npm - avorelo - Versions diffs - 0.1.0 → 0.3.0 - Mend

avorelo 0.1.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (260) hide show

package/LICENSE +23 -16
package/README.md +90 -51
package/bin/avorelo.mjs +7 -0
package/dist/avorelo.mjs +19741 -0
package/package.json +135 -120
package/bin/avorelo +0 -9
package/scripts/README.md +0 -40
package/scripts/cco-dashboard.js +0 -252
package/scripts/cco-status.js +0 -430
package/scripts/lib/activation/account-state.js +0 -37
package/scripts/lib/activation/activation-runner.js +0 -546
package/scripts/lib/activation/activation-self-healing.js +0 -480
package/scripts/lib/activation/activation-state.js +0 -83
package/scripts/lib/activation/activation-summary.js +0 -191
package/scripts/lib/activation/adapters/claude-code.js +0 -77
package/scripts/lib/activation/adapters/codex-cli.js +0 -52
package/scripts/lib/activation/adapters/cursor.js +0 -37
package/scripts/lib/activation/adapters/github-agent.js +0 -39
package/scripts/lib/activation/adapters/terminal.js +0 -42
package/scripts/lib/activation/adapters/vscode.js +0 -39
package/scripts/lib/activation/adapters/windsurf.js +0 -37
package/scripts/lib/activation/ai-surface-detector.js +0 -151
package/scripts/lib/activation/connect-account.js +0 -145
package/scripts/lib/activation/detect-environment.js +0 -75
package/scripts/lib/activation/detect-hosts.js +0 -62
package/scripts/lib/activation/format-activation-output.js +0 -109
package/scripts/lib/activation/next-action.js +0 -43
package/scripts/lib/activation/repair-engine.js +0 -219
package/scripts/lib/activation-distribution-readiness.js +0 -507
package/scripts/lib/adapter-conformance.js +0 -176
package/scripts/lib/adapter-readiness.js +0 -417
package/scripts/lib/adapter-safety-boundaries.js +0 -335
package/scripts/lib/adapter-technical-readiness-gate.js +0 -205
package/scripts/lib/agent-access-governance.js +0 -455
package/scripts/lib/agent-enforcement.js +0 -765
package/scripts/lib/agent-policy-profile.js +0 -210
package/scripts/lib/agent-security/action-evaluator.js +0 -507
package/scripts/lib/agent-security/adapter-registry.js +0 -98
package/scripts/lib/agent-security/auto-policy.js +0 -139
package/scripts/lib/agent-security/bounded-scan.js +0 -93
package/scripts/lib/agent-security/enforcement-adapter.js +0 -174
package/scripts/lib/agent-security/enforcement-engine.js +0 -1129
package/scripts/lib/agent-security/file-write-adapter.js +0 -183
package/scripts/lib/agent-security/file-write-rules.js +0 -178
package/scripts/lib/agent-security/index.js +0 -3342
package/scripts/lib/agent-security/instruction-risk.js +0 -181
package/scripts/lib/agent-security/mcp-action-adapter.js +0 -185
package/scripts/lib/agent-security/mcp-action-rules.js +0 -184
package/scripts/lib/agent-security/package-action-adapter.js +0 -175
package/scripts/lib/agent-security/package-action-rules.js +0 -233
package/scripts/lib/agent-security/performance.js +0 -148
package/scripts/lib/agent-security/permission-minimizer.js +0 -403
package/scripts/lib/agent-security/scan-cache.js +0 -74
package/scripts/lib/agent-security/source-trust.js +0 -146
package/scripts/lib/ai-install-prompt.js +0 -288
package/scripts/lib/ai-workspace-hygiene.js +0 -1499
package/scripts/lib/alpha-activation.js +0 -520
package/scripts/lib/alpha-feedback.js +0 -263
package/scripts/lib/alpha-readiness-gate.js +0 -332
package/scripts/lib/anti-gaming.js +0 -169
package/scripts/lib/artifact-health.js +0 -431
package/scripts/lib/attribution.js +0 -180
package/scripts/lib/audit.js +0 -289
package/scripts/lib/avorelo-skill-registry.js +0 -810
package/scripts/lib/batch-jobs.js +0 -71
package/scripts/lib/brain-pack.js +0 -578
package/scripts/lib/brand-boundary.js +0 -424
package/scripts/lib/brand.js +0 -74
package/scripts/lib/browser-capability.js +0 -1048
package/scripts/lib/browser-proof-preflight.js +0 -321
package/scripts/lib/cache-readiness.js +0 -187
package/scripts/lib/canonical-reentry.js +0 -162
package/scripts/lib/capability-packs.js +0 -314
package/scripts/lib/capability-recommender.js +0 -512
package/scripts/lib/capability-registry.js +0 -1059
package/scripts/lib/carry-forward-surfacing.js +0 -194
package/scripts/lib/ccusage-adapter.js +0 -188
package/scripts/lib/company-loop.js +0 -1149
package/scripts/lib/config.js +0 -637
package/scripts/lib/context-acquisition-plan.js +0 -287
package/scripts/lib/context-budget-guard.js +0 -170
package/scripts/lib/context-budget-scanner.js +0 -257
package/scripts/lib/context-optimizer.js +0 -715
package/scripts/lib/context-reduction-plan.js +0 -178
package/scripts/lib/context-safety.js +0 -88
package/scripts/lib/context-savings-engine.js +0 -158
