feature-lifecycle-service.js +117 -0
  207. package/dist/apps/control-plane/application/services/feature-lifecycle-service.js.map +1 -0
  208. package/dist/apps/control-plane/application/services/feature-state-service.d.ts +34 -0
  209. package/dist/apps/control-plane/application/services/feature-state-service.js +90 -0
  210. package/dist/apps/control-plane/application/services/feature-state-service.js.map +1 -0
  211. package/dist/apps/control-plane/application/services/gate-service.d.ts +46 -0
  212. package/dist/apps/control-plane/application/services/gate-service.js +160 -0
  213. package/dist/apps/control-plane/application/services/gate-service.js.map +1 -0
  214. package/dist/apps/control-plane/application/services/lock-service.d.ts +56 -0
  215. package/dist/apps/control-plane/application/services/lock-service.js +242 -0
  216. package/dist/apps/control-plane/application/services/lock-service.js.map +1 -0
  217. package/dist/apps/control-plane/application/services/merge-service.d.ts +33 -0
  218. package/dist/apps/control-plane/application/services/merge-service.js +194 -0
  219. package/dist/apps/control-plane/application/services/merge-service.js.map +1 -0
  220. package/dist/apps/control-plane/application/services/patch-service.d.ts +39 -0
  221. package/dist/apps/control-plane/application/services/patch-service.js +189 -0
  222. package/dist/apps/control-plane/application/services/patch-service.js.map +1 -0
  223. package/dist/apps/control-plane/application/services/plan-service.d.ts +60 -0
  224. package/dist/apps/control-plane/application/services/plan-service.js +234 -0
  225. package/dist/apps/control-plane/application/services/plan-service.js.map +1 -0
  226. package/dist/apps/control-plane/application/services/qa-index-service.d.ts +26 -0
  227. package/dist/apps/control-plane/application/services/qa-index-service.js +66 -0
  228. package/dist/apps/control-plane/application/services/qa-index-service.js.map +1 -0
  229. package/dist/apps/control-plane/application/services/reporting-service.d.ts +47 -0
  230. package/dist/apps/control-plane/application/services/reporting-service.js +90 -0
  231. package/dist/apps/control-plane/application/services/reporting-service.js.map +1 -0
  232. package/dist/apps/control-plane/application/services/run-lease-service.d.ts +74 -0
  233. package/dist/apps/control-plane/application/services/run-lease-service.js +263 -0
  234. package/dist/apps/control-plane/application/services/run-lease-service.js.map +1 -0
  235. package/dist/apps/control-plane/application/tools/tool-metadata.d.ts +8 -0
  236. package/dist/apps/control-plane/application/tools/tool-metadata.js +37 -0
  237. package/dist/apps/control-plane/application/tools/tool-metadata.js.map +1 -0
  238. package/dist/apps/control-plane/application/tools/tool-router.d.ts +16 -0
  239. package/dist/apps/control-plane/application/tools/tool-router.js +25 -0
  240. package/dist/apps/control-plane/application/tools/tool-router.js.map +1 -0
  241. package/dist/apps/control-plane/cli/aop.d.ts +5 -0
  242. package/dist/apps/control-plane/cli/aop.js +19 -0
  243. package/dist/apps/control-plane/cli/aop.js.map +1 -0
  244. package/dist/apps/control-plane/cli/cli-argument-parser.d.ts +5 -0
  245. package/dist/apps/control-plane/cli/cli-argument-parser.js +109 -0
  246. package/dist/apps/control-plane/cli/cli-argument-parser.js.map +1 -0
  247. package/dist/apps/control-plane/cli/delete-command-handler.d.ts +8 -0
  248. package/dist/apps/control-plane/cli/delete-command-handler.js +77 -0
  249. package/dist/apps/control-plane/cli/delete-command-handler.js.map +1 -0
  250. package/dist/apps/control-plane/cli/io.d.ts +2 -0
  251. package/dist/apps/control-plane/cli/io.js +14 -0
  252. package/dist/apps/control-plane/cli/io.js.map +1 -0
  253. package/dist/apps/control-plane/cli/resume-command-handler.d.ts +17 -0
  254. package/dist/apps/control-plane/cli/resume-command-handler.js +178 -0
  255. package/dist/apps/control-plane/cli/resume-command-handler.js.map +1 -0
  256. package/dist/apps/control-plane/cli/run-command-handler.d.ts +15 -0
  257. package/dist/apps/control-plane/cli/run-command-handler.js +39 -0
  258. package/dist/apps/control-plane/cli/run-command-handler.js.map +1 -0
