npm - agentxchain - Versions diffs - 2.155.22 → 2.155.24 - Mend

agentxchain 2.155.22 → 2.155.24

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/README.md +1 -0
package/bin/agentxchain.js +13 -1
package/package.json +1 -1
package/scripts/release-bump.sh +2 -0
package/src/commands/watch.js +613 -7
package/src/lib/intake.js +16 -2
package/src/lib/watch-events.js +312 -0
package/src/lib/watch-listener.js +297 -0

package/README.md CHANGED Viewed

@@ -205,6 +205,7 @@ Partial coordinator artifacts are first-class here too: `audit` and `report` kee
 | `multi init\|status\|step\|resume\|approve-gate\|resync` | Run the multi-repo coordinator lifecycle, including blocked-state recovery via `multi resume` |
 | `intake record\|triage\|approve\|plan\|start\|scan\|resolve` | Continuous-delivery intake: turn delivery signals into governed work items |
 | `intake handoff` | Bridge a planned intake intent to a coordinator workstream for multi-repo execution |
+| `watch --event-file\|--event-dir\|--listen\|--results\|--result` | Normalize external events into governed intake, poll event-file directories, receive signed HTTP webhooks, and inspect durable watch result records |
 | `schedule list\|run-due\|daemon\|status` | Run repo-local lights-out scheduling: inspect schedules, execute due runs, poll in a local daemon loop, continue explicitly unblocked schedule-owned runs, or check daemon heartbeat |
 | `plugin install\|list\|remove` | Install, inspect, or remove governed hook plugins under `.agentxchain/plugins/` |
 | `plugin list-available` | List bundled built-in plugins installable by short name |

package/bin/agentxchain.js CHANGED Viewed

@@ -248,8 +248,20 @@ generateCmd
 program
   .command('watch')
-  .description('Watch lock.json and coordinate agent turns (the referee)')
+  .description('Watch lock.json, or ingest an external event into governed intake')
   .option('--daemon', 'Run in background mode')
+  .option('--event-file <path>', 'Normalize one external event JSON file into governed intake')
+  .option('--event-dir <path>', 'Poll a directory for external event JSON files')
+  .option('--poll-seconds <seconds>', 'With --event-dir, polling interval in seconds', '5')
+  .option('--dry-run', 'With --event-file, print the normalized intake payload without writing')
+  .option('--listen <port>', 'Start an HTTP webhook listener on the given port')
+  .option('--listen-host <host>', 'With --listen, bind to a specific host (default: 127.0.0.1)')
+  .option('--webhook-secret <secret>', 'With --listen, HMAC-SHA256 secret for signature verification')
+  .option('--allow-unsigned', 'With --listen, accept unsigned payloads (local dev only)')
+  .option('--results', 'List all watch result records')
+  .option('--result <id>', 'Show a single watch result by ID or filename')
+  .option('--limit <n>', 'With --results, limit the number of results shown')
+  .option('-j, --json', 'Output JSON')
   .action(watchCommand);
 program

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "agentxchain",
-  "version": "2.155.22",
+  "version": "2.155.24",
   "description": "CLI for AgentXchain — governed multi-agent software delivery",
   "type": "module",
   "bin": {

package/scripts/release-bump.sh CHANGED Viewed

@@ -79,6 +79,7 @@ ALLOWED_RELEASE_PATHS=(
   ".agentxchain-conformance/capabilities.json"
   "website-v2/docs/protocol-implementor-guide.mdx"
   ".planning/LAUNCH_EVIDENCE_REPORT.md"
+  ".planning/HN_LAUNCH_SURFACE_ALIGNMENT_SPEC.md"
   ".planning/SHOW_HN_DRAFT.md"
   ".planning/MARKETING/TWITTER_THREAD.md"
   ".planning/MARKETING/LINKEDIN_POST.md"
@@ -88,6 +89,7 @@ ALLOWED_RELEASE_PATHS=(
   "website-v2/docs/getting-started.mdx"
   "website-v2/docs/quickstart.mdx"
   "website-v2/docs/five-minute-tutorial.mdx"
+  "cli/test/hn-launch-surface-content.test.js"
   "cli/homebrew/agentxchain.rb"
   "cli/homebrew/README.md"
 )

