npm - avorelo - Versions diffs - 0.1.0 - Mend

avorelo 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (258) hide show

package/LICENSE +21 -0
package/README.md +56 -0
package/bin/avorelo +9 -0
package/package.json +135 -0
package/scripts/README.md +40 -0
package/scripts/cco-dashboard.js +252 -0
package/scripts/cco-status.js +430 -0
package/scripts/lib/activation/account-state.js +37 -0
package/scripts/lib/activation/activation-runner.js +546 -0
package/scripts/lib/activation/activation-self-healing.js +480 -0
package/scripts/lib/activation/activation-state.js +83 -0
package/scripts/lib/activation/activation-summary.js +191 -0
package/scripts/lib/activation/adapters/claude-code.js +77 -0
package/scripts/lib/activation/adapters/codex-cli.js +52 -0
package/scripts/lib/activation/adapters/cursor.js +37 -0
package/scripts/lib/activation/adapters/github-agent.js +39 -0
package/scripts/lib/activation/adapters/terminal.js +42 -0
package/scripts/lib/activation/adapters/vscode.js +39 -0
package/scripts/lib/activation/adapters/windsurf.js +37 -0
package/scripts/lib/activation/ai-surface-detector.js +151 -0
package/scripts/lib/activation/connect-account.js +145 -0
package/scripts/lib/activation/detect-environment.js +75 -0
package/scripts/lib/activation/detect-hosts.js +62 -0
package/scripts/lib/activation/format-activation-output.js +109 -0
package/scripts/lib/activation/next-action.js +43 -0
package/scripts/lib/activation/repair-engine.js +219 -0
package/scripts/lib/activation-distribution-readiness.js +507 -0
package/scripts/lib/adapter-conformance.js +176 -0
package/scripts/lib/adapter-readiness.js +417 -0
package/scripts/lib/adapter-safety-boundaries.js +335 -0
package/scripts/lib/adapter-technical-readiness-gate.js +205 -0
package/scripts/lib/agent-access-governance.js +455 -0
package/scripts/lib/agent-enforcement.js +765 -0
package/scripts/lib/agent-policy-profile.js +210 -0
package/scripts/lib/agent-security/action-evaluator.js +507 -0
package/scripts/lib/agent-security/adapter-registry.js +98 -0
package/scripts/lib/agent-security/auto-policy.js +139 -0
package/scripts/lib/agent-security/bounded-scan.js +93 -0
package/scripts/lib/agent-security/enforcement-adapter.js +174 -0
package/scripts/lib/agent-security/enforcement-engine.js +1129 -0
package/scripts/lib/agent-security/file-write-adapter.js +183 -0
package/scripts/lib/agent-security/file-write-rules.js +178 -0
package/scripts/lib/agent-security/index.js +3342 -0
package/scripts/lib/agent-security/instruction-risk.js +181 -0
package/scripts/lib/agent-security/mcp-action-adapter.js +185 -0
package/scripts/lib/agent-security/mcp-action-rules.js +184 -0
package/scripts/lib/agent-security/package-action-adapter.js +175 -0
package/scripts/lib/agent-security/package-action-rules.js +233 -0
package/scripts/lib/agent-security/performance.js +148 -0
package/scripts/lib/agent-security/permission-minimizer.js +403 -0
package/scripts/lib/agent-security/scan-cache.js +74 -0
package/scripts/lib/agent-security/source-trust.js +146 -0
package/scripts/lib/ai-install-prompt.js +288 -0
package/scripts/lib/ai-workspace-hygiene.js +1499 -0
package/scripts/lib/alpha-activation.js +520 -0
package/scripts/lib/alpha-feedback.js +263 -0
package/scripts/lib/alpha-readiness-gate.js +332 -0
package/scripts/lib/anti-gaming.js +169 -0
package/scripts/lib/artifact-health.js +431 -0
package/scripts/lib/attribution.js +180 -0
package/scripts/lib/audit.js +289 -0
