avorelo 0.1.0 → 0.3.0

package/scripts/lib/plans.js

@@ -1,2318 +0,0 @@
-"use strict";
-
-const BUCKETS = Object.freeze([
-  {
-    id: "better_ai_coding_tasks",
-    label: "Better AI Coding Tasks",
-    description: "Turn rough instructions into clearer, safer, verifiable AI coding tasks.",
-  },
-  {
-    id: "automatic_context_cost_optimization",
-    label: "Automatic Context & Cost Optimization",
-    description: "Reduce wasted context, repeated explanations, and unnecessary agent work.",
-  },
-  {
-    id: "visual_qa_with_screenshots",
-    label: "Visual QA with Screenshots",
-    description: "See what the AI agent actually changed with screenshot-backed checks and evidence.",
-  },
-  {
-    id: "seamless_agent_security",
-    label: "Seamless Agent Security",
-    description: "Detect risky skills, tools, browser capabilities, and instructions with safer defaults where supported.",
-  },
-  {
-    id: "evidence_and_history",
-    label: "Evidence & History",
-    description: "Keep local proof of what changed, what was checked, and what was allowed or blocked.",
-  },
-]);
-
-function defineCapability(config) {
-  return Object.freeze({
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: true,
-    customerFacingDescription: config.description,
-    ...config,
-  });
-}
-
-const CAPABILITIES = Object.freeze([
-  defineCapability({
-    id: "local_activation",
-    label: "Local activation",
-    description: "Start locally in a repo and get first value without a required network dependency.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-  }),
-  defineCapability({
-    id: "ai_coding_readiness",
-    label: "AI coding readiness",
-    description: "Check whether the current project is ready for local AI coding work.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-  }),
-  defineCapability({
-    id: "prompt_compiler_basic",
-    label: "Improve rough prompts",
-    description: "Turn a rough instruction into a clearer coding task with objective, scope, constraints, verification, and output format.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    entitlement: { mode: "basic" },
-    quota: { mode: "basic_limited" },
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "prompt_compiler_advanced",
-    label: "Compile task-specific AI coding plans",
-    description: "Generate task-type-aware plans with acceptance criteria, safe defaults, context guidance, and verification discipline.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: false, pro: true },
-    entitlement: { mode: "advanced" },
-    quota: { mode: "advanced_full" },
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "dynamic_skill_pack_selection",
-    label: "Trusted local skill-pack selection",
-    description: "Select trusted local skill packs based on task type without fetching or installing external skills.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: false, pro: true },
-    entitlement: { trustedOnly: true },
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "reference_source_intake_basic",
-    label: "Reviewed source intake",
-    description: "Represent reviewed, deferred, and blocked external skill sources locally with provenance, attribution, and policy metadata.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "skill_md_parser_basic",
-    label: "SKILL.md parser",
-    description: "Parse local and reviewed vendored SKILL.md files into deterministic local metadata instead of broad prompt dumps.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "skill_pattern_extraction_basic",
-    label: "Skill pattern extraction",
-    description: "Extract workflow, verification, evidence, anti-pattern, and stop-condition patterns from reviewed skill sources.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "capability_binding_basic",
-    label: "Capability binding",
-    description: "Bind reviewed skills and extracted patterns to canonical Avorelo capabilities without creating a parallel taxonomy.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "source_backed_skill_router_basic",
-    label: "Source-backed skill router",
-    description: "Deterministically route tasks to reviewed local or vendored skills with compact summaries, evidence expectations, and deferred-source reasons.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "thin_adapter_guidance_sync_basic",
-    label: "Thin adapter guidance sync",
-    description: "Generate thin adapter guidance from reviewed local skill and source inventory without duplicating core routing or policy logic.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "skill_hygiene_basic",
-    label: "Skill hygiene guard",
-    description: "Inventory available skills and detect overlapping or duplicate skills to prevent multiple conflicting skills from being fully activated for the same task.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "skill_duplicate_activation_guard_basic",
-    label: "Duplicate activation guard",
-    description: "Select one primary skill per task and move overlapping skills into shadow mode to avoid loading multiple full skill contexts.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "skill_shadow_contribution_basic",
-    label: "Bounded shadow contribution",
-    description: "Extract small, unique, non-conflicting contributions (verification checks, edge cases) from shadow skills without duplicating the primary workflow.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "skill_conflict_guard_basic",
-    label: "Skill conflict guard",
-    description: "Detect and block routing of skills with contradictory policies, unsafe invocation language, or conflicting verification expectations.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "block",
-  }),
-  defineCapability({
-    id: "skill_context_hygiene_basic",
-    label: "Context-heavy skill guard",
-    description: "Detect context-heavy skills and suppress them when a lighter equivalent primary skill exists, applying a context budget guard.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "skill_security_hygiene_basic",
-    label: "Skill security hygiene",
-    description: "Detect skills with hidden unicode, policy bypass phrases, unsafe auto-execution language, or unreviewed sources and block them from auto-routing.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "block",
-  }),
-  defineCapability({
-    id: "skill_route_hygiene_basic",
-    label: "Route hygiene metadata",
-    description: "Attach hygiene decision, primary skill, suppressed duplicates, shadow candidates, and bounded contributions to every route result.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "skill_intake_check_basic",
-    label: "Skill intake check",
-    description: "Check a candidate skill path against the existing registry for duplicates, conflicts, and security flags before admission, returning allow/warn/merge_recommended/block.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "compact_session_context_basic",
-    label: "Compact session context",
-    description: "Generate a compact session-start context from Work-Control receipts to prevent broad rediscovery and token waste.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "continuation_packet_basic",
-    label: "Continuation packet",
-    description: "Include what is already done, what not to repeat, and the next safest action in every session-start context.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "context_budget_guard_basic",
-    label: "Context budget guard",
-    description: "Enforce a compact-context budget (default 6000 chars / ~1500 tokens) and drop low-priority sections first if over limit.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "work_control_context_bridge_basic",
-    label: "Work-Control context bridge",
-    description: "Bridge Work-Control receipts (carryForward, doNotRepeat, nextSafestAction) into compact session context.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "workspace_map_context_selection_basic",
-    label: "Workspace-map context selection",
-    description: "Select relevant files from Workspace Map for session context instead of broad repo scans.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "model_effort_recommendation_basic",
-    label: "Model/effort recommendation summary",
-    description: "Include route/proof model and effort recommendations in session context for cross-tool continuity.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "context_cost_basic",
-    label: "Basic context optimization",
-    description: "Show context hygiene, waste warnings, and bounded next-step guidance.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-  }),
-  defineCapability({
-    id: "session_handoff_basic",
-    label: "Latest-session carry-forward",
-    description: "Carry forward the latest useful local session state when it is available.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-  }),
-  defineCapability({
-    id: "workspace_registry_basic",
-    label: "AI Workspace Asset Registry",
-    description: "Build a normalized local asset index of files, scripts, docs, configs, skills, MCP configs, and guidance — so each session starts with the right context without broad scanning.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "asset_inventory_basic",
-    label: "Asset inventory",
-    description: "Enumerate workspace assets by type (source, test, doc, config, skill, MCP, guidance, model) with trust/risk classification.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "asset_relationships_basic",
-    label: "Asset relationship mapping",
-    description: "Record deterministic relationships between assets: package defines scripts, test validates source, skill-pack contains skills, guidance guides agent surface.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "registry_drift_detection_basic",
-    label: "Registry drift detection",
