agentplane 0.2.13 → 0.2.14

package/README.md

@@ -24,6 +24,9 @@ agentplane init
 agentplane quickstart
 ```
 
+`agentplane init` is human-oriented: interactive onboarding includes workflow/backend selection,
+execution profile selection (`conservative|balanced|aggressive`), approval toggles, and optional recipes.
+
 Create your first task and run the workflow:
 
 ```bash
@@ -45,6 +48,7 @@ npx agentplane quickstart
 - `AGENTS.md` is created if missing and defines the policy/guardrails.
 - Built-in agent definitions are copied into `.agentplane/agents/`.
 - Optional recipes can install additional agents when you run `agentplane recipes install ...`.
+- `.agentplane/config.json` stores execution defaults under `execution` (profile, reasoning effort, tool budget, safety gates).
 
 ## Upgrade review reports
 

package/assets/AGENTS.md

@@ -107,6 +107,23 @@ Outside-repo includes (non-exhaustive):
 - modifying keychains, ssh keys, credential stores
 - any tool that mutates outside-repo state
 
+## Execution Profile
+
+`execution` settings in `.agentplane/config.json` define operational behavior defaults for agents:
+
+- `profile`: `conservative` / `balanced` / `aggressive`
+- `reasoning_effort`: `low` / `medium` / `high`
+- `tool_budget`: `{ discovery, implementation, verification }`
+- `stop_conditions`: conditions that force a stop/re-plan/escalation
+- `handoff_conditions`: conditions that trigger handoff to another role
+- `unsafe_actions_requiring_explicit_user_ok`: actions that require explicit user confirmation
+
+Scope and precedence:
+
+- These settings tune execution style only (autonomy, effort, budget, stop/handoff heuristics).
+- They MUST NOT override role authority boundaries, source-of-truth order, approval gates, or hard invariants defined in this `AGENTS.md`.
+- If `execution` config conflicts with policy, `AGENTS.md` policy wins.
+
 ## Framework Upgrade / Prompt Merge
 
 `agentplane upgrade` is responsible for mechanical upgrades and safe merges. When an upgrade run indicates a potential semantic conflict (for example, both local and incoming changes exist relative to a baseline, or a baseline is missing but files differ), treat the result as requiring a meaning-level review.

package/dist/cli/run-cli/commands/init/ui.d.ts

@@ -0,0 +1,3 @@
+export declare function renderInitWelcome(): string;
+export declare function renderInitSection(title: string, description: string): string;
+//# sourceMappingURL=ui.d.ts.map

package/dist/cli/run-cli/commands/init/ui.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ui.d.ts","sourceRoot":"","sources":["../../../../../src/cli/run-cli/commands/init/ui.ts"],"names":[],"mappings":"AAsBA,wBAAgB,iBAAiB,IAAI,MAAM,CAa1C;AAED,wBAAgB,iBAAiB,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,MAAM,CAG5E"}

package/dist/cli/run-cli/commands/init/ui.js

@@ -0,0 +1,38 @@
+function useColor() {
+    return process.stdout.isTTY === true && (process.env.TERM ?? "dumb") !== "dumb";
+}
+function color(text, code) {
+    if (!useColor())
+        return text;
+    return `\u001B[${code}m${text}\u001B[0m`;
+}
+function padLine(line, width) {
+    if (line.length >= width)
+        return line;
+    return `${line}${" ".repeat(width - line.length)}`;
+}
+function box(lines) {
+    const width = Math.max(...lines.map((line) => line.length), 0);
+    const top = `┌${"─".repeat(width + 2)}┐`;
+    const body = lines.map((line) => `│ ${padLine(line, width)} │`);
+    const bottom = `└${"─".repeat(width + 2)}┘`;
+    return [top, ...body, bottom].join("\n");
+}
+export function renderInitWelcome() {
+    const logo = [
+        "   ___   ____ ____ _   _ _____ ",
+        "  / _ | / __// __// | / / ___/ ",
+        " / __ |/ _/ / _/ /  |/ / /__   ",
+        String.raw `/_/ |_|\__/ /___//_/|_/\___/   `,
+        "          agent/plane          ",
+    ].map((line) => color(line, "36"));
+    const intro = [
+        color("Bootstrap an agent-first workflow in this repository.", "1"),
+        "This interactive setup runs once; daily work is executed by agents.",
+    ];
+    return `${logo.join("\n")}\n\n${box(intro)}\n`;
+}
+export function renderInitSection(title, description) {
+    const header = color(`[${title}]`, "33");
+    return `${header}\n${description}\n`;
+}

