npm - clementine-agent - Versions diffs - 1.0.0 - Mend

clementine-agent 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (190) hide show

package/.env.example +44 -0
package/LICENSE +21 -0
package/README.md +795 -0
package/dist/agent/agent-manager.d.ts +69 -0
package/dist/agent/agent-manager.js +441 -0
package/dist/agent/assistant.d.ts +225 -0
package/dist/agent/assistant.js +3888 -0
package/dist/agent/auto-update.d.ts +32 -0
package/dist/agent/auto-update.js +186 -0
package/dist/agent/daily-planner.d.ts +24 -0
package/dist/agent/daily-planner.js +379 -0
package/dist/agent/execution-advisor.d.ts +10 -0
package/dist/agent/execution-advisor.js +272 -0
package/dist/agent/hooks.d.ts +45 -0
package/dist/agent/hooks.js +564 -0
package/dist/agent/insight-engine.d.ts +66 -0
package/dist/agent/insight-engine.js +225 -0
package/dist/agent/intent-classifier.d.ts +48 -0
package/dist/agent/intent-classifier.js +214 -0
package/dist/agent/link-extractor.d.ts +19 -0
package/dist/agent/link-extractor.js +90 -0
package/dist/agent/mcp-bridge.d.ts +62 -0
package/dist/agent/mcp-bridge.js +435 -0
package/dist/agent/metacognition.d.ts +66 -0
package/dist/agent/metacognition.js +221 -0
package/dist/agent/orchestrator.d.ts +81 -0
package/dist/agent/orchestrator.js +790 -0
package/dist/agent/profiles.d.ts +22 -0
package/dist/agent/profiles.js +91 -0
package/dist/agent/prompt-cache.d.ts +24 -0
package/dist/agent/prompt-cache.js +68 -0
package/dist/agent/prompt-evolver.d.ts +28 -0
package/dist/agent/prompt-evolver.js +279 -0
package/dist/agent/role-scaffolds.d.ts +28 -0
package/dist/agent/role-scaffolds.js +433 -0
package/dist/agent/safe-restart.d.ts +41 -0
package/dist/agent/safe-restart.js +150 -0
package/dist/agent/self-improve.d.ts +66 -0
package/dist/agent/self-improve.js +1706 -0
package/dist/agent/session-event-log.d.ts +114 -0
package/dist/agent/session-event-log.js +233 -0
package/dist/agent/skill-extractor.d.ts +72 -0
package/dist/agent/skill-extractor.js +435 -0
package/dist/agent/source-mods.d.ts +61 -0
package/dist/agent/source-mods.js +230 -0
package/dist/agent/source-preflight.d.ts +25 -0
package/dist/agent/source-preflight.js +100 -0
package/dist/agent/stall-guard.d.ts +62 -0
package/dist/agent/stall-guard.js +109 -0
package/dist/agent/strategic-planner.d.ts +60 -0
package/dist/agent/strategic-planner.js +352 -0
package/dist/agent/team-bus.d.ts +89 -0
package/dist/agent/team-bus.js +556 -0
package/dist/agent/team-router.d.ts +26 -0
package/dist/agent/team-router.js +37 -0
package/dist/agent/tool-loop-detector.d.ts +59 -0
package/dist/agent/tool-loop-detector.js +242 -0
package/dist/agent/workflow-runner.d.ts +36 -0
package/dist/agent/workflow-runner.js +317 -0
package/dist/agent/workflow-variables.d.ts +16 -0
package/dist/agent/workflow-variables.js +62 -0
package/dist/channels/discord-agent-bot.d.ts +101 -0
package/dist/channels/discord-agent-bot.js +881 -0
package/dist/channels/discord-bot-manager.d.ts +80 -0
package/dist/channels/discord-bot-manager.js +262 -0
package/dist/channels/discord-utils.d.ts +51 -0
package/dist/channels/discord-utils.js +293 -0
package/dist/channels/discord.d.ts +12 -0
package/dist/channels/discord.js +1832 -0
package/dist/channels/slack-agent-bot.d.ts +73 -0
package/dist/channels/slack-agent-bot.js +320 -0
package/dist/channels/slack-bot-manager.d.ts +66 -0
package/dist/channels/slack-bot-manager.js +236 -0