-    description: "Compare the latest registry snapshot with the previous to surface added, removed, and changed assets without re-scanning unchanged files.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "registry_session_context_bridge_basic",
-    label: "Registry → Session Context bridge",
-    description: "Feed registry-indexed relevant files and asset warnings into Session Context so the next session starts with pre-indexed context instead of broad repo discovery.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "registry_brain_pack_bridge_basic",
-    label: "Registry → Brain Pack bridge",
-    description: "Supply Brain Pack with package manager, test commands, asset counts, and skill/guidance signals from the registry without dumping raw asset lists.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "registry_capability_recommender_signal_basic",
-    label: "Registry capability recommender signal",
-    description: "Feed high-risk asset counts, unknown asset flags, and MCP config presence to the Capability Recommender without duplicating its routing rules.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "registry_intake_bridge_basic",
-    label: "Registry → Install Intake bridge",
-    description: "Flag unknown-review and deploy-script assets from the registry to Install Intake / Safe Path for review, without running a full intake scan internally.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  // Operating Loop Value Surface v1
-  defineCapability({
-    id: "operating_value_surface_basic",
-    label: "Operating loop value surface",
-    description: "Aggregate existing Avorelo receipts into a single value summary: time saved, context reduced, security risk avoided, clarity improved, and seamlessness score.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "value_cards_basic",
-    label: "Value cards",
-    description: "Five deterministic value cards (time saved, cost/tokens saved, security risk avoided, clarity, seamlessness) computed from existing operating loop receipts.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "session_value_moments_basic",
-    label: "In-session value moments",
-    description: "Compact lifecycle messages (session_start, routing_decision, risk_detected, proof_complete, session_end) surfaced only when evidence exists and value is non-trivial.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "operating_loop_readiness_basic",
-    label: "Operating loop readiness score",
-    description: "A 0–100 readiness score based on presence and freshness of work-control, session-context, registry, brain-pack, capability recommendation, proof, and risk routing.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "optimization_effectiveness_measurement_basic",
-    label: "Optimization effectiveness measurement",
-    description: "Conservative before/after context measurement: raw candidate tokens vs compact handoff tokens, manual steps avoided, and time saved estimate with explicit confidence.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "routing_quality_measurement_basic",
-    label: "Routing quality measurement",
-    description: "Measure capability auto-recommendation quality: was the right pack selected automatically, is the next action available, and is there a wrong-capability risk signal.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "security_routing_measurement_basic",
-    label: "Security routing effectiveness measurement",
-    description: "Measure how risky assets were handled: high-risk assets flagged, risks blocked vs routed, unknown tools detected, safe path recommended.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "rediscovery_avoidance_measurement_basic",
-    label: "Rediscovery avoidance measurement",
-    description: "Detect when Avorelo avoided broad repo rediscovery by providing pre-indexed relevant files and a compact handoff instead of a full workspace dump.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "context_reduction_estimation_basic",
-    label: "Context reduction estimation",
-    description: "Estimate tokens avoided by comparing raw candidate context sources (registry assets, receipt sizes) to compact session-context handoff, with conservative confidence.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "seamlessness_measurement_basic",
-    label: "Seamlessness measurement",
-    description: "Score how many operating loop surfaces were handled automatically versus requiring user action, and whether capability routing happened without user selection.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "local_value_dashboard_basic",
-    label: "Local value dashboard preview",
-    description: "Generate a local Markdown dashboard preview showing value cards, readiness score, and next action — accessible via `avorelo dashboard --open` without a browser server.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  // Value Proof Hardening / Reality Calibration v1
-  defineCapability({
-    id: "value_proof_calibration_basic",
-    label: "Value proof calibration",
-    description: "Normalize every value metric into a proof object with valueClass (measured/estimated/heuristic/unavailable), confidence, basis, evidence, caveats, and overclaimRisk.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "value_claim_policy_basic",
-    label: "Value claim policy",
-    description: "Per-value policy flags (userFacingAllowed, dashboardAllowed, websiteAllowed, pricingAllowed, caveatRequired) to ensure only well-supported claims reach each surface.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "value_overclaim_guard_basic",
-    label: "Value overclaim guard",
-    description: "Detect overclaim risks in value metrics and include calibration report with recommended safe copy, blocked copy, and next evidence to collect.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  // Seamless Activation + Self-Healing Setup v1
-  defineCapability({
-    id: "seamless_activation_basic",
-    label: "Seamless activation",
-    description: "Activate Avorelo in any project with a single command. Detects workspace, AI surfaces, and model routing automatically.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "self_healing_setup_basic",
-    label: "Self-healing setup",
-    description: "Automatically fix missing runtime directories, .gitignore patterns, and corrupted state during activation without asking the user.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "activation_repair_loop_basic",
-    label: "Activation repair loop",
-    description: "Scan, repair, verify, repeat — activation keeps going until Avorelo is ready or a true hard blocker is found.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "activation_model_routing_detection_basic",
-    label: "Model routing detection",
-    description: "Detect available model/provider routing options at activation time (env key names only — no secret values).",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "activation_dashboard_ready_basic",
-    label: "Dashboard ready at activation",
-    description: "Ensure local value dashboard and tracking baseline are generated during activation, without showing savings claims.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "activation_agent_repair_plan_basic",
-    label: "Agent repair plan",
-    description: "Output a machine-readable repair plan when activation cannot complete, so LLM agents can continue repair autonomously.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "context_cost_advanced",
-    label: "Advanced context and handoff optimization",
-    description: "Compact handoffs, narrow scope, target verification, and reduce repeated explanations where supported.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: false, pro: true },
-  }),
-  defineCapability({
-    id: "reentry_memory_full",
-    label: "Multi-session continuity",
-    description: "Use local reentry memory and carry-forward artifacts to continue work across sessions where available.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: false, pro: true },
-    implementationStatus: "partial",
-  }),
-  defineCapability({
-    id: "workspace_map_basic",
-    label: "Workspace Map",
-    description: "Generate a compact local map of the workspace so agents navigate with less rediscovery and less context waste.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "partial",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "visual_qa_weekly",
-    label: "Weekly Visual QA",
-    description: "Run screenshot-backed Visual QA locally with a weekly Free quota when local screenshot tooling is available.",
-    bucket: "visual_qa_with_screenshots",
-    availability: { free: true, pro: true },
-    quota: { period: "week", limit: 1 },
-  }),
-  defineCapability({
-    id: "visual_qa_advanced",
-    label: "Advanced Visual QA",
-    description: "Run more Visual QA checks with flow coverage, saved reports, and richer evidence where supported.",
-    bucket: "visual_qa_with_screenshots",
-    availability: { free: false, pro: true },
-    implementationStatus: "partial",
-    quota: { period: "month", limit: 50 },
-  }),
-
-  defineCapability({
-    id: "skills_security_basic",
-    label: "Basic skills security",
-    description: "Check risky local skill packs and capability surfaces before they create hidden workflow risk.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "skill_trust_scan_basic",
-    label: "Skill trust scan",
-    description: "Deterministically classify reviewed, deferred, blocked, or warning-level skill sources and surface provenance or safety concerns locally.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "skills_security_advanced",
-    label: "Advanced skills security",
-    description: "Add deeper trusted-skill metadata, risk detail, and remediation guidance for local skill packs.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "instruction_risk_basic",
