clementine-agent 1.18.147 → 1.18.149

package/dist/agent/assistant.d.ts

@@ -26,7 +26,7 @@ import { AgentManager } from './agent-manager.js';
  * Callers that need exact counts should read `usage.input_tokens` from the
  * SDK result; this function is for pre-flight planning only.
  */
-export declare function estimateTokens(text: string): number;
+export { estimateTokens } from '../lib/format.js';
 /** Format a millisecond duration as a human-friendly "X ago" string. */
 export declare function formatTimeAgo(ms: number): string;
 export declare function looksLikeOneMillionContextError(value: unknown): boolean;

package/dist/agent/assistant.js

@@ -165,11 +165,10 @@ function getChannelToolDenyList(channel) {
  * Callers that need exact counts should read `usage.input_tokens` from the
  * SDK result; this function is for pre-flight planning only.
  */
-export function estimateTokens(text) {
-    if (!text)
-        return 0;
-    return Math.ceil(text.length / 3.3);
-}
+// 1.18.149 — switched to canonical /4 divisor (was /3.3 here for no documented
+// reason; brain/llm-client.ts and gateway/turn-ledger.ts both used /4 to match
+// Anthropic's published rule of thumb). Re-export keeps existing callers working.
+export { estimateTokens } from '../lib/format.js';
 /**
  * Strip lone Unicode surrogates (U+D800–U+DFFF) from a string so it can be
  * safely serialized to JSON. Lone surrogates are valid in JS strings but

package/dist/agent/route-classifier.js

@@ -351,7 +351,15 @@ export async function classifyRoute(userMessage, agents, gateway) {
         undefined, // maxHours
         undefined, // timeoutMs
         undefined, // successCriteria
-        undefined);
+        undefined, // agentSlug
+        // 1.18.148 — F1/F2 pattern: meta-jobs run predictable to keep the
+        // prompt under Claude's input limit. Without these the classifier
+        // inherited MEMORY.md + team comms + auto-matched skills, blew up
+        // 12+ times in 8 hours (silent fallback to default route).
+        undefined, // pinnedSkills
+        [], // allowedTools
+        [], // allowedMcpServers
+        true);
     }
     catch (err) {
         logger.warn({ err }, 'Route classifier call failed');

package/dist/agent/run-agent-cron.js

@@ -45,8 +45,17 @@ const MAX_INJECTED_SKILLS = 4;
  *     delegation is the one thing every cron must always be able to do).
  */
 export function computeEffectiveAllowedTools(jobAllow, profileAllow) {
-    if (!jobAllow?.length)
+    // 1.18.148 — distinguish "no allowlist" (undefined → unrestricted) from
+    // "explicitly empty allowlist" (`[]` → deny all). Before this, both
+    // collapsed to `undefined` because of the `?.length` check, which meant
+    // meta-jobs passing `allowedTools: []` actually got the FULL tool set
+    // injected (and blew past the prompt limit when Composio toolkits piled
+    // on tool schemas). The fix: an explicit `[]` returns `['Agent']` only
+    // (just the SDK's required spawn-subagent tool).
+    if (jobAllow === undefined)
         return undefined;
+    if (jobAllow.length === 0)
+        return ['Agent']; // explicitly empty → minimal
     let result;
     if (profileAllow?.length) {
         const jobSet = new Set(jobAllow);
@@ -67,8 +76,16 @@ export function computeEffectiveAllowedTools(jobAllow, profileAllow) {
  * MCP allowlist set.
  */
 export function applyMcpAllowlist(servers, jobAllowedMcpServers) {
-    if (!jobAllowedMcpServers?.length)
+    // 1.18.148 — empty array means "deny all MCP servers", not "no
+    // restriction". Before this, passing `[]` collapsed to `?.length === 0`
+    // and returned the unfiltered server map — so meta-jobs (insight-check,
+    // grade:*, route-classify, diagnose:*) got every Composio toolkit's
+    // tool schemas wired into their prompt and blew past Claude's input
+    // limit. 110+ "Prompt is too long" errors per 8 hours.
+    if (jobAllowedMcpServers === undefined)
         return servers;
+    if (jobAllowedMcpServers.length === 0)
+        return {};
     const allow = new Set(jobAllowedMcpServers);
     return Object.fromEntries(Object.entries(servers).filter(([name]) => allow.has(name)));
 }
@@ -94,8 +111,13 @@ export function applyMcpAllowlist(servers, jobAllowedMcpServers) {
  *     unchanged.
  */
 export function widenAllowlistWithSkillTools(jobAllow, pinnedSkillTools) {
-    if (!jobAllow?.length)
+    // 1.18.148 — preserve "explicitly empty" semantics. An empty array is a
+    // contract: "I want no tools." Skill-pin widening doesn't apply when no
+    // skills are pinned (which is the case for meta-jobs).
+    if (jobAllow === undefined)
         return undefined;
+    if (jobAllow.length === 0 && !pinnedSkillTools?.length)
+        return [];
     if (!pinnedSkillTools?.length)
         return [...jobAllow];
     return [...new Set([...jobAllow, ...pinnedSkillTools])];
@@ -130,8 +152,12 @@ export function extractMcpServersFromSkillBodies(bodies) {
  * allowlist; doesn't synthesize one when the cron is unrestricted.
  */
 export function widenMcpAllowlistWithSkillRefs(jobMcpAllow, skillReferencedServers) {
-    if (!jobMcpAllow?.length)
+    // 1.18.148 — preserve "explicitly empty" semantics. See note on
+    // applyMcpAllowlist + widenAllowlistWithSkillTools above.
+    if (jobMcpAllow === undefined)
         return undefined;
+    if (jobMcpAllow.length === 0 && !skillReferencedServers.length)
+        return [];
     if (!skillReferencedServers.length)
         return [...jobMcpAllow];
     return [...new Set([...jobMcpAllow, ...skillReferencedServers])];
@@ -572,8 +598,10 @@ export async function buildCronExecutionPlan(opts) {
     const widenedJobMcpAllowlist = widenMcpAllowlistWithSkillRefs(opts.allowedMcpServers, skillReferencedMcpServers);
     // Per-trick MCP allowlist: post-filter on the profile-narrowed map.
     // Effective set = profile ∩ trick (widened).
+    // 1.18.148 — empty array means "deny all" not "no restriction" (was a
+    // silent prompt-bloat bug — see applyMcpAllowlist note above).
     const mcpServerMap = applyMcpAllowlist(mcp.servers, widenedJobMcpAllowlist);
-    const allowSet = widenedJobMcpAllowlist?.length ? new Set(widenedJobMcpAllowlist) : null;
+    const allowSet = widenedJobMcpAllowlist === undefined ? null : new Set(widenedJobMcpAllowlist);
     const composioConnected = allowSet ? mcp.composioConnected.filter(n => allowSet.has(n)) : mcp.composioConnected;
     const externalConnected = allowSet ? mcp.externalConnected.filter(n => allowSet.has(n)) : mcp.externalConnected;
     const mcpServersApplied = Object.keys(mcpServerMap);