package/src/commands/watch.js CHANGED Viewed

@@ -1,19 +1,48 @@
-import { readFileSync, writeFileSync, existsSync, appendFileSync, unlinkSync } from 'fs';
-import { join, dirname } from 'path';
+import { readFileSync, writeFileSync, existsSync, appendFileSync, unlinkSync, mkdirSync, readdirSync, renameSync, statSync } from 'fs';
+import { join, dirname, basename, resolve } from 'path';
 import { spawn } from 'child_process';
 import { fileURLToPath } from 'url';
 import chalk from 'chalk';
 import { loadConfig, loadLock, LOCK_FILE } from '../lib/config.js';
+import { recordEvent, triageIntent, approveIntent, planIntent, startIntent } from '../lib/intake.js';
+import { normalizeWatchEvent, resolveWatchRoute, writeWatchResult } from '../lib/watch-events.js';
 import { safeWriteJson } from '../lib/safe-write.js';
 import { notifyHuman as sendNotification } from '../lib/notify.js';
 import { validateProject } from '../lib/validation.js';
 import { resolveNextAgent, resolveExpectedClaimer } from '../lib/next-owner.js';
+import { requireIntakeWorkspaceOrExit } from './intake-workspace.js';
+import { startWebhookListener } from '../lib/watch-listener.js';
 const PID_FILE = '.agentxchain-watch.pid';
 export async function watchCommand(opts) {
+  if (opts.results || opts.result) {
+    listOrShowWatchResults(opts);
+    return;
+  }
+  if (opts.listen) {
+    await listenWebhook(opts);
+    return;
+  }
+  if (opts.eventFile) {
+    await ingestWatchEvent(opts);
+    return;
+  }
+  if (opts.daemon && opts.eventDir && process.env.AGENTXCHAIN_WATCH_DAEMON !== '1') {
+    startWatchDaemon(opts);
+    return;
+  }
+  if (opts.eventDir) {
+    await watchEventDirectory(opts);
+    return;
+  }
   if (opts.daemon && process.env.AGENTXCHAIN_WATCH_DAEMON !== '1') {
-    startWatchDaemon();
+    startWatchDaemon(opts);
     return;
   }
@@ -153,6 +182,574 @@ export async function watchCommand(opts) {
   process.on('SIGTERM', cleanup);
 }
+async function watchEventDirectory(opts) {
+  const root = requireIntakeWorkspaceOrExit(opts);
+  const eventDir = resolve(process.cwd(), opts.eventDir);
+  const pollMs = parsePollMs(opts.pollSeconds);
+  mkdirSync(eventDir, { recursive: true });
+  writePidFile(root);
+  console.log('');
+  console.log(chalk.bold('  AgentXchain Watch Event Directory'));
+  console.log(chalk.dim(`  Event dir: ${eventDir}`));
+  console.log(chalk.dim(`  Poll:      ${pollMs}ms`));
+  console.log(chalk.dim('  Processed files move to processed/; failed files move to failed/.'));
+  console.log('');
+  let processing = false;
+  const tick = async () => {
+    if (processing) return;
+    processing = true;
+    try {
+      const results = await processPendingEventFiles(root, eventDir);
+      for (const result of results) {
+        if (result.ok) {
+          log('claimed', `Processed event file ${basename(result.source)} -> ${basename(result.destination)}`);
+        } else {
+          log('warn', `Failed event file ${basename(result.source)} -> ${basename(result.destination)}: ${result.error}`);
+        }
+      }
+    } catch (err) {
+      log('error', err.message);
+    } finally {
+      processing = false;
+    }
+  };
+  await tick();
+  const timer = setInterval(tick, pollMs);
+  const cleanup = () => {
+    clearInterval(timer);
+    removePidFile(root);
+    console.log('');
+    log('stop', 'Watch event directory stopped.');
+    process.exit(0);
+  };
+  process.on('SIGINT', cleanup);
+  process.on('SIGTERM', cleanup);
+}
+async function processPendingEventFiles(root, eventDir) {
+  const entries = readdirSync(eventDir, { withFileTypes: true })
+    .filter((entry) => entry.isFile() && entry.name.endsWith('.json'))
+    .map((entry) => entry.name)
+    .sort();
+  const results = [];
+  for (const name of entries) {
+    const source = join(eventDir, name);
+    if (!existsSync(source)) continue;
+    const childResult = await runWatchEventFile(root, source);
+    const destinationDir = join(eventDir, childResult.status === 0 ? 'processed' : 'failed');
+    const destination = moveEventFile(source, destinationDir);
+    results.push({
+      ok: childResult.status === 0,
+      source,
+      destination,
+      error: childResult.status === 0 ? null : summarizeChildFailure(childResult),
+    });
+  }
+  return results;
+}
+const DEFAULT_CHILD_TIMEOUT_MS = 30_000;
+function runWatchEventFile(root, eventFile, timeoutMs = DEFAULT_CHILD_TIMEOUT_MS) {
+  const currentDir = dirname(fileURLToPath(import.meta.url));
+  const cliBin = join(currentDir, '../../bin/agentxchain.js');
+  return new Promise((resolvePromise) => {
+    const child = spawn(process.execPath, [cliBin, 'watch', '--event-file', eventFile, '--json'], {
+      cwd: root,
+      env: { ...process.env, NO_COLOR: '1' },
+      stdio: ['ignore', 'pipe', 'pipe'],
+    });
+    let stdout = '';
+    let stderr = '';
+    let settled = false;
+    const finish = (status, signal) => {
+      if (settled) return;
+      settled = true;
+      clearTimeout(timer);
+      resolvePromise({ status: status ?? 1, signal, stdout, stderr });
+    };
+    const timer = setTimeout(() => {
+      if (settled) return;
+      try { child.kill('SIGTERM'); } catch {}
+      stderr += `\nchild process timed out after ${timeoutMs}ms`;
+      finish(1, 'SIGTERM');
+    }, timeoutMs);
+    child.stdout.on('data', (data) => { stdout += data.toString(); });
+    child.stderr.on('data', (data) => { stderr += data.toString(); });
+    child.on('close', (status, signal) => finish(status, signal));
+    child.on('error', (err) => {
+      stderr += err.message;
+      finish(1, null);
+    });
+  });
+}
+function moveEventFile(source, destinationDir) {
+  mkdirSync(destinationDir, { recursive: true });
+  const parsed = basename(source);
+  let destination = join(destinationDir, parsed);