-    label: "Basic risky-instruction visibility",
-    description: "Flag risky instructions, likely scope overrides, and suspicious workflow requests in local evidence.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "instruction_risk_advanced",
-    label: "Advanced instruction-risk defense",
-    description: "Show deeper reason codes, safer summaries, and remediation guidance for risky agent requests.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "prompt_injection_basic",
-    label: "Basic prompt-injection visibility",
-    description: "Surface prompt-injection-like instruction patterns in local evidence where supported.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "prompt_injection_advanced",
-    label: "Advanced prompt-injection defense",
-    description: "Add deeper prompt-injection analysis, source-trust evidence, and remediation guidance where supported.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "source_trust_basic",
-    label: "Basic source-trust visibility",
-    description: "Classify whether instructions came from trusted local sources or untrusted content.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "source_trust_advanced",
-    label: "Advanced source-trust evidence",
-    description: "Keep deeper source-trust evidence and data-only handling guidance for untrusted content.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "intent_mismatch_basic",
-    label: "Basic intent-mismatch visibility",
-    description: "Flag when a proposed action appears unrelated to the stated task.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "intent_mismatch_advanced",
-    label: "Advanced intent-mismatch evidence",
-    description: "Keep deeper local evidence and remediation guidance when discovered instructions conflict with the intended task.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "tool_risk_basic",
-    label: "Basic tool risk visibility",
-    description: "Show whether a local tool appears write-capable, network-capable, or otherwise higher risk.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "tool_risk_advanced",
-    label: "Advanced tool risk evidence",
-    description: "Classify local tool actions with deeper reason codes and remediation guidance.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "mcp_tool_risk_basic",
-    label: "Basic MCP tool visibility",
-    description: "Show basic MCP server and tool risk, including unknown or write-capable targets.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "mcp_tool_risk_advanced",
-    label: "Advanced MCP tool evidence",
-    description: "Keep deeper MCP risk details, trust signals, and remediation guidance where supported.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "browser_capability_basic",
-    label: "Browser capability visibility",
-    description: "Detect browser-capable work and classify local preview versus external browser targets.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "browser_governance_advanced",
-    label: "Browser governance readiness",
-    description: "Show deeper browser capability guidance, approvals, and domain-boundary readiness where supported.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    implementationStatus: "partial",
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "browser_domain_boundary_readiness",
-    label: "Domain-boundary readiness",
-    description: "Show whether browser work has explicit domain boundaries where supported, without claiming universal containment.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    implementationStatus: "partial",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "sensitive_file_guard",
-    label: "Sensitive file guard",
-    description: "Classify env, auth, billing, deploy, CI, and other sensitive file targets before risky edits.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "secret_exposure_guard",
-    label: "Secret exposure guard",
-    description: "Detect likely secret or token exposure and block clearly unsafe actions where supported.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    surfaceType: "block",
-  }),
-  defineCapability({
-    id: "destructive_command_guard",
-    label: "Destructive command guard",
-    description: "Detect destructive commands and block clearly unsafe actions where supported.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    surfaceType: "block",
-  }),
-  defineCapability({
-    id: "scoped_action_guard_basic",
-    label: "Scoped action guard",
-    description: "Evaluate risky agent actions before they happen with local allow, warn, approval-required, or block decisions.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "scoped_action_guard_advanced",
-    label: "Advanced scoped action guard",
-    description: "Add deeper scope, source-trust, and remediation guidance for sensitive actions where supported.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    implementationStatus: "partial",
-    surfaceType: "approval",
-  }),
-  defineCapability({
-    id: "approval_required_decisions",
-    label: "Approval-required decisions",
-    description: "Require explicit approval for sensitive but legitimate actions where supported.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    surfaceType: "approval",
-  }),
-  defineCapability({
-    id: "least_privilege_profile",
-    label: "Least-privilege profile",
-    description: "Apply a local least-privilege policy profile that narrows agent scope by default.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "zero_standing_permissions_posture",
-    label: "Zero standing permissions posture",
-    description: "Favor no broad always-on permissions and keep proof of what was allowed, warned, or blocked.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "scoped_jit_style_access",
-    label: "Scoped/JIT-style access",
-    description: "Use scoped or just-in-time-style access fields where local adapters and enforcement support it.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    implementationStatus: "partial",
-    surfaceType: "approval",
-  }),
-  defineCapability({
-    id: "safe_path_recommendation_basic",
-    label: "Safe Path recommendation",
-    description: "Generate a deterministic local Safe Path receipt with bounded safer alternatives instead of only saying risky or blocked.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "least_privilege_scope_reduction_basic",
-    label: "Least-privilege scope reduction",
-    description: "Recommend the smallest useful path, tool, domain, and access scope that still completes the task.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "jit_temporary_scope_fields_basic",
-    label: "JIT-style temporary scope fields",
-    description: "Represent temporary-scope fields where supported without claiming universal JIT enforcement.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    implementationStatus: "partial",
-    surfaceType: "approval",
-  }),
-  defineCapability({
-    id: "approval_boundary_safe_path_basic",
-    label: "Safe Path approval boundary",
-    description: "Keep approval boundaries visible inside Safe Path receipts for sensitive but legitimate actions.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "approval",
-  }),
-  defineCapability({
-    id: "safe_path_receipt_basic",
-    label: "Safe Path receipt",
-    description: "Write a local Safe Path receipt with reductions, approval boundaries, evidence requirements, and next action.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "install_intake_risk_basic",
-    label: "Install / intake risk foundation",
-    description: "Scan local package, MCP, extension, guidance, connector, and skill-source intake surfaces before they become trusted runtime tools.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "mcp_intake_visibility_basic",
-    label: "MCP intake visibility",
-    description: "Detect local MCP servers and tools, classify reviewed versus unknown sources, and surface risky capabilities before runtime use.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "package_intake_visibility_basic",
-    label: "Package intake visibility",
-    description: "Detect local package dependencies and npm script risk signals such as install hooks, deploy scripts, and network-heavy lifecycle behavior.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "extension_intake_visibility_basic",
-    label: "Extension intake visibility",
-    description: "Detect local editor extension and guidance-adapter intake surfaces and classify missing publisher or broad-access risk signals.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "connector_intake_visibility_basic",
-    label: "Connector intake visibility",
-    description: "Represent reviewed, deferred, and blocked connector-like or source-backed integrations in the local intake summary without trusting them automatically.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "skill_source_intake_risk_basic",
-    label: "Skill/source intake risk",
-    description: "Carry reviewed, deferred, blocked, script-bearing, or context-heavy skill-source signals into local intake classification and runtime trust decisions.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "intake_safe_next_action_basic",
-    label: "Intake safe next action",
-    description: "Turn detected intake risk into a bounded safe next action such as review first, no-secrets, no-network, dry-run, or block until reviewed.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "intake_receipt_basic",
-    label: "Intake receipt",
-    description: "Write a local install-intake receipt with reviewed, unknown, deferred, blocked, and high-risk counts plus compact evidence and next action.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "skills_security_dogfood_basic",
-    label: "Skills security dogfood",