package/dist/brain/llm-client.d.ts

@@ -28,8 +28,8 @@ export declare function setLLMOverride(fn: LLMCallFn | null): void;
 export declare function callLLM(prompt: string, opts?: LLMCallOpts): Promise<string>;
 /** Parse a JSON response defensively (strip code fences, trailing text). */
 export declare function parseJsonResponse<T = unknown>(raw: string): T | null;
-/** Rough token counter — 4 chars ≈ 1 token. Good enough for input-truncation. */
-export declare function estTokens(text: string): number;
+import { estimateTokens } from '../lib/format.js';
+export declare const estTokens: typeof estimateTokens;
 /** Truncate text to a token budget (approx). Returns { text, truncated }. */
 export declare function truncateToTokens(text: string, maxTokens: number): {
     text: string;

package/dist/brain/llm-client.js

@@ -86,10 +86,10 @@ export function parseJsonResponse(raw) {
         return null;
     }
 }
-/** Rough token counter — 4 chars ≈ 1 token. Good enough for input-truncation. */
-export function estTokens(text) {
-    return Math.ceil(text.length / 4);
-}
+// 1.18.149 — estTokens consolidated into the canonical estimateTokens helper.
+// Re-exported under the legacy name to keep existing callers working.
+import { estimateTokens } from '../lib/format.js';
+export const estTokens = estimateTokens;
 /** Truncate text to a token budget (approx). Returns { text, truncated }. */
 export function truncateToTokens(text, maxTokens) {
     const maxChars = maxTokens * 4;

package/dist/cli/index.js

@@ -67,17 +67,8 @@ function getLaunchdPlistPath() {
 function getSystemdServiceName() {
     return `${getAssistantName().toLowerCase()}.service`;
 }
-function formatBytes(n) {
-    if (!Number.isFinite(n) || n < 0)
-        return '0 B';
-    if (n < 1024)
-        return `${n} B`;
-    if (n < 1024 * 1024)
-        return `${(n / 1024).toFixed(1)} KB`;
-    if (n < 1024 * 1024 * 1024)
-        return `${(n / (1024 * 1024)).toFixed(1)} MB`;
-    return `${(n / (1024 * 1024 * 1024)).toFixed(2)} GB`;
-}
+// 1.18.149 — formatBytes consolidated to src/lib/format.ts (was 4 inline copies)
+import { formatBytes } from '../lib/format.js';
 function dirSizeBytes(dir) {
     if (!existsSync(dir))
         return 0;

package/dist/cli/ingest.js

@@ -15,6 +15,7 @@ import { runIngestion } from '../brain/ingestion-pipeline.js';
 import { detectManifest } from '../brain/format-detector.js';
 import { runSource, getSource, listSources, upsertSource } from '../brain/source-registry.js';
 import { getStore } from '../tools/shared.js';
+import { formatBytes } from '../lib/format.js';
 export async function cmdIngestSeed(inputPath, opts) {
     const abs = path.resolve(inputPath);
     if (!existsSync(abs)) {
@@ -145,13 +146,5 @@ function deriveSlug(abs) {
     const base = path.basename(abs, path.extname(abs));
     return base.toLowerCase().replace(/[^a-z0-9]+/g, '-').replace(/^-+|-+$/g, '') || 'seed';
 }
-function formatBytes(n) {
-    if (n < 1024)
-        return `${n} B`;
-    if (n < 1024 * 1024)
-        return `${(n / 1024).toFixed(1)} KB`;
-    if (n < 1024 * 1024 * 1024)
-        return `${(n / (1024 * 1024)).toFixed(1)} MB`;
-    return `${(n / (1024 * 1024 * 1024)).toFixed(2)} GB`;
-}
+// 1.18.149 — formatBytes consolidated to src/lib/format.ts
 //# sourceMappingURL=ingest.js.map

package/dist/config.d.ts

@@ -168,7 +168,6 @@ export declare const CHANNEL_SLACK: boolean;
 export declare const CHANNEL_TELEGRAM: boolean;
 export declare const CHANNEL_WHATSAPP: boolean;
 export declare const CHANNEL_WEBHOOK: boolean;
-export declare const CHANNEL_OUTLOOK: boolean;
 export declare const CHANNEL_SALESFORCE: boolean;
 /**
  * Validate that explicitly configured secrets actually resolved.

package/dist/config.js

@@ -515,7 +515,11 @@ export const CHANNEL_SLACK = Boolean(SLACK_BOT_TOKEN && SLACK_APP_TOKEN);
 export const CHANNEL_TELEGRAM = Boolean(TELEGRAM_BOT_TOKEN);
 export const CHANNEL_WHATSAPP = Boolean(TWILIO_ACCOUNT_SID && TWILIO_AUTH_TOKEN && WHATSAPP_OWNER_PHONE);
 export const CHANNEL_WEBHOOK = WEBHOOK_ENABLED && Boolean(WEBHOOK_SECRET);
-export const CHANNEL_OUTLOOK = Boolean(MS_TENANT_ID && MS_CLIENT_ID && MS_CLIENT_SECRET && MS_USER_EMAIL);
+// 1.18.149 — CHANNEL_OUTLOOK removed. There's no native Outlook channel
+// startup wired into src/index.ts; users access Outlook via the Composio
+// Outlook toolkit (set up from Settings → Integrations). The flag was
+// only displayed in the startup banner — misleading because it implied
+// an Outlook channel was running when nothing was.
 export const CHANNEL_SALESFORCE = Boolean(SF_INSTANCE_URL && SF_CLIENT_ID && SF_CLIENT_SECRET);
 const SECRET_VALIDATIONS = [
     { key: 'DISCORD_TOKEN', channel: 'Discord' },

package/dist/gateway/failure-diagnostics.js

@@ -546,7 +546,15 @@ export async function diagnoseBrokenJob(broken, gateway) {
         undefined, // maxHours
         undefined, // timeoutMs
         undefined, // successCriteria
-        undefined);
+        undefined, // agentSlug
+        // 1.18.148 — F1/F2 pattern: diagnostics are pure analysis of an
+        // existing run, no need for MEMORY.md / team / auto-skills. Without
+        // these flags the diagnostic prompt blew past Claude's input limit
+        // and broken jobs went undiagnosed silently.
+        undefined, // pinnedSkills
+        [], // allowedTools
+        [], // allowedMcpServers
+        true);
     }
     catch (err) {
         logger.warn({ err, job: broken.jobName }, 'Diagnostic LLM call failed');

