npm - aidevops - Versions diffs - 3.1.117 → 3.1.119 - Mend

aidevops 3.1.117 → 3.1.119

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/VERSION +1 -1
package/aidevops.sh +1 -1
package/package.json +1 -1
package/setup-modules/post-setup.sh +167 -0
package/setup-modules/schedulers.sh +1018 -0
package/setup.sh +19 -1061

package/setup-modules/schedulers.sh ADDED Viewed

@@ -0,0 +1,1018 @@
+#!/usr/bin/env bash
+# Scheduler setup functions: supervisor pulse, stats wrapper, process guard,
+# memory pressure monitor, screen time snapshot, contribution watch,
+# profile README, OAuth token refresh.
+# Part of aidevops setup.sh modularization (GH#5793)
+# Shell safety baseline
+set -Eeuo pipefail
+IFS=$'\n\t'
+# shellcheck disable=SC2154  # rc is assigned by $? in the trap string
+trap 'rc=$?; echo "[ERROR] ${BASH_SOURCE[0]}:${LINENO} exit $rc" >&2' ERR
+shopt -s inherit_errexit 2>/dev/null || true
+# Setup the supervisor pulse scheduler (consent-gated autonomous orchestration).
+# Uses pulse-wrapper.sh which handles dedup, orphan cleanup, and RAM-based concurrency.
+# macOS: launchd plist invoking wrapper | Linux: cron entry invoking wrapper
+# The plist is ALWAYS regenerated on setup.sh to pick up config changes (env vars,
+# thresholds). Only the first-install prompt is gated on consent state.
+setup_supervisor_pulse() {
+	local _os="$1"
+	# Ensure crontab has a global PATH= line (Linux only; macOS uses launchd env).
+	# Must run before any cron entries are installed so they inherit the PATH.
+	if [[ "$_os" != "Darwin" ]]; then
+		_ensure_cron_path
+	fi
+	# Consent model (GH#2926):
+	#   - Default OFF: supervisor_pulse defaults to false in all config layers
+	#   - Explicit consent required: user must type "y" (prompt defaults to [y/N])
+	#   - Consent persisted: written to config.jsonc so it survives updates
+	#   - Never silently re-enabled: if config says false, skip entirely
+	#   - Non-interactive: only installs if config explicitly says true
+	local wrapper_script="$HOME/.aidevops/agents/scripts/pulse-wrapper.sh"
+	local pulse_label="com.aidevops.aidevops-supervisor-pulse"
+	# Read explicit user consent from config.jsonc (not merged defaults).
+	# Empty = user never configured this; "true"/"false" = explicit choice.
+	local _pulse_user_config=""
+	if type _jsonc_get_raw &>/dev/null && [[ -f "${JSONC_USER:-$HOME/.config/aidevops/config.jsonc}" ]]; then
+		_pulse_user_config=$(_jsonc_get_raw "${JSONC_USER:-$HOME/.config/aidevops/config.jsonc}" "orchestration.supervisor_pulse")
+	fi
+	# Also check legacy .conf user override
+	if [[ -z "$_pulse_user_config" && -f "${FEATURE_TOGGLES_USER:-$HOME/.config/aidevops/feature-toggles.conf}" ]]; then
+		local _legacy_val
+		# Use awk instead of grep|tail|cut — grep exits 1 on no match, which
+		# aborts the script under set -euo pipefail. awk always exits 0.
+		_legacy_val=$(awk -F= '/^supervisor_pulse=/{val=$2} END{print val}' "${FEATURE_TOGGLES_USER:-$HOME/.config/aidevops/feature-toggles.conf}")
+		if [[ -n "$_legacy_val" ]]; then
+			_pulse_user_config="$_legacy_val"
+		fi
+	fi
+	# Also check env var override (highest priority)
+	if [[ -n "${AIDEVOPS_SUPERVISOR_PULSE:-}" ]]; then
+		_pulse_user_config="$AIDEVOPS_SUPERVISOR_PULSE"
+	fi
+	# Determine action based on consent state
+	local _do_install=false
+	local _pulse_lower
+	_pulse_lower=$(echo "$_pulse_user_config" | tr '[:upper:]' '[:lower:]')
+	if [[ "$_pulse_lower" == "false" ]]; then
+		# User explicitly declined — never prompt, never install
+		_do_install=false
+	elif [[ "$_pulse_lower" == "true" ]]; then
+		# User explicitly consented — install/regenerate
+		_do_install=true
+	elif [[ -z "$_pulse_user_config" ]]; then
+		# No explicit config — fresh install or never configured
+		if [[ "$NON_INTERACTIVE" == "true" ]]; then
+			# Non-interactive: default OFF, do not install without consent
+			_do_install=false
+		elif [[ -f "$wrapper_script" ]]; then
+			# Interactive: prompt with default-no
+			echo ""
+			echo "The supervisor pulse enables autonomous orchestration."