package/scripts/lib/avorelo-skill-registry.js +810 -0
package/scripts/lib/batch-jobs.js +71 -0
package/scripts/lib/brain-pack.js +578 -0
package/scripts/lib/brand-boundary.js +424 -0
package/scripts/lib/brand.js +74 -0
package/scripts/lib/browser-capability.js +1048 -0
package/scripts/lib/browser-proof-preflight.js +321 -0
package/scripts/lib/cache-readiness.js +187 -0
package/scripts/lib/canonical-reentry.js +162 -0
package/scripts/lib/capability-packs.js +314 -0
package/scripts/lib/capability-recommender.js +512 -0
package/scripts/lib/capability-registry.js +1059 -0
package/scripts/lib/carry-forward-surfacing.js +194 -0
package/scripts/lib/ccusage-adapter.js +188 -0
package/scripts/lib/company-loop.js +1149 -0
package/scripts/lib/config.js +637 -0
package/scripts/lib/context-acquisition-plan.js +287 -0
package/scripts/lib/context-budget-guard.js +170 -0
package/scripts/lib/context-budget-scanner.js +257 -0
package/scripts/lib/context-optimizer.js +715 -0
package/scripts/lib/context-reduction-plan.js +178 -0
package/scripts/lib/context-safety.js +88 -0
package/scripts/lib/context-savings-engine.js +158 -0
package/scripts/lib/cost-evidence.js +254 -0
package/scripts/lib/cross-host-install-plan.js +308 -0
package/scripts/lib/cross-host-install-readiness.js +237 -0
package/scripts/lib/cross-host-value-flow.js +268 -0
package/scripts/lib/dashboard.js +900 -0
package/scripts/lib/design-partner-feedback.js +346 -0
package/scripts/lib/entitlements.js +100 -0
package/scripts/lib/execution-packet.js +559 -0
package/scripts/lib/experimentation-events.js +547 -0
package/scripts/lib/external-capability-compliance.js +107 -0
package/scripts/lib/external-user-simulation.js +166 -0
package/scripts/lib/failure-recovery-readiness.js +81 -0
package/scripts/lib/failure-recovery.js +419 -0
package/scripts/lib/feedback-intelligence.js +537 -0
package/scripts/lib/feedback-signals.js +205 -0
package/scripts/lib/file-integrity.js +68 -0
package/scripts/lib/fsx.js +127 -0
package/scripts/lib/full-readiness-gate.js +451 -0
package/scripts/lib/guidance-builder.js +174 -0
package/scripts/lib/hook-apply.js +1019 -0
package/scripts/lib/hook-baseline.js +310 -0
package/scripts/lib/hook-config-preview.js +275 -0
package/scripts/lib/hook-contracts.js +290 -0
package/scripts/lib/hook-safety-boundary-readiness.js +80 -0
package/scripts/lib/host-capability-matrix.js +351 -0
package/scripts/lib/host-support-context.js +254 -0
package/scripts/lib/http-hook-action.js +538 -0
package/scripts/lib/install-ai-readiness.js +84 -0
package/scripts/lib/install-intake-risk.js +1037 -0
package/scripts/lib/install-journey-intelligence.js +329 -0
package/scripts/lib/intervention-guidance.js +57 -0
package/scripts/lib/known-limitations.js +115 -0
package/scripts/lib/l8-path-truth.js +146 -0
package/scripts/lib/launch-hardening-gate.js +436 -0
package/scripts/lib/launch-readiness.js +628 -0
package/scripts/lib/learning-memory.js +686 -0
package/scripts/lib/lifecycle-hooks.js +802 -0
package/scripts/lib/local-package-smoke.js +423 -0
package/scripts/lib/local-pricing.js +299 -0
package/scripts/lib/mcp-enforcement.js +311 -0
package/scripts/lib/mcp-least-privilege-policy.js +303 -0
package/scripts/lib/mcp-tool-inventory.js +388 -0
package/scripts/lib/mcp-tool-risk.js +0 -0
package/scripts/lib/memory.js +335 -0
package/scripts/lib/metrics.js +699 -0
package/scripts/lib/micro-proof.js +133 -0
package/scripts/lib/next-run-context.js +436 -0