package/dist/gateway/outcome-grader.js

@@ -140,7 +140,16 @@ export async function gradeRun(entry, gateway, jobPrompt) {
         undefined, // maxHours
         undefined, // timeoutMs
         undefined, // successCriteria
-        undefined);
+        undefined, // agentSlug
+        // 1.18.148 — F1/F2 pattern: meta-jobs don't get user MEMORY.md /
+        // team comms / auto-matched skills, otherwise the prompt blows
+        // past Claude's input limit (110+ "Prompt is too long" errors/8h
+        // before this fix). Same shape applied to insight-check (1.18.132)
+        // and route-classify / failure-diagnostics in this same ship.
+        undefined, // pinnedSkills
+        [], // allowedTools — empty = no MCP injection
+        [], // allowedMcpServers — empty = no MCP servers wired
+        true);
     }
     catch (err) {
         logger.warn({ err, jobName: entry.jobName }, 'Outcome grader LLM call failed');

package/dist/gateway/turn-ledger.d.ts

@@ -24,7 +24,8 @@ export interface TurnLedgerEntry {
     errorPreview?: string;
     durationMs: number;
 }
-export declare function estimateTokensApprox(text: string): number;
+import { estimateTokens } from '../lib/format.js';
+export declare const estimateTokensApprox: typeof estimateTokens;
 export declare function turnLedgerPath(baseDir?: string): string;
 export declare function appendTurnLedger(entry: TurnLedgerEntry, baseDir?: string): void;
 export declare function readRecentTurnLedger(sessionKey: string, limit?: number, baseDir?: string): TurnLedgerEntry[];

package/dist/gateway/turn-ledger.js

@@ -1,9 +1,10 @@
 import { appendFileSync, existsSync, mkdirSync, readFileSync } from 'node:fs';
 import path from 'node:path';
 import { BASE_DIR } from '../config.js';
-export function estimateTokensApprox(text) {
-    return Math.ceil(text.length / 4);
-}
+// 1.18.149 — estimateTokensApprox consolidated into the canonical estimateTokens helper.
+// Re-exported under the legacy name to keep existing callers working.
+import { estimateTokens } from '../lib/format.js';
+export const estimateTokensApprox = estimateTokens;
 export function turnLedgerPath(baseDir = BASE_DIR) {
     return path.join(baseDir, 'logs', 'turn-ledger.jsonl');
 }

package/dist/index.js

@@ -254,8 +254,6 @@ function printBanner(channels, profiles, cronJobs, graphEnabled = false) {
         tags.push('voice');
     if (config.GOOGLE_API_KEY)
         tags.push('video');
-    if (config.CHANNEL_OUTLOOK)
-        tags.push('outlook');
     if (graphEnabled)
         tags.push('graph');
     if (profiles > 0)
@@ -301,8 +299,6 @@ function printBanner(channels, profiles, cronJobs, graphEnabled = false) {
         hints.push(['ELEVENLABS_API_KEY', 'voice replies']);
     if (!config.GOOGLE_API_KEY)
         hints.push(['GOOGLE_API_KEY', 'video analysis']);
-    if (!config.CHANNEL_OUTLOOK)
-        hints.push(['MS_TENANT_ID + MS_CLIENT_ID + MS_CLIENT_SECRET', 'Outlook email & calendar']);
     if (!graphEnabled)
         hints.push(['clementine doctor', 'knowledge graph (run to diagnose)']);
     if (hints.length > 0) {

package/dist/integrations/composio/client.d.ts

@@ -83,7 +83,6 @@ export interface CatalogToolkit {
  * cache (so the next request retries instead of returning stale empty).
  */
 export declare function listAllToolkits(): Promise<CatalogToolkit[]>;
-export declare function listToolkitMeta(): Promise<Map<string, ToolkitMeta>>;
 export declare function listToolkitSlugsWithAuthConfig(): Promise<Set<string>>;
 export declare class ComposioNeedsAuthConfigError extends Error {
     readonly slug: string;

package/dist/integrations/composio/client.js

@@ -81,7 +81,6 @@ export function isComposioEnabled() {
 export function resetComposioClient() {
     singleton = null;
     identityCache.clear();
-    toolkitMetaCache = null;
     catalogCache = null;
     detectedPreferredUserId = null;
 }
@@ -345,7 +344,6 @@ export async function listConnectedToolkits() {
         return [];
     }
 }
-let toolkitMetaCache = null;
 let catalogCache = null;
 const CATALOG_TTL_MS = 60 * 60 * 1000; // 1h — catalog drifts very slowly
 /**
@@ -435,55 +433,6 @@ async function fetchCatalogViaWrapper(composio) {
     const items = (Array.isArray(resp) ? resp : (resp?.items ?? []));
     return items.map(normalizeCatalogItem);
 }
-async function fetchAllToolkitMeta() {
-    const composio = getComposio();
-    if (!composio)
-        return new Map();
-    const out = new Map();
-    try {
-        const resp = await composio.toolkits.get({ limit: 500 });
-        const items = Array.isArray(resp) ? resp : (resp.items ?? []);
-        for (const it of items) {
-            out.set(it.slug, {
-                slug: it.slug,
-                name: it.name,
-                logo: it.meta?.logo,
-                description: it.meta?.description,
-                toolsCount: it.meta?.toolsCount,
-            });
-        }
-        // Backfill curated toolkits the list endpoint omitted (e.g. MCP-only ones).
-        await Promise.all(CURATED_TOOLKITS.filter(t => !out.has(t.slug)).map(async (t) => {
-            try {
-                const full = (await composio.toolkits.get(t.slug));
-                out.set(full.slug, {
-                    slug: full.slug,
-                    name: full.name,
-                    logo: full.meta?.logo,
-                    description: full.meta?.description,
-                    toolsCount: full.meta?.toolsCount,
-                });
-            }
-            catch (err) {
-                logger.debug({ err, slug: t.slug }, 'meta backfill failed');
-            }
-        }));
-    }
-    catch (err) {
-        logger.error({ err }, 'fetchAllToolkitMeta failed');
-    }
-    return out;
-}
-export async function listToolkitMeta() {
-    if (!toolkitMetaCache) {
-        toolkitMetaCache = fetchAllToolkitMeta().catch(err => {
-            logger.error({ err }, 'listToolkitMeta failed');
-            toolkitMetaCache = null;
-            return new Map();
-        });
-    }
-    return toolkitMetaCache;
-}
 export async function listToolkitSlugsWithAuthConfig() {
     const composio = getComposio();
     if (!composio)