+  if (existsSync(destination)) {
+    const suffix = `${Date.now()}-${Math.random().toString(16).slice(2, 8)}`;
+    destination = join(destinationDir, `${parsed}.${suffix}`);
+  }
+  renameSync(source, destination);
+  return destination;
+}
+function summarizeChildFailure(result) {
+  try {
+    const parsed = JSON.parse(result.stdout);
+    if (parsed?.error) return parsed.error;
+  } catch {}
+  return result.stderr.trim() || result.stdout.trim() || `watch --event-file exited with status ${result.status}`;
+}
+function parsePollMs(value) {
+  const seconds = Number(value);
+  if (!Number.isFinite(seconds) || seconds <= 0) return 5000;
+  return Math.max(100, Math.round(seconds * 1000));
+}
+async function listenWebhook(opts) {
+  // Mutual exclusion checks
+  const incompatible = [
+    opts.eventFile && '--event-file',
+    opts.eventDir && '--event-dir',
+    opts.daemon && '--daemon',
+    (opts.results || opts.result) && '--results/--result',
+  ].filter(Boolean);
+  if (incompatible.length > 0) {
+    const message = `--listen cannot be combined with ${incompatible.join(', ')}`;
+    if (opts.json) {
+      console.log(JSON.stringify({ ok: false, error: message }, null, 2));
+    } else {
+      console.log(chalk.red(`  ${message}`));
+    }
+    process.exit(1);
+  }
+  const root = requireIntakeWorkspaceOrExit(opts);
+  const port = parseInt(opts.listen, 10);
+  if (!Number.isFinite(port) || port < 1 || port > 65535) {
+    const message = `invalid port: ${opts.listen}`;
+    if (opts.json) {
+      console.log(JSON.stringify({ ok: false, error: message }, null, 2));
+    } else {
+      console.log(chalk.red(`  ${message}`));
+    }
+    process.exit(1);
+  }
+  // Resolve webhook secret: CLI flag > env var > config
+  let secret = opts.webhookSecret || null;
+  if (!secret && process.env.AGENTXCHAIN_WEBHOOK_SECRET) {
+    secret = process.env.AGENTXCHAIN_WEBHOOK_SECRET;
+  }
+  if (!secret) {
+    try {
+      const rawConfig = JSON.parse(readFileSync(join(root, 'agentxchain.json'), 'utf8'));
+      secret = rawConfig?.watch?.webhook_secret || null;
+    } catch {}
+  }
+  const allowUnsigned = opts.allowUnsigned === true;
+  const host = opts.listenHost || '127.0.0.1';
+  try {
+    const server = await startWebhookListener({
+      root,
+      port,
+      host,
+      secret,
+      allowUnsigned,
+      dryRun: opts.dryRun === true,
+      onReady: ({ port: boundPort, host: boundHost }) => {
+        writePidFile(root);
+        console.log('');
+        console.log(chalk.bold('  AgentXchain Webhook Listener'));
+        console.log(chalk.dim(`  Listening: http://${boundHost}:${boundPort}`));
+        console.log(chalk.dim(`  Webhook:   POST /webhook`));
+        console.log(chalk.dim(`  Health:    GET  /health`));
+        console.log(chalk.dim(`  Secret:    ${secret ? 'configured' : allowUnsigned ? 'none (unsigned allowed)' : 'REQUIRED but missing — POST /webhook will return 403'}`));
+        if (opts.dryRun) console.log(chalk.yellow('  Dry-run:   events will NOT be persisted'));
+        console.log('');
+        console.log(chalk.cyan('  Waiting for webhook deliveries... (Ctrl+C to stop)'));
+        console.log('');
+      },
+    });
+    const cleanup = () => {
+      server.close();
+      removePidFile(root);
+      console.log('');
+      log('stop', 'Webhook listener stopped.');
+      process.exit(0);
+    };
+    process.on('SIGINT', cleanup);
+    process.on('SIGTERM', cleanup);
+  } catch (err) {
+    if (err.code === 'EADDRINUSE') {
+      const message = `port ${port} is already in use`;
+      if (opts.json) {
+        console.log(JSON.stringify({ ok: false, error: message }, null, 2));
+      } else {
+        console.log(chalk.red(`  ${message}`));
+      }
+    } else {
+      console.log(chalk.red(`  failed to start listener: ${err.message}`));
+    }
+    process.exit(1);
+  }
+}
+async function ingestWatchEvent(opts) {
+  if (opts.daemon) {
+    const message = '--daemon cannot be combined with --event-file';
+    if (opts.json) {
+      console.log(JSON.stringify({ ok: false, error: message }, null, 2));
+    } else {
+      console.log(chalk.red(`  ${message}`));
+    }
+    process.exit(1);
+  }
+  const root = requireIntakeWorkspaceOrExit(opts);
+  let raw;
+  let parsed;
+  try {
+    raw = readFileSync(opts.eventFile, 'utf8');
+  } catch (err) {
+    const message = `failed to read event file: ${err.message}`;
+    if (opts.json) {
+      console.log(JSON.stringify({ ok: false, error: message }, null, 2));
+    } else {
+      console.log(chalk.red(`  ${message}`));
+    }
+    process.exit(1);
+  }
+  try {
+    parsed = JSON.parse(raw);
+  } catch (err) {
+    const message = `event file is not valid JSON: ${err.message}`;
+    if (opts.json) {
+      console.log(JSON.stringify({ ok: false, error: message }, null, 2));
+    } else {
+      console.log(chalk.red(`  ${message}`));
+    }
+    process.exit(1);
+  }
+  let payload;
+  try {
+    payload = normalizeWatchEvent(parsed);
+  } catch (err) {
+    if (opts.json) {
+      console.log(JSON.stringify({ ok: false, error: err.message }, null, 2));
+    } else {
+      console.log(chalk.red(`  ${err.message}`));
+    }
+    process.exit(1);
+  }
+  if (opts.dryRun) {
+    if (opts.json) {
+      console.log(JSON.stringify({ ok: true, dry_run: true, payload }, null, 2));
+    } else {
+      console.log('');
+      console.log(chalk.green('  Watch event normalized (dry run)'));
+      console.log(JSON.stringify(payload, null, 2));
+      console.log('');
+    }
+    process.exit(0);
+  }
+  const result = recordEvent(root, payload);
+  if (!result.ok) {
+    if (opts.json) {
+      console.log(JSON.stringify(result, null, 2));
+    } else {
+      console.log(chalk.red(`  ${result.error}`));
+    }
+    process.exit(result.exitCode);
+  }