package/scripts/lib/cost-evidence.js +0 -254
package/scripts/lib/cross-host-install-plan.js +0 -308
package/scripts/lib/cross-host-install-readiness.js +0 -237
package/scripts/lib/cross-host-value-flow.js +0 -268
package/scripts/lib/dashboard.js +0 -900
package/scripts/lib/design-partner-feedback.js +0 -346
package/scripts/lib/entitlements.js +0 -100
package/scripts/lib/execution-packet.js +0 -559
package/scripts/lib/experimentation-events.js +0 -547
package/scripts/lib/external-capability-compliance.js +0 -107
package/scripts/lib/external-user-simulation.js +0 -166
package/scripts/lib/failure-recovery-readiness.js +0 -81
package/scripts/lib/failure-recovery.js +0 -419
package/scripts/lib/feedback-intelligence.js +0 -537
package/scripts/lib/feedback-signals.js +0 -205
package/scripts/lib/file-integrity.js +0 -68
package/scripts/lib/fsx.js +0 -127
package/scripts/lib/full-readiness-gate.js +0 -451
package/scripts/lib/guidance-builder.js +0 -174
package/scripts/lib/hook-apply.js +0 -1019
package/scripts/lib/hook-baseline.js +0 -310
package/scripts/lib/hook-config-preview.js +0 -275
package/scripts/lib/hook-contracts.js +0 -290
package/scripts/lib/hook-safety-boundary-readiness.js +0 -80
package/scripts/lib/host-capability-matrix.js +0 -351
package/scripts/lib/host-support-context.js +0 -254
package/scripts/lib/http-hook-action.js +0 -538
package/scripts/lib/install-ai-readiness.js +0 -84
package/scripts/lib/install-intake-risk.js +0 -1037
package/scripts/lib/install-journey-intelligence.js +0 -329
package/scripts/lib/intervention-guidance.js +0 -57
package/scripts/lib/known-limitations.js +0 -115
package/scripts/lib/l8-path-truth.js +0 -146
package/scripts/lib/launch-hardening-gate.js +0 -436
package/scripts/lib/launch-readiness.js +0 -628
package/scripts/lib/learning-memory.js +0 -686
package/scripts/lib/lifecycle-hooks.js +0 -802
package/scripts/lib/local-package-smoke.js +0 -423
package/scripts/lib/local-pricing.js +0 -299
package/scripts/lib/mcp-enforcement.js +0 -311
package/scripts/lib/mcp-least-privilege-policy.js +0 -303
package/scripts/lib/mcp-tool-inventory.js +0 -388
package/scripts/lib/mcp-tool-risk.js +0 -0
package/scripts/lib/memory.js +0 -335
package/scripts/lib/metrics.js +0 -699
package/scripts/lib/micro-proof.js +0 -133
package/scripts/lib/next-run-context.js +0 -436
package/scripts/lib/operating-value.js +0 -1648
package/scripts/lib/optimization-v3.js +0 -122
package/scripts/lib/orchestration/adapters/_shared.js +0 -49
package/scripts/lib/orchestration/adapters/aider.js +0 -18
package/scripts/lib/orchestration/adapters/claude-code.js +0 -35
package/scripts/lib/orchestration/adapters/codex.js +0 -35
package/scripts/lib/orchestration/adapters/gemini-cli.js +0 -18
package/scripts/lib/orchestration/adapters/git.js +0 -25
package/scripts/lib/orchestration/adapters/index.js +0 -31
package/scripts/lib/orchestration/adapters/lm-studio.js +0 -18
package/scripts/lib/orchestration/adapters/ollama.js +0 -18
package/scripts/lib/orchestration/adapters/opencode.js +0 -18
package/scripts/lib/orchestration/adapters/openrouter.js +0 -18
package/scripts/lib/orchestration/adapters/test-runner.js +0 -25
package/scripts/lib/orchestration/cli.js +0 -438
package/scripts/lib/orchestration/execution-manager.js +0 -279
package/scripts/lib/orchestration/handoff.js +0 -314
package/scripts/lib/orchestration/index.js +0 -456
package/scripts/lib/orchestration/inventory.js +0 -47
package/scripts/lib/orchestration/model-discovery.js +0 -498
package/scripts/lib/orchestration/model-profiler.js +0 -170
package/scripts/lib/orchestration/model-profiles.js +0 -252
package/scripts/lib/orchestration/model-refresh-policy.js +0 -72
package/scripts/lib/orchestration/proof-writer.js +0 -349
package/scripts/lib/orchestration/provider-discovery/aider.js +0 -49
package/scripts/lib/orchestration/provider-discovery/claude-code.js +0 -56
package/scripts/lib/orchestration/provider-discovery/codex.js +0 -49
package/scripts/lib/orchestration/provider-discovery/common.js +0 -186
package/scripts/lib/orchestration/provider-discovery/gemini.js +0 -106
package/scripts/lib/orchestration/provider-discovery/lm-studio.js +0 -118
package/scripts/lib/orchestration/provider-discovery/models-dev.js +0 -12
package/scripts/lib/orchestration/provider-discovery/ollama.js +0 -100
package/scripts/lib/orchestration/provider-discovery/opencode.js +0 -47
package/scripts/lib/orchestration/provider-discovery/openrouter.js +0 -44
package/scripts/lib/orchestration/risk-classifier.js +0 -130
package/scripts/lib/orchestration/routing-policy.js +0 -486
package/scripts/lib/orchestration/settings.js +0 -112