package/dist/lib/format.d.ts

@@ -0,0 +1,28 @@
+/**
+ * Shared formatting helpers (1.18.149).
+ *
+ * Consolidates implementations that were previously inlined across the
+ * codebase:
+ *   - formatBytes: 4 inline copies (cli/index.ts, cli/ingest.ts,
+ *     memory/store.ts, cli/dashboard.ts) with minor variation
+ *   - estimateTokens: 3 inline copies with INCONSISTENT divisors
+ *     (brain/llm-client.ts and gateway/turn-ledger.ts used /4 — Anthropic's
+ *     published rule of thumb — while agent/assistant.ts used /3.3 for
+ *     no documented reason). Going with /4 as the canonical.
+ *
+ * Kept tiny + dependency-free so any module can import without pulling
+ * in extra weight.
+ */
+/**
+ * Format a byte count as a human-readable string (1.5 KB, 23 MB, 4.2 GB).
+ * Defensive: returns '0 B' for null, undefined, NaN, negative.
+ */
+export declare function formatBytes(n: number | null | undefined): string;
+/**
+ * Approximate token count for a string. Uses the Anthropic-published
+ * heuristic of ~4 characters per token. Good enough for budget planning,
+ * input truncation, and pre-flight cost estimates. Callers needing exact
+ * counts should read `usage.input_tokens` from the SDK result.
+ */
+export declare function estimateTokens(text: string): number;
+//# sourceMappingURL=format.d.ts.map

package/dist/lib/format.js

@@ -0,0 +1,42 @@
+/**
+ * Shared formatting helpers (1.18.149).
+ *
+ * Consolidates implementations that were previously inlined across the
+ * codebase:
+ *   - formatBytes: 4 inline copies (cli/index.ts, cli/ingest.ts,
+ *     memory/store.ts, cli/dashboard.ts) with minor variation
+ *   - estimateTokens: 3 inline copies with INCONSISTENT divisors
+ *     (brain/llm-client.ts and gateway/turn-ledger.ts used /4 — Anthropic's
+ *     published rule of thumb — while agent/assistant.ts used /3.3 for
+ *     no documented reason). Going with /4 as the canonical.
+ *
+ * Kept tiny + dependency-free so any module can import without pulling
+ * in extra weight.
+ */
+/**
+ * Format a byte count as a human-readable string (1.5 KB, 23 MB, 4.2 GB).
+ * Defensive: returns '0 B' for null, undefined, NaN, negative.
+ */
+export function formatBytes(n) {
+    if (n == null || !Number.isFinite(n) || n < 0)
+        return '0 B';
+    if (n < 1024)
+        return `${n} B`;
+    if (n < 1024 * 1024)
+        return `${(n / 1024).toFixed(1)} KB`;
+    if (n < 1024 * 1024 * 1024)
+        return `${(n / (1024 * 1024)).toFixed(1)} MB`;
+    return `${(n / (1024 * 1024 * 1024)).toFixed(2)} GB`;
+}
+/**
+ * Approximate token count for a string. Uses the Anthropic-published
+ * heuristic of ~4 characters per token. Good enough for budget planning,
+ * input truncation, and pre-flight cost estimates. Callers needing exact
+ * counts should read `usage.input_tokens` from the SDK result.
+ */
+export function estimateTokens(text) {
+    if (!text)
+        return 0;
+    return Math.ceil(text.length / 4);
+}
+//# sourceMappingURL=format.js.map

package/dist/memory/store.d.ts

@@ -78,7 +78,6 @@ export declare class MemoryStore {
     private writeQueue;
     constructor(dbPath: string, vaultDir: string);
     private static confidenceMultiplier;
-    private static formatBytes;
     private static dirSizeBytes;
     /**
      * Create the database and schema if needed.

package/dist/memory/store.js

@@ -14,6 +14,7 @@ import { appendFileSync, existsSync, mkdirSync, readFileSync, readdirSync, statS
 import path from 'node:path';
 import Database from 'better-sqlite3';
 import { BASE_DIR } from '../config.js';
+import { formatBytes } from '../lib/format.js';
 import { temporalDecay } from './search.js';
 import * as embeddingsModule from './embeddings.js';
 import { chunkFile } from './chunker.js';
@@ -46,17 +47,7 @@ export class MemoryStore {
         const conf = Math.max(0, Math.min(1, confidence ?? 1));
         return conf >= 1 ? 1 : 0.5 + 0.5 * conf;
     }
-    static formatBytes(n) {
-        if (!Number.isFinite(n) || n < 0)
-            return '0 B';
-        if (n < 1024)
-            return `${n} B`;
-        if (n < 1024 * 1024)
-            return `${(n / 1024).toFixed(1)} KB`;
-        if (n < 1024 * 1024 * 1024)
-            return `${(n / 1024 / 1024).toFixed(1)} MB`;
-        return `${(n / 1024 / 1024 / 1024).toFixed(2)} GB`;
-    }
+    // 1.18.149 — formatBytes consolidated to src/lib/format.ts
     static dirSizeBytes(dir) {
         if (!existsSync(dir))
             return 0;
@@ -5917,7 +5908,7 @@ export class MemoryStore {
                     cacheDir,
                     cacheExists: existsSync(cacheDir),
                     cacheBytes,
-                    cacheSize: MemoryStore.formatBytes(cacheBytes),
+                    cacheSize: formatBytes(cacheBytes),
                     installed: cacheBytes >= 1024 * 1024,
                 };
             })(),