+			echo "It will act under your GitHub identity and consume API credits:"
+			echo "  - Dispatches AI workers to implement tasks from GitHub issues"
+			echo "  - Creates PRs, merges passing PRs, files improvement issues"
+			echo "  - 4-hourly strategic review (opus-tier) for queue health"
+			echo "  - Circuit breaker pauses dispatch on consecutive failures"
+			echo ""
+			read -r -p "Enable supervisor pulse? [y/N]: " enable_pulse
+			if [[ "$enable_pulse" =~ ^[Yy]$ ]]; then
+				_do_install=true
+				# Record explicit consent
+				if type cmd_set &>/dev/null; then
+					cmd_set "orchestration.supervisor_pulse" "true" || true
+				fi
+			else
+				_do_install=false
+				# Record explicit decline so we never re-prompt on updates
+				if type cmd_set &>/dev/null; then
+					cmd_set "orchestration.supervisor_pulse" "false" || true
+				fi
+				print_info "Skipped. Enable later: aidevops config set orchestration.supervisor_pulse true && ./setup.sh"
+			fi
+		fi
+	fi
+	# Guard: wrapper must exist
+	if [[ "$_do_install" == "true" && ! -f "$wrapper_script" ]]; then
+		# Wrapper not deployed yet — skip (will install on next run after rsync)
+		_do_install=false
+	fi
+	# Detect if pulse is already installed (for upgrade messaging)
+	# Uses shared helper to check both launchd and cron consistently
+	local _pulse_installed=false
+	if _scheduler_detect_installed \
+		"Supervisor pulse" \
+		"$pulse_label" \
+		"" \
+		"pulse-wrapper" \
+		"" \
+		"" \
+		""; then
+		_pulse_installed=true
+	fi
+	# Detect opencode binary location
+	local opencode_bin
+	opencode_bin=$(command -v opencode 2>/dev/null || echo "/opt/homebrew/bin/opencode")
+	if [[ "$_do_install" == "true" ]]; then
+		mkdir -p "$HOME/.aidevops/logs"
+		if [[ "$_os" == "Darwin" ]]; then
+			_install_pulse_launchd "$pulse_label" "$wrapper_script" "$opencode_bin" "$_pulse_installed"
+		else
+			_install_pulse_cron "$wrapper_script"
+		fi
+	elif [[ "$_pulse_lower" == "false" && "$_pulse_installed" == "true" ]]; then
+		# User explicitly disabled but pulse is still installed — clean up
+		_uninstall_pulse "$_os" "$pulse_label"
+	fi
+	# Export effective pulse state for setup_stats_wrapper.
+	# Use the actual install decision (_do_install), not just the consent string,
+	# so stats wrapper tracks the real scheduler state (e.g., wrapper missing → false).
+	PULSE_CONSENT_LOWER="$_pulse_lower"
+	if [[ "$_do_install" == "true" ]]; then
+		PULSE_ENABLED="true"
+	else
+		PULSE_ENABLED="false"
+	fi
+	return 0
+}
+# Install supervisor pulse via launchd (macOS)
+_install_pulse_launchd() {
+	local pulse_label="$1"
+	local wrapper_script="$2"
+	local opencode_bin="$3"
+	local _pulse_installed="$4"
+	local pulse_plist="$HOME/Library/LaunchAgents/${pulse_label}.plist"
+	# Unload old plist if upgrading
+	if _launchd_has_agent "$pulse_label"; then
+		launchctl unload "$pulse_plist" || true
+		pkill -f 'Supervisor Pulse' 2>/dev/null || true
+	fi
+	# Also clean up old label if present
+	local old_plist="$HOME/Library/LaunchAgents/com.aidevops.supervisor-pulse.plist"
+	if [[ -f "$old_plist" ]]; then
+		launchctl unload "$old_plist" || true
+		rm -f "$old_plist"
+	fi
+	# XML-escape paths for safe plist embedding (prevents injection
+	# if $HOME or paths contain &, <, > characters)
+	local _xml_wrapper_script _xml_home _xml_opencode_bin _xml_pulse_dir _xml_path
+	local _headless_xml_env=""
+	_xml_wrapper_script=$(_xml_escape "$wrapper_script")
+	_xml_home=$(_xml_escape "$HOME")
+	_xml_opencode_bin=$(_xml_escape "$opencode_bin")
+	# Use neutral workspace path for PULSE_DIR so supervisor sessions
+	# are not associated with any specific managed repo (GH#5136).
+	_xml_pulse_dir=$(_xml_escape "${HOME}/.aidevops/.agent-workspace")
+	_xml_path=$(_xml_escape "$PATH")
+	if [[ -n "${AIDEVOPS_HEADLESS_MODELS:-}" ]]; then
+		local _xml_headless_models
+		_xml_headless_models=$(_xml_escape "$AIDEVOPS_HEADLESS_MODELS")
+		_headless_xml_env+=$'\n'
+		_headless_xml_env+=$'\t\t<key>AIDEVOPS_HEADLESS_MODELS</key>'
+		_headless_xml_env+=$'\n'
+		_headless_xml_env+=$'\t\t'"<string>${_xml_headless_models}</string>"
+	fi
+	if [[ -n "${AIDEVOPS_HEADLESS_PROVIDER_ALLOWLIST:-}" ]]; then
+		local _xml_headless_allowlist
+		_xml_headless_allowlist=$(_xml_escape "$AIDEVOPS_HEADLESS_PROVIDER_ALLOWLIST")
+		_headless_xml_env+=$'\n'
+		_headless_xml_env+=$'\t\t<key>AIDEVOPS_HEADLESS_PROVIDER_ALLOWLIST</key>'
+		_headless_xml_env+=$'\n'
+		_headless_xml_env+=$'\t\t'"<string>${_xml_headless_allowlist}</string>"
+	fi
+	# Write the plist (always regenerated to pick up config changes)
+	cat >"$pulse_plist" <<PLIST
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>Label</key>
+	<string>${pulse_label}</string>
+	<key>ProgramArguments</key>
+	<array>
+		<string>/bin/bash</string>
+		<string>${_xml_wrapper_script}</string>
+	</array>
+	<key>StartInterval</key>
+	<integer>120</integer>
+	<key>StandardOutPath</key>
+	<string>${_xml_home}/.aidevops/logs/pulse-wrapper.log</string>
+	<key>StandardErrorPath</key>
+	<string>${_xml_home}/.aidevops/logs/pulse-wrapper.log</string>
+	<key>EnvironmentVariables</key>
+	<dict>
+		<key>PATH</key>
+		<string>${_xml_path}</string>
+		<key>HOME</key>
+		<string>${_xml_home}</string>
+		<key>OPENCODE_BIN</key>
+		<string>${_xml_opencode_bin}</string>
+		<key>PULSE_DIR</key>
+		<string>${_xml_pulse_dir}</string>
+		<key>PULSE_STALE_THRESHOLD</key>
+		<string>1800</string>
+		${_headless_xml_env}
+	</dict>
+	<key>RunAtLoad</key>
+	<true/>
+	<key>KeepAlive</key>
+	<false/>
+</dict>
+</plist>
+PLIST
+	if launchctl load "$pulse_plist"; then
+		if [[ "$_pulse_installed" == "true" ]]; then
+			print_info "Supervisor pulse updated (launchd config regenerated)"
+		else
+			print_info "Supervisor pulse enabled (launchd, every 2 min)"
+		fi
+	else
+		print_warning "Failed to load supervisor pulse LaunchAgent"
+	fi
+	return 0
+}
+# Install supervisor pulse via cron (Linux)
+_install_pulse_cron() {
+	local wrapper_script="$1"
+	# Shell-escape all interpolated paths to prevent command injection
+	# via $(…) or backticks if paths contain shell metacharacters
+	# PATH is managed globally by _ensure_cron_path() — do NOT set inline
+	# PATH= here, it overrides the global line and breaks nvm/bun/cargo.