package/scripts/lib/orchestration/state.js +0 -165
package/scripts/lib/orchestration/verification-manager.js +0 -138
package/scripts/lib/output-profiles.js +0 -146
package/scripts/lib/package-content-audit.js +0 -368
package/scripts/lib/package-runtime.js +0 -278
package/scripts/lib/plan-surface.js +0 -53
package/scripts/lib/plans.js +0 -2318
package/scripts/lib/policy-provider.js +0 -27
package/scripts/lib/prelaunch-activation-readiness.js +0 -409
package/scripts/lib/prelaunch-evidence-store.js +0 -816
package/scripts/lib/prelaunch-intelligence.js +0 -869
package/scripts/lib/pricing-experiment.js +0 -118
package/scripts/lib/pro-moment-events.js +0 -77
package/scripts/lib/pro-moment-state.js +0 -227
package/scripts/lib/pro-moments.js +0 -1216
package/scripts/lib/product-learning-events.js +0 -629
package/scripts/lib/project-profile.js +0 -555
package/scripts/lib/prompt-compiler.js +0 -280
package/scripts/lib/prompt-lint.js +0 -32
package/scripts/lib/prompt-suggestions.js +0 -52
package/scripts/lib/proof-canonical.js +0 -398
package/scripts/lib/proof-drilldown.js +0 -383
package/scripts/lib/proof-events.js +0 -342
package/scripts/lib/proof-history.js +0 -243
package/scripts/lib/proof-metrics.js +0 -296
package/scripts/lib/proof-outcome-evidence.js +0 -134
package/scripts/lib/proof-receipt.js +0 -335
package/scripts/lib/proof-record.js +0 -461
package/scripts/lib/public-activation-distribution-gate.js +0 -258
package/scripts/lib/public-cli.js +0 -3891
package/scripts/lib/public-distribution-truth.js +0 -211
package/scripts/lib/public-install-claim-checker.js +0 -294
package/scripts/lib/publish-provenance-readiness.js +0 -283
package/scripts/lib/readiness-delta.js +0 -218
package/scripts/lib/readiness-evidence-closure.js +0 -196
package/scripts/lib/reentry-memory-capture.js +0 -241
package/scripts/lib/reentry-memory-retrieval.js +0 -302
package/scripts/lib/reentry-memory-status.js +0 -146
package/scripts/lib/reentry-memory-store.js +0 -178
package/scripts/lib/reentry-state.js +0 -66
package/scripts/lib/release-candidate-bundle.js +0 -166
package/scripts/lib/remediation.js +0 -81
package/scripts/lib/repo-map.js +0 -391
package/scripts/lib/run-improvements-lifecycle.js +0 -330
package/scripts/lib/run-improvements.js +0 -789
package/scripts/lib/runtime-decision-policy.js +0 -387
package/scripts/lib/safe-path-engine.js +0 -705
package/scripts/lib/safe-run-controller.js +0 -887
package/scripts/lib/score.js +0 -262
package/scripts/lib/seamless-enforcement.js +0 -329
package/scripts/lib/seamless-outcome.js +0 -689
package/scripts/lib/seamless-reality-gate.js +0 -5043
package/scripts/lib/security-risk-classifier.js +0 -511
package/scripts/lib/security-scan.js +0 -384
package/scripts/lib/session-context-optimizer.js +0 -1211
package/scripts/lib/session-timing.js +0 -315
package/scripts/lib/skill-hygiene.js +0 -805
package/scripts/lib/skill-packs.js +0 -161
package/scripts/lib/skills-operating-layer.js +0 -580
package/scripts/lib/smart-work-routing.js +0 -768
package/scripts/lib/source-catalog.js +0 -700
package/scripts/lib/status-value-summary.js +0 -32
package/scripts/lib/support-bundle.js +0 -578
package/scripts/lib/task-continuation.js +0 -440
package/scripts/lib/test-helpers.js +0 -15
package/scripts/lib/tier.js +0 -38
package/scripts/lib/token-context-quality-gate.js +0 -370
package/scripts/lib/token-cost-capture.js +0 -187
package/scripts/lib/token-cost-intelligence.js +0 -358
package/scripts/lib/token-efficiency-evidence.js +0 -213
package/scripts/lib/token-evidence.js +0 -699
package/scripts/lib/tokenish.js +0 -17
package/scripts/lib/tool-output-sandbox.js +0 -304
package/scripts/lib/trust-audit.js +0 -136
package/scripts/lib/unified-events.js +0 -396
package/scripts/lib/upgrade-interruption-recovery.js +0 -407
package/scripts/lib/usage-ledger.js +0 -201
package/scripts/lib/value-ledger.js +0 -130
package/scripts/lib/value-proof-calibration.js +0 -531
package/scripts/lib/visual-qa.js +0 -231
package/scripts/lib/voice-alpha.js +0 -29
package/scripts/lib/work-aware-orchestration.js +0 -976
package/scripts/lib/work-control-receipts.js +0 -577
package/scripts/lib/work-ledger.js +0 -1123
package/scripts/lib/work-panel-preview.js +0 -352
package/scripts/lib/workflow-discipline.js +0 -280
package/scripts/lib/workflow-signals.js +0 -419
package/scripts/lib/workspace-map.js +0 -281
package/scripts/lib/workspace-registry.js +0 -1367
package/scripts/lib/workspace-resolver.js +0 -480

package/scripts/lib/learning-memory.js DELETED Viewed

@@ -1,686 +0,0 @@
-"use strict";
-// Evidence-Backed Learning Memory v1
-// Local-first, deterministic, evidence-backed learning layer.