package/dist/tools/admin-tools.js

@@ -1582,99 +1582,6 @@ export function registerAdminTools(server) {
         lines.push('', 'ONLY modify files under this path when updating source. Other ~/clementine* directories may be stale checkouts — ignore them.');
         return textResult(lines.join('\n'));
     });
-    server.tool('self_update', 'Update Clementine to the latest main-branch code and restart. Runs git pull + npm install (if lockfile changed) + npm run build in the running daemon\'s source dir, then signals SIGUSR1 to restart. Owner-DM only. Use this instead of manually invoking git/npm — it operates on the correct source dir and handles the restart cleanly. Returns immediately; the daemon will be unreachable for ~15s during rebuild+restart.', {
-        branch: z.string().optional().describe('Branch to pull (default "main")'),
-    }, async ({ branch }) => {
-        const gate = requireOwnerDm();
-        if (!gate.ok)
-            return textResult(gate.message);
-        const root = resolvePackageRoot();
-        if (!existsSync(path.join(root, '.git'))) {
-            return textResult(`Refused: ${root} is not a git clone. This daemon was likely installed via npm — updates should go through \`npm install -g clementine-agent@latest\`, not self_update.`);
-        }
-        const targetBranch = branch ?? 'main';
-        const out = [];
-        const runQuiet = (cmd, args, timeout = 120000) => {
-            try {
-                const res = execSync(`${cmd} ${args.map(a => `'${a.replace(/'/g, "'\\''")}'`).join(' ')}`, {
-                    cwd: root, encoding: 'utf-8', timeout,
-                    stdio: ['ignore', 'pipe', 'pipe'],
-                });
-                return { ok: true, output: res };
-            }
-            catch (e) {
-                return { ok: false, output: (e?.stdout ?? '') + '\n' + (e?.stderr ?? '') + '\n' + String(e).slice(0, 200) };
-            }
-        };
-        // 1. Stash local changes so git pull is clean
-        const statusProbe = runQuiet('git', ['status', '--porcelain']);
-        const hadLocal = statusProbe.ok && statusProbe.output.trim().length > 0;
-        let stashed = false;
-        if (hadLocal) {
-            const stashRes = runQuiet('git', ['stash', 'push', '-u', '-m', `self_update ${new Date().toISOString()}`]);
-            if (stashRes.ok) {
-                stashed = true;
-                out.push('Stashed local changes (restore with `git stash pop` in the source dir if needed).');
-            }
-            else {
-                return textResult(`Refused: couldn't stash local changes in ${root}. ${stashRes.output.slice(0, 200)}`);
-            }
-        }
-        // 2. Checkout target branch if not already there
-        const branchProbe = runQuiet('git', ['rev-parse', '--abbrev-ref', 'HEAD']);
-        if (branchProbe.ok && branchProbe.output.trim() !== targetBranch) {
-            const coRes = runQuiet('git', ['checkout', targetBranch]);
-            if (!coRes.ok)
-                return textResult(`git checkout ${targetBranch} failed: ${coRes.output.slice(0, 300)}`);
-        }
-        // 3. Record pre-pull hashes so we know if package-lock changed
-        const preLock = existsSync(path.join(root, 'package-lock.json')) ? readFileSync(path.join(root, 'package-lock.json'), 'utf-8').length : 0;
-        const preCommit = runQuiet('git', ['rev-parse', 'HEAD']).output.trim();
-        // 4. Pull
-        const pullRes = runQuiet('git', ['pull', '--ff-only', 'origin', targetBranch], 60000);
-        if (!pullRes.ok)
-            return textResult(`git pull failed: ${pullRes.output.slice(0, 300)}\n\n${stashed ? 'Local changes are preserved in git stash; inspect with `git stash list`.' : ''}`);
-        const postCommit = runQuiet('git', ['rev-parse', 'HEAD']).output.trim();
-        if (preCommit === postCommit) {
-            out.push(`Already up to date at ${preCommit.slice(0, 7)}.`);
-            return textResult(out.join('\n'));
-        }
-        out.push(`Pulled: ${preCommit.slice(0, 7)} → ${postCommit.slice(0, 7)}`);
-        // 5. npm install only if package-lock changed
-        const postLock = existsSync(path.join(root, 'package-lock.json')) ? readFileSync(path.join(root, 'package-lock.json'), 'utf-8').length : 0;
-        if (postLock !== preLock) {
-            out.push('package-lock.json changed — running npm install...');
-            const installRes = runQuiet('npm', ['install'], 180000);
-            if (!installRes.ok)
-                return textResult(`${out.join('\n')}\n\nnpm install failed: ${installRes.output.slice(0, 300)}`);
-            out.push('  ok');
-        }
-        // 6. Build
-        out.push('Building...');
-        const buildRes = runQuiet('npm', ['run', 'build'], 300000);
-        if (!buildRes.ok)
-            return textResult(`${out.join('\n')}\n\nBuild failed: ${buildRes.output.slice(0, 300)}`);
-        out.push('  ok');
-        // 7. Trigger graceful self-restart
-        const pidFile = path.join(BASE_DIR, `.${(env['ASSISTANT_NAME'] ?? 'clementine').toLowerCase()}.pid`);
-        if (existsSync(pidFile)) {
-            const pid = parseInt(readFileSync(pidFile, 'utf-8').trim(), 10);
-            if (!isNaN(pid)) {
-                try {
-                    process.kill(pid, 0);
-                    process.kill(pid, 'SIGUSR1');
-                    out.push(`Sent SIGUSR1 to PID ${pid}. I'll be back in ~15s on the new build.`);
-                }
-                catch {
-                    out.push('Daemon PID not running — no restart signal sent. New build is on disk; launch manually.');
-                }
-            }
-        }
-        else {
-            out.push('No PID file found. Build succeeded but restart not triggered — run `clementine launch` manually.');
-        }
-        return textResult(out.join('\n'));
-    });
     server.tool('self_restart', 'Restart the Clementine daemon to pick up code changes. Sends SIGUSR1 to the running process, which triggers a graceful restart. Use self_update instead if you also need to pull/build first.', { _empty: z.string().optional().describe('(no parameters needed)') }, async () => {
         const pidFile = path.join(BASE_DIR, `.${(env['ASSISTANT_NAME'] ?? 'clementine').toLowerCase()}.pid`);
         if (!existsSync(pidFile)) {