-    description: "Verify malicious, deferred, script-bearing, and context-heavy skill behavior stays bounded before Safe Path relies on it.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "skill_route_context_safety_basic",
-    label: "Skill-route context safety",
-    description: "Carry skill evidence requirements, trust warnings, and context-weight signals into Safe Path recommendations.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "warning",
-  }),
-  defineCapability({
-    id: "enforcement_evidence",
-    label: "Local enforcement evidence",
-    description: "Write local evidence for evaluated agent actions with redaction-safe summaries.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "evidence_latest",
-    label: "Latest local evidence",
-    description: "Keep the latest local summary and evidence for the current project.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    quota: { retention: "latest" },
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "evidence_history_export",
-    label: "Evidence history and export",
-    description: "Keep longer local history and exportable evidence where supported.",
-    bucket: "evidence_and_history",
-    availability: { free: false, pro: true },
-    implementationStatus: "partial",
-    quota: { retentionDays: 30, export: true },
-    surfaceType: "evidence",
-  }),
-
-  defineCapability({
-    id: "agent_security_basic",
-    label: "Legacy basic agent security",
-    description: "Compatibility alias for older tests and internal surfaces.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "docs_only",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "agent_security_advanced",
-    label: "Legacy advanced agent security",
-    description: "Compatibility alias for older tests and internal surfaces.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "docs_only",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "source_trust",
-    label: "Legacy source trust",
-    description: "Compatibility alias for older tests and internal surfaces.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "docs_only",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "intent_mismatch",
-    label: "Legacy intent mismatch",
-    description: "Compatibility alias for older tests and internal surfaces.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "docs_only",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "zero_standing_permissions_policy",
-    label: "Legacy zero standing permissions policy",
-    description: "Compatibility alias for older tests and internal surfaces.",
-    bucket: "seamless_agent_security",
-    availability: { free: false, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "docs_only",
-    safeForPublicCopy: false,
-  }),
-
-  defineCapability({
-    id: "unified_work_control_receipt_basic",
-    label: "Unified work-control receipt",
-    description: "Aggregate governance, safe-path, intake, skills, and proof into one compact local work-control receipt with final state, next action, and evidence paths.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "receipt_correlation_basic",
-    label: "Receipt correlation",
-    description: "Correlate governance, safe-path, intake, and skills receipts into a single deterministic local summary without replacing the individual layer receipts.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "session_handoff_receipt_basic",
-    label: "Session handoff receipt",
-    description: "Generate a compact handoff from the latest work-control receipt with what was checked, what was not, and what to do next.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "next_safest_action_basic",
-    label: "Next safest action",
-    description: "Compute a prioritized next safest action from correlated guard, governance, safe-path, and intake signals.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "do_not_repeat_guidance_basic",
-    label: "Do-not-repeat guidance",
-    description: "Generate compact do-not-repeat instructions from correlated proof, route, and receipt signals to reduce repeated work in the next session.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-
-  // ── Context Intelligence Completion v1 ────────────────────────────────────────
-  defineCapability({
-    id: "brain_pack_basic",
-    label: "Brain Pack Basic",
-    description: "Generate a compact local brain pack with stable project, repo conventions, context rules, and capability recommendations for session continuity.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "recipe_detection_basic",
-    label: "Recipe detection",
-    description: "Deterministically detect the likely workflow recipe from task signals and recommend the matching capability pack without duplicating the capability router.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "target_specific_handoff_basic",
-    label: "Target-specific handoff",
-    description: "Generate target-appropriate session context (Claude, Codex, local model, generic) with emphasis, scope, and command guidance matched to the target.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "dynamic_session_commands_basic",
-    label: "Dynamic session commands",
-    description: "Generate task- and target-aware commands for session context instead of a static list, so agents always get the right first commands.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "capability_recommender_context_bridge_basic",
-    label: "Capability recommender context bridge",
-    description: "Embed capability recommender output (pack, reason, next action) into session context so agents always know which Avorelo capability should handle the task.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "skills_route_fallback_basic",
-    label: "Skills route fallback",
-    description: "When no skills route receipt exists and the task is suitable, include the exact fallback command for source-backed workflow guidance.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "dogfood_feedback_loop_basic",
-    label: "Dogfood feedback loop",
-    description: "Capture structured dogfood feedback (friction, missing context, wrong surface, capability hint) as product-learning events rather than only prose.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "task_context_pack_basic",
-    label: "Task context pack",
-    description: "Build a compact task-specific context supplement from brain pack, workspace map, and work-control state for high-value continuation sessions.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "partial",
-    surfaceType: "evidence",
-  }),
-  // Agent Model Orchestration Foundation v1
-  defineCapability({
-    id: "worker_inventory_productized_basic",
-    label: "Worker / model inventory",
-    description: "Normalized local inventory of detected workers (Codex, Claude Code, LM Studio, Ollama, git, test runner) with availability, worker state, quota signal, cost/trust/privacy tiers, and supported roles.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-  }),
-  defineCapability({
-    id: "quota_fallback_awareness_basic",
-    label: "Quota / fallback awareness",
-    description: "Detect recently_limited, needs_login, recently_failed, and unavailable workers; produce reason codes (WORKER_RECENTLY_LIMITED, WORKER_NEEDS_LOGIN, LOCAL_WORKER_AVAILABLE, FALLBACK_RECOMMENDED, ESCALATION_RECOMMENDED) and recommend the cheapest capable safe alternative.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "stage_based_route_plan_basic",
-    label: "Stage-based route plan",
-    description: "Split work into bounded stages (inspect, plan, implement, verify, security_review, review, handoff) and select the cheapest capable safe worker for each stage based on role, risk, sensitivity, and quota signals.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "cheapest_capable_safe_worker_basic",
-    label: "Cheapest capable safe worker",
-    description: "Select the worker that is capable for the stage role, safe for task risk/sensitivity, not recently limited, privacy-compatible, and cost-efficient only after capability and safety checks pass.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "local_worker_recommendation_basic",
-    label: "Local worker recommendation",
-    description: "Recommend LM Studio or Ollama for low-sensitivity inspection, planning, repo reading, and summary stages when a local worker is available and safe, avoiding premium external spend.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "strong_model_escalation_basic",
-    label: "Strong model escalation",
-    description: "Escalate to a trusted higher-quality worker (Claude Code, Codex) for complex implementation, high-risk, security-sensitive, or final review stages when local workers are insufficient.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "handoff_prompt_generation_basic",
-    label: "Handoff prompt generation",
-    description: "Generate compact, redacted handoff prompts for worker-to-worker transitions (Codex to Claude, Claude to local, local to next session) including mission, done/not-redo, gaps, next action, and safe path constraints.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "orchestration_receipt_basic",
-    label: "Orchestration receipt",
-    description: "Write a local receipt (contract: avorelo.agentModelOrchestration.v1) with route ID, stage plan, selected/fallback/blocked workers, quota signals, handoff path, and next action.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "orchestration_product_learning_basic",
-    label: "Orchestration product learning",
-    description: "Emit safe local events for route planning, stage planning, worker limits, fallback usage, local worker recommendations, escalation, and handoff generation. No raw code, prompts, or secrets.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  // ── Prompt / Context / Token Optimization Foundation v1 ───────────────────
-  defineCapability({
-    id: "prompt_context_pack_basic",