-// No cloud calls, no LLM, no daemon. Generates learning candidates
-// from existing Avorelo artifacts only.
-//
-// Artifacts:
-//   .claude/cco/brain/project-brain.json        — avorelo.projectBrain.v1
-//   .claude/cco/learning/decision-register.jsonl — avorelo.decisionRegister.v1
-//   .claude/cco/learning/risk-register.json      — avorelo.riskRegister.v1
-//   .claude/cco/learning/capability-map.json     — avorelo.capabilityMap.v1
-//   .claude/cco/state/learning-summary.json      — avorelo.learningSummary.v1
-//
-// Source-of-truth order (highest to lowest trust):
-//   1. explicit current user instruction
-//   2. canonical product contracts/docs
-//   3. proof/receipts
-//   4. merged PR/commit evidence
-//   5. audit events
-//   6. readiness/support bundle evidence
-//   7. run-improvement signals
-//   8. low-confidence inferred signals
-//
-// LLM output alone is never source of truth.
-// Test fixtures cannot become real learning unless marked test_fixture.
-const fs = require("fs");
-const path = require("path");
-const crypto = require("crypto");
-const BRAIN_REL = ".claude/cco/brain/project-brain.json";
-const DECISION_REGISTER_REL = ".claude/cco/learning/decision-register.jsonl";
-const RISK_REGISTER_REL = ".claude/cco/learning/risk-register.json";
-const CAPABILITY_MAP_REL = ".claude/cco/learning/capability-map.json";
-const LEARNING_SUMMARY_REL = ".claude/cco/state/learning-summary.json";
-const BRAIN_SCHEMA = "avorelo.projectBrain.v1";
-const DECISION_SCHEMA = "avorelo.decisionRegister.v1";
-const RISK_SCHEMA = "avorelo.riskRegister.v1";
-const CAPABILITY_SCHEMA = "avorelo.capabilityMap.v1";
-const SUMMARY_SCHEMA = "avorelo.learningSummary.v1";
-const SOURCE_ORDER = [
-  "user_instruction",
-  "canonical_contract",
-  "proof_receipt",
-  "merged_pr_evidence",
-  "audit_event",
-  "readiness_evidence",
-  "run_improvement_signal",
-  "inferred",
-];
-const DECISION_STATUSES = ["active", "superseded", "stale", "uncertain", "expired", "test_fixture"];
-function nowIso() {
-  return new Date().toISOString();
-}
-function buildFingerprint(data) {
-  return crypto
-    .createHash("sha256")
-    .update(JSON.stringify(data))
-    .digest("hex")
-    .slice(0, 16);
-}
-// ── Evidence collection ───────────────────────────────────────────────────────
-function collectLearningEvidence(cwd) {
-  const evidence = {
-    runImprovements: null,
-    lifecycleReceipt: null,
-    adapterReadiness: null,
-    contextBudget: null,
-    reentryState: null,
-    carryForward: null,
-    outcomeEvents: null,
-  };
-  try {
-    const { loadRunImprovements } = require("./run-improvements");
-    evidence.runImprovements = loadRunImprovements(cwd);
-  } catch {}
-  try {
-    const { loadLifecycleReceipt } = require("./run-improvements-lifecycle");
-    evidence.lifecycleReceipt = loadLifecycleReceipt(cwd);
-  } catch {}
-  try {
-    const { buildAdapterReadinessSurface } = require("./adapter-readiness");
-    evidence.adapterReadiness = buildAdapterReadinessSurface(cwd);
-  } catch {}
-  try {
-    const { loadBudgetState } = require("./context-budget-guard");
-    evidence.contextBudget = loadBudgetState(cwd);
-  } catch {}
-  try {
-    const { loadReentryState } = require("./reentry-state");
-    evidence.reentryState = loadReentryState(cwd);
-  } catch {}
-  try {
-    const { loadCarryForward } = require("./carry-forward-surfacing");
-    evidence.carryForward = loadCarryForward(cwd);
-  } catch {}
-  try {
-    const { readOutcomeEvents, aggregateOutcomeEvents } = require("./unified-events");
-    const raw = readOutcomeEvents(cwd);
-    const events = raw.filter((e) => e.category !== "run_improvements");
-    if (events.length > 0) {
-      evidence.outcomeEvents = aggregateOutcomeEvents(events, { days: 7 });
-    }
-  } catch {}
-  return evidence;
-}
-// ── Decision candidates ───────────────────────────────────────────────────────
-function generateDecisionCandidates(evidence) {
-  const now = nowIso();
-  const candidates = [];
-  // Applied honesty: do not claim applied without lifecycle receipt
-  const hasReceipt = evidence.lifecycleReceipt !== null;
-  candidates.push({
-    id: "dec_applied_requires_receipt",
-    decision: "Do not claim 'applied' or 'improved' unless a lifecycle receipt exists confirming it.",
-    rationale: hasReceipt
-      ? "Lifecycle receipt present — applied claim is honest."