package/dist/cli/run-cli/commands/init/write-config.d.ts

@@ -1,3 +1,15 @@
+export type InitExecutionConfig = {
+    profile: "conservative" | "balanced" | "aggressive";
+    reasoning_effort: "low" | "medium" | "high";
+    tool_budget: {
+        discovery: number;
+        implementation: number;
+        verification: number;
+    };
+    stop_conditions: string[];
+    handoff_conditions: string[];
+    unsafe_actions_requiring_explicit_user_ok: string[];
+};
 export declare function ensureAgentplaneDirs(agentplaneDir: string): Promise<void>;
 export declare function writeInitConfig(opts: {
     agentplaneDir: string;
@@ -7,6 +19,7 @@ export declare function writeInitConfig(opts: {
     requirePlanApproval: boolean;
     requireNetworkApproval: boolean;
     requireVerifyApproval: boolean;
+    execution: InitExecutionConfig;
 }): Promise<void>;
 export declare function writeBackendStubs(opts: {
     localBackendPath: string;

package/dist/cli/run-cli/commands/init/write-config.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"write-config.d.ts","sourceRoot":"","sources":["../../../../../src/cli/run-cli/commands/init/write-config.ts"],"names":[],"mappings":"AAOA,wBAAsB,oBAAoB,CAAC,aAAa,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAO/E;AAED,wBAAsB,eAAe,CAAC,IAAI,EAAE;IAC1C,aAAa,EAAE,MAAM,CAAC;IACtB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,QAAQ,GAAG,WAAW,CAAC;IACjC,oBAAoB,EAAE,MAAM,CAAC;IAC7B,mBAAmB,EAAE,OAAO,CAAC;IAC7B,sBAAsB,EAAE,OAAO,CAAC;IAChC,qBAAqB,EAAE,OAAO,CAAC;CAChC,GAAG,OAAO,CAAC,IAAI,CAAC,CAgBhB;AAED,wBAAsB,iBAAiB,CAAC,IAAI,EAAE;IAC5C,gBAAgB,EAAE,MAAM,CAAC;IACzB,kBAAkB,EAAE,MAAM,CAAC;CAC5B,GAAG,OAAO,CAAC,IAAI,CAAC,CAmBhB"}
+{"version":3,"file":"write-config.d.ts","sourceRoot":"","sources":["../../../../../src/cli/run-cli/commands/init/write-config.ts"],"names":[],"mappings":"AAOA,MAAM,MAAM,mBAAmB,GAAG;IAChC,OAAO,EAAE,cAAc,GAAG,UAAU,GAAG,YAAY,CAAC;IACpD,gBAAgB,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;IAC5C,WAAW,EAAE;QACX,SAAS,EAAE,MAAM,CAAC;QAClB,cAAc,EAAE,MAAM,CAAC;QACvB,YAAY,EAAE,MAAM,CAAC;KACtB,CAAC;IACF,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,kBAAkB,EAAE,MAAM,EAAE,CAAC;IAC7B,yCAAyC,EAAE,MAAM,EAAE,CAAC;CACrD,CAAC;AAEF,wBAAsB,oBAAoB,CAAC,aAAa,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAO/E;AAED,wBAAsB,eAAe,CAAC,IAAI,EAAE;IAC1C,aAAa,EAAE,MAAM,CAAC;IACtB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,QAAQ,GAAG,WAAW,CAAC;IACjC,oBAAoB,EAAE,MAAM,CAAC;IAC7B,mBAAmB,EAAE,OAAO,CAAC;IAC7B,sBAAsB,EAAE,OAAO,CAAC;IAChC,qBAAqB,EAAE,OAAO,CAAC;IAC/B,SAAS,EAAE,mBAAmB,CAAC;CAChC,GAAG,OAAO,CAAC,IAAI,CAAC,CAiBhB;AAED,wBAAsB,iBAAiB,CAAC,IAAI,EAAE;IAC5C,gBAAgB,EAAE,MAAM,CAAC;IACzB,kBAAkB,EAAE,MAAM,CAAC;CAC5B,GAAG,OAAO,CAAC,IAAI,CAAC,CAmBhB"}