  259. package/dist/apps/control-plane/cli/spec-ingestion-service.d.ts +8 -0
  260. package/dist/apps/control-plane/cli/spec-ingestion-service.js +77 -0
  261. package/dist/apps/control-plane/cli/spec-ingestion-service.js.map +1 -0
  262. package/dist/apps/control-plane/cli/spec-input-resolver.d.ts +9 -0
  263. package/dist/apps/control-plane/cli/spec-input-resolver.js +81 -0
  264. package/dist/apps/control-plane/cli/spec-input-resolver.js.map +1 -0
  265. package/dist/apps/control-plane/cli/spec-utils.d.ts +3 -0
  266. package/dist/apps/control-plane/cli/spec-utils.js +36 -0
  267. package/dist/apps/control-plane/cli/spec-utils.js.map +1 -0
  268. package/dist/apps/control-plane/cli/status-command-handler.d.ts +7 -0
  269. package/dist/apps/control-plane/cli/status-command-handler.js +14 -0
  270. package/dist/apps/control-plane/cli/status-command-handler.js.map +1 -0
  271. package/dist/apps/control-plane/cli/stop-command-handler.d.ts +3 -0
  272. package/dist/apps/control-plane/cli/stop-command-handler.js +6 -0
  273. package/dist/apps/control-plane/cli/stop-command-handler.js.map +1 -0
  274. package/dist/apps/control-plane/cli/tooling.d.ts +4 -0
  275. package/dist/apps/control-plane/cli/tooling.js +24 -0
  276. package/dist/apps/control-plane/cli/tooling.js.map +1 -0
  277. package/dist/apps/control-plane/cli/types.d.ts +31 -0
  278. package/dist/apps/control-plane/cli/types.js +2 -0
  279. package/dist/apps/control-plane/cli/types.js.map +1 -0
  280. package/dist/apps/control-plane/core/collisions.d.ts +39 -0
  281. package/dist/apps/control-plane/core/collisions.js +78 -0
  282. package/dist/apps/control-plane/core/collisions.js.map +1 -0
  283. package/dist/apps/control-plane/core/constants.d.ts +64 -0
  284. package/dist/apps/control-plane/core/constants.js +64 -0
  285. package/dist/apps/control-plane/core/constants.js.map +1 -0
  286. package/dist/apps/control-plane/core/error-codes.d.ts +50 -0
  287. package/dist/apps/control-plane/core/error-codes.js +52 -0
  288. package/dist/apps/control-plane/core/error-codes.js.map +1 -0
  289. package/dist/apps/control-plane/core/frontmatter.d.ts +11 -0
  290. package/dist/apps/control-plane/core/frontmatter.js +30 -0
  291. package/dist/apps/control-plane/core/frontmatter.js.map +1 -0
  292. package/dist/apps/control-plane/core/fs.d.ts +33 -0
  293. package/dist/apps/control-plane/core/fs.js +134 -0
  294. package/dist/apps/control-plane/core/fs.js.map +1 -0
  295. package/dist/apps/control-plane/core/gates.d.ts +88 -0
  296. package/dist/apps/control-plane/core/gates.js +229 -0
  297. package/dist/apps/control-plane/core/gates.js.map +1 -0
  298. package/dist/apps/control-plane/core/git.d.ts +31 -0
  299. package/dist/apps/control-plane/core/git.js +79 -0
  300. package/dist/apps/control-plane/core/git.js.map +1 -0
  301. package/dist/apps/control-plane/core/kernel.d.ts +445 -0
  302. package/dist/apps/control-plane/core/kernel.js +805 -0
  303. package/dist/apps/control-plane/core/kernel.js.map +1 -0
  304. package/dist/apps/control-plane/core/patch.d.ts +23 -0
  305. package/dist/apps/control-plane/core/patch.js +118 -0
  306. package/dist/apps/control-plane/core/patch.js.map +1 -0
  307. package/dist/apps/control-plane/core/path-layout.d.ts +23 -0
  308. package/dist/apps/control-plane/core/path-layout.js +90 -0
  309. package/dist/apps/control-plane/core/path-layout.js.map +1 -0
  310. package/dist/apps/control-plane/core/path-rules.d.ts +13 -0
  311. package/dist/apps/control-plane/core/path-rules.js +52 -0
  312. package/dist/apps/control-plane/core/path-rules.js.map +1 -0
  313. package/dist/apps/control-plane/core/qa-index.d.ts +53 -0
  314. package/dist/apps/control-plane/core/qa-index.js +112 -0
  315. package/dist/apps/control-plane/core/qa-index.js.map +1 -0
  316. package/dist/apps/control-plane/core/response.d.ts +19 -0
  317. package/dist/apps/control-plane/core/response.js +34 -0
  318. package/dist/apps/control-plane/core/response.js.map +1 -0
  319. package/dist/apps/control-plane/core/runtime-sessions.d.ts +19 -0
  320. package/dist/apps/control-plane/core/runtime-sessions.js +2 -0
  321. package/dist/apps/control-plane/core/runtime-sessions.js.map +1 -0