package/dist/channels/slack-utils.d.ts +39 -0
package/dist/channels/slack-utils.js +189 -0
package/dist/channels/slack.d.ts +11 -0
package/dist/channels/slack.js +196 -0
package/dist/channels/telegram.d.ts +10 -0
package/dist/channels/telegram.js +235 -0
package/dist/channels/webhook.d.ts +9 -0
package/dist/channels/webhook.js +78 -0
package/dist/channels/whatsapp.d.ts +11 -0
package/dist/channels/whatsapp.js +181 -0
package/dist/cli/chat.d.ts +14 -0
package/dist/cli/chat.js +220 -0
package/dist/cli/cron.d.ts +17 -0
package/dist/cli/cron.js +552 -0
package/dist/cli/dashboard.d.ts +15 -0
package/dist/cli/dashboard.js +17677 -0
package/dist/cli/index.d.ts +3 -0
package/dist/cli/index.js +2474 -0
package/dist/cli/routes/delegations.d.ts +19 -0
package/dist/cli/routes/delegations.js +154 -0
package/dist/cli/routes/digest.d.ts +17 -0
package/dist/cli/routes/digest.js +375 -0
package/dist/cli/routes/goals.d.ts +14 -0
package/dist/cli/routes/goals.js +258 -0
package/dist/cli/routes/workflows.d.ts +18 -0
package/dist/cli/routes/workflows.js +97 -0
package/dist/cli/setup.d.ts +8 -0
package/dist/cli/setup.js +619 -0
package/dist/cli/tunnel.d.ts +35 -0
package/dist/cli/tunnel.js +141 -0
package/dist/config.d.ts +145 -0
package/dist/config.js +278 -0
package/dist/events/bus.d.ts +43 -0
package/dist/events/bus.js +136 -0
package/dist/gateway/cron-scheduler.d.ts +166 -0
package/dist/gateway/cron-scheduler.js +1767 -0
package/dist/gateway/delivery-queue.d.ts +30 -0
package/dist/gateway/delivery-queue.js +110 -0
package/dist/gateway/heartbeat-scheduler.d.ts +99 -0
package/dist/gateway/heartbeat-scheduler.js +1298 -0
package/dist/gateway/heartbeat.d.ts +3 -0
package/dist/gateway/heartbeat.js +3 -0
package/dist/gateway/lanes.d.ts +24 -0
package/dist/gateway/lanes.js +76 -0
package/dist/gateway/notifications.d.ts +29 -0
package/dist/gateway/notifications.js +75 -0
package/dist/gateway/router.d.ts +210 -0
package/dist/gateway/router.js +1330 -0
package/dist/index.d.ts +12 -0
package/dist/index.js +1015 -0
package/dist/memory/chunker.d.ts +28 -0
package/dist/memory/chunker.js +226 -0
package/dist/memory/consolidation.d.ts +44 -0
package/dist/memory/consolidation.js +171 -0
package/dist/memory/context-assembler.d.ts +50 -0
package/dist/memory/context-assembler.js +149 -0
package/dist/memory/embeddings.d.ts +38 -0
package/dist/memory/embeddings.js +180 -0
package/dist/memory/graph-store.d.ts +66 -0
package/dist/memory/graph-store.js +613 -0
package/dist/memory/mmr.d.ts +21 -0
package/dist/memory/mmr.js +75 -0
package/dist/memory/search.d.ts +26 -0
package/dist/memory/search.js +67 -0
package/dist/memory/store.d.ts +530 -0
package/dist/memory/store.js +2022 -0
package/dist/security/integrity.d.ts +24 -0
package/dist/security/integrity.js +58 -0
package/dist/security/patterns.d.ts +34 -0
package/dist/security/patterns.js +110 -0
package/dist/security/scanner.d.ts +32 -0
package/dist/security/scanner.js +263 -0
package/dist/tools/admin-tools.d.ts +12 -0
package/dist/tools/admin-tools.js +1278 -0
package/dist/tools/external-tools.d.ts +11 -0
package/dist/tools/external-tools.js +1327 -0
package/dist/tools/goal-tools.d.ts +9 -0
package/dist/tools/goal-tools.js +159 -0
package/dist/tools/mcp-server.d.ts +13 -0
package/dist/tools/mcp-server.js +141 -0
package/dist/tools/memory-tools.d.ts +10 -0
package/dist/tools/memory-tools.js +568 -0