-    label: "Stage-specific context pack",
-    description: "Generate a compact, deterministic, stage-specific context pack for each orchestration stage (inspect/plan/implement/verify/security_review/handoff). Packs include only relevant file paths, summaries, selected skill summaries, and safety constraints — never full dumps, secrets, or unselected skill bodies. Foundation only; not a generic prompt optimizer or RAG system.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "stage_context_budget_basic",
-    label: "Stage context budget",
-    description: "Map each orchestration stage to a context budget class (small/medium/large) based on stage role, contextNeed, and worker type. Local model stages always get the small cap. Token estimates are heuristic approximations, not billing-exact values.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "token_budget_estimation_basic",
-    label: "Token budget estimation",
-    description: "Estimate input tokens for context packs using the local gpt-tokenizer when available, falling back to a conservative chars/4 heuristic. Marks estimate method and warning level (within_budget/near_budget/over_budget). No external API calls. Estimates are not billing-exact.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "context_compaction_basic",
-    label: "Context compaction",
-    description: "When a context pack exceeds the stage budget, automatically exclude lower-priority items and record what was excluded and why. Produces included/excluded lists and a compaction flag in the receipt. Deterministic and local-only; no semantic search or vector indexing involved.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "local_worker_context_boundary_basic",
-    label: "Local worker context boundary",
-    description: "Cap context packs to the small budget class when the selected worker is a local model (LM Studio, Ollama), regardless of stage role. Records localWorkerCapped flag in the receipt.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "handoff_context_pack_basic",
-    label: "Handoff context pack",
-    description: "Attach a compact context pack summary to handoff prompts so the next worker receives bounded, relevant context — not a raw dump. Handoff remains compact; full details available via the context pack path.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "skill_context_lazy_loading_basic",
-    label: "Skill context lazy loading",
-    description: "Include only selected skill summaries in context packs; exclude full skill bodies unless a skill is explicitly selected and budget allows. Emits a skill_context_lazy_loaded event when skills are loaded on demand.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "no_secrets_context_boundary_basic",
-    label: "No-secrets context boundary",
-    description: "Redact or exclude any item containing detected secrets (API keys, tokens, passwords) from context packs. Records noSecretsConfirmed in the receipt. Does not guarantee detection of all possible secret formats.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-  }),
-  defineCapability({
-    id: "context_optimization_receipt_basic",
-    label: "Context optimization receipt",
-    description: "Write a local receipt (contract: avorelo.contextOptimizationReceipt.v1) with context pack path, stage budget, token estimate, included/excluded counts, compaction flag, no-secrets confirmation, and next action.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  defineCapability({
-    id: "context_product_learning_basic",
-    label: "Context optimization product learning",
-    description: "Emit safe local events for context pack generation, budget estimation, over-budget warnings, compaction usage, local worker boundaries, secrets boundary application, excluded items, and receipt writing. No raw code, prompts, or secrets in payloads.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-  }),
-  // ── Seamless Customer Outcome + Value Reality Gate v1 ──────────────────────
-  defineCapability({
-    id: "seamless_outcome_contract_basic",
-    label: "Seamless outcome contract",
-    description: "Internal operating contract with three modes (automatic/assisted/manual_debug) that define when Avorelo works silently, when it asks, and when it exposes detail. Automatic mode works silently for routine safe optimizations.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "automatic_mode_behavior_basic",
-    label: "Automatic mode behavior",
-    description: "In automatic mode, Avorelo applies safe optimizations silently: choose skills, route to local workers, reduce context, write receipts, and only interrupt when the task cannot proceed without user input or when an irreversible/destructive action requires approval.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "outcome_preserving_safety_basic",
-    label: "Outcome-preserving safety check",
-    description: "For any safety or cost reduction, represent: taskStillExecutable, fallbackAvailable, escalationRecommended, safeNextAction, and interruptRequired. A block must include a safe next action when possible. A reduction must not silently make the task impossible.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "end_of_run_value_summary_basic",
-    label: "End-of-run value summary",
-    description: "Compact JSON summary: completed/saved/protected/verified/quality/evidence/caveats. Estimated savings clearly marked estimated. No guaranteed savings. No exact dollar claims without billing evidence. Surfaced via `avorelo outcome --json`.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "value_reality_gate_basic",
-    label: "Value reality gate",
-    description: "Deterministic 14-check audit engine that evaluates whether Avorelo's foundations work together as a seamless customer outcome layer. Fails/warns only when an implemented surface contradicts the seamless outcome contract. Future roadmap gaps do not fail the gate.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "persona_dogfood_scorecard_basic",
-    label: "Persona dogfood scorecard",
-    description: "Structured dogfood scorecard for 8 personas (Developer, QA, PM, UX, Security, Marketing, Support, Cost) with per-scenario pass/warn/fail scoring and what-should-happen-silently-next-time capture.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "compact_proof_value_surface_basic",
-    label: "Compact proof and value surface",
-    description: "Status JSON includes compact seamlessOutcome and seamlessRealityGate surfaces. Proof references the latest value summary path. Internal machinery hidden by default; debug detail available on demand.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  // PR #131 — Proof Output Compaction + Worker Debug Gate
-  defineCapability({
-    id: "compact_proof_default_basic",
-    label: "Compact default proof output",
-    description: "Default proof output shows completed/saved/protected/verified/next summary. Blocked and unavailable workers are shown as a compact count only. Full worker lists are hidden from default output. No machinery exposed by default.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "worker_detail_debug_gate_basic",
-    label: "Worker detail behind debug gate",
-    description: "avorelo proof --debug exposes blocked worker names, reasons, and skipped worker lists. Debug output is redacted. Debug does not change behavior, only visibility. Equivalent to --verbose.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "reality_gate_accuracy_repair_basic",
-    label: "Reality gate accuracy repair",
-    description: "Reality Gate context-pack checks use actual PR #128 field names: tokenEstimate.estimatedTokens, stageId, includedContext with type=skill_summaries, localWorkerCapped. Skills full-body check inspects includedContext and excludedContext arrays. Status surface check classifies comprehensive JSON correctly.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  // PR #132 — Seamless Automation Enforcement
-  defineCapability({
-    id: "seamless_enforcement_contract_basic",
-    label: "Seamless automation enforcement contract",
-    description: "shouldInterruptForDecision() and shouldApplySilently() are wired into guard, route, and context command output. Safe routine actions apply silently with compact outcome line. High-risk/deploy/secrets actions show full detail and require acknowledgment. No decisions are hidden when interruption is warranted.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "guard_block_outcome_preservation_basic",
-    label: "Guard block outcome preservation",
-    description: "Every guard block and approval_required decision includes taskStillExecutable, fallbackAvailable, escalationRecommended, and safeNextAction in both JSON payload and text output. Reduced access always includes a safe path forward or escalation signal.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "value_summary_auto_write_basic",
-    label: "Value summary auto-write after runs",
-    description: "buildValueSummaryFromReceipts() is called after guard, route, and context commands. Value summary written to latest-value-summary.json without user action. manualDecisionsAvoided, unsafeActionsBlocked, and qualityPreserved tracked per run.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  // AI Workspace Hygiene + Capability Registry v1
-  defineCapability({
-    id: "ai_workspace_hygiene_basic",
-    label: "AI workspace hygiene scan",
-    description: "Scan repo-local AI workspace assets (instructions, skills, MCP, hooks, scripts) and produce a compact hygiene report without executing anything.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "ai_workspace_asset_inventory_basic",
-    label: "AI workspace asset inventory",
-    description: "Build a normalized inventory of AI workspace assets from local repo files including instructions, skills, MCP configs, hooks, and package scripts.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "capability_registry_metadata_basic",