  322. package/dist/apps/control-plane/core/schemas.d.ts +23 -0
  323. package/dist/apps/control-plane/core/schemas.js +80 -0
  324. package/dist/apps/control-plane/core/schemas.js.map +1 -0
  325. package/dist/apps/control-plane/index.d.ts +11 -0
  326. package/dist/apps/control-plane/index.js +9 -0
  327. package/dist/apps/control-plane/index.js.map +1 -0
  328. package/dist/apps/control-plane/interfaces/cli/bootstrap.d.ts +2 -0
  329. package/dist/apps/control-plane/interfaces/cli/bootstrap.js +86 -0
  330. package/dist/apps/control-plane/interfaces/cli/bootstrap.js.map +1 -0
  331. package/dist/apps/control-plane/mcp/kernel-tool-executor.d.ts +14 -0
  332. package/dist/apps/control-plane/mcp/kernel-tool-executor.js +26 -0
  333. package/dist/apps/control-plane/mcp/kernel-tool-executor.js.map +1 -0
  334. package/dist/apps/control-plane/mcp/mcp-server-adapter.d.ts +19 -0
  335. package/dist/apps/control-plane/mcp/mcp-server-adapter.js +55 -0
  336. package/dist/apps/control-plane/mcp/mcp-server-adapter.js.map +1 -0
  337. package/dist/apps/control-plane/mcp/operation-ledger.d.ts +21 -0
  338. package/dist/apps/control-plane/mcp/operation-ledger.js +75 -0
  339. package/dist/apps/control-plane/mcp/operation-ledger.js.map +1 -0
  340. package/dist/apps/control-plane/mcp/protocol-contract.d.ts +8 -0
  341. package/dist/apps/control-plane/mcp/protocol-contract.js +9 -0
  342. package/dist/apps/control-plane/mcp/protocol-contract.js.map +1 -0
  343. package/dist/apps/control-plane/mcp/runtime-factory.d.ts +38 -0
  344. package/dist/apps/control-plane/mcp/runtime-factory.js +71 -0
  345. package/dist/apps/control-plane/mcp/runtime-factory.js.map +1 -0
  346. package/dist/apps/control-plane/mcp/runtime-types.d.ts +40 -0
  347. package/dist/apps/control-plane/mcp/runtime-types.js +2 -0
  348. package/dist/apps/control-plane/mcp/runtime-types.js.map +1 -0
  349. package/dist/apps/control-plane/mcp/token-auth-verifier.d.ts +24 -0
  350. package/dist/apps/control-plane/mcp/token-auth-verifier.js +45 -0
  351. package/dist/apps/control-plane/mcp/token-auth-verifier.js.map +1 -0
  352. package/dist/apps/control-plane/mcp/token-claims-validator.d.ts +9 -0
  353. package/dist/apps/control-plane/mcp/token-claims-validator.js +62 -0
  354. package/dist/apps/control-plane/mcp/token-claims-validator.js.map +1 -0
  355. package/dist/apps/control-plane/mcp/token-codec.d.ts +11 -0
  356. package/dist/apps/control-plane/mcp/token-codec.js +46 -0
  357. package/dist/apps/control-plane/mcp/token-codec.js.map +1 -0
  358. package/dist/apps/control-plane/mcp/tool-authorizer.d.ts +8 -0
  359. package/dist/apps/control-plane/mcp/tool-authorizer.js +36 -0
  360. package/dist/apps/control-plane/mcp/tool-authorizer.js.map +1 -0
  361. package/dist/apps/control-plane/mcp/tool-client.d.ts +30 -0
  362. package/dist/apps/control-plane/mcp/tool-client.js +50 -0
  363. package/dist/apps/control-plane/mcp/tool-client.js.map +1 -0
  364. package/dist/apps/control-plane/mcp/tool-contract-validator.d.ts +29 -0
  365. package/dist/apps/control-plane/mcp/tool-contract-validator.js +61 -0
  366. package/dist/apps/control-plane/mcp/tool-contract-validator.js.map +1 -0
  367. package/dist/apps/control-plane/mcp/tool-registry-loader.d.ts +15 -0
  368. package/dist/apps/control-plane/mcp/tool-registry-loader.js +109 -0
  369. package/dist/apps/control-plane/mcp/tool-registry-loader.js.map +1 -0
  370. package/dist/apps/control-plane/mcp/tool-runtime.d.ts +34 -0
  371. package/dist/apps/control-plane/mcp/tool-runtime.js +252 -0
  372. package/dist/apps/control-plane/mcp/tool-runtime.js.map +1 -0
  373. package/dist/apps/control-plane/mcp/tools-markdown-generator.d.ts +7 -0
  374. package/dist/apps/control-plane/mcp/tools-markdown-generator.js +22 -0
  375. package/dist/apps/control-plane/mcp/tools-markdown-generator.js.map +1 -0
  376. package/dist/apps/control-plane/mcp/transport-types.d.ts +14 -0
  377. package/dist/apps/control-plane/mcp/transport-types.js +2 -0
  378. package/dist/apps/control-plane/mcp/transport-types.js.map +1 -0
  379. package/dist/apps/control-plane/mcp/types.d.ts +2 -0
  380. package/dist/apps/control-plane/mcp/types.js +3 -0