package/scripts/lib/operating-value.js +1648 -0
package/scripts/lib/optimization-v3.js +122 -0
package/scripts/lib/orchestration/adapters/_shared.js +49 -0
package/scripts/lib/orchestration/adapters/aider.js +18 -0
package/scripts/lib/orchestration/adapters/claude-code.js +35 -0
package/scripts/lib/orchestration/adapters/codex.js +35 -0
package/scripts/lib/orchestration/adapters/gemini-cli.js +18 -0
package/scripts/lib/orchestration/adapters/git.js +25 -0
package/scripts/lib/orchestration/adapters/index.js +31 -0
package/scripts/lib/orchestration/adapters/lm-studio.js +18 -0
package/scripts/lib/orchestration/adapters/ollama.js +18 -0
package/scripts/lib/orchestration/adapters/opencode.js +18 -0
package/scripts/lib/orchestration/adapters/openrouter.js +18 -0
package/scripts/lib/orchestration/adapters/test-runner.js +25 -0
package/scripts/lib/orchestration/cli.js +438 -0
package/scripts/lib/orchestration/execution-manager.js +279 -0
package/scripts/lib/orchestration/handoff.js +314 -0
package/scripts/lib/orchestration/index.js +456 -0
package/scripts/lib/orchestration/inventory.js +47 -0
package/scripts/lib/orchestration/model-discovery.js +498 -0
package/scripts/lib/orchestration/model-profiler.js +170 -0
package/scripts/lib/orchestration/model-profiles.js +252 -0
package/scripts/lib/orchestration/model-refresh-policy.js +72 -0
package/scripts/lib/orchestration/proof-writer.js +349 -0
package/scripts/lib/orchestration/provider-discovery/aider.js +49 -0
package/scripts/lib/orchestration/provider-discovery/claude-code.js +56 -0
package/scripts/lib/orchestration/provider-discovery/codex.js +49 -0
package/scripts/lib/orchestration/provider-discovery/common.js +186 -0
package/scripts/lib/orchestration/provider-discovery/gemini.js +106 -0
package/scripts/lib/orchestration/provider-discovery/lm-studio.js +118 -0
package/scripts/lib/orchestration/provider-discovery/models-dev.js +12 -0
package/scripts/lib/orchestration/provider-discovery/ollama.js +100 -0
package/scripts/lib/orchestration/provider-discovery/opencode.js +47 -0
package/scripts/lib/orchestration/provider-discovery/openrouter.js +44 -0
package/scripts/lib/orchestration/risk-classifier.js +130 -0
package/scripts/lib/orchestration/routing-policy.js +486 -0
package/scripts/lib/orchestration/settings.js +112 -0
package/scripts/lib/orchestration/state.js +165 -0
package/scripts/lib/orchestration/verification-manager.js +138 -0
package/scripts/lib/output-profiles.js +146 -0
package/scripts/lib/package-content-audit.js +368 -0
package/scripts/lib/package-runtime.js +278 -0
package/scripts/lib/plan-surface.js +53 -0
package/scripts/lib/plans.js +2318 -0
package/scripts/lib/policy-provider.js +27 -0
package/scripts/lib/prelaunch-activation-readiness.js +409 -0
package/scripts/lib/prelaunch-evidence-store.js +816 -0
package/scripts/lib/prelaunch-intelligence.js +869 -0
package/scripts/lib/pricing-experiment.js +118 -0
package/scripts/lib/pro-moment-events.js +77 -0
package/scripts/lib/pro-moment-state.js +227 -0
package/scripts/lib/pro-moments.js +1216 -0
package/scripts/lib/product-learning-events.js +629 -0
package/scripts/lib/project-profile.js +555 -0
package/scripts/lib/prompt-compiler.js +280 -0
package/scripts/lib/prompt-lint.js +32 -0
package/scripts/lib/prompt-suggestions.js +52 -0
package/scripts/lib/proof-canonical.js +398 -0
package/scripts/lib/proof-drilldown.js +383 -0
package/scripts/lib/proof-events.js +342 -0