+  // Route-based auto-triage and auto-approve
+  let routed = null;
+  if (!result.deduplicated && result.intent) {
+    let routes;
+    try {
+      const rawConfig = JSON.parse(readFileSync(join(root, 'agentxchain.json'), 'utf8'));
+      routes = rawConfig?.watch?.routes;
+    } catch {
+      // non-fatal — no routes if config is unreadable
+    }
+    const resolved = resolveWatchRoute(payload, routes);
+    if (resolved) {
+      const triageFields = {
+        ...resolved.triage,
+      };
+      if (resolved.preferred_role) {
+        triageFields.preferred_role = resolved.preferred_role;
+      }
+      const triageResult = triageIntent(root, result.intent.intent_id, triageFields);
+      if (triageResult.ok) {
+        result.intent = triageResult.intent;
+        routed = { triaged: true, approved: false, preferred_role: resolved.preferred_role };
+        if (resolved.auto_approve) {
+          const approveResult = approveIntent(root, result.intent.intent_id, {
+            approver: 'watch_route',
+            reason: `auto-approved by watch route matching ${payload.category}`,
+          });
+          if (approveResult.ok) {
+            result.intent = approveResult.intent;
+            routed.approved = true;
+            // Auto-start: plan + start the governed run
+            if (resolved.auto_start) {
+              const planResult = planIntent(root, result.intent.intent_id, {
+                force: resolved.overwrite_planning_artifacts === true,
+              });
+              if (planResult.ok) {
+                result.intent = planResult.intent;
+                routed.planned = true;
+                const startResult = startIntent(root, result.intent.intent_id, {});
+                if (startResult.ok) {
+                  result.intent = startResult.intent;
+                  routed.started = true;
+                  routed.run_id = startResult.run_id || null;
+                  routed.role = startResult.role || null;
+                } else {
+                  routed.started = false;
+                  routed.auto_start_error = startResult.error;
+                }
+              } else {
+                routed.planned = false;
+                routed.started = false;
+                routed.auto_start_error = planResult.error;
+              }
+            }
+          }
+        } else if (resolved.auto_start) {
+          // auto_start without auto_approve — skip silently
+          routed.auto_start_skipped = 'requires auto_approve';
+        }
+      }
+    }
+  }
+  if (routed) {
+    result.routed = routed;
+  }
+  // Write durable watch result file
+  const watchResult = writeWatchResult(root, result, payload);
+  result.watch_result_id = watchResult.result_id;
+  if (opts.json) {
+    console.log(JSON.stringify(result, null, 2));
+  } else {
+    console.log('');
+    if (result.deduplicated) {
+      console.log(chalk.yellow(`  Watch event already recorded: ${result.event.event_id} (deduplicated)`));
+      if (result.intent) {
+        console.log(chalk.dim(`  Linked intent: ${result.intent.intent_id} (${result.intent.status})`));
+      }
+    } else {
+      console.log(chalk.green(`  Recorded watch event ${result.event.event_id}`));
+      console.log(chalk.green(`  Created intent ${result.intent.intent_id} (${result.intent.status})`));
+      if (routed) {
+        const parts = [`triaged=${routed.triaged}`, `approved=${routed.approved}`];
+        if (routed.preferred_role) parts.push(`role=${routed.preferred_role}`);
+        if (routed.planned) parts.push('planned=true');
+        if (routed.started) parts.push(`started=true`);
+        if (routed.auto_start_error) parts.push(`start_error="${routed.auto_start_error}"`);
+        if (routed.auto_start_skipped) parts.push(`auto_start_skipped`);
+        console.log(chalk.cyan(`  Route matched: ${parts.join(', ')}`));
+      }
+    }
+    console.log('');
+  }
+  process.exit(result.exitCode);
+}
+// ---------------------------------------------------------------------------
+// Watch results inspection
+// ---------------------------------------------------------------------------
+function listOrShowWatchResults(opts) {
+  const root = requireIntakeWorkspaceOrExit(opts);
+  const resultsDir = join(root, '.agentxchain', 'watch-results');
+  if (!existsSync(resultsDir)) {
+    if (opts.json) {
+      console.log(JSON.stringify(opts.result ? { ok: false, error: 'no watch results found' } : { ok: true, results: [] }, null, 2));
+    } else {
+      console.log(chalk.dim('  No watch results yet.'));
+    }
+    process.exit(opts.result ? 1 : 0);
+  }
+  // Show a single result by ID or filename
+  if (opts.result) {
+    const record = loadWatchResult(resultsDir, opts.result);
+    if (!record) {
+      if (opts.json) {
+        console.log(JSON.stringify({ ok: false, error: `watch result not found: ${opts.result}` }, null, 2));
+      } else {
+        console.log(chalk.red(`  Watch result not found: ${opts.result}`));
+      }
+      process.exit(1);
+    }
+    if (opts.json) {
+      console.log(JSON.stringify({ ok: true, ...record }, null, 2));
+    } else {
+      printWatchResult(record);
+    }
+    process.exit(0);
+  }
+  // List all results
+  const entries = readdirSync(resultsDir, { withFileTypes: true })
+    .filter((e) => e.isFile() && e.name.endsWith('.json'))
+    .map((e) => e.name)
+    .sort();
+  const records = [];
+  for (const name of entries) {
+    try {
+      const content = JSON.parse(readFileSync(join(resultsDir, name), 'utf8'));
+      records.push(content);
+    } catch {
+      // skip corrupt files
+    }
+  }
+  // Sort by timestamp descending (most recent first)
+  records.sort((a, b) => (b.timestamp || '').localeCompare(a.timestamp || ''));
+  // Apply --limit if provided
+  const limit = opts.limit ? parseInt(opts.limit, 10) : 0;