  381. package/dist/apps/control-plane/mcp/types.js.map +1 -0
  382. package/dist/apps/control-plane/providers/providers.d.ts +72 -0
  383. package/dist/apps/control-plane/providers/providers.js +94 -0
  384. package/dist/apps/control-plane/providers/providers.js.map +1 -0
  385. package/dist/apps/control-plane/supervisor/build-wave-executor.d.ts +13 -0
  386. package/dist/apps/control-plane/supervisor/build-wave-executor.js +40 -0
  387. package/dist/apps/control-plane/supervisor/build-wave-executor.js.map +1 -0
  388. package/dist/apps/control-plane/supervisor/lease-heartbeat-service.d.ts +12 -0
  389. package/dist/apps/control-plane/supervisor/lease-heartbeat-service.js +14 -0
  390. package/dist/apps/control-plane/supervisor/lease-heartbeat-service.js.map +1 -0
  391. package/dist/apps/control-plane/supervisor/planning-wave-executor.d.ts +19 -0
  392. package/dist/apps/control-plane/supervisor/planning-wave-executor.js +249 -0
  393. package/dist/apps/control-plane/supervisor/planning-wave-executor.js.map +1 -0
  394. package/dist/apps/control-plane/supervisor/prompt-bundle-loader.d.ts +9 -0
  395. package/dist/apps/control-plane/supervisor/prompt-bundle-loader.js +53 -0
  396. package/dist/apps/control-plane/supervisor/prompt-bundle-loader.js.map +1 -0
  397. package/dist/apps/control-plane/supervisor/qa-wave-executor.d.ts +24 -0
  398. package/dist/apps/control-plane/supervisor/qa-wave-executor.js +70 -0
  399. package/dist/apps/control-plane/supervisor/qa-wave-executor.js.map +1 -0
  400. package/dist/apps/control-plane/supervisor/run-coordinator.d.ts +49 -0
  401. package/dist/apps/control-plane/supervisor/run-coordinator.js +162 -0
  402. package/dist/apps/control-plane/supervisor/run-coordinator.js.map +1 -0
  403. package/dist/apps/control-plane/supervisor/runtime.d.ts +58 -0
  404. package/dist/apps/control-plane/supervisor/runtime.js +270 -0
  405. package/dist/apps/control-plane/supervisor/runtime.js.map +1 -0
  406. package/dist/apps/control-plane/supervisor/session-orchestrator.d.ts +29 -0
  407. package/dist/apps/control-plane/supervisor/session-orchestrator.js +211 -0
  408. package/dist/apps/control-plane/supervisor/session-orchestrator.js.map +1 -0
  409. package/dist/apps/control-plane/supervisor/types.d.ts +148 -0
  410. package/dist/apps/control-plane/supervisor/types.js +2 -0
  411. package/dist/apps/control-plane/supervisor/types.js.map +1 -0
  412. package/dist/apps/control-plane/supervisor/worker-decision-loop.d.ts +37 -0
  413. package/dist/apps/control-plane/supervisor/worker-decision-loop.js +236 -0
  414. package/dist/apps/control-plane/supervisor/worker-decision-loop.js.map +1 -0
  415. package/docker/mcp.Dockerfile +14 -0
  416. package/docker/mcp.compose.yaml +15 -0
  417. package/docker/mcp.entrypoint.sh +17 -0
  418. package/eslint.config.mjs +93 -0
  419. package/example-configurations/README.md +26 -0
  420. package/example-configurations/java/agents.yaml +14 -0
  421. package/example-configurations/java/gates.yaml +29 -0
  422. package/example-configurations/java/policy.yaml +148 -0
  423. package/example-configurations/node/agents.yaml +14 -0
  424. package/example-configurations/node/gates.yaml +32 -0
  425. package/example-configurations/node/policy.yaml +143 -0
  426. package/nx.json +16 -0
  427. package/package.json +39 -0
  428. package/prompts/vitest-testing-standards.instructions.md +204 -0
  429. package/scripts/dev-shell-env.sh +7 -0
  430. package/scripts/nx-safe.mjs +33 -0
  431. package/spec-files/agentic_orchestrator_cli_delete_command_spec.md +310 -0
  432. package/spec-files/agentic_orchestrator_dot_aop_generated_artifacts_spec.md +211 -0
  433. package/spec-files/agentic_orchestrator_mcp_formalization_spec.md +379 -0
  434. package/spec-files/agentic_orchestrator_oop_refactor_spec.md +415 -0
  435. package/spec-files/agentic_orchestrator_single_global_orchestrator_spec.md +265 -0
  436. package/spec-files/agentic_orchestrator_spec.md +1334 -0
  437. package/spec-files/progress.md +452 -0
  438. package/tsconfig.base.json +15 -0
  439. package/tsconfig.json +11 -0
package/apps/control-plane/src/mcp/token-claims-validator.ts ADDED
@@ -0,0 +1,72 @@
1
+ import { ERROR_CODES } from '../core/error-codes.js';