package/scripts/lib/proof-history.js +243 -0
package/scripts/lib/proof-metrics.js +296 -0
package/scripts/lib/proof-outcome-evidence.js +134 -0
package/scripts/lib/proof-receipt.js +335 -0
package/scripts/lib/proof-record.js +461 -0
package/scripts/lib/public-activation-distribution-gate.js +258 -0
package/scripts/lib/public-cli.js +3891 -0
package/scripts/lib/public-distribution-truth.js +211 -0
package/scripts/lib/public-install-claim-checker.js +294 -0
package/scripts/lib/publish-provenance-readiness.js +283 -0
package/scripts/lib/readiness-delta.js +218 -0
package/scripts/lib/readiness-evidence-closure.js +196 -0
package/scripts/lib/reentry-memory-capture.js +241 -0
package/scripts/lib/reentry-memory-retrieval.js +302 -0
package/scripts/lib/reentry-memory-status.js +146 -0
package/scripts/lib/reentry-memory-store.js +178 -0
package/scripts/lib/reentry-state.js +66 -0
package/scripts/lib/release-candidate-bundle.js +166 -0
package/scripts/lib/remediation.js +81 -0
package/scripts/lib/repo-map.js +391 -0
package/scripts/lib/run-improvements-lifecycle.js +330 -0
package/scripts/lib/run-improvements.js +789 -0
package/scripts/lib/runtime-decision-policy.js +387 -0
package/scripts/lib/safe-path-engine.js +705 -0
package/scripts/lib/safe-run-controller.js +887 -0
package/scripts/lib/score.js +262 -0
package/scripts/lib/seamless-enforcement.js +329 -0
package/scripts/lib/seamless-outcome.js +689 -0
package/scripts/lib/seamless-reality-gate.js +5043 -0
package/scripts/lib/security-risk-classifier.js +511 -0
package/scripts/lib/security-scan.js +384 -0
package/scripts/lib/session-context-optimizer.js +1211 -0
package/scripts/lib/session-timing.js +315 -0
package/scripts/lib/skill-hygiene.js +805 -0
package/scripts/lib/skill-packs.js +161 -0
package/scripts/lib/skills-operating-layer.js +580 -0
package/scripts/lib/smart-work-routing.js +768 -0
package/scripts/lib/source-catalog.js +700 -0
package/scripts/lib/status-value-summary.js +32 -0
package/scripts/lib/support-bundle.js +578 -0
package/scripts/lib/task-continuation.js +440 -0
package/scripts/lib/test-helpers.js +15 -0
package/scripts/lib/tier.js +38 -0
package/scripts/lib/token-context-quality-gate.js +370 -0
package/scripts/lib/token-cost-capture.js +187 -0
package/scripts/lib/token-cost-intelligence.js +358 -0
package/scripts/lib/token-efficiency-evidence.js +213 -0
package/scripts/lib/token-evidence.js +699 -0
package/scripts/lib/tokenish.js +17 -0
package/scripts/lib/tool-output-sandbox.js +304 -0
package/scripts/lib/trust-audit.js +136 -0
package/scripts/lib/unified-events.js +396 -0
package/scripts/lib/upgrade-interruption-recovery.js +407 -0
package/scripts/lib/usage-ledger.js +201 -0
package/scripts/lib/value-ledger.js +130 -0
package/scripts/lib/value-proof-calibration.js +531 -0
package/scripts/lib/visual-qa.js +231 -0
package/scripts/lib/voice-alpha.js +29 -0
package/scripts/lib/work-aware-orchestration.js +976 -0
package/scripts/lib/work-control-receipts.js +577 -0
package/scripts/lib/work-ledger.js +1123 -0
package/scripts/lib/work-panel-preview.js +352 -0
package/scripts/lib/workflow-discipline.js +280 -0
package/scripts/lib/workflow-signals.js +419 -0
package/scripts/lib/workspace-map.js +281 -0
package/scripts/lib/workspace-registry.js +1367 -0
package/scripts/lib/workspace-resolver.js +480 -0

package/scripts/lib/proof-receipt.js ADDED Viewed

@@ -0,0 +1,335 @@
+"use strict";
+/**
+ * Completion Receipt (Surface 2).