+  const display = limit > 0 ? records.slice(0, limit) : records;
+  if (opts.json) {
+    console.log(JSON.stringify({ ok: true, total: records.length, results: display }, null, 2));
+    process.exit(0);
+  }
+  console.log('');
+  console.log(chalk.bold(`  Watch Results (${records.length} total)`));
+  console.log('');
+  if (display.length === 0) {
+    console.log(chalk.dim('  No watch results yet.'));
+    console.log('');
+    process.exit(0);
+  }
+  for (const r of display) {
+    const status = formatResultStatus(r);
+    const category = r.payload?.category || 'unknown';
+    const repo = r.payload?.repo || '';
+    const ts = r.timestamp ? new Date(r.timestamp).toLocaleString() : 'unknown';
+    const dedup = r.deduplicated ? chalk.yellow(' [dedup]') : '';
+    const errors = r.errors?.length > 0 ? chalk.red(` (${r.errors.length} error${r.errors.length > 1 ? 's' : ''})`) : '';
+    console.log(`  ${chalk.dim(r.result_id)}  ${status}${dedup}${errors}`);
+    console.log(`    ${chalk.cyan(category)} ${repo ? chalk.dim(repo) : ''} ${chalk.dim(ts)}`);
+    if (r.route?.run_id) {
+      console.log(`    ${chalk.dim('run:')} ${r.route.run_id} ${chalk.dim('role:')} ${r.route.role || '?'}`);
+    }
+  }
+  if (limit > 0 && records.length > limit) {
+    console.log(chalk.dim(`\n  ... and ${records.length - limit} more. Use --limit 0 to show all.`));
+  }
+  console.log('');
+  process.exit(0);
+}
+function loadWatchResult(resultsDir, idOrFile) {
+  // Try exact filename first
+  const directPath = join(resultsDir, idOrFile.endsWith('.json') ? idOrFile : `${idOrFile}.json`);
+  if (existsSync(directPath)) {
+    try { return JSON.parse(readFileSync(directPath, 'utf8')); } catch { return null; }
+  }
+  // Search by result_id prefix
+  const entries = readdirSync(resultsDir, { withFileTypes: true })
+    .filter((e) => e.isFile() && e.name.endsWith('.json'));
+  for (const entry of entries) {
+    try {
+      const content = JSON.parse(readFileSync(join(resultsDir, entry.name), 'utf8'));
+      if (content.result_id === idOrFile || content.result_id?.startsWith(idOrFile)) {
+        return content;
+      }
+    } catch {
+      // skip corrupt
+    }
+  }
+  return null;
+}
+function formatResultStatus(r) {
+  if (r.deduplicated) return chalk.yellow('deduplicated');
+  if (!r.route?.matched) return chalk.dim('unrouted');
+  if (r.route.started) return chalk.green('started');
+  if (r.route.planned) return chalk.blue('planned');
+  if (r.route.approved) return chalk.cyan('approved');
+  if (r.route.triaged) return chalk.white('triaged');
+  return chalk.dim('detected');
+}
+function printWatchResult(r) {
+  console.log('');
+  console.log(chalk.bold('  Watch Result'));
+  console.log(`  ${chalk.dim('ID:')}        ${r.result_id}`);
+  console.log(`  ${chalk.dim('Time:')}      ${r.timestamp ? new Date(r.timestamp).toLocaleString() : 'unknown'}`);
+  console.log(`  ${chalk.dim('Event:')}     ${r.event_id || 'none'}`);
+  console.log(`  ${chalk.dim('Intent:')}    ${r.intent_id || 'none'} (${r.intent_status || '?'})`);
+  console.log(`  ${chalk.dim('Dedup:')}     ${r.deduplicated ? 'yes' : 'no'}`);
+  console.log('');
+  console.log(chalk.bold('  Payload'));
+  console.log(`  ${chalk.dim('Source:')}    ${r.payload?.source || '?'}`);
+  console.log(`  ${chalk.dim('Category:')} ${r.payload?.category || '?'}`);
+  console.log(`  ${chalk.dim('Repo:')}      ${r.payload?.repo || 'none'}`);
+  console.log(`  ${chalk.dim('Ref:')}       ${r.payload?.ref || 'none'}`);
+  console.log('');
+  console.log(chalk.bold('  Route'));
+  if (!r.route?.matched) {
+    console.log(chalk.dim('  No matching route.'));
+  } else {
+    console.log(`  ${chalk.dim('Triaged:')}   ${r.route.triaged ? 'yes' : 'no'}`);
+    console.log(`  ${chalk.dim('Approved:')}  ${r.route.approved ? 'yes' : 'no'}`);
+    console.log(`  ${chalk.dim('Planned:')}   ${r.route.planned ? 'yes' : 'no'}`);
+    console.log(`  ${chalk.dim('Started:')}   ${r.route.started ? 'yes' : 'no'}`);
+    console.log(`  ${chalk.dim('Auto-start:')} ${r.route.auto_start ? 'yes' : 'no'}`);
+    if (r.route.preferred_role) console.log(`  ${chalk.dim('Role hint:')} ${r.route.preferred_role}`);
+    if (r.route.run_id) console.log(`  ${chalk.dim('Run ID:')}    ${r.route.run_id}`);
+    if (r.route.role) console.log(`  ${chalk.dim('Role:')}      ${r.route.role}`);
+  }
+  if (r.errors?.length > 0) {
+    console.log('');
+    console.log(chalk.bold('  Errors'));
+    for (const err of r.errors) {
+      console.log(`  ${chalk.red('•')} ${err}`);
+    }
+  }
+  console.log('');
+}
 function pickNextAgent(root, lock, config) {
   return resolveNextAgent(root, config, lock).next;
 }
@@ -307,10 +904,15 @@ function log(type, msg) {
   console.log(`  ${chalk.dim(time)} ${tags[type] || chalk.dim(type)}  ${msg}`);
 }
-function startWatchDaemon() {
+function startWatchDaemon(opts = {}) {
   const currentDir = dirname(fileURLToPath(import.meta.url));
   const cliBin = join(currentDir, '../../bin/agentxchain.js');
-  const child = spawn(process.execPath, [cliBin, 'watch'], {
+  const args = [cliBin, 'watch'];
+  if (opts.eventDir) {
+    args.push('--event-dir', opts.eventDir);
+    if (opts.pollSeconds) args.push('--poll-seconds', String(opts.pollSeconds));
+  }
+  const child = spawn(process.execPath, args, {
     cwd: process.cwd(),
     detached: true,
     stdio: 'ignore',
@@ -319,8 +921,12 @@ function startWatchDaemon() {
   child.unref();
   const result = loadConfig();
-  if (result) {
-    writeFileSync(join(result.root, PID_FILE), String(child.pid));
+  let pidRoot = result?.root || null;
+  if (!pidRoot && opts.eventDir && existsSync(join(process.cwd(), 'agentxchain.json'))) {
+    pidRoot = process.cwd();
+  }
+  if (pidRoot) {
+    writeFileSync(join(pidRoot, PID_FILE), String(child.pid));
   }
   console.log('');