2
+ import { fail } from '../core/response.js';
3
+ import type { VerifiedActorClaims } from './runtime-types.js';
4
+
5
+ function isValidIsoDate(value: string): boolean {
6
+ const parsed = new Date(value);
7
+ return !Number.isNaN(parsed.getTime()) && parsed.toISOString() === value;
8
+ }
9
+
10
+ function claimsValidationError(message: string) {
11
+ return {
12
+ normalizedResponse: fail(ERROR_CODES.UNAUTHENTICATED, message, {
13
+ retryable: false,
14
+ requires_human: true
15
+ })
16
+ };
17
+ }
18
+
19
+ export class TokenClaimsValidator {
20
+ private readonly now: () => Date;
21
+
22
+ constructor(now: () => Date) {
23
+ this.now = now;
24
+ }
25
+
26
+ validate(claims: VerifiedActorClaims, options: { checkExpiry?: boolean } = {}): void {
27
+ const checkExpiry = options.checkExpiry ?? true;
28
+ const requiredStringFields: Array<keyof VerifiedActorClaims> = [
29
+ 'run_id',
30
+ 'session_id',
31
+ 'actor_type',
32
+ 'actor_id',
33
+ 'issued_at',
34
+ 'expires_at'
35
+ ];
36
+ for (const field of requiredStringFields) {
37
+ if (!claims[field] || typeof claims[field] !== 'string') {
38
+ throw claimsValidationError(`missing_claim_${field}`);
39
+ }
40
+ }
41
+
42
+ if (!isValidIsoDate(claims.issued_at) || !isValidIsoDate(claims.expires_at)) {
43
+ throw claimsValidationError('invalid_claim_timestamp');
44
+ }
45
+
46
+ if (claims.actor_type === 'system' && !claims.session_id.startsWith('bootstrap:')) {
47
+ throw {
48
+ normalizedResponse: fail(ERROR_CODES.FORBIDDEN_TOOL_FOR_ROLE, 'system_role_requires_bootstrap_session', {
49
+ retryable: false,
50
+ requires_human: true
51
+ })
52
+ };
53
+ }
54
+
55
+ if (claims.feature_scope != null && !Array.isArray(claims.feature_scope)) {
56
+ throw claimsValidationError('invalid_feature_scope_claim');
57
+ }
58
+
59
+ if (checkExpiry) {
60
+ const nowMs = this.now().getTime();
61
+ const expiresAtMs = new Date(claims.expires_at).getTime();
62
+ if (expiresAtMs < nowMs) {
63
+ throw claimsValidationError('session_token_expired');
64
+ }
65
+ }
66
+ }
67
+
68
+ wrapCodecError(error: unknown): never {
69
+ const message = error instanceof Error ? error.message : String(error);
70
+ throw claimsValidationError(message);
71
+ }
72
+ }
package/apps/control-plane/src/mcp/token-codec.ts ADDED
@@ -0,0 +1,62 @@
1
+ import crypto from 'node:crypto';
2
+ import type { VerifiedActorClaims } from './runtime-types.js';
3
+
4
+ export interface TokenHeader {
5
+ alg: 'HS256';
6
+ typ: 'JWT';
7
+ }
8
+
9
+ function base64urlEncode(input: string): string {
10
+ return Buffer.from(input, 'utf8').toString('base64url');
11
+ }
12
+
13
+ function base64urlDecode(input: string): string {
14
+ return Buffer.from(input, 'base64url').toString('utf8');
15
+ }
16
+
17
+ function sign(secret: string, payload: string): string {
18
+ return crypto.createHmac('sha256', secret).update(payload).digest('base64url');
19
+ }
20
+
21
+ export class SessionTokenCodec {
22
+ private readonly secret: string;
23
+
24
+ constructor(secret: string) {
25
+ this.secret = secret;
26
+ }
27
+
28
+ issue(claims: VerifiedActorClaims): string {
29
+ const header: TokenHeader = { alg: 'HS256', typ: 'JWT' };
30
+ const encodedHeader = base64urlEncode(JSON.stringify(header));
31
+ const encodedClaims = base64urlEncode(JSON.stringify(claims));
32
+ const signature = sign(this.secret, `${encodedHeader}.${encodedClaims}`);
33
+ return `${encodedHeader}.${encodedClaims}.${signature}`;
34
+ }
35
+
36
+ decodeAndVerify(token: string): VerifiedActorClaims {
37
+ if (!token || typeof token !== 'string') {
38
+ throw new Error('missing_session_token');
39
+ }
40
+
41
+ const parts = token.split('.');
42
+ if (parts.length !== 3) {
43
+ throw new Error('invalid_session_token_format');
44
+ }
45
+
46
+ const [encodedHeader, encodedPayload, receivedSignature] = parts;
47
+ const expectedSignature = sign(this.secret, `${encodedHeader}.${encodedPayload}`);
48
+ if (expectedSignature.length !== receivedSignature.length) {
49
+ throw new Error('invalid_session_signature');
50
+ }
51
+ if (!crypto.timingSafeEqual(Buffer.from(expectedSignature), Buffer.from(receivedSignature))) {
52
+ throw new Error('invalid_session_signature');
53
+ }
54
+
55