+	# OPENCODE_BIN removed — resolved from PATH at runtime via command -v.
+	# See #4099 and #4240 for history.
+	local _cron_pulse_dir _cron_wrapper_script _cron_headless_env=""
+	# Use neutral workspace path for PULSE_DIR (GH#5136)
+	_cron_pulse_dir=$(_cron_escape "${HOME}/.aidevops/.agent-workspace")
+	_cron_wrapper_script=$(_cron_escape "$wrapper_script")
+	if [[ -n "${AIDEVOPS_HEADLESS_MODELS:-}" ]]; then
+		local _cron_headless_models
+		_cron_headless_models=$(_cron_escape "$AIDEVOPS_HEADLESS_MODELS")
+		_cron_headless_env+=" AIDEVOPS_HEADLESS_MODELS=${_cron_headless_models}"
+	fi
+	if [[ -n "${AIDEVOPS_HEADLESS_PROVIDER_ALLOWLIST:-}" ]]; then
+		local _cron_headless_allowlist
+		_cron_headless_allowlist=$(_cron_escape "$AIDEVOPS_HEADLESS_PROVIDER_ALLOWLIST")
+		_cron_headless_env+=" AIDEVOPS_HEADLESS_PROVIDER_ALLOWLIST=${_cron_headless_allowlist}"
+	fi
+	(
+		crontab -l 2>/dev/null | grep -v 'aidevops: supervisor-pulse' || true
+		echo "*/2 * * * * PULSE_DIR=${_cron_pulse_dir}${_cron_headless_env} /bin/bash ${_cron_wrapper_script} >> \"\$HOME/.aidevops/logs/pulse-wrapper.log\" 2>&1 # aidevops: supervisor-pulse"
+	) | crontab - || true
+	if crontab -l 2>/dev/null | grep -qF "aidevops: supervisor-pulse"; then
+		print_info "Supervisor pulse enabled (cron, every 2 min). Disable: crontab -e and remove the supervisor-pulse line"
+	else
+		print_warning "Failed to install supervisor pulse cron entry. See runners.md for manual setup."
+	fi
+	return 0
+}
+# Uninstall supervisor pulse (user explicitly disabled)
+_uninstall_pulse() {
+	local _os="$1"
+	local pulse_label="$2"
+	if [[ "$_os" == "Darwin" ]]; then
+		local pulse_plist="$HOME/Library/LaunchAgents/${pulse_label}.plist"
+		if _launchd_has_agent "$pulse_label"; then
+			launchctl unload "$pulse_plist" || true
+			rm -f "$pulse_plist"
+			pkill -f 'Supervisor Pulse' 2>/dev/null || true
+			print_info "Supervisor pulse disabled (launchd agent removed per config)"
+		fi
+	else
+		if crontab -l 2>/dev/null | grep -qF "pulse-wrapper"; then
+			crontab -l 2>/dev/null | grep -v 'aidevops: supervisor-pulse' | crontab - || true
+			print_info "Supervisor pulse disabled (cron entry removed per config)"
+		fi
+	fi
+	return 0
+}
+# Setup stats-wrapper scheduler — runs quality sweep and health issue updates
+# separately from the pulse (t1429). Only installed when the supervisor
+# pulse is enabled (stats are useless without it).
+setup_stats_wrapper() {
+	local _pulse_lower="$1"
+	# Use effective pulse state (PULSE_ENABLED) if available; fall back to consent string.
+	# PULSE_ENABLED reflects the actual install decision (e.g., false when wrapper is missing).