-      : "No lifecycle receipt — applied must not be claimed.",
-    status: "active",
-    createdAt: now,
-    updatedAt: now,
-    supersededBy: null,
-    evidenceRefs: ["run_improvements_artifact", "lifecycle_receipt"],
-    source: hasReceipt ? "proof_receipt" : "audit_event",
-    confidence: 0.95,
-    reasonCodes: ["LIFECYCLE_HONEST_CLAIM"],
-    affectedSurfaces: ["run-improvements", "status", "dashboard"],
-  });
-  // Prepared is honest and useful even without applied
-  if (evidence.runImprovements) {
-    const ri = evidence.runImprovements;
-    if (ri.status === "prepared" || ri.status === "applied") {
-      candidates.push({
-        id: "dec_prepared_is_honest",
-        decision: "Use 'prepared' status when improvements are ready but not yet applied — this is honest and useful.",
-        rationale: `Current artifact status is '${ri.status}'. Prepared communicates readiness without overclaiming.`,
-        status: "active",
-        createdAt: now,
-        updatedAt: now,
-        supersededBy: null,
-        evidenceRefs: ["run_improvements_artifact"],
-        source: "run_improvement_signal",
-        confidence: 0.90,
-        reasonCodes: ["STATUS_HONEST_PREPARED"],
-        affectedSurfaces: ["run-improvements"],
-      });
-    }
-  }
-  // Host support: always host-specific, never universal
-  if (evidence.adapterReadiness) {
-    candidates.push({
-      id: "dec_host_support_is_host_specific",
-      decision: "Host support claims must be host-specific. Do not claim universal support across all AI coding hosts.",
-      rationale: "Adapter readiness uses host-specific detection — universal claims would be false.",
-      status: "active",
-      createdAt: now,
-      updatedAt: now,
-      supersededBy: null,
-      evidenceRefs: ["adapter_readiness"],
-      source: "readiness_evidence",
-      confidence: 0.92,
-      reasonCodes: ["HOST_SUPPORT_HOST_SPECIFIC"],
-      affectedSurfaces: ["adapter-readiness", "status"],
-    });
-  }
-  // Browser proof: preflight only, not automation
-  candidates.push({
-    id: "dec_browser_proof_is_preflight_only",
-    decision: "Browser proof is a preflight/readiness check only — it does not perform browser automation.",
-    rationale: "Browser capability check boundary from canonical product contract.",
-    status: "active",
-    createdAt: now,
-    updatedAt: now,
-    supersededBy: null,
-    evidenceRefs: ["canonical_contract"],
-    source: "canonical_contract",
-    confidence: 0.95,
-    reasonCodes: ["BROWSER_PREFLIGHT_ONLY"],
-    affectedSurfaces: ["browser-proof", "adapter-readiness"],
-  });
-  // Context pressure: prefer carry-forward
-  if (
-    evidence.contextBudget &&
-    (evidence.contextBudget.status === "critical" || evidence.contextBudget.status === "warn")
-  ) {
-    candidates.push({
-      id: "dec_context_pressure_use_carryforward",
-      decision: "Under context pressure, prefer carry-forward summary over full stale context.",
-      rationale: `Context budget at ${evidence.contextBudget.status} — full context risks noise and token waste.`,
-      status: "active",
-      createdAt: now,
-      updatedAt: now,
-      supersededBy: null,
-      evidenceRefs: ["context_budget"],
-      source: "run_improvement_signal",
-      confidence: evidence.contextBudget.status === "critical" ? 0.92 : 0.75,
-      reasonCodes: [`CTX_PRESSURE_${evidence.contextBudget.status.toUpperCase()}`],
-      affectedSurfaces: ["run-improvements", "reentry"],
-    });
-  }
-  return candidates;
-}
-// ── Risk candidates ───────────────────────────────────────────────────────────
-function generateRiskCandidates(evidence) {
-  const now = nowIso();
-  const candidates = [];
-  candidates.push({
-    id: "risk_stale_artifacts",
-    category: "artifact_integrity",
-    title: "Stale artifacts can produce false readiness state",
-    severity: "medium",
-    status: "active",
-    firstSeen: now,
-    lastSeen: now,
-    evidenceRefs: ["run_improvements_artifact", "lifecycle_receipt"],
-    mitigation: "Check artifact TTL and source fingerprint before trusting state claims.",
-    ownerSurface: "run-improvements",
-    reasonCodes: ["STALE_ARTIFACT_RISK"],
-  });
-  candidates.push({
-    id: "risk_fake_applied_claims",
-    category: "honesty",
-    title: "Claiming 'applied' without lifecycle evidence reduces trust",
-    severity: "high",
-    status: "active",
-    firstSeen: now,
-    lastSeen: now,
-    evidenceRefs: ["lifecycle_receipt"],
-    mitigation: "Only set applied=true when lifecycle receipt confirms it via a supported surface.",
-    ownerSurface: "run-improvements",
-    reasonCodes: ["LIFECYCLE_HONEST_CLAIM"],
-  });
-  if (evidence.reentryState && evidence.reentryState.unresolvedRisk) {
-    candidates.push({
-      id: "risk_unresolved_reentry",
-      category: "run_safety",
-      title: "Unresolved risk from previous run increases error probability",
-      severity: "high",
-      status: "active",
-      firstSeen: now,
-      lastSeen: now,
-      evidenceRefs: ["reentry_state"],
-      mitigation: "Resolve unresolved risk before continuing. Ask for confirmation before risky actions.",