+ const header = JSON.parse(base64urlDecode(encodedHeader)) as TokenHeader;
56
+ if (header.alg !== 'HS256' || header.typ !== 'JWT') {
57
+ throw new Error('invalid_session_header');
58
+ }
59
+
60
+ return JSON.parse(base64urlDecode(encodedPayload)) as VerifiedActorClaims;
61
+ }
62
+ }
package/apps/control-plane/src/mcp/tool-authorizer.ts ADDED
@@ -0,0 +1,43 @@
1
+ import type { LoadedToolRegistry } from './runtime-types.js';
2
+
3
+ export class ToolAuthorizer {
4
+ readonly policyRbac: Record<string, string[]>;
5
+ readonly registry: LoadedToolRegistry;
6
+
7
+ constructor(policyRbac: Record<string, string[]> = {}, registry: LoadedToolRegistry) {
8
+ this.policyRbac = policyRbac;
9
+ this.registry = registry;
10
+ this.assertPolicyIntersectionIsValid();
11
+ }
12
+
13
+ isAuthorized(actorType: string, toolName: string): boolean {
14
+ const tool = this.registry.toolsByName.get(toolName);
15
+ if (!tool) {
16
+ return false;
17
+ }
18
+
19
+ const policyAllowlist = this.policyRbac[actorType] ?? [];
20
+ const policyAllows = policyAllowlist.includes('*') || policyAllowlist.includes(toolName);
21
+ const registryAllows = tool.supported_roles.includes(actorType);
22
+ return policyAllows && registryAllows;
23
+ }
24
+
25
+ private assertPolicyIntersectionIsValid(): void {
26
+ for (const [role, allowlist] of Object.entries(this.policyRbac)) {
27
+ const effective = allowlist.includes('*')
28
+ ? [...this.registry.toolsByName.keys()]
29
+ : allowlist;
30
+
31
+ for (const toolName of effective) {
32
+ const tool = this.registry.toolsByName.get(toolName);
33
+ if (!tool) {
34
+ throw new Error(`policy_references_unknown_tool:${role}:${toolName}`);
35
+ }
36
+
37
+ if (!tool.supported_roles.includes(role)) {
38
+ throw new Error(`policy_role_outside_supported_roles:${role}:${toolName}`);
39
+ }
40
+ }
41
+ }
42
+ }
43
+ }
package/apps/control-plane/src/mcp/tool-client.ts ADDED
@@ -0,0 +1,78 @@
1
+ import crypto from 'node:crypto';
2
+ import type { ToolResponse } from '../core/response.js';
3
+ import type { VerifiedActorClaims } from './runtime-types.js';
4
+ import type { ToolDescriptor } from './transport-types.js';
5
+ import { type McpServerAdapter } from './mcp-server-adapter.js';
6
+ import { type TokenAuthVerifier } from './token-auth-verifier.js';
7
+ import { type ToolRuntime } from './tool-runtime.js';
8
+
9
+ export interface ToolClientIdentity {
10
+ run_id: string;
11
+ session_id: string;
12
+ actor_type: string;
13
+ actor_id: string;
14
+ feature_scope?: string[];
15
+ }
16
+
17
+ export interface ToolClient {
18
+ listTools(): Promise<ToolDescriptor[]>;
19
+ call(toolName: string, args: Record<string, unknown>, identity: ToolClientIdentity): Promise<ToolResponse>;
20
+ }
21
+
22
+ function toVerifiedClaims(identity: ToolClientIdentity): VerifiedActorClaims {
23
+ const now = new Date();
24
+ return {
25
+ ...identity,
26
+ issued_at: now.toISOString(),
27
+ expires_at: new Date(now.getTime() + 15 * 60 * 1000).toISOString()
28
+ };
29
+ }
30
+
31
+ export class InProcessToolClient implements ToolClient {
32
+ readonly runtime: ToolRuntime;
33
+
34
+ constructor(runtime: ToolRuntime) {
35
+ this.runtime = runtime;
36
+ }
37
+
38
+ async listTools(): Promise<ToolDescriptor[]> {
39
+ return await this.runtime.listTools();
40
+ }
41
+
42
+ async call(toolName: string, args: Record<string, unknown>, identity: ToolClientIdentity): Promise<ToolResponse> {
43
+ return await this.runtime.callTool(toolName, args, toVerifiedClaims(identity));
44
+ }
45
+ }
46
+
47
+ export class McpToolClient implements ToolClient {
48
+ readonly adapter: McpServerAdapter;
49
+ readonly authVerifier: TokenAuthVerifier;
50
+
51
+ constructor(adapter: McpServerAdapter, authVerifier: TokenAuthVerifier) {
52
+ this.adapter = adapter;
53
+ this.authVerifier = authVerifier;
54
+ }
55
+
56
+ async listTools(): Promise<ToolDescriptor[]> {
57
+ const response = await this.adapter.toolsList();
58
+ return response.tools;
59
+ }
60
+
61
+ async call(toolName: string, args: Record<string, unknown>, identity: ToolClientIdentity): Promise<ToolResponse> {
62
+ const token = this.authVerifier.issueToken(identity);
63
+ return await this.adapter.toolsCall({
64
+ name: toolName,
65