package/dist/tools/session-tools.d.ts +6 -0
package/dist/tools/session-tools.js +146 -0
package/dist/tools/shared.d.ts +216 -0
package/dist/tools/shared.js +340 -0
package/dist/tools/team-tools.d.ts +6 -0
package/dist/tools/team-tools.js +447 -0
package/dist/tools/tool-meta.d.ts +34 -0
package/dist/tools/tool-meta.js +133 -0
package/dist/tools/vault-tools.d.ts +8 -0
package/dist/tools/vault-tools.js +457 -0
package/dist/types.d.ts +716 -0
package/dist/types.js +16 -0
package/dist/vault-migrations/0001-add-execution-framework.d.ts +10 -0
package/dist/vault-migrations/0001-add-execution-framework.js +47 -0
package/dist/vault-migrations/0002-add-agentic-communication.d.ts +12 -0
package/dist/vault-migrations/0002-add-agentic-communication.js +79 -0
package/dist/vault-migrations/0003-update-execution-pipeline-narration.d.ts +11 -0
package/dist/vault-migrations/0003-update-execution-pipeline-narration.js +73 -0
package/dist/vault-migrations/helpers.d.ts +14 -0
package/dist/vault-migrations/helpers.js +44 -0
package/dist/vault-migrations/runner.d.ts +14 -0
package/dist/vault-migrations/runner.js +139 -0
package/dist/vault-migrations/types.d.ts +42 -0
package/dist/vault-migrations/types.js +9 -0
package/install.sh +320 -0
package/package.json +84 -0
package/scripts/postinstall.js +125 -0
package/vault/00-System/AGENTS.md +66 -0
package/vault/00-System/CRON.md +71 -0
package/vault/00-System/HEARTBEAT.md +58 -0
package/vault/00-System/MEMORY.md +16 -0
package/vault/00-System/SOUL.md +96 -0
package/vault/05-Tasks/TASKS.md +19 -0
package/vault/06-Templates/_Daily-Template.md +28 -0
package/vault/06-Templates/_People-Template.md +22 -0

package/dist/agent/execution-advisor.js ADDED Viewed

@@ -0,0 +1,272 @@
+/**
+ * Clementine TypeScript — Execution Advisor.
+ *
+ * Analyzes recent run history and reflection data to adaptively tune
+ * cron job execution parameters: turn limits, models, timeouts, prompt
+ * enrichment, escalation, and circuit-breaking.
+ */
+import { existsSync, readFileSync } from 'node:fs';
+import path from 'node:path';
+import pino from 'pino';
+import { CRON_REFLECTIONS_DIR, ADVISOR_LOG_PATH } from '../config.js';
+import { CronRunLog } from '../gateway/heartbeat.js';
+import { evolvePrompt } from './prompt-evolver.js';
+const logger = pino({ name: 'clementine.execution-advisor' });
+// ── Tier caps for maxTurns ──────────────────────────────────────────
+const TIER_MAX_TURNS = {
+    1: 15,
+    2: 50,
+};
+const DEFAULT_TIMEOUT_MS = 600_000; // 10 minutes
+const MAX_TIMEOUT_MS = 20 * 60 * 1000; // 20 minutes
+const CIRCUIT_BREAKER_COOLDOWN_MS = 60 * 60 * 1000; // 1 hour between retry probes
+// ── Core function ───────────────────────────────────────────────────
+export function getExecutionAdvice(jobName, job) {
+    const advice = {
+        adjustedMaxTurns: null,
+        adjustedModel: null,
+        adjustedTimeoutMs: null,
+        promptEnrichment: '',
+        shouldEscalate: false,
+        shouldSkip: false,
+    };
+    try {
+        const runLog = new CronRunLog();
+        const recentRuns = runLog.readRecent(jobName, 10);
+        const reflections = readReflections(jobName);
+        const consecutiveErrors = runLog.consecutiveErrors(jobName);
+        // ── Rule 1: Circuit breaker — 5+ consecutive errors ──────────
+        // Allow a recovery probe once per hour so the breaker can self-heal.