package/dist/cli/run-cli/commands/init/write-config.js

@@ -17,6 +17,7 @@ export async function writeInitConfig(opts) {
     setByDottedKey(rawConfig, "agents.approvals.require_plan", String(opts.requirePlanApproval));
     setByDottedKey(rawConfig, "agents.approvals.require_network", String(opts.requireNetworkApproval));
     setByDottedKey(rawConfig, "agents.approvals.require_verify", String(opts.requireVerifyApproval));
+    setByDottedKey(rawConfig, "execution", JSON.stringify(opts.execution));
     await saveConfig(opts.agentplaneDir, rawConfig);
 }
 export async function writeBackendStubs(opts) {

package/dist/cli/run-cli/commands/init.d.ts

@@ -1,4 +1,5 @@
 import type { CommandHandler, CommandSpec } from "../../spec/spec.js";
+type ExecutionProfile = "conservative" | "balanced" | "aggressive";
 type InitFlags = {
     ide?: "codex" | "cursor" | "windsurf";
     workflow?: "direct" | "branch_pr";
@@ -8,6 +9,8 @@ type InitFlags = {
     requirePlanApproval?: boolean;
     requireNetworkApproval?: boolean;
     requireVerifyApproval?: boolean;
+    executionProfile?: ExecutionProfile;
+    strictUnsafeConfirm?: boolean;
     recipes?: string[];
     force?: boolean;
     backup?: boolean;

package/dist/cli/run-cli/commands/init.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"init.d.ts","sourceRoot":"","sources":["../../../../src/cli/run-cli/commands/init.ts"],"names":[],"mappings":"AAWA,OAAO,KAAK,EAAE,cAAc,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AAetE,KAAK,SAAS,GAAG;IACf,GAAG,CAAC,EAAE,OAAO,GAAG,QAAQ,GAAG,UAAU,CAAC;IACtC,QAAQ,CAAC,EAAE,QAAQ,GAAG,WAAW,CAAC;IAClC,OAAO,CAAC,EAAE,OAAO,GAAG,SAAS,CAAC;IAC9B,KAAK,CAAC,EAAE,OAAO,CAAC;IAChB,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAC9B,sBAAsB,CAAC,EAAE,OAAO,CAAC;IACjC,qBAAqB,CAAC,EAAE,OAAO,CAAC;IAChC,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,KAAK,CAAC,EAAE,OAAO,CAAC;IAChB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,GAAG,EAAE,OAAO,CAAC;CACd,CAAC;AAsBF,KAAK,UAAU,GAAG,IAAI,CAAC,SAAS,EAAE,KAAK,CAAC,GAAG;IAAE,GAAG,EAAE,OAAO,CAAA;CAAE,CAAC;AAE5D,eAAO,MAAM,QAAQ,EAAE,WAAW,CAAC,UAAU,CAsJ5C,CAAC;AAEF,eAAO,MAAM,OAAO,EAAE,cAAc,CAAC,UAAU,CACmB,CAAC"}
+{"version":3,"file":"init.d.ts","sourceRoot":"","sources":["../../../../src/cli/run-cli/commands/init.ts"],"names":[],"mappings":"AAWA,OAAO,KAAK,EAAE,cAAc,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AAqBtE,KAAK,gBAAgB,GAAG,cAAc,GAAG,UAAU,GAAG,YAAY,CAAC;AAuEnE,KAAK,SAAS,GAAG;IACf,GAAG,CAAC,EAAE,OAAO,GAAG,QAAQ,GAAG,UAAU,CAAC;IACtC,QAAQ,CAAC,EAAE,QAAQ,GAAG,WAAW,CAAC;IAClC,OAAO,CAAC,EAAE,OAAO,GAAG,SAAS,CAAC;IAC9B,KAAK,CAAC,EAAE,OAAO,CAAC;IAChB,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAC9B,sBAAsB,CAAC,EAAE,OAAO,CAAC;IACjC,qBAAqB,CAAC,EAAE,OAAO,CAAC;IAChC,gBAAgB,CAAC,EAAE,gBAAgB,CAAC;IACpC,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAC9B,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,KAAK,CAAC,EAAE,OAAO,CAAC;IAChB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,GAAG,EAAE,OAAO,CAAC;CACd,CAAC;AAsBF,KAAK,UAAU,GAAG,IAAI,CAAC,SAAS,EAAE,KAAK,CAAC,GAAG;IAAE,GAAG,EAAE,OAAO,CAAA;CAAE,CAAC;AAE5D,eAAO,MAAM,QAAQ,EAAE,WAAW,CAAC,UAAU,CA2K5C,CAAC;AAEF,eAAO,MAAM,OAAO,EAAE,cAAc,CAAC,UAAU,CACmB,CAAC"}