+ arguments: args,
66
+ session_token: token
67
+ });
68
+ }
69
+ }
70
+
71
+ export function createOperationId(toolName: string, featureId?: string): string {
72
+ const parts = [toolName.replace(/[^a-zA-Z0-9]/g, '_')];
73
+ if (featureId) {
74
+ parts.push(featureId.replace(/[^a-zA-Z0-9_-]/g, '_'));
75
+ }
76
+ parts.push(crypto.randomUUID());
77
+ return parts.join('__');
78
+ }
package/apps/control-plane/src/mcp/tool-contract-validator.ts ADDED
@@ -0,0 +1,83 @@
1
+ import path from 'node:path';
2
+ import Ajv2020Import from 'ajv/dist/2020.js';
3
+ import type { ErrorObject, ValidateFunction } from 'ajv';
4
+ import type { LoadedToolRegistry, ToolCatalogEntry } from './runtime-types.js';
5
+ import { type ToolRegistryLoader } from './tool-registry-loader.js';
6
+
7
+ interface AjvInstance {
8
+ compile(schema: Record<string, unknown>): ValidateFunction;
9
+ }
10
+
11
+ function createAjvInstance(): AjvInstance {
12
+ const Ajv2020Ctor = Ajv2020Import as unknown as new (
13
+ options?: Record<string, unknown>
14
+ ) => AjvInstance;
15
+ return new Ajv2020Ctor({ allErrors: true, strict: false });
16
+ }
17
+
18
+ export class ToolContractValidator {
19
+ readonly loader: ToolRegistryLoader;
20
+ readonly registry: LoadedToolRegistry;
21
+ readonly ajv: AjvInstance;
22
+ readonly validators: Map<string, ValidateFunction>;
23
+ readonly errorsValidator: ValidateFunction;
24
+
25
+ private constructor(
26
+ loader: ToolRegistryLoader,
27
+ registry: LoadedToolRegistry,
28
+ ajv: AjvInstance,
29
+ errorsValidator: ValidateFunction
30
+ ) {
31
+ this.loader = loader;
32
+ this.registry = registry;
33
+ this.ajv = ajv;
34
+ this.validators = new Map();
35
+ this.errorsValidator = errorsValidator;
36
+ }
37
+
38
+ static async create(loader: ToolRegistryLoader, registry: LoadedToolRegistry): Promise<ToolContractValidator> {
39
+ const ajv = createAjvInstance();
40
+ const errorsSchema = await loader.readErrorsSchema();
41
+ const errorsValidator = ajv.compile(errorsSchema);
42
+ return new ToolContractValidator(loader, registry, ajv, errorsValidator);
43
+ }
44
+
45
+ async validateInput(tool: ToolCatalogEntry, payload: unknown): Promise<{ valid: boolean; errors: ErrorObject[] }> {
46
+ const validator = await this.getOrCompile(tool.input_schema_ref);
47
+ const valid = validator(payload);
48
+ return {
49
+ valid: Boolean(valid),
50
+ errors: valid ? [] : ((validator.errors ?? []))
51
+ };
52
+ }
53
+
54
+ async validateOutput(tool: ToolCatalogEntry, payload: unknown): Promise<{ valid: boolean; errors: ErrorObject[] }> {
55
+ const validator = await this.getOrCompile(tool.output_schema_ref);
56
+ const valid = validator(payload);
57
+ return {
58
+ valid: Boolean(valid),
59
+ errors: valid ? [] : ((validator.errors ?? []))
60
+ };
61
+ }
62
+
63
+ validateErrorEnvelope(response: unknown): { valid: boolean; errors: ErrorObject[] } {
64
+ const valid = this.errorsValidator(response);
65
+ return {
66
+ valid: Boolean(valid),
67
+ errors: valid ? [] : ((this.errorsValidator.errors ?? []))
68
+ };
69
+ }
70
+
71
+ private async getOrCompile(schemaRef: string): Promise<ValidateFunction> {
72
+ const absolute = path.resolve(this.registry.toolsRoot, schemaRef);
73
+ const existing = this.validators.get(absolute);
74
+ if (existing) {
75
+ return existing;
76
+ }
77
+
78
+ const schema = await this.loader.readSchemaByRef(schemaRef);
79
+ const validator = this.ajv.compile(schema);
80
+ this.validators.set(absolute, validator);
81
+ return validator;
82
+ }
83
+ }
package/apps/control-plane/src/mcp/tool-registry-loader.ts ADDED
@@ -0,0 +1,135 @@
1
+ import fs from 'node:fs/promises';
2
+ import path from 'node:path';
3
+ import { pathExists } from '../core/fs.js';
4
+ import { MCP_PROTOCOL_PIN, REQUIRED_MCP_TRANSPORTS } from './protocol-contract.js';
5
+ import type { LoadedToolRegistry, ProtocolContract, ToolCatalog, ToolCatalogEntry } from './runtime-types.js';
6
+
7
+ export class ToolRegistryLoader {
8
+ readonly repoRoot: string;
9
+
10
+ constructor(repoRoot: string) {
11
+ this.repoRoot = repoRoot;
12
+ }
13
+
14
+ get toolsRoot(): string {
15
+ return path.join(this.repoRoot, 'agentic', 'orchestrator', 'tools');
16
+ }
17
+
18
+ get catalogPath(): string {