package/src/lib/intake.js CHANGED Viewed

@@ -537,6 +537,9 @@ export function triageIntent(root, intentId, fields) {
   intent.charter = normalizedFields.charter;
   intent.acceptance_contract = normalizedFields.acceptance_contract;
   intent.phase_scope = normalizedFields.phase_scope || null;
+  if (normalizedFields.preferred_role) {
+    intent.preferred_role = normalizedFields.preferred_role;
+  }
   intent.updated_at = now;
   intent.history.push({ from: 'detected', to: 'triaged', at: now, reason: 'triage completed' });
@@ -1148,7 +1151,7 @@ export function startIntent(root, intentId, options = {}) {
   }
   // Resolve role
-  const roleId = resolveIntakeRole(options.role, state, config);
+  const roleId = resolveIntakeRole(options.role, intent, state, config);
   if (!roleId.ok) {
     return { ok: false, error: roleId.error, exitCode: 1 };
   }
@@ -1220,7 +1223,7 @@ export function startIntent(root, intentId, options = {}) {
   };
 }
-function resolveIntakeRole(roleOverride, state, config) {
+function resolveIntakeRole(roleOverride, intent, state, config) {
   const phase = state.phase;
   const routing = config.routing?.[phase];
@@ -1232,6 +1235,17 @@ function resolveIntakeRole(roleOverride, state, config) {
     return { ok: true, role: roleOverride };
   }
+  const preferredRole = typeof intent?.preferred_role === 'string'
+    ? intent.preferred_role.trim()
+    : '';
+  if (preferredRole) {
+    if (!config.roles?.[preferredRole]) {
+      const available = Object.keys(config.roles || {}).join(', ');
+      return { ok: false, error: `unknown preferred_role on intent: "${preferredRole}". Available: ${available}` };
+    }
+    return { ok: true, role: preferredRole };
+  }
   if (routing?.entry_role) {
     return { ok: true, role: routing.entry_role };
   }