package/dist/tools/builder-tools.js

@@ -12,7 +12,6 @@ import { z } from 'zod';
 import { textResult } from './shared.js';
 import { listAllForBuilder, readWorkflow, saveWorkflow, cronId, workflowId, parseBuilderId, isCronShape, sourceFileForId, } from '../dashboard/builder/serializer.js';
 import { validateWorkflow } from '../dashboard/builder/validation.js';
-import { dryRunWorkflow } from '../dashboard/builder/dry-run.js';
 import { emitBuilderEvent } from '../dashboard/builder/events.js';
 import { listSnapshots, restoreSnapshot } from '../dashboard/builder/snapshots.js';
 import { discoverMcpServers, loadToolInventory } from '../agent/mcp-bridge.js';
@@ -59,30 +58,6 @@ export function registerBuilderTools(server) {
             return `${i.id}|${i.name}|${i.origin}|${ownerCol}|${i.enabled ? 'on' : 'off'}|${i.schedule ?? '-'}|${i.stepCount}step${i.stepCount === 1 ? '' : 's'}`;
         }).join('\n'));
     });
-    server.tool('workflow_read', 'Read a workflow as canonical JSON. Use this before editing — patches reference current step ids.', {
-        id: z.string().describe('Builder id (e.g., cron:morning-briefing or workflow:daily-digest)'),
-    }, async ({ id }) => {
-        const wf = readWorkflow(id);
-        if (!wf)
-            return textResult(`Not found: ${id}`);
-        return textResult(JSON.stringify(wf, null, 2));
-    });
-    server.tool('workflow_search', 'Search workflows + crons by name or content (substring, case-insensitive).', { query: z.string() }, async ({ query }) => {
-        const q = query.toLowerCase();
-        const items = listAllForBuilder();
-        const matches = [];
-        for (const i of items) {
-            if (i.name.toLowerCase().includes(q) || (i.description ?? '').toLowerCase().includes(q)) {
-                matches.push(`${i.id}|${i.name}|${i.origin}`);
-                continue;
-            }
-            const wf = readWorkflow(i.id);
-            if (wf && wf.steps.some(s => s.prompt.toLowerCase().includes(q))) {
-                matches.push(`${i.id}|${i.name}|${i.origin} (matched in step prompt)`);
-            }
-        }
-        return textResult(matches.length === 0 ? `(no matches for "${query}")` : matches.join('\n'));
-    });
     server.tool('workflow_list_mcp_tools', 'List MCP servers and their tools. Use to fill in mcp-step configs (server + tool name).', {}, async () => {
         const servers = discoverMcpServers();
         const inv = loadToolInventory();
@@ -110,62 +85,7 @@ export function registerBuilderTools(server) {
             return textResult('OK — no issues');
         return textResult(formatIssues(result.issues));
     });
-    server.tool('workflow_dry_run', 'Walk a workflow without executing. Shows what each step would do, in topological order, with rough cost estimate. Use for long-running jobs to preview safely.', { id: z.string() }, async ({ id }) => {
-        const wf = readWorkflow(id);
-        if (!wf)
-            return textResult(`Not found: ${id}`);
-        const r = dryRunWorkflow(wf);
-        const lines = [];
-        lines.push(r.ok ? `DRY RUN: ${wf.name}` : `DRY RUN (validation failed): ${wf.name}`);
-        if (r.validationIssues.length)
-            lines.push(formatIssues(r.validationIssues));
-        for (const s of r.steps) {
-            lines.push(`[wave ${s.wave}] ${s.description}`);
-            for (const w of s.warnings)
-                lines.push(`  ⚠ ${w}`);
-        }
-        if (r.estimatedTokens) {
-            lines.push(`Rough estimate: ~${r.estimatedTokens.total.toLocaleString()} tokens across ${r.estimatedTokens.promptSteps} prompt step(s).`);
-        }
-        for (const note of r.notes)
-            lines.push(note);
-        return textResult(lines.join('\n'));
-    });
     // ── Mutations ──────────────────────────────────────────────────────────
-    server.tool('workflow_save', 'Save a workflow (full replace). Validates before writing — rejects on errors unless `force: true`. Use this when you need to change many fields atomically; for small edits prefer the targeted tools (workflow_add_node etc.).', {
-        id: z.string(),
-        workflow: z.object({
-            name: z.string(),
-            description: z.string().default(''),
-            enabled: z.boolean().default(true),
-            trigger: z.object({ schedule: z.string().optional(), manual: z.boolean().optional() }).default({ manual: true }),
-            inputs: z.record(z.string(), z.object({ type: z.enum(['string', 'number']), default: z.string().optional(), description: z.string().optional() })).default({}),
-            steps: z.array(stepShape),
-            synthesis: z.object({ prompt: z.string() }).optional(),
-            agentSlug: z.string().optional(),
-            project: z.string().optional().describe('Linked-project path; default cwd for CLI steps'),
-            model: z.string().optional().describe('Default model for prompt steps without their own'),
-        }),
-        force: z.boolean().optional().describe('Bypass validation errors (warnings always ignored)'),
-    }, async ({ id, workflow, force }) => {
-        const existing = readWorkflow(id);
-        if (!existing)
-            return textResult(`Not found: ${id}`);
-        const next = {
-            ...workflow,
-            steps: workflow.steps.map(s => normalizeStep(s)),
-            sourceFile: existing.sourceFile,
-        };
-        const v = validateWorkflow(next);
-        if (!v.ok && !force) {
-            return textResult('Save rejected — validation errors:\n' + formatIssues(v.issues) + '\nPass force: true to override.');
-        }
-        const result = saveWorkflow(id, next);
-        if (!result.ok)
-            return textResult('Save failed: ' + result.error);
-        emitBuilderEvent({ type: 'workflow:patched', workflowId: id, payload: { workflow: next } });
-        return textResult(`Saved ${id}.${v.issues.length ? ' Warnings:\n' + formatIssues(v.issues.filter(i => i.severity === 'warning')) : ''}`);
-    });
     server.tool('workflow_create', 'Create a new workflow file (multi-step) under vault/00-System/workflows/. Returns its builder id.', {
         name: z.string().describe('Workflow name (also derived as the file slug)'),
         description: z.string().default(''),
@@ -391,26 +311,6 @@ export function registerBuilderTools(server) {
         emitBuilderEvent({ type: 'workflow:patched', workflowId: id, payload: { restoredFrom: snapshotFilename } });
         return textResult(`Restored ${id} from ${snapshotFilename}`);
     });
-    server.tool('workflow_delete', 'Delete a workflow file (multi-step workflows only). Cron entries are removed via workflow_set_enabled or by editing CRON.md directly.', { id: z.string() }, async ({ id }) => {
-        const parsed = parseBuilderId(id);
-        if (!parsed)
-            return textResult(`Bad id: ${id}`);
-        if (parsed.origin === 'cron')
-            return textResult('Use workflow_set_enabled false to disable a cron, or delete the CRON.md entry manually.');
-        const wf = readWorkflow(id);
-        if (!wf)
-            return textResult(`Not found: ${id}`);
-        try {
-            const { unlinkSync, existsSync } = await import('node:fs');
-            if (existsSync(wf.sourceFile))
-                unlinkSync(wf.sourceFile);
-        }
-        catch (err) {
-            return textResult(`Delete failed: ${err.message}`);
-        }
-        emitBuilderEvent({ type: 'workflow:deleted', workflowId: id });
-        return textResult(`Deleted ${id}`);
-    });
 }
 // ── helpers ────────────────────────────────────────────────────────────
 function normalizeStep(s) {