-      ownerSurface: "reentry",
-      reasonCodes: ["UNRESOLVED_RISK"],
-    });
-  }
-  return candidates;
-}
-// ── Capability candidates ─────────────────────────────────────────────────────
-function generateCapabilityCandidates(evidence) {
-  const now = nowIso();
-  return [
-    {
-      id: "cap_adapter_readiness",
-      capabilityFamily: "adapter_readiness",
-      taskTypes: ["host_support_check", "adapter_detection"],
-      riskTier: "low",
-      supportedInputs: ["project_cwd"],
-      outputs: ["adapter_status", "host_detection_result"],
-      whenToUse: "When checking which AI coding hosts are available and what capabilities they support.",
-      whenNotToUse: "Do not use to claim universal host support across all hosts — results are host-specific.",
-      evidenceRefs: evidence.adapterReadiness ? ["adapter_readiness"] : [],
-      lastValidated: now,
-      status: "active",
-    },
-    {
-      id: "cap_run_improvements",
-      capabilityFamily: "run_improvements",
-      taskTypes: ["next_run_preparation", "evidence_collection"],
-      riskTier: "low",
-      supportedInputs: ["project_cwd", "mode"],
-      outputs: ["run_improvements_artifact", "next_run_defaults"],
-      whenToUse: "When preparing improvements for the next AI coding run based on evidence from the last.",
-      whenNotToUse: "Do not claim 'improved' without a lifecycle receipt. Do not generate without evidence.",
-      evidenceRefs: evidence.runImprovements ? ["run_improvements_artifact"] : [],
-      lastValidated: now,
-      status: "active",
-    },
-    {
-      id: "cap_proof_receipts",
-      capabilityFamily: "proof_receipts",
-      taskTypes: ["validation_claims", "completion_verification"],
-      riskTier: "low",
-      supportedInputs: ["project_cwd"],
-      outputs: ["proof_receipt", "completion_status"],
-      whenToUse: "When making validation claims or verifying task completion.",
-      whenNotToUse: "Do not claim 'done' without a proof receipt. Proof does not guarantee universal correctness.",
-      evidenceRefs: ["canonical_contract"],
-      lastValidated: now,
-      status: "active",
-    },
-    {
-      id: "cap_browser_proof_preflight",
-      capabilityFamily: "browser_proof_preflight",
-      taskTypes: ["browser_readiness_check"],
-      riskTier: "low",
-      supportedInputs: ["project_cwd"],
-      outputs: ["preflight_result"],
-      whenToUse: "PREFLIGHT ONLY — check browser capability readiness before any browser-dependent task.",
-      whenNotToUse: "Do not use for browser automation. This is a preflight check, not a browser controller.",
-      evidenceRefs: ["canonical_contract"],
-      lastValidated: now,
-      status: "active",
-    },
-  ];
-}
-// ── Artifact builders ─────────────────────────────────────────────────────────
-function buildProjectBrain(cwd, evidence) {
-  const now = nowIso();
-  const evidenceKeys = Object.keys(evidence).filter((k) => evidence[k] !== null);
-  const fp = buildFingerprint({ evidenceKeys });
-  return {
-    schemaVersion: BRAIN_SCHEMA,
-    generatedAt: now,
-    updatedAt: now,
-    projectSummary: "Avorelo local-first AI coding optimization runtime.",
-    activeConstraints: [
-      "No cloud sync",
-      "No daemon or background service",
-      "No LLM as source of truth",
-      "No applied claim without lifecycle receipt",
-      "No universal host support claims",
-      "No raw transcripts or secrets in artifacts",
-    ],
-    canonicalAssumptions: [
-      "Evidence comes from existing local artifacts only.",
-      "Deterministic: same signals produce same results.",
-      "Fail-open: missing evidence returns null, not error.",
-    ],
-    protectedBoundaries: [
-      "Do not touch public website, pricing, or launch copy.",
-      "Do not build Teams, billing, GrowthBook, or marketplace.",
-      "Do not add cloud sync or daemon.",
-      "Do not use LLM output as source of truth.",
-    ],
-    evidenceRefs: evidenceKeys,
-    confidence: evidenceKeys.length > 0 ? 0.85 : 0.50,
-    limitations: [
-      "Project brain is generated from local artifacts at a point in time.",
-      "Constraints and boundaries may evolve — always check canonical docs first.",
-    ],
-    sourceFingerprint: fp,
-  };
-}
-function loadDecisionRegister(cwd) {
-  try {
-    const absPath = path.join(cwd, DECISION_REGISTER_REL);
-    if (!fs.existsSync(absPath)) return [];
-    return fs
-      .readFileSync(absPath, "utf8")
-      .split("\n")
-      .filter(Boolean)
-      .map((ln) => {
-        try {
-          return JSON.parse(ln);
-        } catch {
-          return null;
-        }
-      })
-      .filter(Boolean);
-  } catch {
-    return [];
-  }
-}
-function writeDecisionRegister(cwd, decisions) {
-  const absPath = path.join(cwd, DECISION_REGISTER_REL);
-  fs.mkdirSync(path.dirname(absPath), { recursive: true });
-  const lines = decisions.map((d) => JSON.stringify(d)).join("\n");
-  fs.writeFileSync(absPath, lines ? lines + "\n" : "", "utf8");
-}
-// Merge new candidates into the existing register.