package/dist/cli/run-cli/commands/init.js

@@ -13,9 +13,75 @@ import { collectInitConflicts, handleInitConflicts } from "./init/conflicts.js";
 import { ensureGitRoot } from "./init/git.js";
 import { maybeSyncIde } from "./init/ide-sync.js";
 import { maybeInstallBundledRecipes } from "./init/recipes.js";
-import { ensureAgentplaneDirs, writeBackendStubs, writeInitConfig } from "./init/write-config.js";
+import { ensureAgentplaneDirs, writeBackendStubs, writeInitConfig, } from "./init/write-config.js";
 import { ensureAgentsFiles } from "./init/write-agents.js";
 import { ensureInitGitignore } from "./init/write-gitignore.js";
+import { renderInitSection, renderInitWelcome } from "./init/ui.js";
+function buildInitExecutionProfile(profile, opts) {
+    const shared = {
+        stop_conditions: [
+            "Missing required input blocks correctness.",
+            "Requested action expands scope or risk beyond approved plan.",
+            "Verification fails and remediation changes scope.",
+        ],
+        handoff_conditions: [
+            "Role boundary reached (for example CODER -> TESTER/REVIEWER).",
+            "Task depends_on prerequisites are incomplete.",
+            "Specialized agent is required.",
+        ],
+    };
+    const byProfile = {
+        conservative: {
+            profile: "conservative",
+            reasoning_effort: "high",
+            tool_budget: { discovery: 4, implementation: 8, verification: 8 },
+            ...shared,
+            unsafe_actions_requiring_explicit_user_ok: [
+                "Destructive git history operations.",
+                "Outside-repo read/write.",
+                "Credential, keychain, or SSH material changes.",
+                "Network actions when approvals are enabled.",
+            ],
+        },
+        balanced: {
+            profile: "balanced",
+            reasoning_effort: "medium",
+            tool_budget: { discovery: 6, implementation: 10, verification: 6 },
+            ...shared,
+            unsafe_actions_requiring_explicit_user_ok: [
+                "Destructive git history operations.",
+                "Outside-repo read/write.",
+                "Credential, keychain, or SSH material changes.",
+            ],
+        },
+        aggressive: {
+            profile: "aggressive",
+            reasoning_effort: "low",
+            tool_budget: { discovery: 10, implementation: 16, verification: 8 },
+            stop_conditions: [
+                "Requested action expands scope or risk beyond approved plan.",
+                "Verification fails and remediation changes scope.",
+            ],
+            handoff_conditions: [
+                "Role boundary reached (for example CODER -> TESTER/REVIEWER).",
+                "Specialized agent is required.",
+            ],
+            unsafe_actions_requiring_explicit_user_ok: [
+                "Destructive git history operations.",
+                "Outside-repo read/write.",
+                "Credential, keychain, or SSH material changes.",
+            ],
+        },
+    };
+    const resolved = structuredClone(byProfile[profile]);
+    if (opts?.strictUnsafeConfirm === true) {
+        const extra = "Network actions when approvals are disabled.";
+        if (!resolved.unsafe_actions_requiring_explicit_user_ok.includes(extra)) {
+            resolved.unsafe_actions_requiring_explicit_user_ok.push(extra);
+        }
+    }
+    return resolved;
+}
 function parseBooleanValueForInit(flag, value) {
     const normalized = value.trim().toLowerCase();
     if (["1", "true", "yes", "y", "on"].includes(normalized))
@@ -90,6 +156,19 @@ export const initSpec = {
             valueHint: "<true|false>",
             description: "Require explicit approval before recording verification.",
         },
+        {
+            kind: "string",
+            name: "execution-profile",
+            valueHint: "<conservative|balanced|aggressive>",
+            choices: ["conservative", "balanced", "aggressive"],
+            description: "Execution profile preset controlling autonomy, reasoning, and tool budgets.",
+        },
+        {
+            kind: "string",
+            name: "strict-unsafe-confirm",
+            valueHint: "<true|false>",
+            description: "Require strict explicit confirmations for additional unsafe actions.",
+        },
         {
             kind: "string",
             name: "recipes",
@@ -165,6 +244,10 @@ export const initSpec = {
             requireVerifyApproval: requireVerifyRaw === undefined
                 ? undefined
                 : parseBooleanValueForInit("--require-verify-approval", requireVerifyRaw),
+            executionProfile: raw.opts["execution-profile"],
+            strictUnsafeConfirm: raw.opts["strict-unsafe-confirm"] === undefined
+                ? undefined
+                : parseBooleanValueForInit("--strict-unsafe-confirm", String(raw.opts["strict-unsafe-confirm"])),
             recipes: recipesRaw === undefined ? undefined : parseRecipesSelectionForInit(recipesRaw),
             force: raw.opts.force === true,
             backup: raw.opts.backup === true,
@@ -194,6 +277,8 @@ async function cmdInit(opts) {
         requirePlanApproval: true,
         requireNetworkApproval: true,