-    label: "Capability registry metadata",
-    description: "Enrich capability IDs with trust, scope, context-cost, stage, and worker hints for future orchestration — without implementing orchestration behavior now.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "workspace_skill_hygiene_basic",
-    label: "Workspace skill hygiene",
-    description: "Detect skill files missing triggers, stage hints, or at risk of full-body context loading that wastes tokens.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "instruction_surface_hygiene_basic",
-    label: "Instruction surface hygiene",
-    description: "Detect duplicate, conflicting, or overly-heavy agent instruction files across AGENTS.md, CLAUDE.md, cursor rules, and copilot instructions.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "mcp_workspace_visibility_basic",
-    label: "MCP workspace visibility",
-    description: "Detect and classify MCP config files and servers present in the repo without executing them.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "hook_surface_visibility_basic",
-    label: "Hook surface visibility",
-    description: "Detect lifecycle hook configs in .claude and .openhands and classify their stage without installing or running hooks.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "package_script_hygiene_basic",
-    label: "Package script hygiene",
-    description: "Flag risky deploy/network/destructive package scripts without executing them.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "orchestration_ready_capability_metadata_basic",
-    label: "Orchestration-ready capability metadata",
-    description: "Attach workerHints, stageHints, contextCost, riskLevel, and trustLevel to capability registry entries as a foundation for future work-aware orchestration.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  // Work-Aware Orchestration + Workspace Relevance v1
-  defineCapability({
-    id: "work_aware_orchestration_basic",
-    label: "Work-aware orchestration",
-    description: "Plan AI work deterministically: classify a task, split into stages, select cheapest capable safe worker per stage, and select focused context from workspace hygiene metadata.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "stage_based_work_plan_basic",
-    label: "Stage-based work plan",
-    description: "Split any task into deterministic stages (inspect, plan, implement, verify, review, handoff) with per-stage objectives, risk levels, and quality requirements.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "stage_based_worker_selection_basic",
-    label: "Stage-based worker selection",
-    description: "Select cheapest capable safe worker per stage: local/cheap for inspect/handoff, strong model for critical implementation/review, local test runner for verify.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "workspace_relevance_context_selection_basic",
-    label: "Workspace relevance context selection",
-    description: "Auto-select stage-relevant assets/files from workspace hygiene metadata, excluding unknown/high-risk/high-context-cost assets from automatic context.",
-    bucket: "automatic_context_cost_optimization",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "stage_aware_handoff_basic",
-    label: "Stage-aware handoff",
-    description: "Generate a handoff receipt with what was done, what not to redo, selected next stage, worker role, verification next step, and exact next action.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "orchestration_value_evidence_basic",
-    label: "Orchestration value evidence",
-    description: "Write evidence-backed value summary for each work plan: local/cheap vs strong-worker stage counts, excluded assets, verification prepared. No exact/guaranteed savings.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  // PR #136 — AI-Native Company Loop + Unified Work Ledger
-  defineCapability({
-    id: "work_ledger_basic",
-    label: "Unified work ledger",
-    description: "Link all Avorelo receipts (route, context, guard, hygiene, orchestration, outcome, reality gate) into one compact run view with rollup: completed, saved, protected, verified, friction, next action.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "ai_native_company_loop_basic",
-    label: "AI-native company loop",
-    description: "Run a deterministic internal operating loop across ledger evidence: persona review (8 personas), friction clustering, COGS/quality rollup, and evidence-backed next PR recommendation. Local only, no LLM calls.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "internal_persona_review_basic",
-    label: "Internal persona review",
-    description: "Evaluate the work ledger from 8 internal perspectives (Product, QA, UX, Security, DevEx, Cost, Support, Marketing). Each returns pass/warn/fail/skip with evidence and recommended fix.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "dogfood_friction_clustering_basic",
-    label: "Dogfood friction clustering",
-    description: "Cluster repeated product and workflow friction signals (missing evidence, noisy output, manual fallback, unknown assets, value not evidence-backed) from ledger and persona findings.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "feedback_signal_schema_basic",
-    label: "Local feedback signal schema",
-    description: "Accept and validate local dogfood/manual feedback signals. Local-only, no PII, no cloud. Feedback links to ledger friction types and populates company loop findings.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "next_pr_recommendation_basic",
-    label: "Evidence-backed next PR recommendation",
-    description: "Recommend the next PR based on dominant friction clusters, Reality Gate status, and persona findings. Includes confidence level (low/medium/high) and explicit deferred items.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "cost_cogs_quality_rollup_basic",
-    label: "COGS/quality rollup",
-    description: "Deterministic cost and quality rollup from ledger evidence: estimated local stages, context tokens saved (estimate), quality checks verified, friction points. No exact/guaranteed savings.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  // PR #137 — Execution Packet + Project Profile + Work Panel Preview v1
-  defineCapability({
-    id: "project_profile_detection_basic",
-    label: "Project profile detection",
-    description: "Deterministically detect project framework, package manager, build/test/dev scripts, deploy provider, and risk boundaries from local files. No network calls, no script execution.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "execution_packet_basic",
-    label: "Scoped execution packet",
-    description: "Transform messy user intent into a scoped, safe execution packet with allowed/blocked scope, risk level, proof requirements, diff policy, and agent instructions. Local only, no LLM calls.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "execution_packet_scope_boundaries_basic",
-    label: "Execution packet scope boundaries",
-    description: "Apply deterministic allowed/blocked scope to execution packets: secrets/auth/billing/deploy always blocked; blocked scope always overrides allowed scope.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "block",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "agent_prompt_compiler_basic",
-    label: "Agent prompt compiler",
-    description: "Compile execution packets into structured agent instructions for target workers (claude_code, codex, local_worker). Includes allowed/blocked scope, diff-before-write, and proof requirements.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "work_panel_preview_basic",
-    label: "Work panel preview",
-    description: "Generate a local-only compact preview of the current execution packet: goal, mode, risk, scope summary, proof requirements. Local artifact only — no network, no browser injection, no auto-apply.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "proof_requirements_packet_basic",
-    label: "Proof requirements in execution packet",
-    description: "Attach proof requirements (run_tests, run_build, run_lint, human_approval) to execution packets based on project profile and mode. Diff required before write for code changes.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "diff_before_write_policy_basic",
-    label: "Diff before write policy",
-    description: "Require a unified diff of proposed changes before any code write in safe_patch, fast_prototype, refactor_plan, and security_review modes.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-
-  // ── PR #138 — Seamless Smart Work Routing + Worker Handoff Runtime v1 ─────────
-  defineCapability({
-    id: "smart_work_routing_basic",
-    label: "Smart Work Routing",
-    description: "Route AI coding work through the cheapest safe capable path: local/cheap for docs/inspect, strong worker for critical implementation, approval-gated for deploy/destructive/remote-agent. Receipts written automatically.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "smart_route_execution_path_basic",
-    label: "Smart route execution path decision",
-    description: "Deterministically decide auto_execute, auto_prepare, approval_required, blocked, or delegate for each task type. Reason codes included. No LLM or network calls.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "worker_handoff_basic",
-    label: "Worker handoff bundle",
-    description: "Compile a scoped worker handoff bundle: target worker, allowed/blocked scope summary, proof requirements, continuation type, output expectations. No raw secrets, no broad context dump.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "smart_route_protocol_readiness_basic",
-    label: "ACP/A2A protocol readiness metadata",