+ */
+const fs = require("fs");
+const path = require("path");
+const { validateProofRecord } = require("./anti-gaming");
+const { formatNextBoundedAction } = require("./proof-canonical");
+function isMaterialRun(proofRecord) {
+  if (!proofRecord) return false;
+  const toolCalls = proofRecord.efficiency?.tools_considered || 0;
+  return toolCalls > 0 || proofRecord.completion_status !== "unknown";
+}
+function buildCompletionReceipt(proofRecord) {
+  if (!isMaterialRun(proofRecord)) {
+    return {
+      version: 1,
+      material: false,
+      session_id: proofRecord?.session_id || "unknown",
+      result: { summary: "No material run detected.", status: "empty" },
+      improvements: [],
+      trust_control: buildTrustControlSummary(proofRecord),
+      metrics: {},
+      anti_gaming: { valid: true, warnings: [] },
+    };
+  }
+  const result = buildResultSection(proofRecord);
+  const improvements = buildImprovements(proofRecord);
+  const trustControl = buildTrustControlSummary(proofRecord);
+  const metrics = buildReceiptMetrics(proofRecord);
+  const antiGaming = validateProofRecord(proofRecord);
+  return {
+    version: 1,
+    material: true,
+    session_id: proofRecord.session_id,
+    started_at: proofRecord.started_at,
+    ended_at: proofRecord.ended_at,
+    result,
+    improvements,
+    trust_control: trustControl,
+    metrics,
+    anti_gaming: antiGaming,
+  };
+}
+function buildResultSection(proof) {
+  const status = proof.completion_status;
+  const outcomeType = proof.final_outcome_type;
+  const nextBoundedAction = formatNextBoundedAction(proof.outcome?.next_bounded_action);
+  const taskContract = proof.task_contract || {};
+  const repoTruth = proof.repo_truth || {};
+  const summaryMap = {
+    completed: "Task completed.",
+    safe_stop: "Safe stop reached with bounded next action.",
+    partial: "Partially completed with recovery path available.",
+    ended_without_completion: "Session ended without explicit completion.",
+    unknown: "Session outcome not determined.",
+  };
+  return {
+    summary: summaryMap[status] || summaryMap.unknown,
+    status,
+    outcome_type: outcomeType,
+    task_type: proof.task_type || "general",
+    next_bounded_action: nextBoundedAction,
+    output_artifact_reference: proof.outcome?.output_artifact_reference || null,
+    claim_boundary: proof.outcome?.claim_boundary || null,
+    where_am_i_now: repoTruth.where_am_i_now || null,
+    readiness_status: repoTruth.readiness_status || null,
+    task_objective: taskContract.objective || null,
+    allowed_paths: taskContract.allowed_paths || [],
+  };
+}
+function buildImprovements(proof) {
+  const items = [];
+  const eff = proof.efficiency || {};
+  const ctrl = proof.control || {};
+  const trust = proof.trust || {};
+  const outcome = proof.outcome || {};
+  if (eff.large_output_bytes_managed > 0) {
+    items.push({
+      dimension: "efficiency",
+      text: `Stored ${eff.large_output_events || 1} large output${(eff.large_output_events || 1) > 1 ? "s" : ""} out-of-band to reduce context pressure.`,
+      evidence: `${eff.large_output_bytes_managed} bytes managed`,
+    });
+  }
+  if (eff.retries_count > 0) {
+    items.push({
+      dimension: "efficiency",
+      text: `Interrupted ${eff.retries_count} repeated loop${eff.retries_count > 1 ? "s" : ""} to prevent wasted cycles.`,
+      evidence: `${eff.retries_count} retries caught`,
+    });
+  }
+  if (eff.tools_skipped > 0) {
+    items.push({
+      dimension: "efficiency",
+      text: `Skipped ${eff.tools_skipped} unnecessary tool re-scan${eff.tools_skipped > 1 ? "s" : ""}.`,
+      evidence: `${eff.tools_skipped} scans avoided`,
+    });
+  }
+  if (ctrl.risky_actions_blocked > 0 || ctrl.risky_actions_downgraded > 0) {
+    const total = ctrl.risky_actions_blocked + ctrl.risky_actions_downgraded;
+    items.push({