         requireVerifyApproval: true,
+        executionProfile: "balanced",
+        strictUnsafeConfirm: false,
     };
     let ide = flags.ide ?? defaults.ide;
     let workflow = flags.workflow ?? defaults.workflow;
@@ -203,6 +288,8 @@ async function cmdInit(opts) {
     let requirePlanApproval = flags.requirePlanApproval ?? defaults.requirePlanApproval;
     let requireNetworkApproval = flags.requireNetworkApproval ?? defaults.requireNetworkApproval;
     let requireVerifyApproval = flags.requireVerifyApproval ?? defaults.requireVerifyApproval;
+    let executionProfile = flags.executionProfile ?? defaults.executionProfile;
+    let strictUnsafeConfirm = flags.strictUnsafeConfirm ?? defaults.strictUnsafeConfirm;
     const isInteractive = process.stdin.isTTY && !flags.yes;
     if (!process.stdin.isTTY &&
         !flags.yes &&
@@ -218,27 +305,38 @@ async function cmdInit(opts) {
         });
     }
     if (isInteractive) {
+        process.stdout.write(renderInitWelcome());
+        process.stdout.write(renderInitSection("Workflow", "Choose how branches/backends/approvals should be initialized for this repository."));
         ide = flags.ide ?? defaults.ide;
         if (!flags.workflow) {
-            const choice = await promptChoice("Select workflow mode", ["direct", "branch_pr"], workflow);
+            const choice = await promptChoice("Workflow mode", ["direct", "branch_pr"], workflow);
             workflow = choice === "branch_pr" ? "branch_pr" : "direct";
         }
         if (!flags.backend) {
-            const choice = await promptChoice("Select task backend", ["local", "redmine"], backend);
+            const choice = await promptChoice("Task backend", ["local", "redmine"], backend);
             backend = choice === "redmine" ? "redmine" : "local";
         }
         if (flags.hooks === undefined) {
-            hooks = await promptYesNo("Install git hooks?", hooks);
+            hooks = await promptYesNo("Install managed git hooks now?", hooks);
+        }
+        process.stdout.write(renderInitSection("Execution Profile", "Set default autonomy/effort for agents. You can change this later in config."));
+        if (!flags.executionProfile) {
+            executionProfile = (await promptChoice("Execution profile", ["conservative", "balanced", "aggressive"], executionProfile));
+        }
+        if (flags.strictUnsafeConfirm === undefined) {
+            strictUnsafeConfirm = await promptYesNo("Require strict explicit confirmation for extra unsafe actions?", strictUnsafeConfirm);
         }
+        process.stdout.write(renderInitSection("Approvals", "Control whether plan/network/verification actions require explicit approval by default."));
         if (flags.requirePlanApproval === undefined) {
-            requirePlanApproval = await promptYesNo("Require plan approval?", requirePlanApproval);
+            requirePlanApproval = await promptYesNo("Require plan approval before work starts?", requirePlanApproval);
         }
         if (flags.requireNetworkApproval === undefined) {
-            requireNetworkApproval = await promptYesNo("Require explicit approval for network access?", requireNetworkApproval);
+            requireNetworkApproval = await promptYesNo("Require explicit approval for network actions?", requireNetworkApproval);
         }
         if (flags.requireVerifyApproval === undefined) {
-            requireVerifyApproval = await promptYesNo("Require explicit approval for verification?", requireVerifyApproval);
+            requireVerifyApproval = await promptYesNo("Require explicit approval before recording verification?", requireVerifyApproval);
         }
+        process.stdout.write(renderInitSection("Recipes", "Optional: install recipe packs now (comma-separated IDs) or choose none."));
         if (!flags.recipes) {
             process.stdout.write(`${renderBundledRecipesHint()}\n`);
             const answer = await promptInput("Install optional recipes (comma separated, or none): ");
@@ -259,6 +357,8 @@ async function cmdInit(opts) {
         requirePlanApproval = flags.requirePlanApproval ?? defaults.requirePlanApproval;
         requireNetworkApproval = flags.requireNetworkApproval ?? defaults.requireNetworkApproval;
         requireVerifyApproval = flags.requireVerifyApproval ?? defaults.requireVerifyApproval;
+        executionProfile = flags.executionProfile ?? defaults.executionProfile;
+        strictUnsafeConfirm = flags.strictUnsafeConfirm ?? defaults.strictUnsafeConfirm;
     }
     validateBundledRecipesSelection(recipes);
     try {
@@ -295,6 +395,7 @@ async function cmdInit(opts) {
             force: flags.force === true,
         });
         await ensureAgentplaneDirs(resolved.agentplaneDir);
+        const execution = buildInitExecutionProfile(executionProfile, { strictUnsafeConfirm });
         await writeInitConfig({
             agentplaneDir: resolved.agentplaneDir,
             gitRoot: resolved.gitRoot,
@@ -303,6 +404,7 @@ async function cmdInit(opts) {
             requirePlanApproval,
             requireNetworkApproval,
             requireVerifyApproval,
+            execution,
         });
         await writeBackendStubs({ localBackendPath, redmineBackendPath });
         const { installPaths } = await ensureAgentsFiles({