-    description: "Evaluate ACP and A2A readiness as metadata only. Neither protocol is implemented in v1. Same-surface CLI/handoff path is always preferred. Cross-vendor and remote-agent delegation require explicit approval.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "same_surface_preference_basic",
-    label: "Same-surface preference policy",
-    description: "Prefer local CLI/handoff path over cross-vendor or remote delegation by default. Cross-vendor routing is blocked unless explicitly enabled.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "cross_vendor_safety_boundary_basic",
-    label: "Cross-vendor safety boundary",
-    description: "Block cross-vendor and remote-agent delegation by default. Remote agents require identity proof, capability card, and completion receipt before any delegation is allowed.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "block",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "smart_route_ledger_receipt_basic",
-    label: "Smart route ledger receipt",
-    description: "Write a redacted smart route receipt and link it into the unified work ledger. Company-loop can read smart_route entries for friction detection and next-PR recommendations.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  // PR #139 — Safe Run Command + Execution Controller v1
-  defineCapability({
-    id: "safe_run_command_basic",
-    label: "Safe run command",
-    description: "Run `avorelo run \"<task>\"` to automatically route, compile an execution packet, prepare worker handoff, run whitelisted local proof steps, and write a compact receipt — without modifying code or executing remote agents.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: true,
-  }),
-  defineCapability({
-    id: "safe_execution_controller_basic",
-    label: "Safe execution controller",
-    description: "Deterministic local controller that chains project-profile, smart-route, execution-packet, worker-handoff, proof, ledger, and outcome without requiring manual command chaining.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: true,
-  }),
-  defineCapability({
-    id: "safe_local_proof_execution_basic",
-    label: "Safe local proof execution",
-    description: "Run whitelisted test/build/lint commands from the project profile when task risk is low/medium and the route is not approval-required. Blocks deploy, publish, release, destructive, and arbitrary commands.",
-    bucket: "better_ai_coding_tasks",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "block",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "run_smart_route_integration_basic",
-    label: "Run → smart route integration",
-    description: "Safe run command calls the smart-route module for task classification and execution-path decision without duplicating routing logic.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "run_execution_packet_integration_basic",
-    label: "Run → execution packet integration",
-    description: "Safe run command calls the execution-packet module to compile allowed/blocked scope, proof requirements, and agent prompt.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "run_worker_handoff_integration_basic",
-    label: "Run → worker handoff integration",
-    description: "Safe run command prepares a worker handoff bundle referencing execution packet and context pack.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  defineCapability({
-    id: "safe_run_ledger_receipt_basic",
-    label: "Safe run ledger receipt",
-    description: "Write a redacted safe-run receipt to .claude/cco/orchestration/safe-run/latest-run.json and link it into the unified work ledger as a safe_run entry.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  // ── PR #140 — Hook Baseline + Lifecycle Automation Preview v1 ──────────────
-  Object.freeze({
-    id: "hook_baseline_registry_basic",
-    label: "Hook baseline registry",
-    description: "Deterministic registry of all lifecycle hook definitions: events, blocking/non-blocking status, commands, capabilities, and safe defaults. Preview only — no user config modified.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "adapter_readiness_basic",
-    label: "Adapter readiness detection",
-    description: "Detect which AI coding host adapters are available (Claude Code, OpenHands, generic CLI) and whether their hook config paths exist. safeToAutoModify is always false.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "hook_config_preview_basic",
-    label: "Hook config preview",
-    description: "Generate a local preview of what hook configuration would look like if applied. Does not modify .claude/settings.json, .openhands/hooks.json, or any user config. Approval required before apply.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "lifecycle_hook_handler_basic",
-    label: "Lifecycle hook handlers",
-    description: "Safe local command handlers for all lifecycle events (SessionStart, UserPromptSubmit, PreToolUse, PostToolUse, Stop, SessionEnd). Not auto-installed. Apply requires explicit approval.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "smart_route_hook_binding_basic",
-    label: "Smart-route hook binding",
-    description: "Lifecycle hook UserPromptSubmit maps to smart-route: classify task, decide execution path, and prepare route for the session.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "execution_packet_hook_binding_basic",
-    label: "Execution packet hook binding",
-    description: "Lifecycle hooks UserPromptSubmit and PreToolUse map to execution-packet: compile packet and enforce packet boundaries.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "safe_run_hook_binding_basic",
-    label: "Safe-run hook binding",
-    description: "Lifecycle hook UserPromptSubmit maps to safe-run plan preparation (prepare-only, no execution).",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "pre_tool_use_guard_mapping_basic",
-    label: "PreToolUse guard mapping",
-    description: "Blocking lifecycle hook PreToolUse enforces packet boundaries and blocks destructive/secrets/deploy/prod tool use. Returns structured decision: allow|warn|approval_required|block.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "block",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "post_tool_use_ledger_mapping_basic",
-    label: "PostToolUse ledger mapping",
-    description: "Non-blocking lifecycle hook PostToolUse writes a redacted tool result summary to the work ledger and product-learning events.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "stop_proof_gate_mapping_basic",
-    label: "Stop proof gate mapping",
-    description: "Blocking lifecycle hook Stop checks whether proof is required by the execution packet. Blocks stop if proof is required but missing; allows stop otherwise.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "block",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "session_end_summary_handoff_mapping_basic",
-    label: "SessionEnd summary and handoff mapping",
-    description: "Non-blocking lifecycle hook SessionEnd updates outcome, ledger, company-loop, and prepares handoff summary. No user config modified.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  // PR #141 — Explicit Hook Apply + Lifecycle Live v1
-  Object.freeze({
-    id: "explicit_hook_apply_basic",
-    label: "Explicit hook apply",
-    description: "Apply Avorelo lifecycle hooks to repo-local config with explicit user approval. Default is dry-run. Real apply requires --yes. Backup created before apply. Rollback available.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "approval",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "hook_apply_dry_run_basic",
-    label: "Hook apply dry-run",
-    description: "Preview what hook apply would change without modifying any config. Default mode for `hooks apply`.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "hook_config_backup_basic",
-    label: "Hook config backup",
-    description: "Automatic timestamped backup of existing config before apply. Stored in repo-local .claude/cco/orchestration/hook-apply/backups/.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "hook_apply_validation_basic",
-    label: "Hook apply validation",
-    description: "Validate that installed hooks match expected config after apply. Reports missing events and duplicates.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "hook_rollback_basic",
-    label: "Hook rollback",
-    description: "Restore the latest config backup. Reverts apply without deleting unrelated user config or files.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "hook_uninstall_basic",
-    label: "Hook uninstall",
-    description: "Remove only Avorelo-managed hooks from config. Requires --yes. Preserves all user hooks and unrelated config.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "hook_doctor_basic",
-    label: "Hook doctor",
-    description: "Validate installed hooks, command paths, lifecycle handler smoke test, recursion guard, and rollback availability.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "hook_recursion_guard_basic",
-    label: "Hook recursion guard",
-    description: "Prevent hook re-entry when a lifecycle-hook-triggered command calls another Avorelo command. Uses AVORELO_HOOK_ACTIVE env var. Returns recursionSkipped receipt.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "policy",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "lifecycle_live_smoke_basic",
-    label: "Lifecycle live smoke test",
-    description: "Doctor command runs session-start, pre-tool-use (destructive sample), stop, and session-end handlers to verify they work before claiming lifecycle is live.",
-    bucket: "seamless_agent_security",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "e2e_value_dogfood_gate_basic",
-    label: "E2E value dogfood gate",