-// Rules: update if status or decision text changed; append if new id.
-// Stale/superseded decisions are preserved but excluded from next-run influence.
-// Conflicting decisions are not silently overwritten — id collision is an update.
-function mergeDecisions(existing, candidates) {
-  const byId = new Map(existing.map((d) => [d.id, d]));
-  for (const candidate of candidates) {
-    if (byId.has(candidate.id)) {
-      const prev = byId.get(candidate.id);
-      if (prev.status !== candidate.status || prev.decision !== candidate.decision) {
-        byId.set(candidate.id, { ...candidate, updatedAt: candidate.updatedAt });
-      }
-      // If identical, keep existing (preserve history)
-    } else {
-      byId.set(candidate.id, candidate);
-    }
-  }
-  return [...byId.values()];
-}
-function loadRiskRegister(cwd) {
-  try {
-    const absPath = path.join(cwd, RISK_REGISTER_REL);
-    const raw = JSON.parse(fs.readFileSync(absPath, "utf8"));
-    if (raw.schemaVersion !== RISK_SCHEMA) return { risks: [] };
-    return raw;
-  } catch {
-    return { risks: [] };
-  }
-}
-function buildRiskRegister(cwd, riskCandidates) {
-  const now = nowIso();
-  const existing = loadRiskRegister(cwd);
-  const byId = new Map((existing.risks || []).map((r) => [r.id, r]));
-  for (const candidate of riskCandidates) {
-    if (byId.has(candidate.id)) {
-      byId.set(candidate.id, { ...byId.get(candidate.id), lastSeen: now });
-    } else {
-      byId.set(candidate.id, candidate);
-    }
-  }
-  return {
-    schemaVersion: RISK_SCHEMA,
-    generatedAt: now,
-    updatedAt: now,
-    risks: [...byId.values()],
-  };
-}
-function loadCapabilityMap(cwd) {
-  try {
-    const absPath = path.join(cwd, CAPABILITY_MAP_REL);
-    const raw = JSON.parse(fs.readFileSync(absPath, "utf8"));
-    if (raw.schemaVersion !== CAPABILITY_SCHEMA) return { capabilities: [] };
-    return raw;
-  } catch {
-    return { capabilities: [] };
-  }
-}
-function buildCapabilityMap(cwd, capabilityCandidates) {
-  const now = nowIso();
-  return {
-    schemaVersion: CAPABILITY_SCHEMA,
-    generatedAt: now,
-    updatedAt: now,
-    capabilities: capabilityCandidates,
-  };
-}
-function loadLearningSummary(cwd) {
-  try {
-    const absPath = path.join(cwd, LEARNING_SUMMARY_REL);
-    const raw = JSON.parse(fs.readFileSync(absPath, "utf8"));
-    if (raw.schemaVersion !== SUMMARY_SCHEMA) return null;
-    return raw;
-  } catch {
-    return null;
-  }
-}
-function loadProjectBrain(cwd) {
-  try {
-    const absPath = path.join(cwd, BRAIN_REL);
-    const raw = JSON.parse(fs.readFileSync(absPath, "utf8"));
-    if (raw.schemaVersion !== BRAIN_SCHEMA) return null;
-    return raw;
-  } catch {
-    return null;
-  }
-}
-function buildLearningSummary(cwd, decisions, riskRegister, capabilities) {
-  const now = nowIso();
-  const risks = (riskRegister && riskRegister.risks) ? riskRegister.risks : riskRegister || [];
-  const activeDecisions = decisions.filter((d) => d.status === "active");
-  const activeRisks = risks.filter((r) => r.status === "active");
-  const staleItems = decisions.filter(
-    (d) => d.status === "stale" || d.status === "superseded"
-  );
-  // Top learning signals — bounded, sorted by confidence
-  const topSignals = activeDecisions
-    .sort((a, b) => b.confidence - a.confidence)
-    .slice(0, 3)
-    .map((d) => ({
-      type: "decision",
-      summary: d.decision.slice(0, 120),
-      confidence: d.confidence,
-      reasonCodes: d.reasonCodes,
-    }));
-  // How learning influences next-run defaults (bounded, reason-coded)
-  const nextRunInfluence = [];
-  const proofRequired = activeDecisions.find((d) => d.id === "dec_applied_requires_receipt");
-  if (proofRequired) {
-    nextRunInfluence.push({
-      type: "require_lifecycle_receipt",
-      text: "Require lifecycle receipt before claiming applied or improved.",
-      reasonCodes: ["LIFECYCLE_HONEST_CLAIM"],
-    });
-  }
-  const hostSpecific = activeDecisions.find((d) => d.id === "dec_host_support_is_host_specific");
-  if (hostSpecific) {
-    nextRunInfluence.push({
-      type: "host_support_wording",
-      text: "Host support wording remains host-specific — no universal claims.",
-      reasonCodes: ["HOST_SUPPORT_HOST_SPECIFIC"],
-    });
-  }
-  const ctxPressure = activeDecisions.find((d) => d.id === "dec_context_pressure_use_carryforward");
-  if (ctxPressure) {
-    nextRunInfluence.push({