package/src/lib/watch-events.js ADDED Viewed

@@ -0,0 +1,312 @@
+import { mkdirSync } from 'fs';
+import { join } from 'path';
+import { safeWriteJson } from './safe-write.js';
+export function normalizeWatchEvent(input) {
+  const event = unwrapEvent(input);
+  if (isPullRequestEvent(event)) {
+    return normalizePullRequestEvent(event);
+  }
+  if (isIssueLabeledEvent(event)) {
+    return normalizeIssueLabeledEvent(event);
+  }
+  if (isWorkflowFailureEvent(event)) {
+    return normalizeWorkflowFailureEvent(event);
+  }
+  if (isScheduleEvent(event)) {
+    return normalizeScheduleEvent(event);
+  }
+  throw new Error('unsupported watch event: supported events are GitHub pull_request, issues.labeled, failed workflow_run, and schedule');
+}
+function unwrapEvent(input) {
+  if (!input || typeof input !== 'object' || Array.isArray(input)) {
+    throw new Error('watch event must be a JSON object');
+  }
+  if (input.provider === 'github' && typeof input.event === 'string') {
+    return {
+      provider: 'github',
+      event: input.event,
+      ...(input.payload && typeof input.payload === 'object' && !Array.isArray(input.payload) ? input.payload : input),
+    };
+  }
+  return {
+    provider: input.provider || 'github',
+    event: inferGitHubEvent(input),
+    ...input,
+  };
+}
+function inferGitHubEvent(event) {
+  if (event.pull_request) return 'pull_request';
+  if (event.issue) return 'issues';
+  if (event.workflow_run) return 'workflow_run';
+  if (event.schedule || event.event === 'schedule') return 'schedule';
+  return event.event || 'unknown';
+}
+function isPullRequestEvent(event) {
+  return event.provider === 'github' && event.event === 'pull_request' && event.pull_request;
+}
+function isIssueLabeledEvent(event) {
+  return event.provider === 'github' && event.event === 'issues' && event.action === 'labeled' && event.issue;
+}
+function isWorkflowFailureEvent(event) {
+  if (event.provider !== 'github' || event.event !== 'workflow_run' || !event.workflow_run) return false;
+  const conclusion = event.workflow_run.conclusion;
+  return typeof conclusion === 'string' && !['success', 'skipped', 'cancelled'].includes(conclusion);
+}
+function isScheduleEvent(event) {
+  return event.provider === 'github' && event.event === 'schedule';
+}
+function normalizePullRequestEvent(event) {
+  const pr = event.pull_request;
+  const repo = repositoryName(event);
+  const action = normalizeToken(event.action || 'unknown');
+  const signal = removeNullish({
+    provider: 'github',
+    event: 'pull_request',
+    action,
+    repository: repo,
+    number: pr.number,
+    title: pr.title,
+    url: pr.html_url,
+    head_ref: pr.head?.ref,
+    head_sha: pr.head?.sha,
+    base_ref: pr.base?.ref,
+    draft: pr.draft,
+  });
+  return {
+    source: 'git_ref_change',
+    category: `github_pull_request_${action}`,
+    repo,
+    ref: pr.head?.ref || null,
+    signal,
+    evidence: evidenceFor(pr.html_url, pr.title || `Pull request ${pr.number || ''}`.trim()),
+  };
+}
+function normalizeIssueLabeledEvent(event) {
+  const issue = event.issue;
+  const repo = repositoryName(event);
+  const labelName = typeof event.label?.name === 'string' ? event.label.name : null;
+  const signal = removeNullish({
+    provider: 'github',
+    event: 'issues',
+    action: 'labeled',
+    repository: repo,
+    number: issue.number,
+    title: issue.title,
+    url: issue.html_url,
+    label: labelName,
+  });
+  return {
+    source: 'manual',
+    category: 'github_issue_labeled',
+    repo,
+    ref: null,
+    signal,
+    evidence: evidenceFor(issue.html_url, issue.title || `Issue ${issue.number || ''}`.trim()),
+  };
+}
+function normalizeWorkflowFailureEvent(event) {
+  const workflowRun = event.workflow_run;
+  const repo = repositoryName(event);
+  const signal = removeNullish({
+    provider: 'github',
+    event: 'workflow_run',
+    action: normalizeToken(event.action || 'completed'),
+    repository: repo,
+    workflow_name: workflowRun.name,
+    conclusion: workflowRun.conclusion,
+    status: workflowRun.status,
+    run_id: workflowRun.id,
+    run_number: workflowRun.run_number,
+    url: workflowRun.html_url,
+    head_branch: workflowRun.head_branch,
+    head_sha: workflowRun.head_sha,
+  });
+  return {
+    source: 'ci_failure',
+    category: 'github_workflow_run_failed',
+    repo,
+    ref: workflowRun.head_branch || null,
+    signal,
+    evidence: evidenceFor(workflowRun.html_url, `${workflowRun.name || 'GitHub workflow'} ${workflowRun.conclusion || 'failed'}`),
+  };
+}
+function normalizeScheduleEvent(event) {
+  const repo = repositoryName(event);
+  const signal = removeNullish({
+    provider: 'github',
+    event: 'schedule',
+    repository: repo,
+    schedule: event.schedule,
+    workflow: event.workflow,
+    ref: event.ref,
+    sha: event.sha,
+  });
+  return {
+    source: 'schedule',
+    category: 'github_schedule',
+    repo,
+    ref: event.ref || null,
+    signal,
+    evidence: [{ type: 'text', value: `GitHub schedule event${event.schedule ? `: ${event.schedule}` : ''}` }],
+  };
+}
+function repositoryName(event) {
+  if (typeof event.repository === 'string') return event.repository;
+  if (typeof event.repository?.full_name === 'string') return event.repository.full_name;
+  if (typeof event.repository?.name === 'string') return event.repository.name;
+  return null;
+}
+function evidenceFor(url, text) {
+  if (typeof url === 'string' && url.trim()) {
+    return [{ type: 'url', value: url }];
+  }
+  return [{ type: 'text', value: text || 'GitHub event' }];
+}
+function normalizeToken(value) {
+  return String(value || 'unknown').trim().toLowerCase().replace(/[^a-z0-9]+/g, '_').replace(/^_+|_+$/g, '') || 'unknown';
+}
+function removeNullish(input) {
+  return Object.fromEntries(Object.entries(input).filter(([, value]) => value !== null && value !== undefined && value !== ''));
+}
+// ---------------------------------------------------------------------------
+// Route resolution
+// ---------------------------------------------------------------------------
+export function resolveWatchRoute(payload, routes) {
+  if (!Array.isArray(routes) || routes.length === 0) return null;
+  for (const route of routes) {
+    if (!route.match || !route.triage) continue;
+    const match = route.match;
+    if (match.source && match.source !== payload.source) continue;
+    if (match.category) {
+      if (match.category.includes('*')) {
+        const escaped = match.category.replace(/[.+^${}()|[\]\\]/g, '\\$&').replace(/\*/g, '.*');
+        if (!new RegExp(`^${escaped}$`).test(payload.category)) continue;
+      } else if (match.category !== payload.category) {
+        continue;
+      }
+    }
+    const charter = interpolateCharter(route.triage.charter, payload.signal);
+    return {
+      triage: {
+        priority: route.triage.priority || 'p2',
+        template: route.triage.template || 'generic',
+        charter,
+        acceptance_contract: Array.isArray(route.triage.acceptance_contract) && route.triage.acceptance_contract.length > 0
+          ? route.triage.acceptance_contract
+          : ['Watch event processed under governance'],
+      },
+      auto_approve: route.auto_approve === true,
+      auto_start: route.auto_start === true,
+      overwrite_planning_artifacts: route.overwrite_planning_artifacts === true,
+      preferred_role: route.preferred_role || null,
+    };
+  }
+  return null;
+}
+// ---------------------------------------------------------------------------
+// Watch result persistence
+// ---------------------------------------------------------------------------
+/**
+ * Write a durable watch result file to `.agentxchain/watch-results/`.
+ *
+ * Every non-dry-run `watch --event-file` invocation writes exactly one result
+ * file containing the full pipeline trace: event, intent, route match,
+ * triage/approve/plan/start statuses, errors, and timestamps.
+ *
+ * @param {string} root - project root
+ * @param {object} pipelineResult - the result object from ingestWatchEvent
+ * @param {object} payload - the normalized watch event payload
+ * @returns {{ result_id: string, result_path: string }}
+ */
+export function writeWatchResult(root, pipelineResult, payload, metadata = {}) {
+  const ts = Date.now();
+  const suffix = Math.random().toString(16).slice(2, 10);
+  const resultId = `wr_${ts}_${suffix}`;
+  const routed = pipelineResult.routed || null;
+  const errors = [];
+  if (routed?.auto_start_error) errors.push(routed.auto_start_error);
+  if (routed?.auto_start_skipped) errors.push(`auto_start_skipped: ${routed.auto_start_skipped}`);
+  const record = {
+    result_id: resultId,
+    timestamp: new Date(ts).toISOString(),
+    event_id: pipelineResult.event?.event_id || null,
+    intent_id: pipelineResult.intent?.intent_id || null,
+    intent_status: pipelineResult.intent?.status || null,
+    deduplicated: pipelineResult.deduplicated === true,
+    delivery_id: metadata.delivery_id || null,
+    payload: {
+      source: payload.source,
+      category: payload.category,
+      repo: payload.repo || null,
+      ref: payload.ref || null,
+    },
+    route: routed
+      ? {
+          matched: true,
+          triaged: routed.triaged === true,
+          approved: routed.approved === true,
+          planned: routed.planned === true,
+          started: routed.started === true,
+          auto_start: routed.auto_start === true || routed.started === true,
+          preferred_role: routed.preferred_role || null,
+          run_id: routed.run_id || null,
+          role: routed.role || null,
+        }
+      : { matched: false },
+    errors: errors.length > 0 ? errors : [],
+  };
+  const dir = join(root, '.agentxchain', 'watch-results');
+  mkdirSync(dir, { recursive: true });
+  const resultPath = join(dir, `${resultId}.json`);
+  safeWriteJson(resultPath, record);
+  return { result_id: resultId, result_path: resultPath };
+}
+function interpolateCharter(template, signal) {
+  if (!template || typeof template !== 'string') return template || 'Watch event intake';
+  if (!signal || typeof signal !== 'object') return template;
+  return template.replace(/\{\{(\w+)\}\}/g, (_, key) => {
+    const value = signal[key];
+    return value !== undefined && value !== null ? String(value) : `{{${key}}}`;
+  });
+}