+	local _pulse_effective="${PULSE_ENABLED:-$_pulse_lower}"
+	local stats_script="$HOME/.aidevops/agents/scripts/stats-wrapper.sh"
+	local stats_label="com.aidevops.aidevops-stats-wrapper"
+	if [[ -x "$stats_script" ]] && [[ "$_pulse_effective" == "true" ]]; then
+		# Always regenerate to pick up config/format changes (matches pulse behavior)
+		if [[ "$(uname -s)" == "Darwin" ]]; then
+			local stats_plist="$HOME/Library/LaunchAgents/${stats_label}.plist"
+			local _xml_stats_script _xml_stats_home _xml_stats_path
+			_xml_stats_script=$(_xml_escape "$stats_script")
+			_xml_stats_home=$(_xml_escape "$HOME")
+			_xml_stats_path=$(_xml_escape "$PATH")
+			local stats_plist_content
+			stats_plist_content=$(
+				cat <<PLIST
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>Label</key>
+	<string>${stats_label}</string>
+	<key>ProgramArguments</key>
+	<array>
+		<string>/bin/bash</string>
+		<string>${_xml_stats_script}</string>
+	</array>
+	<key>StartInterval</key>
+	<integer>900</integer>
+	<key>StandardOutPath</key>
+	<string>${_xml_stats_home}/.aidevops/logs/stats.log</string>
+	<key>StandardErrorPath</key>
+	<string>${_xml_stats_home}/.aidevops/logs/stats.log</string>
+	<key>EnvironmentVariables</key>
+	<dict>
+		<key>PATH</key>
+		<string>${_xml_stats_path}</string>
+		<key>HOME</key>
+		<string>${_xml_stats_home}</string>
+	</dict>
+	<key>RunAtLoad</key>
+	<true/>
+	<key>KeepAlive</key>
+	<false/>
+</dict>
+</plist>
+PLIST
+			)
+			if _launchd_install_if_changed "$stats_label" "$stats_plist" "$stats_plist_content"; then
+				print_info "Stats wrapper enabled (launchd, every 15 min)"
+			else
+				print_warning "Failed to load stats wrapper LaunchAgent"
+			fi
+		else
+			local _cron_stats_script
+			_cron_stats_script=$(_cron_escape "$stats_script")
+			(
+				crontab -l 2>/dev/null | grep -v 'aidevops: stats-wrapper' || true
+				echo "*/15 * * * * /bin/bash ${_cron_stats_script} >> \"\$HOME/.aidevops/logs/stats.log\" 2>&1 # aidevops: stats-wrapper"
+			) | crontab - || true
+			if crontab -l 2>/dev/null | grep -qF "aidevops: stats-wrapper"; then
+				print_info "Stats wrapper enabled (cron, every 15 min)"
+			fi
+		fi
+	elif [[ "$_pulse_effective" == "false" ]]; then
+		# Remove stats scheduler if pulse is disabled
+		if [[ "$(uname -s)" == "Darwin" ]]; then
+			local stats_plist="$HOME/Library/LaunchAgents/${stats_label}.plist"
+			if _launchd_has_agent "$stats_label"; then
+				launchctl unload "$stats_plist" || true
+				rm -f "$stats_plist"
+				print_info "Stats wrapper disabled (launchd agent removed — pulse is off)"
+			fi
+		else
+			if crontab -l 2>/dev/null | grep -qF "aidevops: stats-wrapper"; then
+				crontab -l 2>/dev/null | grep -v 'aidevops: stats-wrapper' | crontab - || true
+				print_info "Stats wrapper disabled (cron entry removed — pulse is off)"
+			fi
+		fi
+	fi
+	return 0
+}
+# Setup process guard — kills runaway AI processes (ShellCheck bloat, stuck workers)
+# before they exhaust memory and cause kernel panics. Always installed when the
+# script exists; no consent needed (safety net, not autonomous action).
+# macOS: launchd plist (30s interval, RunAtLoad=true) | Linux: cron (every minute)
+setup_process_guard() {
+	local guard_script="$HOME/.aidevops/agents/scripts/process-guard-helper.sh"
+	local guard_label="sh.aidevops.process-guard"
+	if [[ ! -x "$guard_script" ]]; then
+		return 0
+	fi
+	mkdir -p "$HOME/.aidevops/logs"
+	if [[ "$(uname -s)" == "Darwin" ]]; then
+		local guard_plist="$HOME/Library/LaunchAgents/${guard_label}.plist"
+		# XML-escape paths for safe plist embedding (prevents injection
+		# if $HOME or paths contain &, <, > characters)
+		local _xml_guard_script _xml_guard_home _xml_guard_path
+		_xml_guard_script=$(_xml_escape "$guard_script")
+		_xml_guard_home=$(_xml_escape "$HOME")
+		_xml_guard_path=$(_xml_escape "$PATH")
+		local guard_plist_content
+		guard_plist_content=$(
+			cat <<GUARD_PLIST
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>Label</key>
+	<string>${guard_label}</string>
+	<key>ProgramArguments</key>
+	<array>
+		<string>/bin/bash</string>
+		<string>${_xml_guard_script}</string>
+		<string>kill-runaways</string>
+	</array>
+	<key>StartInterval</key>
+	<integer>30</integer>
+	<key>StandardOutPath</key>
+	<string>${_xml_guard_home}/.aidevops/logs/process-guard.log</string>
+	<key>StandardErrorPath</key>
+	<string>${_xml_guard_home}/.aidevops/logs/process-guard.log</string>
+	<key>EnvironmentVariables</key>
+	<dict>
+		<key>PATH</key>
+		<string>${_xml_guard_path}</string>
+		<key>HOME</key>
+		<string>${_xml_guard_home}</string>
+		<key>SHELLCHECK_RSS_LIMIT_KB</key>
+		<string>524288</string>
+		<key>SHELLCHECK_RUNTIME_LIMIT</key>
+		<string>120</string>
+		<key>CHILD_RSS_LIMIT_KB</key>
+		<string>8388608</string>
+		<key>CHILD_RUNTIME_LIMIT</key>
+		<string>7200</string>
+	</dict>
+	<key>RunAtLoad</key>
+	<true/>
+	<key>KeepAlive</key>
+	<false/>
+</dict>
+</plist>
+GUARD_PLIST
+		)
+		if _launchd_install_if_changed "$guard_label" "$guard_plist" "$guard_plist_content"; then
+			print_info "Process guard enabled (launchd, every 30s, survives reboot)"
+		else
+			print_warning "Failed to load process guard LaunchAgent"
+		fi
+	else
+		# Linux: cron entry (every minute — cron minimum granularity)
+		# Always regenerate to pick up config changes (matches macOS behavior)
+		# Shell-escape path to prevent command injection via metacharacters
+		local _cron_guard_script
+		_cron_guard_script=$(_cron_escape "$guard_script")
+		(
+			crontab -l 2>/dev/null | grep -v 'aidevops: process-guard' || true
+			echo "* * * * * SHELLCHECK_RSS_LIMIT_KB=524288 SHELLCHECK_RUNTIME_LIMIT=120 CHILD_RSS_LIMIT_KB=8388608 CHILD_RUNTIME_LIMIT=7200 /bin/bash ${_cron_guard_script} kill-runaways >> \"\$HOME/.aidevops/logs/process-guard.log\" 2>&1 # aidevops: process-guard"
+		) | crontab - || true
+		if crontab -l 2>/dev/null | grep -qF "aidevops: process-guard"; then
+			print_info "Process guard enabled (cron, every minute)"
+		else
+			print_warning "Failed to install process guard cron entry"
+		fi
+	fi
+	return 0
+}
+# Setup memory pressure monitor — process-focused memory watchdog (t1398.5, GH#2915).