+      dimension: "control",
+      text: `Blocked or flagged ${total} risky action${total > 1 ? "s" : ""}.`,
+      evidence: `${ctrl.risky_actions_blocked} blocked, ${ctrl.risky_actions_downgraded} flagged`,
+    });
+  }
+  if (trust.has_related_evidence) {
+    items.push({
+      dimension: "trust",
+      text: "Attached related evidence or runtime artifacts for this session.",
+      evidence: trust.evidence_bundle_reference || (outcome.evidence_refs || [])[0] || ".claude/cco/security/",
+    });
+  }
+  if (trust.progress_preserved) {
+    items.push({
+      dimension: "trust",
+      text: "Preserved progress for safe re-entry.",
+      evidence: outcome.progress_ref || "stop snapshot saved",
+    });
+  }
+  if (trust.uncertainty_annotations_count > 0) {
+    items.push({
+      dimension: "trust",
+      text: `Marked ${trust.uncertainty_annotations_count} unverified claim${trust.uncertainty_annotations_count > 1 ? "s" : ""} clearly.`,
+      evidence: `${trust.uncertainty_annotations_count} uncertainty annotations`,
+    });
+  }
+  return diversifyAndCap(items, 5);
+}
+function buildTrustControlSummary(proof) {
+  const trust = proof?.trust || {};
+  const ctrl = proof?.control || {};
+  const outcome = proof?.outcome || {};
+  const taskContract = proof?.task_contract || {};
+  const repoTruth = proof?.repo_truth || {};
+  return {
+    evidence_attached: Boolean(trust.has_related_evidence),
+    evidence_refs: outcome.evidence_refs || [],
+    unverified_claims_present: (trust.unverified_claim_count || 0) > 0,
+    unverified_claim_count: trust.unverified_claim_count || 0,
+    risky_actions_handled:
+      (ctrl.risky_actions_blocked || 0) + (ctrl.risky_actions_downgraded || 0) > 0,
+    risky_actions_blocked: ctrl.risky_actions_blocked || 0,
+    risky_actions_downgraded: ctrl.risky_actions_downgraded || 0,
+    rollback_available: Boolean(trust.rollback_available),
+    policy_violations_status: ctrl.trusted_scope_preserved || "unknown",
+    safe_stop_occurred: (ctrl.safe_stop_count || 0) > 0,
+    next_bounded_action: formatNextBoundedAction(outcome.next_bounded_action),
+    claim_boundary: outcome.claim_boundary || null,
+    where_am_i_now: repoTruth.where_am_i_now || null,
+    readiness_status: repoTruth.readiness_status || null,
+    task_objective: taskContract.objective || null,
+    allowed_paths: taskContract.allowed_paths || [],
+    expected_evidence_refs: taskContract.evidence_refs || [],
+    review_reasons: taskContract.review_reasons || [],
+    output_artifact_reference: outcome.output_artifact_reference || null,
+  };
+}
+function buildReceiptMetrics(proof) {
+  const eff = proof.efficiency || {};
+  const ctrl = proof.control || {};
+  const trust = proof.trust || {};
+  const metrics = {};
+  if (eff.time_saved_estimate && eff.time_saved_estimate.minutes > 0) {
+    metrics.estimated_time_saved = `~${eff.time_saved_estimate.minutes} min (${eff.time_saved_estimate.confidence} confidence)`;
+  }
+  if (eff.retries_count > 0) {
+    metrics.retries_caught = eff.retries_count;
+  }
+  if (eff.large_output_bytes_managed > 0) {
+    metrics.large_outputs_managed = `${eff.large_output_events || 1} outputs (${eff.large_output_bytes_managed} bytes)`;
+  }
+  if (eff.tools_skipped > 0) {
+    metrics.tool_overhead_reduced = eff.tools_skipped;
+  }
+  if (trust.has_related_evidence) {
+    metrics.evidence_present = "yes";
+  }
+  if (ctrl.risky_actions_blocked > 0) {
+    metrics.risky_actions_blocked = ctrl.risky_actions_blocked;
+  }
+  return metrics;
+}
+function renderReceiptMarkdown(receipt) {
+  if (!receipt.material) {
+    return "## Wuz Receipt\n\nNo material run detected.\n";
+  }
+  const lines = [
+    "## Wuz Effectiveness Receipt",
+    "",
+    `Session: ${receipt.session_id}`,
+    receipt.started_at ? `Started: ${receipt.started_at}` : "",