+        if (consecutiveErrors >= 5) {
+            const lastRun = recentRuns[0];
+            // If no runs exist (shouldn't happen with 5+ errors, but be safe), skip immediately
+            if (!lastRun) {
+                advice.shouldSkip = true;
+                advice.skipReason = `${consecutiveErrors} consecutive errors — circuit breaker engaged`;
+                return advice;
+            }
+            const lastRunTime = new Date(lastRun.finishedAt).getTime();
+            const elapsed = Date.now() - lastRunTime;
+            if (elapsed < CIRCUIT_BREAKER_COOLDOWN_MS) {
+                advice.shouldSkip = true;
+                advice.skipReason = `${consecutiveErrors} consecutive errors — circuit breaker engaged (next probe in ${Math.ceil((CIRCUIT_BREAKER_COOLDOWN_MS - elapsed) / 60_000)}m)`;
+                logger.debug({ job: jobName, consecutiveErrors, nextProbeMin: Math.ceil((CIRCUIT_BREAKER_COOLDOWN_MS - elapsed) / 60_000) }, 'Circuit breaker — cooling down');
+                return advice;
+            }
+            // Cooldown elapsed — allow a recovery probe
+            logger.info({ job: jobName, consecutiveErrors }, 'Circuit breaker — allowing recovery probe after cooldown');
+        }
+        // ── Learn from past outcomes ────────────────────────────────
+        const outcomeStats = getInterventionStats(jobName);
+        // ── Rule 2: Turn-limit hits → increase maxTurns ──────────────
+        checkTurnLimitHits(recentRuns, job, advice);
+        // Suppress if turn adjustments have proven ineffective
+        if (advice.adjustedMaxTurns && outcomeStats.turnAdjustSuccessRate !== null && outcomeStats.turnAdjustSuccessRate < 0.2) {
+            logger.info({ job: jobName, rate: outcomeStats.turnAdjustSuccessRate }, 'Suppressing turn adjustment — historically ineffective');
+            advice.adjustedMaxTurns = null;
+        }
+        // ── Rule 3: Low reflection quality → prompt enrichment ───────
+        checkReflectionQuality(reflections, job, advice);
+        // Suppress if enrichment has proven ineffective
+        if (advice.promptEnrichment && outcomeStats.enrichmentSuccessRate !== null && outcomeStats.enrichmentSuccessRate < 0.2) {
+            logger.info({ job: jobName, rate: outcomeStats.enrichmentSuccessRate }, 'Suppressing prompt enrichment — historically ineffective');
+            advice.promptEnrichment = '';
+        }
+        // ── Rule 4: Repeated failures on haiku → upgrade to sonnet ───
+        checkModelUpgrade(recentRuns, job, advice);
+        // Suppress if model upgrades have proven ineffective
+        if (advice.adjustedModel && outcomeStats.modelUpgradeSuccessRate !== null && outcomeStats.modelUpgradeSuccessRate < 0.2) {
+            logger.info({ job: jobName, rate: outcomeStats.modelUpgradeSuccessRate }, 'Suppressing model upgrade — historically ineffective');
+            advice.adjustedModel = null;
+        }
+        // ── Rule 5: Timeout hits → increase timeout ─────────────────
+        checkTimeoutHits(recentRuns, job, advice);
+        // ── Rule 6: Sonnet still failing → escalate to unleashed ─────
+        checkEscalation(recentRuns, reflections, job, advice);
+        // ── Rule 7: Low-confidence completions → flag for escalation ──
+        // If recent reflections show low quality even when the job "succeeds",
+        // mark for escalation so the user is notified
+        if (!advice.shouldEscalate) {
+            const recentLowQuality = reflections.slice(0, 3).filter(r => r.quality <= 3);
+            const recentSuccessRuns = recentRuns.slice(0, 3).filter(r => r.status === 'ok');