package/dist/tools/external-tools.js

@@ -10,7 +10,7 @@ import { execSync } from 'node:child_process';
 import { existsSync, readFileSync } from 'node:fs';
 import path from 'node:path';
 import { z } from 'zod';
-import { ACTIVE_AGENT_SLUG, EXTERNAL_CONTENT_TAG, SYSTEM_DIR, env, externalResult, getStore, logger, textResult, } from './shared.js';
+import { ACTIVE_AGENT_SLUG, SYSTEM_DIR, env, externalResult, getStore, logger, textResult, } from './shared.js';
 import { getToolDescription } from './tool-meta.js';
 export function registerExternalTools(server) {
     // ── 13. rss_fetch ──────────────────────────────────────────────────────
@@ -962,250 +962,6 @@ export function registerExternalTools(server) {
     function joinName(first, last) {
         return [first, last].filter(Boolean).join(' ') || 'Unknown';
     }
-    // ── sf_lead_push ─────────────────────────────────────────────────────────
-    server.tool('sf_lead_push', 'Push a local lead to Salesforce. Creates a new SF Lead or updates existing if the lead already has a Salesforce ID.', {
-        leadId: z.number().describe('Local lead ID to push to Salesforce'),
-    }, async ({ leadId }) => {
-        if (!sfConfigured())
-            return textResult('Salesforce not configured — set SF_INSTANCE_URL, SF_CLIENT_ID, SF_CLIENT_SECRET, SF_USERNAME, SF_PASSWORD in .env');
-        const store = await getStore();
-        const lead = store.getLeadById(leadId);
-        if (!lead)
-            return textResult(`Lead ID ${leadId} not found`);
-        const { FirstName, LastName } = splitName(String(lead.name ?? ''));
-        const sfData = {
-            FirstName,
-            LastName,
-            Email: lead.email,
-            Company: lead.company || '[Unknown]',
-            Title: lead.title || undefined,
-            Status: LOCAL_TO_SF_STATUS[String(lead.status ?? 'new')] || 'Open - Not Contacted',
-            LeadSource: lead.source || undefined,
-        };
-        // Remove undefined values
-        for (const k of Object.keys(sfData)) {
-            if (sfData[k] === undefined)
-                delete sfData[k];
-        }
-        try {
-            if (lead.sf_id) {
-                await sfPatch(`/sobjects/Lead/${lead.sf_id}`, sfData);
-                store.logSfSync({ localTable: 'leads', localId: leadId, sfObjectType: 'Lead', sfId: String(lead.sf_id), syncDirection: 'push' });
-                return textResult(`Updated Salesforce Lead ${lead.sf_id} for ${lead.name} <${lead.email}>`);
-            }
-            else {
-                const result = await sfPost('/sobjects/Lead', sfData);
-                const sfId = result.id;
-                store.upsertLead({ agentSlug: String(lead.agent_slug), email: String(lead.email), name: String(lead.name), sfId });
-                store.logSfSync({ localTable: 'leads', localId: leadId, sfObjectType: 'Lead', sfId, syncDirection: 'push' });
-                return textResult(`Created Salesforce Lead ${sfId} for ${lead.name} <${lead.email}>`);
-            }
-        }
-        catch (err) {
-            store.logSfSync({ localTable: 'leads', localId: leadId, sfObjectType: 'Lead', sfId: String(lead.sf_id ?? ''), syncDirection: 'push', syncStatus: 'error', errorMessage: String(err) });
-            return textResult(`Error pushing lead to Salesforce: ${err}`);
-        }
-    });
-    // ── sf_lead_pull ─────────────────────────────────────────────────────────
-    server.tool('sf_lead_pull', 'Pull a Salesforce Lead or Contact into the local lead database by Salesforce ID or email address.', {
-        sfId: z.string().optional().describe('Salesforce Lead/Contact ID'),
-        email: z.string().optional().describe('Email address to search in Salesforce'),
-    }, async ({ sfId, email }) => {
-        if (!sfConfigured())
-            return textResult('Salesforce not configured — set SF_INSTANCE_URL, SF_CLIENT_ID, SF_CLIENT_SECRET, SF_USERNAME, SF_PASSWORD in .env');
-        if (!sfId && !email)
-            return textResult('Provide either sfId or email');
-        try {
-            let record = null;
-            let objectType = 'Lead';
-            if (sfId) {
-                // Try Lead first, then Contact
-                try {
-                    record = await sfGet(`/sobjects/Lead/${sfId}`);
-                }
-                catch {
-                    record = await sfGet(`/sobjects/Contact/${sfId}`);
-                    objectType = 'Contact';
-                }
-            }
-            else if (email) {
-                const soql = `SELECT Id, FirstName, LastName, Email, Company, Title, Status, LeadSource FROM Lead WHERE Email = '${email.replace(/'/g, "\\'")}'  LIMIT 1`;
-                const result = await sfQuery(soql);
-                if (result.records?.length > 0) {
-                    record = result.records[0];
-                }
-                else {
-                    const contactSoql = `SELECT Id, FirstName, LastName, Email, Account.Name, Title FROM Contact WHERE Email = '${email.replace(/'/g, "\\'")}'  LIMIT 1`;
-                    const contactResult = await sfQuery(contactSoql);
-                    if (contactResult.records?.length > 0) {
-                        record = contactResult.records[0];
-                        objectType = 'Contact';
-                    }
-                }
-            }
-            if (!record)
-                return textResult(`No Salesforce Lead or Contact found for ${sfId || email}`);
-            const store = await getStore();
-            const agentSlug = ACTIVE_AGENT_SLUG ?? 'clementine';
-            const name = joinName(record.FirstName, record.LastName);
-            const company = objectType === 'Contact'
-                ? record.Account?.Name ?? ''
-                : record.Company ?? '';
-            const localStatus = SF_TO_LOCAL_STATUS[String(record.Status ?? '')] || 'new';
-            const upsertResult = store.upsertLead({
-                agentSlug,
-                email: String(record.Email ?? email ?? ''),
-                name,
-                company,
-                title: record.Title,
-                status: localStatus,
-                source: record.LeadSource,
-                sfId: String(record.Id),
-            });
-            store.logSfSync({
-                localTable: 'leads', localId: upsertResult.id,
-                sfObjectType: objectType, sfId: String(record.Id), syncDirection: 'pull',
-            });
-            return textResult(`${upsertResult.created ? 'Created' : 'Updated'} local lead from Salesforce ${objectType} ${record.Id}:\n` +
-                `  Name: ${name}\n  Email: ${record.Email}\n  Company: ${company}\n  Status: ${localStatus}`);
-        }
-        catch (err) {
-            return textResult(`Error pulling from Salesforce: ${err}`);
-        }
-    });
-    // ── sf_contact_search ────────────────────────────────────────────────────
-    server.tool('sf_contact_search', 'Search Salesforce Leads and/or Contacts by name, email, or company.', {
-        query: z.string().describe('Search keyword (name, email, or company)'),
-        objectType: z.enum(['Lead', 'Contact', 'Both']).optional().default('Both').describe('Which SF object type to search'),
-        limit: z.number().optional().default(10).describe('Max results to return'),
-    }, async ({ query, objectType, limit }) => {
-        if (!sfConfigured())
-            return textResult('Salesforce not configured — set SF_INSTANCE_URL, SF_CLIENT_ID, SF_CLIENT_SECRET, SF_USERNAME, SF_PASSWORD in .env');
-        try {
-            const safeQuery = query.replace(/'/g, "\\'");
-            const results = [];
-            const maxResults = Math.min(limit, 50);
-            if (objectType === 'Lead' || objectType === 'Both') {