+# Monitors individual process RSS, runtime, session count, and aggregate memory.
+# Auto-kills runaway ShellCheck (language server respawns them). Always installed
+# when the script exists; no consent needed (safety net, not autonomous action).
+# macOS: launchd plist (60s interval, RunAtLoad=true) | Linux: cron (every minute)
+setup_memory_pressure_monitor() {
+	local monitor_script="$HOME/.aidevops/agents/scripts/memory-pressure-monitor.sh"
+	local monitor_label="sh.aidevops.memory-pressure-monitor"
+	if [[ ! -x "$monitor_script" ]]; then
+		return 0
+	fi
+	mkdir -p "$HOME/.aidevops/logs"
+	if [[ "$(uname -s)" == "Darwin" ]]; then
+		local monitor_plist="$HOME/Library/LaunchAgents/${monitor_label}.plist"
+		# XML-escape paths for safe plist embedding
+		local _xml_monitor_script _xml_monitor_home
+		_xml_monitor_script=$(_xml_escape "$monitor_script")
+		_xml_monitor_home=$(_xml_escape "$HOME")
+		local monitor_plist_content
+		monitor_plist_content=$(
+			cat <<MONITOR_PLIST
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>Label</key>
+	<string>${monitor_label}</string>
+	<key>ProgramArguments</key>
+	<array>
+		<string>/bin/bash</string>
+		<string>${_xml_monitor_script}</string>
+	</array>
+	<key>StartInterval</key>
+	<integer>60</integer>
+	<key>StandardOutPath</key>
+	<string>${_xml_monitor_home}/.aidevops/logs/memory-pressure-launchd.log</string>
+	<key>StandardErrorPath</key>
+	<string>${_xml_monitor_home}/.aidevops/logs/memory-pressure-launchd.log</string>
+	<key>EnvironmentVariables</key>
+	<dict>
+		<key>PATH</key>
+		<string>/opt/homebrew/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin</string>
+		<key>HOME</key>
+		<string>${_xml_monitor_home}</string>
+	</dict>
+	<key>RunAtLoad</key>
+	<true/>
+	<key>KeepAlive</key>
+	<false/>
+	<key>ProcessType</key>
+	<string>Background</string>
+	<key>LowPriorityBackgroundIO</key>
+	<true/>
+	<key>Nice</key>
+	<integer>10</integer>
+</dict>
+</plist>
+MONITOR_PLIST
+		)
+		if _launchd_install_if_changed "$monitor_label" "$monitor_plist" "$monitor_plist_content"; then
+			print_info "Memory pressure monitor enabled (launchd, every 60s, survives reboot)"
+		else
+			print_warning "Failed to load memory pressure monitor LaunchAgent"
+		fi
+	else
+		# Linux: cron entry (every minute — cron minimum granularity)
+		(
+			crontab -l 2>/dev/null | grep -v 'aidevops: memory-pressure-monitor' || true
+			echo "* * * * * /bin/bash \"${monitor_script}\" >> \"\$HOME/.aidevops/logs/memory-pressure-launchd.log\" 2>&1 # aidevops: memory-pressure-monitor"
+		) | crontab - 2>/dev/null || true
+		if crontab -l 2>/dev/null | grep -qF "aidevops: memory-pressure-monitor" 2>/dev/null; then
+			print_info "Memory pressure monitor enabled (cron, every minute)"
+		else
+			print_warning "Failed to install memory pressure monitor cron entry"
+		fi
+	fi
+	return 0
+}
+# Setup screen time snapshot — captures daily screen time for contributor stats.
+# Accumulates data in screen-time.jsonl (macOS Knowledge DB retains only ~28 days).
+# Always installed when the script exists; no consent needed (data collection only).
+# macOS: launchd plist (every 6h, RunAtLoad=true) | Linux: cron (every 6h)
+setup_screen_time_snapshot() {
+	local st_script="$HOME/.aidevops/agents/scripts/screen-time-helper.sh"
+	local st_label="sh.aidevops.screen-time-snapshot"
+	if [[ ! -x "$st_script" ]]; then
+		return 0
+	fi
+	mkdir -p "$HOME/.aidevops/.agent-workspace/logs"
+	if [[ "$(uname -s)" == "Darwin" ]]; then
+		local st_plist="$HOME/Library/LaunchAgents/${st_label}.plist"
+		# XML-escape paths for safe plist embedding
+		local _xml_st_script _xml_st_home
+		_xml_st_script=$(_xml_escape "$st_script")
+		_xml_st_home=$(_xml_escape "$HOME")
+		local st_plist_content
+		st_plist_content=$(
+			cat <<ST_PLIST
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>Label</key>
+	<string>${st_label}</string>
+	<key>ProgramArguments</key>
+	<array>
+		<string>/bin/bash</string>
+		<string>${_xml_st_script}</string>
+		<string>snapshot</string>
+	</array>
+	<key>StartInterval</key>
+	<integer>21600</integer>
+	<key>StandardOutPath</key>
+	<string>${_xml_st_home}/.aidevops/.agent-workspace/logs/screen-time-snapshot.log</string>
+	<key>StandardErrorPath</key>
+	<string>${_xml_st_home}/.aidevops/.agent-workspace/logs/screen-time-snapshot.log</string>
+	<key>EnvironmentVariables</key>
+	<dict>
+		<key>PATH</key>
+		<string>/opt/homebrew/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin</string>
+		<key>HOME</key>
+		<string>${_xml_st_home}</string>
+	</dict>
+	<key>RunAtLoad</key>
+	<true/>
+	<key>KeepAlive</key>
+	<false/>
+	<key>ProcessType</key>
+	<string>Background</string>
+	<key>LowPriorityBackgroundIO</key>
+	<true/>
+	<key>Nice</key>
+	<integer>10</integer>
+</dict>
+</plist>
+ST_PLIST
+		)
+		if _launchd_install_if_changed "$st_label" "$st_plist" "$st_plist_content"; then
+			print_info "Screen time snapshot enabled (launchd, every 6h, survives reboot)"
+		else
+			print_warning "Failed to load screen time snapshot LaunchAgent"
+		fi
+	else
+		# Linux: cron entry (every 6 hours)
+		local _cron_st_script
+		_cron_st_script=$(_cron_escape "$st_script")
+		(
+			crontab -l 2>/dev/null | grep -v 'aidevops: screen-time-snapshot' || true
+			echo "0 */6 * * * /bin/bash ${_cron_st_script} snapshot >> \"\$HOME/.aidevops/.agent-workspace/logs/screen-time-snapshot.log\" 2>&1 # aidevops: screen-time-snapshot"
+		) | crontab - 2>/dev/null || true
+		if crontab -l 2>/dev/null | grep -qF "aidevops: screen-time-snapshot" 2>/dev/null; then
+			print_info "Screen time snapshot enabled (cron, every 6h)"
+		else
+			print_warning "Failed to install screen time snapshot cron entry"
+		fi
+	fi
+	return 0
+}
+# Setup contribution watch — monitors external issues/PRs for new activity (t1554).