package/dist/commands/task/set-status.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"set-status.d.ts","sourceRoot":"","sources":["../../../src/commands/task/set-status.ts"],"names":[],"mappings":"AAOA,OAAO,EAKL,KAAK,cAAc,EACpB,MAAM,2BAA2B,CAAC;AAcnC,wBAAsB,gBAAgB,CAAC,IAAI,EAAE;IAC3C,GAAG,CAAC,EAAE,cAAc,CAAC;IACrB,GAAG,EAAE,MAAM,CAAC;IACZ,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,OAAO,CAAC;IACf,iBAAiB,EAAE,OAAO,CAAC;IAC3B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,eAAe,EAAE,OAAO,CAAC;IACzB,gBAAgB,EAAE,OAAO,CAAC;IAC1B,kBAAkB,EAAE,OAAO,CAAC;IAC5B,mBAAmB,EAAE,OAAO,CAAC;IAC7B,KAAK,EAAE,OAAO,CAAC;CAChB,GAAG,OAAO,CAAC,MAAM,CAAC,CAkJlB"}
+{"version":3,"file":"set-status.d.ts","sourceRoot":"","sources":["../../../src/commands/task/set-status.ts"],"names":[],"mappings":"AAOA,OAAO,EAKL,KAAK,cAAc,EACpB,MAAM,2BAA2B,CAAC;AAcnC,wBAAsB,gBAAgB,CAAC,IAAI,EAAE;IAC3C,GAAG,CAAC,EAAE,cAAc,CAAC;IACrB,GAAG,EAAE,MAAM,CAAC;IACZ,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,OAAO,CAAC;IACf,iBAAiB,EAAE,OAAO,CAAC;IAC3B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,eAAe,EAAE,OAAO,CAAC;IACzB,gBAAgB,EAAE,OAAO,CAAC;IAC1B,kBAAkB,EAAE,OAAO,CAAC;IAC5B,mBAAmB,EAAE,OAAO,CAAC;IAC7B,KAAK,EAAE,OAAO,CAAC;CAChB,GAAG,OAAO,CAAC,MAAM,CAAC,CAiKlB"}

package/dist/commands/task/set-status.js

@@ -26,6 +26,16 @@ export async function cmdTaskSetStatus(opts) {
         const ctx = opts.ctx ??
             (await loadCommandContext({ cwd: opts.cwd, rootOverride: opts.rootOverride ?? null }));
         const config = ctx.config;
+        const executionProfile = String(config.execution?.profile ?? "balanced").toLowerCase();
+        if (opts.force &&
+            executionProfile === "conservative" &&
+            process.env.AGENTPLANE_EXECUTION_FORCE_OK !== "1") {
+            throw new CliError({
+                exitCode: 2,
+                code: "E_USAGE",
+                message: "Conservative execution profile blocks --force by default. Set AGENTPLANE_EXECUTION_FORCE_OK=1 to override.",
+            });
+        }
         const resolved = ctx.resolvedProject;
         const useStore = backendIsLocalFileBackend(ctx);
         const store = useStore ? getTaskStore(ctx) : null;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "agentplane",
-  "version": "0.2.13",
+  "version": "0.2.14",
   "description": "Agent Plane CLI for task workflows, recipes, and project automation.",
   "keywords": [
     "agentplane",