+            if (recentLowQuality.length >= 2 && recentSuccessRuns.length >= 2) {
+                advice.shouldEscalate = true;
+                advice.escalationReason = `Job completes but quality is consistently low (${recentLowQuality.length}/3 reflections scored ≤3) — may need human review`;
+                logger.debug({ job: job.name, reason: advice.escalationReason }, 'Recommending escalation due to low-confidence completions');
+            }
+        }
+    }
+    catch (err) {
+        logger.warn({ err, job: jobName }, 'Execution advisor error — proceeding with defaults');
+    }
+    return advice;
+}
+// ── Rule helpers ────────────────────────────────────────────────────
+function checkTurnLimitHits(runs, job, advice) {
+    // Use precise TerminalReason when available, fall back to regex on error text
+    const turnLimitHits = runs.slice(0, 5).filter(r => {
+        if (r.status !== 'error' && r.status !== 'retried')
+            return false;
+        // Precise check via SDK TerminalReason
+        if (r.terminalReason === 'max_turns')
+            return true;
+        // Fallback: regex on error text
+        const errorLower = (r.error ?? '').toLowerCase();
+        return errorLower.includes('turn') || errorLower.includes('max_turns') || errorLower.includes('maxturns');
+    });
+    // Check for prompt_too_long — this needs a DIFFERENT fix (not more turns)
+    const promptTooLong = runs.slice(0, 5).filter(r => r.terminalReason === 'prompt_too_long');
+    if (promptTooLong.length >= 1) {
+        // Don't increase turns — the prompt itself is the problem
+        advice.promptEnrichment = (advice.promptEnrichment || '') +
+            '\n\n⚠ Previous runs hit prompt length limits. Be concise. Minimize system prompt injection.';
+        logger.debug({ job: job.name, hits: promptTooLong.length }, 'Prompt too long detected — adding conciseness guidance');
+        return; // skip turn adjustment
+    }
+    if (turnLimitHits.length >= 2) {
+        const currentMax = job.maxTurns ?? 5;
+        const tierCap = TIER_MAX_TURNS[job.tier] ?? TIER_MAX_TURNS[1];
+        const proposed = Math.ceil(currentMax * 1.5);
+        advice.adjustedMaxTurns = Math.min(proposed, tierCap);
+        logger.debug({ job: job.name, from: currentMax, to: advice.adjustedMaxTurns }, 'Adjusting maxTurns due to turn-limit hits');
+    }
+}
+function checkReflectionQuality(reflections, job, advice) {
+    const recent = reflections.slice(0, 5); // already newest-first
+    if (recent.length < 3)
+        return;
+    const avgQuality = recent.reduce((sum, r) => sum + r.quality, 0) / recent.length;
+    if (avgQuality >= 3.0)
+        return;
+    // Delegate to prompt evolver for comprehensive enrichment
+    const enrichment = evolvePrompt({
+        jobName: job.name,
+        originalPrompt: job.prompt,
+        agentSlug: job.agentSlug,
+    });
+    if (enrichment) {
+        advice.promptEnrichment = enrichment;
+        logger.debug({ job: job.name, avgQuality: avgQuality.toFixed(1) }, 'Built prompt enrichment via prompt evolver');
+    }
+}
+function checkModelUpgrade(runs, job, advice) {
+    if (!job.model || !job.model.toLowerCase().includes('haiku'))
+        return;
+    // Precise: model_error from SDK means the model itself is the problem
+    const modelErrors = runs.slice(0, 5).filter(r => r.terminalReason === 'model_error');
+    if (modelErrors.length >= 1) {
+        advice.adjustedModel = 'sonnet';
+        logger.debug({ job: job.name, modelErrors: modelErrors.length }, 'Upgrading model — SDK reported model_error');
+        return;
+    }
+    // Fallback: generic failure count