+# Auto-seeds on first run (discovers authored/commented issues/PRs), then installs
+# a launchd/cron job to scan periodically. Requires gh CLI authenticated.
+# No consent needed — this is passive monitoring (read-only notifications API),
+# not autonomous action. Comment bodies are never processed by LLM in automated context.
+# Respects config: aidevops config set orchestration.contribution_watch false
+setup_contribution_watch() {
+	local cw_script="$HOME/.aidevops/agents/scripts/contribution-watch-helper.sh"
+	local cw_label="sh.aidevops.contribution-watch"
+	local cw_state="$HOME/.aidevops/cache/contribution-watch.json"
+	if ! [[ -x "$cw_script" ]] || ! is_feature_enabled orchestration.contribution_watch 2>/dev/null || ! command -v gh &>/dev/null || ! gh auth status &>/dev/null 2>&1; then
+		return 0
+	fi
+	# Resolve log directory from config (paths.log_dir), expanding ~ to $HOME.
+	# Falls back to the default if config is unavailable or jq is missing.
+	# Validate before expansion to guard against shell metacharacter injection.
+	local _cw_log_dir
+	# shellcheck disable=SC2088  # Tilde is intentionally literal here; expanded below via ${/#\~/$HOME}
+	if type _jsonc_get &>/dev/null; then
+		_cw_log_dir=$(_jsonc_get "paths.log_dir" "~/.aidevops/logs")
+	else
+		_cw_log_dir="~/.aidevops/logs"
+	fi
+	# Whitelist: only allow characters safe in shell paths and cron lines.
+	# Reject anything outside [A-Za-z0-9_./ ~-] (tilde allowed before expansion).
+	# Store regex in variable — bash [[ =~ ]] requires unquoted RHS for regex,
+	# and a variable avoids quoting issues with special chars in the pattern.
+	local _cw_log_dir_re='^[A-Za-z0-9_./ ~-]+$'
+	if ! [[ "$_cw_log_dir" =~ $_cw_log_dir_re ]]; then
+		print_error "Invalid characters in paths.log_dir (only [A-Za-z0-9_./ ~-] allowed): $_cw_log_dir"
+		return 1
+	fi
+	_cw_log_dir="${_cw_log_dir/#\~/$HOME}"
+	mkdir -p "$HOME/.aidevops/cache" "$_cw_log_dir"
+	# Auto-seed on first run (populates state file with existing contributions)
+	if [[ ! -f "$cw_state" ]]; then
+		print_info "Discovering external contributions for contribution watch..."
+		if bash "$cw_script" seed >/dev/null 2>&1; then
+			print_info "Contribution watch seeded (external issues/PRs discovered)"
+		else
+			print_warning "Contribution watch seed failed (non-fatal, will retry on next run)"
+		fi
+	fi
+	# Install/update scheduled scanner
+	if [[ "$(uname -s)" == "Darwin" ]]; then
+		local cw_plist="$HOME/Library/LaunchAgents/${cw_label}.plist"
+		local _xml_cw_script _xml_cw_home _xml_cw_log_dir
+		_xml_cw_script=$(_xml_escape "$cw_script")
+		_xml_cw_home=$(_xml_escape "$HOME")
+		_xml_cw_log_dir=$(_xml_escape "$_cw_log_dir")
+		local cw_plist_content
+		cw_plist_content=$(
+			cat <<CW_PLIST
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>Label</key>
+	<string>${cw_label}</string>
+	<key>ProgramArguments</key>
+	<array>
+		<string>/bin/bash</string>
+		<string>${_xml_cw_script}</string>
+		<string>scan</string>
+	</array>
+	<key>StartInterval</key>
+	<integer>3600</integer>
+	<key>StandardOutPath</key>
+	<string>${_xml_cw_log_dir}/contribution-watch.log</string>
+	<key>StandardErrorPath</key>
+	<string>${_xml_cw_log_dir}/contribution-watch.log</string>
+	<key>EnvironmentVariables</key>
+	<dict>
+		<key>PATH</key>
+		<string>/opt/homebrew/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin</string>
+		<key>HOME</key>
+		<string>${_xml_cw_home}</string>
+	</dict>
+	<key>RunAtLoad</key>
+	<false/>
+	<key>KeepAlive</key>
+	<false/>
+	<key>ProcessType</key>
+	<string>Background</string>
+	<key>LowPriorityBackgroundIO</key>
+	<true/>
+	<key>Nice</key>
+	<integer>10</integer>
+</dict>
+</plist>
+CW_PLIST
+		)
+		if _launchd_install_if_changed "$cw_label" "$cw_plist" "$cw_plist_content"; then
+			print_info "Contribution watch enabled (launchd, hourly scan)"
+		else
+			print_warning "Failed to load contribution watch LaunchAgent"
+		fi
+	else
+		# Linux: cron entry (hourly)
+		local _cron_cw_script _cron_cw_log_dir
+		_cron_cw_script=$(_cron_escape "$cw_script")
+		_cron_cw_log_dir=$(_cron_escape "$_cw_log_dir")
+		(
+			crontab -l 2>/dev/null | grep -v 'aidevops: contribution-watch' || true
+			echo "0 * * * * /bin/bash ${_cron_cw_script} scan >> \"${_cron_cw_log_dir}/contribution-watch.log\" 2>&1 # aidevops: contribution-watch"
+		) | crontab - 2>/dev/null || true
+		if crontab -l 2>/dev/null | grep -qF "aidevops: contribution-watch" 2>/dev/null; then
+			print_info "Contribution watch enabled (cron, hourly scan)"
+		else
+			print_warning "Failed to install contribution watch cron entry"
+		fi
+	fi
+	return 0
+}
+# Setup draft responses — private repo + local draft storage for reviewing
+# AI-drafted replies to external contributions (t1555).