-      type: "prefer_carryforward",
-      text: "Prefer carry-forward summary under context pressure.",
-      reasonCodes: ctxPressure.reasonCodes,
-    });
-  }
-  const fp = buildFingerprint({
-    activeDecisionCount: activeDecisions.length,
-    activeRiskCount: activeRisks.length,
-    capabilityCount: capabilities.length,
-  });
-  return {
-    schemaVersion: SUMMARY_SCHEMA,
-    generatedAt: now,
-    activeDecisionCount: activeDecisions.length,
-    activeRiskCount: activeRisks.length,
-    capabilityCount: capabilities.length,
-    staleItemCount: staleItems.length,
-    topLearningSignals: topSignals,
-    nextRunInfluence,
-    limitations: [
-      "Learning is evidence-backed but bounded — does not override user instructions.",
-      "Stale or superseded decisions are excluded from next-run influence.",
-      "Conflicting decisions are flagged, not silently overwritten.",
-      "Test fixtures are excluded from real learning candidates.",
-    ],
-    sourceFingerprint: fp,
-  };
-}
-// ── Main generate function ────────────────────────────────────────────────────
-function generateLearningArtifacts(cwd, options = {}) {
-  const evidence = collectLearningEvidence(cwd);
-  const decisionCandidates = generateDecisionCandidates(evidence);
-  const riskCandidates = generateRiskCandidates(evidence);
-  const capabilityCandidates = generateCapabilityCandidates(evidence);
-  // Project brain
-  const brain = buildProjectBrain(cwd, evidence);
-  const brainPath = path.join(cwd, BRAIN_REL);
-  fs.mkdirSync(path.dirname(brainPath), { recursive: true });
-  fs.writeFileSync(brainPath, JSON.stringify(brain, null, 2), "utf8");
-  // Decision register (merge into existing)
-  const existingDecisions = loadDecisionRegister(cwd);
-  const mergedDecisions = mergeDecisions(existingDecisions, decisionCandidates);
-  writeDecisionRegister(cwd, mergedDecisions);
-  // Risk register (merge into existing)
-  const riskRegister = buildRiskRegister(cwd, riskCandidates);
-  const riskPath = path.join(cwd, RISK_REGISTER_REL);
-  fs.mkdirSync(path.dirname(riskPath), { recursive: true });
-  fs.writeFileSync(riskPath, JSON.stringify(riskRegister, null, 2), "utf8");
-  // Capability map
-  const capabilityMap = buildCapabilityMap(cwd, capabilityCandidates);
-  const capPath = path.join(cwd, CAPABILITY_MAP_REL);
-  fs.mkdirSync(path.dirname(capPath), { recursive: true });
-  fs.writeFileSync(capPath, JSON.stringify(capabilityMap, null, 2), "utf8");
-  // Learning summary
-  const summary = buildLearningSummary(
-    cwd,
-    mergedDecisions,
-    riskRegister,
-    capabilityCandidates
-  );
-  const summaryPath = path.join(cwd, LEARNING_SUMMARY_REL);
-  fs.mkdirSync(path.dirname(summaryPath), { recursive: true });
-  fs.writeFileSync(summaryPath, JSON.stringify(summary, null, 2), "utf8");
-  return {
-    brain,
-    decisions: mergedDecisions,
-    risks: riskRegister,
-    capabilities: capabilityMap,
-    summary,
-  };
-}
-function formatLearningSummaryText(cwd) {
-  const summary = loadLearningSummary(cwd);
-  if (!summary) return null;
-  const lines = [
-    `Learning: ${summary.activeDecisionCount} active decision(s), ` +
-      `${summary.activeRiskCount} recurring risk(s), ${summary.capabilityCount} capability(ies).`,
-  ];
-  if (summary.nextRunInfluence.length > 0) {
-    lines.push(`  Next run influence: ${summary.nextRunInfluence[0].text}`);
-  }
-  return lines.join("\n");
-}
-function formatLearningSummaryStatusLine(cwd) {
-  const summary = loadLearningSummary(cwd);
-  if (!summary) return null;
-  return (
-    `Learning: ${summary.activeDecisionCount} decision(s), ` +
-    `${summary.activeRiskCount} risk(s), ${summary.capabilityCount} capability(ies)`
-  );
-}
-module.exports = {
-  BRAIN_SCHEMA,
-  DECISION_SCHEMA,
-  RISK_SCHEMA,
-  CAPABILITY_SCHEMA,
-  SUMMARY_SCHEMA,
-  BRAIN_REL,
-  DECISION_REGISTER_REL,
-  RISK_REGISTER_REL,
-  CAPABILITY_MAP_REL,
-  LEARNING_SUMMARY_REL,
-  SOURCE_ORDER,
-  DECISION_STATUSES,
-  collectLearningEvidence,
-  generateDecisionCandidates,
-  generateRiskCandidates,
-  generateCapabilityCandidates,
-  buildProjectBrain,
-  loadDecisionRegister,
-  writeDecisionRegister,
-  mergeDecisions,
-  buildRiskRegister,
-  loadRiskRegister,
-  buildCapabilityMap,
-  loadCapabilityMap,
-  buildLearningSummary,
-  loadLearningSummary,
-  loadProjectBrain,
-  generateLearningArtifacts,
-  formatLearningSummaryText,
-  formatLearningSummaryStatusLine,
-};