19
+ return path.join(this.toolsRoot, 'catalog.json');
20
+ }
21
+
22
+ get protocolPath(): string {
23
+ return path.join(this.toolsRoot, 'protocol.json');
24
+ }
25
+
26
+ get errorsSchemaPath(): string {
27
+ return path.join(this.toolsRoot, 'errors.schema.json');
28
+ }
29
+
30
+ resolveSchemaPath(schemaRef: string): string {
31
+ return path.resolve(this.toolsRoot, schemaRef);
32
+ }
33
+
34
+ async load(): Promise<LoadedToolRegistry> {
35
+ const catalog = await this.readCatalog();
36
+ const protocol = await this.readProtocol();
37
+
38
+ const toolsByName = new Map<string, ToolCatalogEntry>();
39
+ const toolsByHandlerId = new Map<string, ToolCatalogEntry>();
40
+
41
+ for (const tool of catalog.tools) {
42
+ if (toolsByName.has(tool.name)) {
43
+ throw new Error(`registry_duplicate_tool_name:${tool.name}`);
44
+ }
45
+ if (toolsByHandlerId.has(tool.handler_id)) {
46
+ throw new Error(`registry_duplicate_handler_id:${tool.handler_id}`);
47
+ }
48
+
49
+ if (!Array.isArray(tool.supported_roles) || tool.supported_roles.length === 0) {
50
+ throw new Error(`registry_supported_roles_missing:${tool.name}`);
51
+ }
52
+ if (tool.mutating && tool.requires_operation_id !== true) {
53
+ throw new Error(`registry_mutating_requires_operation_id:${tool.name}`);
54
+ }
55
+
56
+ const inputSchemaPath = this.resolveSchemaPath(tool.input_schema_ref);
57
+ const outputSchemaPath = this.resolveSchemaPath(tool.output_schema_ref);
58
+ if (!(await pathExists(inputSchemaPath))) {
59
+ throw new Error(`registry_missing_input_schema:${tool.name}:${tool.input_schema_ref}`);
60
+ }
61
+ if (!(await pathExists(outputSchemaPath))) {
62
+ throw new Error(`registry_missing_output_schema:${tool.name}:${tool.output_schema_ref}`);
63
+ }
64
+
65
+ toolsByName.set(tool.name, tool);
66
+ toolsByHandlerId.set(tool.handler_id, tool);
67
+ }
68
+
69
+ if (!(await pathExists(this.errorsSchemaPath))) {
70
+ throw new Error('registry_missing_errors_schema');
71
+ }
72
+
73
+ return {
74
+ toolsRoot: this.toolsRoot,
75
+ catalogPath: this.catalogPath,
76
+ protocolPath: this.protocolPath,
77
+ catalog,
78
+ protocol,
79
+ toolsByName,
80
+ toolsByHandlerId
81
+ };
82
+ }
83
+
84
+ async readSchemaByRef(schemaRef: string): Promise<Record<string, unknown>> {
85
+ const absolute = this.resolveSchemaPath(schemaRef);
86
+ const text = await fs.readFile(absolute, 'utf8');
87
+ return JSON.parse(text) as Record<string, unknown>;
88
+ }
89
+
90
+ async readErrorsSchema(): Promise<Record<string, unknown>> {
91
+ const text = await fs.readFile(this.errorsSchemaPath, 'utf8');
92
+ return JSON.parse(text) as Record<string, unknown>;
93
+ }
94
+
95
+ private async readCatalog(): Promise<ToolCatalog> {
96
+ const text = await fs.readFile(this.catalogPath, 'utf8');
97
+ const parsed = JSON.parse(text) as ToolCatalog;
98
+
99
+ if (!parsed || typeof parsed !== 'object' || !Array.isArray(parsed.tools)) {
100
+ throw new Error('registry_invalid_catalog_shape');
101
+ }
102
+
103
+ return parsed;
104
+ }
105
+
106
+ private async readProtocol(): Promise<ProtocolContract> {
107
+ const text = await fs.readFile(this.protocolPath, 'utf8');
108
+ const parsed = JSON.parse(text) as ProtocolContract;
109
+
110
+ if (!parsed || typeof parsed !== 'object') {
111
+ throw new Error('registry_invalid_protocol_shape');
112
+ }
113
+ if (!parsed.mcp_protocol_version || !parsed.sdk?.package || !parsed.sdk?.version) {
114
+ throw new Error('registry_invalid_protocol_fields');
115
+ }
116
+ if (!Array.isArray(parsed.enabled_transports) || parsed.enabled_transports.length === 0) {
117
+ throw new Error('registry_invalid_protocol_transports');
118
+ }
119
+ if (
120
+ parsed.mcp_protocol_version !== MCP_PROTOCOL_PIN.mcp_protocol_version ||
121
+ parsed.sdk.package !== MCP_PROTOCOL_PIN.sdk.package ||
122
+ parsed.sdk.version !== MCP_PROTOCOL_PIN.sdk.version
123
+ ) {
124
+ throw new Error('registry_protocol_pin_mismatch');
125
+ }
126
+ for (const requiredTransport of REQUIRED_MCP_TRANSPORTS) {
127
+ if (!parsed.enabled_transports.includes(requiredTransport)) {
128
+ throw new Error(`registry_missing_required_transport:${requiredTransport}`);
129
+ }
130
+ }
131
+
132
+ return parsed;
133
+ }
134
+
135
+ }