+# Respects config: aidevops config set orchestration.draft_responses false
+setup_draft_responses() {
+	local dr_script="$HOME/.aidevops/agents/scripts/draft-response-helper.sh"
+	if [[ -x "$dr_script" ]] && is_feature_enabled orchestration.draft_responses 2>/dev/null && is_feature_enabled orchestration.contribution_watch 2>/dev/null && command -v gh &>/dev/null && gh auth status &>/dev/null 2>&1; then
+		mkdir -p "$HOME/.aidevops/.agent-workspace/draft-responses"
+		if bash "$dr_script" init >/dev/null 2>&1; then
+			print_info "Draft responses ready (private repo + local drafts)"
+		else
+			print_warning "Draft responses repo setup failed (non-fatal, local drafts still work)"
+		fi
+	fi
+	return 0
+}
+# Setup profile README — auto-create repo and seed README if not already set up.
+# Requires gh CLI authenticated. Creates username/username repo, seeds README
+# with stat markers, registers in repos.json with priority: "profile".
+setup_profile_readme() {
+	local pr_script="$HOME/.aidevops/agents/scripts/profile-readme-helper.sh"
+	local pr_label="sh.aidevops.profile-readme-update"
+	if ! [[ -x "$pr_script" ]] || ! command -v gh &>/dev/null || ! gh auth status &>/dev/null; then
+		return 0
+	fi
+	# Initialize profile repo if not already set up.
+	# Always run init — it's idempotent and handles:
+	#   - Fresh installs (no profile repo)
+	#   - Missing markers (injects them into existing README)
+	#   - Diverged history (repo deleted and recreated on GitHub)
+	#   - Already-initialized repos (returns early with no changes)
+	print_info "Checking GitHub profile README..."
+	if bash "$pr_script" init; then
+		print_info "Profile README ready."
+	else
+		print_warning "Profile README setup failed (non-fatal, skipping)"
+	fi
+	# Profile README auto-update scheduled job.
+	# Installed whenever gh CLI is available — the update script self-heals
+	# (discovers/creates the profile repo on first run via _resolve_profile_repo).
+	# macOS: launchd plist (hourly) | Linux: cron (hourly)
+	mkdir -p "$HOME/.aidevops/.agent-workspace/logs"
+	if [[ "$(uname -s)" == "Darwin" ]]; then
+		local pr_plist="$HOME/Library/LaunchAgents/${pr_label}.plist"
+		# XML-escape paths for safe plist embedding
+		local _xml_pr_script _xml_pr_home
+		_xml_pr_script=$(_xml_escape "$pr_script")
+		_xml_pr_home=$(_xml_escape "$HOME")
+		local pr_plist_content
+		pr_plist_content=$(
+			cat <<PR_PLIST
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>Label</key>
+	<string>${pr_label}</string>
+	<key>ProgramArguments</key>
+	<array>
+		<string>/bin/bash</string>
+		<string>${_xml_pr_script}</string>
+		<string>update</string>
+	</array>
+	<key>StartInterval</key>
+	<integer>3600</integer>
+	<key>StandardOutPath</key>
+	<string>${_xml_pr_home}/.aidevops/.agent-workspace/logs/profile-readme-update.log</string>
+	<key>StandardErrorPath</key>
+	<string>${_xml_pr_home}/.aidevops/.agent-workspace/logs/profile-readme-update.log</string>
+	<key>EnvironmentVariables</key>
+	<dict>
+		<key>PATH</key>
+		<string>/opt/homebrew/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin</string>
+		<key>HOME</key>
+		<string>${_xml_pr_home}</string>
+	</dict>
+	<key>RunAtLoad</key>
+	<false/>
+	<key>KeepAlive</key>
+	<false/>
+	<key>ProcessType</key>
+	<string>Background</string>
+	<key>LowPriorityBackgroundIO</key>
+	<true/>
+	<key>Nice</key>
+	<integer>10</integer>
+</dict>
+</plist>
+PR_PLIST
+		)
+		if _launchd_install_if_changed "$pr_label" "$pr_plist" "$pr_plist_content"; then
+			print_info "Profile README update enabled (launchd, hourly)"
+		else
+			print_warning "Failed to load profile README update LaunchAgent"
+		fi
+	else
+		# Linux: cron entry (hourly)
+		local _cron_pr_script
+		_cron_pr_script=$(_cron_escape "$pr_script")
+		(
+			crontab -l 2>/dev/null | grep -v 'aidevops: profile-readme-update' || true
+			echo "0 * * * * /bin/bash ${_cron_pr_script} update >> \"\$HOME/.aidevops/.agent-workspace/logs/profile-readme-update.log\" 2>&1 # aidevops: profile-readme-update"
+		) | crontab - 2>/dev/null || true
+		if crontab -l 2>/dev/null | grep -qF "aidevops: profile-readme-update" 2>/dev/null; then
+			print_info "Profile README update enabled (cron, hourly)"
+		else
+			print_warning "Failed to install profile README update cron entry"
+		fi
+	fi
+	return 0
+}
+# Setup OAuth token refresh scheduled job.