-    description: "Structured dogfood scorecard verifying Avorelo-on-Avorelo before and after implementation: manual steps avoided, risk reduced, proof status, verdict.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  // PR #142 — Activation Alpha Readiness + First Value v1
-  Object.freeze({
-    id: "alpha_activation_basic",
-    label: "Alpha activation",
-    description: "One command to check activation readiness, get first value path, and see what Avorelo will do.",
-    bucket: "activation_readiness",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: true,
-    customerFacingDescription: "Run one command to understand what Avorelo will do for your project and get your first value.",
-  }),
-  Object.freeze({
-    id: "first_value_path_basic",
-    label: "First value path",
-    description: "Deterministic first-value path selection: hooks, profile, proof, or safe run prepare-only.",
-    bucket: "activation_readiness",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: true,
-    customerFacingDescription: "Avorelo recommends the clearest first action for your project without guessing.",
-  }),
-  Object.freeze({
-    id: "alpha_readiness_gate_basic",
-    label: "Alpha readiness gate",
-    description: "Gate that checks all required Avorelo foundations before alpha use. Not public launch readiness.",
-    bucket: "activation_readiness",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "detection",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "local_feedback_capture_basic",
-    label: "Local feedback capture",
-    description: "Capture dogfood and support feedback locally. Redacted, no PII, feeds company-loop.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "support_bundle_basic",
-    label: "Support bundle",
-    description: "Redacted support/debug bundle with artifact references and status summaries.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "activation_company_loop_integration_basic",
-    label: "Activation feedback loop",
-    description: "Alpha feedback feeds company-loop and informs next PR recommendation.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  Object.freeze({
-    id: "e2e_value_dogfood_gate_basic_pr142",
-    label: "E2E value dogfood gate (alpha activation)",
-    description: "Documented E2E value scenarios for alpha activation with scorecards.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-    implementationStatus: "supported",
-    surfaceType: "evidence",
-    safeForPublicCopy: false,
-  }),
-  // PR #144 — Launch Hardening + Failure Recovery v1
-  defineCapability({
-    id: "launch_hardening_gate_basic",
-    label: "Launch hardening gate",
-    description: "Verify all launch-hardening checks pass before alpha: activation, hooks, token gate, support bundle, proof, artifacts.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-  }),
-  defineCapability({
-    id: "failure_recovery_taxonomy_basic",
-    label: "Failure recovery taxonomy",
-    description: "Classify every failure with a safe next action, severity, and recoverability flag.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-  }),
-  defineCapability({
-    id: "doctor_recovery_basic",
-    label: "Doctor with recovery",
-    description: "Aggregate activation, hooks, tokens, artifacts, and proof into a single compact health check with recovery actions.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-  }),
-  defineCapability({
-    id: "artifact_health_basic",
-    label: "Artifact health scan",
-    description: "Scan .claude/cco artifacts for invalid JSON, stale receipts, oversized files, and redaction failures.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-  }),
-  defineCapability({
-    id: "artifact_cleanup_basic",
-    label: "Artifact cleanup (dry-run)",
-    description: "Plan and apply safe cleanup of stale .claude/cco artifacts. Default dry-run; requires --yes for real deletion.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-  }),
-  defineCapability({
-    id: "support_bundle_hardening_basic",
-    label: "Support bundle hardening",
-    description: "Ensure support bundles include schema version, artifact integrity summary, failure recovery summary, and no raw secrets.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-  }),
-  defineCapability({
-    id: "cross_platform_sanity_basic",
-    label: "Cross-platform path sanity",
-    description: "Validate Windows/POSIX path handling, spaces in paths, and monorepo ambiguity.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-  }),
-  defineCapability({
-    id: "non_interactive_ci_mode_basic",
-    label: "Non-interactive CI mode",
-    description: "All commands support --json and --dry-run for CI/non-TTY environments.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-  }),
-  defineCapability({
-    id: "e2e_launch_hardening_dogfood_basic",
-    label: "E2E launch hardening dogfood",
-    description: "End-to-end failure-mode dogfood covering all launch-hardening scenarios with verdicts.",
-    bucket: "evidence_and_history",
-    availability: { free: true, pro: true },
-  }),
-]);
-
-const CAPABILITY_MAP = new Map(CAPABILITIES.map((capability) => [capability.id, capability]));
-const BUCKET_MAP = new Map(BUCKETS.map((bucket) => [bucket.id, bucket]));
-
-const PLANS = Object.freeze({
-  free: {
-    id: "free",
-    name: "Free",
-    subtitle: "Real local optimization from your first repo.",
-    promise: "Real local optimization from your first repo.",
-    publicDescription: "Free improves your first AI coding sessions.",
-    selectable: true,
-    historyRetention: { mode: "latest_only", maxReports: 1, retentionDays: 7 },
-    exportReports: false,
-  },
-  pro: {
-    id: "pro",
-    name: "Pro",
-    subtitle: "Your always-on optimization, security, and QA layer.",
-    promise: "Your always-on optimization, security, and QA layer for AI coding.",
-    publicDescription: "Pro turns Avorelo into your always-on optimization, security, and QA layer.",
-    selectable: true,
-    historyRetention: { mode: "history", maxReports: 50, retentionDays: 30 },
-    exportReports: true,
-  },
-  teams_enterprise_contact: {
-    id: "teams_enterprise_contact",
-    name: "Teams & Enterprise",
-    subtitle: "Planned for larger teams.",
-    promise: "Teams & Enterprise are planned for larger teams. Need shared policies, team dashboards, CI gates, SSO, or procurement support? Contact us for early access.",
-    publicDescription: "Teams is not launched yet.",
-    selectable: false,
-  },
-});
-
-function getPlan(planName) {
-  const key = String(planName || "free").trim().toLowerCase();
-  return PLANS[key] || null;
-}
-
-function getCapability(capabilityId) {
-  return CAPABILITY_MAP.get(String(capabilityId || "").trim()) || null;
-}
-
-function isCapabilityEnabled(planName, capabilityId) {
-  const plan = getPlan(planName);
-  const capability = getCapability(capabilityId);
-  if (!plan || !capability || plan.selectable === false) return false;
-  return Boolean(capability.availability?.[plan.id]);
-}
-
-function publicCapability(capability, planId) {
-  return {
-    ...capability,
-    plan: planId,
-  };
-}
-
-function listCapabilitiesForPlan(planName) {
-  const plan = getPlan(planName);
-  if (!plan || plan.selectable === false) return [];
-  return CAPABILITIES
-    .filter((capability) => capability.safeForPublicCopy !== false)
-    .filter((capability) => isCapabilityEnabled(plan.id, capability.id))
-    .map((capability) => publicCapability(capability, plan.id));
-}
-
-function explainCapabilityForPlan(planName, capabilityId) {
-  const plan = getPlan(planName);
-  const capability = getCapability(capabilityId);
-  if (!capability) {
-    return {
-      plan: plan?.id || null,
-      capabilityId,
-      enabled: false,
-      summary: `Unknown capability: ${capabilityId}.`,
-    };
-  }
-
-  const enabled = Boolean(plan && plan.selectable !== false && capability.availability?.[plan.id]);
-  return {
-    plan: plan?.id || null,
-    capabilityId: capability.id,
-    label: capability.label,
-    bucket: capability.bucket,
-    enabled,
-    implementationStatus: capability.implementationStatus,
-    quota: capability.quota || null,
-    surfaceType: capability.surfaceType,
-    safeForPublicCopy: capability.safeForPublicCopy !== false,
-    summary: enabled
-      ? `${plan.name} includes ${capability.label.toLowerCase()}. ${capability.customerFacingDescription || capability.description}`
-      : `${plan?.name || "This plan"} does not include ${capability.label.toLowerCase()}.`,
-  };
-}
-
-function listBucketsForPlan(planName) {
-  const capabilities = listCapabilitiesForPlan(planName);
-  return BUCKETS.map((bucket) => ({
-    ...bucket,
-    capabilities: capabilities.filter((capability) => capability.bucket === bucket.id),
-  })).filter((bucket) => bucket.capabilities.length > 0);
-}
-
-function comparePlans() {
-  const publicUpgradeUnlocks = CAPABILITIES
-    .filter((capability) => capability.safeForPublicCopy !== false)
-    .filter((capability) => capability.availability?.pro && !capability.availability?.free)
-    .map((capability) => ({
-      id: capability.id,
-      label: capability.label,
-      bucket: BUCKET_MAP.get(capability.bucket)?.label || capability.bucket,
-      implementationStatus: capability.implementationStatus,
-      surfaceType: capability.surfaceType,
-    }));
-
-  return {
-    plans: {
-      free: {
-        ...PLANS.free,
-        capabilities: listCapabilitiesForPlan("free"),
-        buckets: listBucketsForPlan("free"),
-      },
-      pro: {
-        ...PLANS.pro,
-        capabilities: listCapabilitiesForPlan("pro"),
-        buckets: listBucketsForPlan("pro"),
-      },
-    },
-    upgradeUnlocks: publicUpgradeUnlocks,
-    teamsEnterpriseNote: PLANS.teams_enterprise_contact.promise,
-  };
-}
-
-module.exports = {
-  BUCKETS,
-  CAPABILITIES,
-  getPlan,
-  getCapability,
-  isCapabilityEnabled,
-  listCapabilitiesForPlan,
-  comparePlans,
-  explainCapabilityForPlan,
-  listBucketsForPlan,
-};