+    receipt.ended_at ? `Ended: ${receipt.ended_at}` : "",
+    "",
+    "### Result",
+    `${receipt.result.summary}`,
+    receipt.result.task_objective ? `Objective: ${receipt.result.task_objective}` : "",
+    receipt.result.allowed_paths?.length > 0 ? `Allowed scope: ${receipt.result.allowed_paths.join(", ")}` : "",
+    receipt.result.next_bounded_action ? `Next action: ${receipt.result.next_bounded_action}` : "",
+    receipt.result.output_artifact_reference
+      ? `Artifact: ${receipt.result.output_artifact_reference}`
+      : "",
+    receipt.result.claim_boundary ? `Claim boundary: ${receipt.result.claim_boundary}` : "",
+    receipt.result.where_am_i_now ? `Current state: ${receipt.result.where_am_i_now}` : "",
+    receipt.result.readiness_status ? `Readiness: ${receipt.result.readiness_status}` : "",
+    "",
+  ];
+  if (receipt.improvements.length > 0) {
+    lines.push("### What Wuz improved");
+    for (const imp of receipt.improvements) {
+      lines.push(`- ${imp.text}`);
+    }
+    lines.push("");
+  }
+  lines.push("### Trust & control");
+  const tc = receipt.trust_control;
+  lines.push(`- Evidence attached: ${tc.evidence_attached ? "yes" : "no"}`);
+  if (tc.unverified_claims_present) {
+    lines.push(`- Unverified claims: ${tc.unverified_claim_count}`);
+  }
+  if (tc.risky_actions_handled) {
+    lines.push(
+      `- Risky actions blocked: ${tc.risky_actions_blocked}, flagged: ${tc.risky_actions_downgraded}`
+    );
+  }
+  lines.push(`- Rollback available: ${tc.rollback_available ? "yes" : "no"}`);
+  lines.push(`- Policy violations: ${tc.policy_violations_status}`);
+  if (tc.safe_stop_occurred) {
+    lines.push("- Safe stop occurred: yes");
+  }
+  if (tc.where_am_i_now) {
+    lines.push(`- Current state: ${tc.where_am_i_now}`);
+  }
+  if (tc.readiness_status) {
+    lines.push(`- Readiness: ${tc.readiness_status}`);
+  }
+  if (tc.next_bounded_action) {
+    lines.push(`- Bounded next action: ${tc.next_bounded_action}`);
+  }
+  if (tc.expected_evidence_refs.length > 0) {
+    lines.push(`- Expected evidence: ${tc.expected_evidence_refs.join(", ")}`);
+  }
+  if (tc.review_reasons.length > 0) {
+    lines.push(`- Review triggers: ${tc.review_reasons.join(", ")}`);
+  }
+  lines.push("");
+  if (Object.keys(receipt.metrics).length > 0) {
+    lines.push("### Metrics");
+    for (const [key, value] of Object.entries(receipt.metrics)) {
+      lines.push(`- ${key.replace(/_/g, " ")}: ${value}`);
+    }
+    lines.push("");
+  }
+  if (receipt.anti_gaming && !receipt.anti_gaming.valid) {
+    lines.push("### Warnings");
+    for (const warning of receipt.anti_gaming.warnings) {
+      lines.push(`- ${warning}`);
+    }
+    lines.push("");
+  }
+  return lines.filter((line) => line !== undefined).join("\n");
+}
+function saveReceipt(cwd, receipt) {
+  const sessionId = receipt.session_id || "unknown";
+  const jsonPath = path.join(cwd, ".claude", "cco", "receipts", `${sessionId}.json`);
+  const mdPath = path.join(cwd, ".claude", "cco", "receipts", `${sessionId}.md`);
+  fs.mkdirSync(path.dirname(jsonPath), { recursive: true });
+  fs.writeFileSync(jsonPath, JSON.stringify(receipt, null, 2), "utf8");
+  fs.writeFileSync(mdPath, renderReceiptMarkdown(receipt), "utf8");
+  return { jsonPath, mdPath };
+}
+function diversifyAndCap(items, maxCount) {
+  const result = [];
+  const seenDimensions = new Set();
+  for (const item of items) {
+    if (result.length >= maxCount) break;
+    if (!seenDimensions.has(item.dimension)) {
+      result.push(item);
+      seenDimensions.add(item.dimension);
+    }
+  }
+  for (const item of items) {
+    if (result.length >= maxCount) break;
+    if (!result.includes(item)) {
+      result.push(item);
+    }
+  }
+  return result;
+}
+module.exports = {
+  isMaterialRun,
+  buildCompletionReceipt,
+  renderReceiptMarkdown,
+  saveReceipt,
+};