+    const recentFailures = runs.slice(0, 5).filter(r => r.status === 'error');
+    if (recentFailures.length >= 3) {
+        advice.adjustedModel = 'sonnet';
+        logger.debug({ job: job.name, failures: recentFailures.length }, 'Upgrading model from haiku to sonnet due to repeated failures');
+    }
+}
+function checkTimeoutHits(runs, job, advice) {
+    const timeoutMs = DEFAULT_TIMEOUT_MS; // standard cron timeout
+    const threshold = timeoutMs * 0.95;
+    const timeoutHits = runs.slice(0, 5).filter(r => {
+        if (r.status !== 'error')
+            return false;
+        return r.durationMs >= threshold;
+    });
+    if (timeoutHits.length >= 2) {
+        const proposed = Math.ceil(timeoutMs * 1.5);
+        advice.adjustedTimeoutMs = Math.min(proposed, MAX_TIMEOUT_MS);
+        logger.debug({ job: job.name, from: timeoutMs, to: advice.adjustedTimeoutMs }, 'Adjusting timeout due to timeout hits');
+    }
+}
+function checkEscalation(runs, reflections, job, advice) {
+    if (job.mode === 'unleashed')
+        return;
+    // Check if we already upgraded to sonnet and still failing
+    const isSonnet = job.model?.toLowerCase().includes('sonnet') || advice.adjustedModel === 'sonnet';
+    if (!isSonnet)
+        return;
+    const recentFailures = runs.slice(0, 5).filter(r => r.status === 'error');
+    const lowQualityReflections = reflections.slice(0, 5).filter(r => r.quality <= 2);
+    if (recentFailures.length >= 3 || lowQualityReflections.length >= 3) {
+        advice.shouldEscalate = true;
+        advice.escalationReason = recentFailures.length >= 3
+            ? `${recentFailures.length} recent failures on sonnet-tier model`
+            : `${lowQualityReflections.length} low-quality reflections despite sonnet-tier model`;
+        logger.debug({ job: job.name, reason: advice.escalationReason }, 'Recommending escalation to unleashed');
+    }
+}
+/**
+ * Read past advisor outcomes to learn which interventions actually work
+ * for a given job. Returns null rates when insufficient data exists.
+ */
+function getInterventionStats(jobName) {
+    const stats = {
+        modelUpgradeSuccessRate: null,
+        turnAdjustSuccessRate: null,
+        enrichmentSuccessRate: null,
+        sampleSize: 0,
+    };
+    if (!existsSync(ADVISOR_LOG_PATH))
+        return stats;
+    try {
+        const lines = readFileSync(ADVISOR_LOG_PATH, 'utf-8').trim().split('\n').filter(Boolean);
+        // Only scan recent entries to avoid expensive parsing on large logs
+        const outcomes = lines.slice(-200)
+            .map(l => { try {
+            return JSON.parse(l);
+        }
+        catch {
+            return null;
+        } })
+            .filter((d) => d !== null && d.type === 'outcome' && d.jobName === jobName);
+        if (outcomes.length < 3)
+            return stats;
+        stats.sampleSize = outcomes.length;
+        // Model upgrade effectiveness
+        const modelOuts = outcomes.filter(o => o.interventions?.adjustedModel);
+        if (modelOuts.length >= 2) {
+            const successes = modelOuts.filter(o => o.outcome === 'ok').length;
+            stats.modelUpgradeSuccessRate = successes / modelOuts.length;
+        }
+        // Turn adjustment effectiveness
+        const turnOuts = outcomes.filter(o => o.interventions?.adjustedMaxTurns);
+        if (turnOuts.length >= 2) {
+            const successes = turnOuts.filter(o => o.outcome === 'ok').length;
+            stats.turnAdjustSuccessRate = successes / turnOuts.length;
+        }
+        // Enrichment effectiveness
+        const enrichOuts = outcomes.filter(o => o.interventions?.enriched);