+# Refreshes expired/expiring tokens every 30 min so sessions never hit
+# "invalid x-api-key". Also runs at load to catch tokens that expired
+# while the machine was off.
+setup_oauth_token_refresh() {
+	local tr_script="$HOME/.aidevops/agents/scripts/oauth-pool-helper.sh"
+	local tr_label="sh.aidevops.token-refresh"
+	if ! [[ -x "$tr_script" ]] || ! [[ -f "$HOME/.aidevops/oauth-pool.json" ]]; then
+		return 0
+	fi
+	mkdir -p "$HOME/.aidevops/.agent-workspace/logs"
+	if [[ "$(uname -s)" == "Darwin" ]]; then
+		local tr_plist="$HOME/Library/LaunchAgents/${tr_label}.plist"
+		local _xml_tr_script _xml_tr_home
+		_xml_tr_script=$(_xml_escape "$tr_script")
+		_xml_tr_home=$(_xml_escape "$HOME")
+		local tr_plist_content
+		tr_plist_content=$(
+			cat <<TR_PLIST
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>Label</key>
+	<string>${tr_label}</string>
+	<key>ProgramArguments</key>
+	<array>
+		<string>/bin/bash</string>
+		<string>-c</string>
+		<string>&quot;${_xml_tr_script}&quot; refresh anthropic; &quot;${_xml_tr_script}&quot; refresh openai</string>
+	</array>
+	<key>StartInterval</key>
+	<integer>1800</integer>
+	<key>StandardOutPath</key>
+	<string>${_xml_tr_home}/.aidevops/.agent-workspace/logs/token-refresh.log</string>
+	<key>StandardErrorPath</key>
+	<string>${_xml_tr_home}/.aidevops/.agent-workspace/logs/token-refresh.log</string>
+	<key>EnvironmentVariables</key>
+	<dict>
+		<key>PATH</key>
+		<string>/opt/homebrew/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin</string>
+		<key>HOME</key>
+		<string>${_xml_tr_home}</string>
+	</dict>
+	<key>RunAtLoad</key>
+	<true/>
+	<key>KeepAlive</key>
+	<false/>
+	<key>ProcessType</key>
+	<string>Background</string>
+	<key>LowPriorityBackgroundIO</key>
+	<true/>
+	<key>Nice</key>
+	<integer>10</integer>
+</dict>
+</plist>
+TR_PLIST
+		)
+		if _launchd_install_if_changed "$tr_label" "$tr_plist" "$tr_plist_content"; then
+			print_info "OAuth token refresh enabled (launchd, every 30 min)"
+		else
+			print_warning "Failed to load token refresh LaunchAgent"
+		fi
+	else
+		# Linux: cron entry (every 30 min)
+		local _cron_tr_script
+		_cron_tr_script=$(_cron_escape "$tr_script")
+		(
+			crontab -l 2>/dev/null | grep -v 'aidevops: token-refresh' || true
+			echo "*/30 * * * * /bin/bash ${_cron_tr_script} refresh anthropic >> \"\$HOME/.aidevops/.agent-workspace/logs/token-refresh.log\" 2>&1; /bin/bash ${_cron_tr_script} refresh openai >> \"\$HOME/.aidevops/.agent-workspace/logs/token-refresh.log\" 2>&1 # aidevops: token-refresh"
+		) | crontab - 2>/dev/null || true
+		if crontab -l 2>/dev/null | grep -qF "aidevops: token-refresh" 2>/dev/null; then
+			print_info "OAuth token refresh enabled (cron, every 30 min)"
+		else
+			print_warning "Failed to install token refresh cron entry"
+		fi
+	fi
+	return 0
+}
+# Setup repo-sync scheduler if not already installed.
+# Keeps local git repos up to date with daily ff-only pulls.
+# Respects config: aidevops config set orchestration.repo_sync false
+setup_repo_sync() {
+	local repo_sync_script="$HOME/.aidevops/agents/scripts/repo-sync-helper.sh"
+	if ! [[ -x "$repo_sync_script" ]] || ! is_feature_enabled repo_sync 2>/dev/null; then
+		return 0
+	fi
+	local _repo_sync_installed=false
+	if _launchd_has_agent "com.aidevops.aidevops-repo-sync"; then
+		_repo_sync_installed=true
+	elif crontab -l 2>/dev/null | grep -qF "aidevops-repo-sync"; then
+		_repo_sync_installed=true
+	fi
+	if [[ "$_repo_sync_installed" == "false" ]]; then
+		if [[ "$NON_INTERACTIVE" == "true" ]]; then
+			bash "$repo_sync_script" enable >/dev/null 2>&1 || true
+			print_info "Repo sync enabled (daily). Disable: aidevops repo-sync disable"
+		else
+			echo ""
+			echo "Repo sync keeps your local git repos up to date by running"
+			echo "git pull --ff-only daily on clean repos on their default branch."
+			echo ""
+			read -r -p "Enable daily repo sync? [Y/n]: " enable_repo_sync
+			if [[ "$enable_repo_sync" =~ ^[Yy]?$ || -z "$enable_repo_sync" ]]; then
+				bash "$repo_sync_script" enable
+			else
+				print_info "Skipped. Enable later: aidevops repo-sync enable"
+			fi
+		fi
+	fi
+	return 0
+}