package/src/lib/watch-listener.js ADDED Viewed

@@ -0,0 +1,297 @@
+import { createServer } from 'http';
+import { createHmac, timingSafeEqual } from 'crypto';
+import { readFileSync } from 'fs';
+import { join } from 'path';
+import { recordEvent, triageIntent, approveIntent, planIntent, startIntent } from './intake.js';
+import { normalizeWatchEvent, resolveWatchRoute, writeWatchResult } from './watch-events.js';
+const MAX_BODY_BYTES = 1_048_576; // 1 MB
+/**
+ * Start an HTTP webhook listener that feeds events through the governed intake pipeline.
+ *
+ * @param {object} opts
+ * @param {string} opts.root - project root
+ * @param {number} opts.port - port to bind
+ * @param {string} [opts.host='127.0.0.1'] - host to bind
+ * @param {string|null} [opts.secret=null] - HMAC-SHA256 webhook secret
+ * @param {boolean} [opts.allowUnsigned=false] - accept unsigned payloads
+ * @param {boolean} [opts.dryRun=false] - normalize only, do not persist
+ * @param {Function} [opts.onReady] - called with { port, host } when listening
+ * @returns {Promise<import('http').Server>}
+ */
+export function startWebhookListener(opts) {
+  const { root, port, host = '127.0.0.1', secret = null, allowUnsigned = false, dryRun = false, onReady } = opts;
+  const startedAt = Date.now();
+  let eventsProcessed = 0;
+  let version = 'unknown';
+  try {
+    const pkg = JSON.parse(readFileSync(join(root, 'node_modules', 'agentxchain', 'package.json'), 'utf8'));
+    version = pkg.version;
+  } catch {
+    try {
+      // Fallback: try the CLI's own package.json
+      const pkg = JSON.parse(readFileSync(new URL('../../package.json', import.meta.url), 'utf8'));
+      version = pkg.version;
+    } catch {}
+  }
+  const server = createServer(async (req, res) => {
+    try {
+      // Health endpoint
+      if (req.method === 'GET' && req.url === '/health') {
+        writeJson(res, 200, {
+          ok: true,
+          version,
+          uptime_ms: Date.now() - startedAt,
+          events_processed: eventsProcessed,
+        });
+        return;
+      }
+      // Webhook endpoint
+      if (req.method === 'POST' && req.url === '/webhook') {
+        const outcome = await handleWebhook(req, res, { root, secret, allowUnsigned, dryRun, startedAt });
+        if (outcome?.counted) eventsProcessed++;
+        return;
+      }
+      // Method not allowed on known paths
+      if (req.url === '/webhook' || req.url === '/health') {
+        writeJson(res, 405, { ok: false, error: 'method not allowed' });
+        return;
+      }
+      // Not found
+      writeJson(res, 404, { ok: false, error: 'not found' });
+    } catch (err) {
+      writeJson(res, 500, { ok: false, error: 'internal error' });
+    }
+  });
+  return new Promise((resolve, reject) => {
+    server.on('error', reject);
+    server.listen(port, host, () => {
+      server.removeListener('error', reject);
+      if (onReady) onReady({ port, host });
+      resolve(server);
+    });
+  });
+}
+async function handleWebhook(req, res, ctx) {
+  const { root, secret, allowUnsigned, dryRun } = ctx;
+  // Content-Type check
+  const contentType = req.headers['content-type'] || '';
+  if (!contentType.includes('application/json')) {
+    writeJson(res, 415, { ok: false, error: 'content type must be application/json' });
+    return { counted: false };
+  }
+  // Read body with size limit
+  let rawBody;
+  try {
+    rawBody = await readBody(req, MAX_BODY_BYTES);
+  } catch (err) {
+    if (err.message === 'payload too large') {
+      writeJson(res, 413, { ok: false, error: 'payload too large' });
+      return { counted: false };
+    }
+    writeJson(res, 400, { ok: false, error: err.message });
+    return { counted: false };
+  }
+  // Signature verification
+  if (secret) {
+    const sigHeader = req.headers['x-hub-signature-256'];
+    if (!sigHeader) {
+      writeJson(res, 401, { ok: false, error: 'signature verification failed' });
+      return { counted: false };
+    }
+    const expected = 'sha256=' + createHmac('sha256', secret).update(rawBody).digest('hex');
+    if (!constantTimeEqual(expected, sigHeader)) {
+      writeJson(res, 401, { ok: false, error: 'signature verification failed' });
+      return { counted: false };
+    }
+  } else if (!allowUnsigned) {
+    writeJson(res, 403, { ok: false, error: 'webhook secret required' });
+    return { counted: false };
+  }
+  // Parse JSON
+  let parsed;
+  try {
+    parsed = JSON.parse(rawBody);
+  } catch {
+    writeJson(res, 400, { ok: false, error: 'invalid JSON' });
+    return { counted: false };
+  }
+  // Construct envelope using X-GitHub-Event header if present
+  const githubEvent = req.headers['x-github-event'];
+  const deliveryId = req.headers['x-github-delivery'] || null;
+  let envelope;
+  if (parsed.provider && parsed.event) {
+    // Already enveloped
+    envelope = parsed;
+  } else if (githubEvent) {
+    envelope = { provider: 'github', event: githubEvent, ...parsed };
+  } else {
+    envelope = parsed;
+  }
+  // Normalize
+  let payload;
+  try {
+    payload = normalizeWatchEvent(envelope);
+  } catch (err) {
+    writeJson(res, 422, { ok: false, error: err.message });
+    return { counted: false };
+  }
+  // Dry-run: return normalized payload without persisting
+  if (dryRun) {
+    writeJson(res, 200, { ok: true, dry_run: true, payload });
+    return { counted: true };
+  }
+  // Record event through the governed intake pipeline
+  const result = recordEvent(root, payload);
+  if (!result.ok) {
+    writeJson(res, 422, { ok: false, error: result.error || 'event recording failed' });
+    return { counted: false };
+  }
+  // Route-based auto-triage and auto-approve (same logic as ingestWatchEvent)
+  let routed = null;
+  if (!result.deduplicated && result.intent) {
+    let routes;
+    try {
+      const rawConfig = JSON.parse(readFileSync(join(root, 'agentxchain.json'), 'utf8'));
+      routes = rawConfig?.watch?.routes;
+    } catch {}
+    const resolved = resolveWatchRoute(payload, routes);
+    if (resolved) {
+      const triageFields = { ...resolved.triage };
+      if (resolved.preferred_role) triageFields.preferred_role = resolved.preferred_role;
+      const triageResult = triageIntent(root, result.intent.intent_id, triageFields);
+      if (triageResult.ok) {
+        result.intent = triageResult.intent;
+        routed = { triaged: true, approved: false, preferred_role: resolved.preferred_role };
+        if (resolved.auto_approve) {
+          const approveResult = approveIntent(root, result.intent.intent_id, {
+            approver: 'watch_route',
+            reason: `auto-approved by watch route matching ${payload.category}`,
+          });
+          if (approveResult.ok) {
+            result.intent = approveResult.intent;
+            routed.approved = true;
+            if (resolved.auto_start) {
+              const planResult = planIntent(root, result.intent.intent_id, {
+                force: resolved.overwrite_planning_artifacts === true,
+              });
+              if (planResult.ok) {
+                result.intent = planResult.intent;
+                routed.planned = true;
+                const startResult = startIntent(root, result.intent.intent_id, {});
+                if (startResult.ok) {
+                  result.intent = startResult.intent;
+                  routed.started = true;
+                  routed.run_id = startResult.run_id || null;
+                  routed.role = startResult.role || null;
+                } else {
+                  routed.started = false;
+                  routed.auto_start_error = startResult.error;
+                }
+              } else {
+                routed.planned = false;
+                routed.started = false;
+                routed.auto_start_error = planResult.error;
+              }
+            }
+          }
+        } else if (resolved.auto_start) {
+          routed.auto_start_skipped = 'requires auto_approve';
+        }
+      }
+    }
+  }
+  if (routed) result.routed = routed;
+  // Write durable watch result
+  const watchResult = writeWatchResult(root, result, payload, { delivery_id: deliveryId });
+  // Build response
+  const response = {
+    ok: true,
+    result_id: watchResult.result_id,
+    event_id: result.event?.event_id || null,
+    intent_id: result.intent?.intent_id || null,
+    intent_status: result.intent?.status || null,
+    deduplicated: result.deduplicated === true,
+    delivery_id: deliveryId,
+    route: routed
+      ? {
+          matched: true,
+          triaged: routed.triaged === true,
+          approved: routed.approved === true,
+          planned: routed.planned === true,
+          started: routed.started === true,
+          preferred_role: routed.preferred_role || null,
+          run_id: routed.run_id || null,
+          role: routed.role || null,
+        }
+      : { matched: false },
+  };
+  writeJson(res, 200, response);
+  return { counted: true };
+}
+function readBody(req, maxBytes) {
+  return new Promise((resolve, reject) => {
+    const chunks = [];
+    let size = 0;
+    let rejected = false;
+    req.on('data', (chunk) => {
+      size += chunk.length;
+      if (size > maxBytes && !rejected) {
+        rejected = true;
+        reject(new Error('payload too large'));
+        // Resume to drain remaining data so the response can be sent
+        req.resume();
+        return;
+      }
+      if (!rejected) chunks.push(chunk);
+    });
+    req.on('end', () => {
+      if (!rejected) resolve(Buffer.concat(chunks));
+    });
+    req.on('error', (err) => {
+      if (!rejected) reject(err);
+    });
+  });
+}
+function constantTimeEqual(a, b) {
+  const bufA = Buffer.from(a, 'utf8');
+  const bufB = Buffer.from(b, 'utf8');
+  if (bufA.length !== bufB.length) return false;
+  return timingSafeEqual(bufA, bufB);
+}
+function writeJson(res, statusCode, payload) {
+  if (res.writableEnded) return;
+  res.writeHead(statusCode, {
+    'Content-Type': 'application/json; charset=utf-8',
+    'Cache-Control': 'no-cache',
+  });
+  res.end(JSON.stringify(payload));
+}