+        if (enrichOuts.length >= 2) {
+            const successes = enrichOuts.filter(o => o.outcome === 'ok').length;
+            stats.enrichmentSuccessRate = successes / enrichOuts.length;
+        }
+    }
+    catch { /* ignore */ }
+    return stats;
+}
+// ── Reflection file reader ──────────────────────────────────────────
+function readReflections(jobName) {
+    try {
+        const safeJob = jobName.replace(/[^a-zA-Z0-9_-]/g, '_');
+        const reflPath = path.join(CRON_REFLECTIONS_DIR, `${safeJob}.jsonl`);
+        if (!existsSync(reflPath))
+            return [];
+        const lines = readFileSync(reflPath, 'utf-8').trim().split('\n').filter(Boolean);
+        return lines
+            .slice(-10)
+            .map(l => { try {
+            return JSON.parse(l);
+        }
+        catch {
+            return null;
+        } })
+            .filter((r) => r !== null)
+            .reverse(); // newest first
+    }
+    catch {
+        return [];
+    }
+}
+//# sourceMappingURL=execution-advisor.js.map

package/dist/agent/hooks.d.ts ADDED Viewed

@@ -0,0 +1,45 @@
+/**
+ * Clementine TypeScript — Security enforcement and audit logging.
+ *
+ * Real enforcement via SDK canUseTool callback + disallowed_tools for heartbeats.
+ * Layers:
+ *   - canUseTool: enforceToolPermissions() blocks destructive/credential/SSRF calls
+ *   - disallowed_tools: heartbeat tool restrictions
+ *   - System prompt: security rules (defense in depth)
+ *   - Audit logging: persistent file + in-memory buffer
+ */
+import type { SendPolicy } from '../types.js';
+export declare function setHeartbeatMode(active: boolean, tier2Allowed?: boolean): void;
+export declare function setApprovalCallback(cb: ((desc: string) => Promise<boolean>) | null): void;
+export declare function setProfileTier(tier: number | null): void;
+export declare function setProfileAllowedTools(tools: string[] | null): void;
+export declare function setSendPolicy(policy: SendPolicy | null, agentSlug: string | null): void;
+export declare function setAgentDir(dir: string | null): void;
+export declare function setSendPolicyChecker(checker: ((agentSlug: string, recipientEmail: string) => {
+    dailyCount: number;
+    suppressed: boolean;
+}) | null): void;
+export declare function setInteractionSource(source: 'owner-dm' | 'owner-channel' | 'member-channel' | 'autonomous'): void;
+export declare function getInteractionSource(): 'owner-dm' | 'owner-channel' | 'member-channel' | 'autonomous';
+export declare function getProfileTier(): number | null;
+export declare function getAuditLog(): string[];
+export declare function clearAuditLog(): void;
+export declare function logToolUse(toolName: string, toolInput: Record<string, unknown>): void;
+export declare function getHeartbeatDisallowedTools(): string[];
+export declare const PRIVATE_URL_PATTERNS: RegExp[];
+export declare function enforceToolPermissions(toolName: string, toolInput: Record<string, unknown>, sourceOverride?: 'owner-dm' | 'owner-channel' | 'member-channel' | 'autonomous'): Promise<{
+    behavior: 'allow' | 'deny';
+    message?: string;
+}>;
+export declare function getSecurityPrompt(): string;
+export declare function getHeartbeatSecurityPrompt(): string;
+export declare function getCronSecurityPrompt(tier?: number): string;
+/**
+ * Validate MCP tool output for credential leaks and injection payloads.
+ * Available for use when tool output interception is added to the SDK streaming loop.
+ */
+export declare function validateToolOutput(_toolName: string, output: string): {
+    safe: boolean;
+    reason?: string;
+};
+//# sourceMappingURL=hooks.d.ts.map