-                const soql = `SELECT Id, FirstName, LastName, Email, Company, Title, Status, LeadSource FROM Lead WHERE Name LIKE '%${safeQuery}%' OR Email LIKE '%${safeQuery}%' OR Company LIKE '%${safeQuery}%' LIMIT ${maxResults}`;
-                const data = await sfQuery(soql);
-                for (const r of data.records ?? []) {
-                    results.push(`[Lead] ${joinName(r.FirstName, r.LastName)} <${r.Email ?? 'no email'}> | ${r.Company ?? ''} | ${r.Title ?? ''} | Status: ${r.Status ?? ''} | ID: ${r.Id}`);
-                }
-            }
-            if (objectType === 'Contact' || objectType === 'Both') {
-                const soql = `SELECT Id, FirstName, LastName, Email, Account.Name, Title FROM Contact WHERE Name LIKE '%${safeQuery}%' OR Email LIKE '%${safeQuery}%' OR Account.Name LIKE '%${safeQuery}%' LIMIT ${maxResults}`;
-                const data = await sfQuery(soql);
-                for (const r of data.records ?? []) {
-                    const acct = r.Account?.Name ?? '';
-                    results.push(`[Contact] ${joinName(r.FirstName, r.LastName)} <${r.Email ?? 'no email'}> | ${acct} | ${r.Title ?? ''} | ID: ${r.Id}`);
-                }
-            }
-            if (results.length === 0)
-                return textResult(`No Salesforce records found matching "${query}"`);
-            return textResult(`${EXTERNAL_CONTENT_TAG}\n\nSalesforce search results for "${query}" (${results.length} found):\n\n${results.join('\n')}`);
-        }
-        catch (err) {
-            return textResult(`Error searching Salesforce: ${err}`);
-        }
-    });
-    // ── sf_opportunity_create ────────────────────────────────────────────────
-    server.tool('sf_opportunity_create', 'Create a new Opportunity in Salesforce, optionally linked to an Account or Contact.', {
-        name: z.string().describe('Opportunity name'),
-        stageName: z.string().describe('Sales stage (e.g., "Prospecting", "Qualification", "Closed Won")'),
-        closeDate: z.string().describe('Expected close date (YYYY-MM-DD)'),
-        amount: z.number().optional().describe('Deal amount in dollars'),
-        accountId: z.string().optional().describe('Salesforce Account ID to link'),
-        contactId: z.string().optional().describe('Salesforce Contact ID to add as Contact Role'),
-    }, async ({ name, stageName, closeDate, amount, accountId, contactId }) => {
-        if (!sfConfigured())
-            return textResult('Salesforce not configured — set SF_INSTANCE_URL, SF_CLIENT_ID, SF_CLIENT_SECRET, SF_USERNAME, SF_PASSWORD in .env');
-        try {
-            const oppData = { Name: name, StageName: stageName, CloseDate: closeDate };
-            if (amount !== undefined)
-                oppData.Amount = amount;
-            if (accountId)
-                oppData.AccountId = accountId;
-            const result = await sfPost('/sobjects/Opportunity', oppData);
-            const oppId = result.id;
-            let contactRoleMsg = '';
-            // Link contact role if provided
-            if (contactId) {
-                try {
-                    await sfPost('/sobjects/OpportunityContactRole', {
-                        OpportunityId: oppId,
-                        ContactId: contactId,
-                        Role: 'Decision Maker',
-                    });
-                    contactRoleMsg = `\nLinked Contact ${contactId} as Decision Maker`;
-                }
-                catch (err) {
-                    contactRoleMsg = `\nWarning: Could not link Contact Role: ${err}`;
-                }
-            }
-            return textResult(`Created Opportunity ${oppId}: "${name}" (${stageName}, close: ${closeDate}${amount ? `, $${amount}` : ''})${contactRoleMsg}`);
-        }
-        catch (err) {
-            return textResult(`Error creating Opportunity: ${err}`);
-        }
-    });
-    // ── sf_opportunity_update ────────────────────────────────────────────────
-    server.tool('sf_opportunity_update', 'Update an existing Salesforce Opportunity (stage, amount, close date, etc.).', {
-        sfId: z.string().describe('Salesforce Opportunity ID'),
-        stageName: z.string().optional().describe('New sales stage'),
-        amount: z.number().optional().describe('Updated deal amount'),
-        closeDate: z.string().optional().describe('Updated close date (YYYY-MM-DD)'),
-        description: z.string().optional().describe('Opportunity description/notes'),
-    }, async ({ sfId, stageName, amount, closeDate, description }) => {
-        if (!sfConfigured())
-            return textResult('Salesforce not configured — set SF_INSTANCE_URL, SF_CLIENT_ID, SF_CLIENT_SECRET, SF_USERNAME, SF_PASSWORD in .env');
-        try {
-            const updates = {};
-            if (stageName)
-                updates.StageName = stageName;
-            if (amount !== undefined)
-                updates.Amount = amount;
-            if (closeDate)
-                updates.CloseDate = closeDate;
-            if (description)
-                updates.Description = description;
-            if (Object.keys(updates).length === 0)
-                return textResult('No fields to update');
-            await sfPatch(`/sobjects/Opportunity/${sfId}`, updates);
-            const fields = Object.entries(updates).map(([k, v]) => `${k}: ${v}`).join(', ');
-            return textResult(`Updated Opportunity ${sfId}: ${fields}`);
-        }
-        catch (err) {
-            return textResult(`Error updating Opportunity: ${err}`);
-        }
-    });
-    // ── sf_activity_log ──────────────────────────────────────────────────────
-    server.tool('sf_activity_log', 'Log an activity (Task) to Salesforce linked to a Lead or Contact. Use this to record calls, emails, meetings, etc.', {
-        sfWhoId: z.string().describe('Salesforce Lead or Contact ID to link the activity to'),
-        subject: z.string().describe('Activity subject line'),
-        description: z.string().optional().describe('Activity description/notes'),
-        type: z.enum(['Call', 'Email', 'Meeting', 'Other']).optional().default('Other').describe('Activity type'),
-        status: z.enum(['Completed', 'Not Started', 'In Progress']).optional().default('Completed').describe('Task status'),
-        activityDate: z.string().optional().describe('Activity date (YYYY-MM-DD, defaults to today)'),
-    }, async ({ sfWhoId, subject, description, type, status, activityDate }) => {
-        if (!sfConfigured())
-            return textResult('Salesforce not configured — set SF_INSTANCE_URL, SF_CLIENT_ID, SF_CLIENT_SECRET, SF_USERNAME, SF_PASSWORD in .env');
-        try {
-            const taskData = {
-                WhoId: sfWhoId,
-                Subject: subject,
-                Status: status,
-                Type: type,
-                ActivityDate: activityDate || new Date().toISOString().slice(0, 10),
-            };
-            if (description)
-                taskData.Description = description;
-            const result = await sfPost('/sobjects/Task', taskData);
-            return textResult(`Logged ${type} activity to Salesforce (Task ID: ${result.id}): "${subject}" for ${sfWhoId}`);
-        }
-        catch (err) {
-            return textResult(`Error logging activity to Salesforce: ${err}`);
-        }
-    });
     // ── sf_sync ──────────────────────────────────────────────────────────────
     server.tool('sf_sync', 'Run a bidirectional sync between local leads and Salesforce. Pushes unsynced/modified local leads to SF and pulls recently modified SF leads into the local database.', {
         direction: z.enum(['push', 'pull', 'both']).optional().default('both').describe('Sync direction'),

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "clementine-agent",
-  "version": "1.18.147",
+  "version": "1.18.149",
   "description": "Clementine — Personal AI Assistant (TypeScript)",
   "type": "module",
   "main": "dist/index.js",