clementine-agent 1.18.35 → 1.18.36

package/dist/agent/assistant.js

@@ -33,7 +33,7 @@ import { searchSkills as searchSkillsSync } from './skill-extractor.js';
 import { classifyIntent, getStrategyGuidance } from './intent-classifier.js';
 import { getEventLog } from './session-event-log.js';
 import { applyServiceDedup, routeToolSurface, TOOL_SURFACE_HARD_LIMIT, TOOL_SURFACE_WARN_THRESHOLD } from './tool-router.js';
-import { isRestrictedToolset, toolsetAllowsLocalWrites } from './toolsets.js';
+import { isRestrictedToolset, toolsetAllowsLocalWrites, toolsetDisablesAllTools } from './toolsets.js';
 import { looksLikeApprovalPrompt } from './local-turn.js';
 import { decideTurn } from './turn-policy.js';
 import { loadClementineJson } from '../config/clementine-json.js';
@@ -2011,7 +2011,9 @@ You have a cost budget per message — not a hard turn limit. Work until the tas
     async buildOptions(opts = {}) {
         const { isHeartbeat = false, cronTier = null, maxTurns = null, model = null, enableTeams = true, retrievalContext = '', profile = null, sessionKey = null, streaming = false, isPlanStep = false, isUnleashed = false, sourceOverride, disableAllTools = false, verboseLevel, abortController, effort, maxBudgetUsd, toolScopeText, thinking, outputFormat, stallGuard, intentClassification, turnPolicy, contextRoutingText, toolset = 'auto', } = opts;
         const isCron = cronTier !== null;
-        const toolsDisabledForCall = disableAllTools || (isHeartbeat && !isCron);
+        const toolsDisabledForCall = disableAllTools
+            || (isHeartbeat && !isCron)
+            || toolsetDisablesAllTools(toolset);
         const promptScopeText = toolScopeText ?? '';
         const profileScopeText = [profile?.description, profile?.systemPromptBody]
             .filter(Boolean)

package/dist/agent/fanout-policy.js

@@ -85,6 +85,7 @@ export function buildAlwaysOnParallelizationHint() {
     return [
         '## Sub-agent fan-out',
         'When you process multiple items, spawn ONE Agent sub-agent per batch of 3–5 items. Sub-agents return ONE-LINE summaries (no raw tool output). Do not iterate sequentially in this conversation — that fills your context and aborts the run.',
+        'Cost: pass `model: "haiku"` to Agent for routine extraction, summarization, or per-item lookups. Use Sonnet only when the sub-agent must reason across many sources or write something durable.',
     ].join('\n');
 }
 /**
@@ -109,6 +110,7 @@ export function buildFanoutDirective(signals) {
         'Use the `Agent` tool to spawn parallel sub-agents. Each sub-agent runs in its own isolated context, so big tool responses live and die there — your context only sees the summary.',
         '',
         '- **Batch size**: 3–5 items per sub-agent (or one slice of work per sub-agent for research tasks)',
+        '- **Sub-agent model**: pass `model: "haiku"` to the Agent tool by default — sub-agents that just extract fields, summarize a single email, or pull a single record do not need Sonnet. Reserve Sonnet for sub-agents that must reason across multiple sources or write something durable.',
         '- **Sub-agent prompt MUST include**: the narrow task, the exact return format (e.g. `Return ONE LINE: <id> | <status> | <next-action>`), and an explicit "do not include raw tool output" directive',
         '- **Parent context keeps**: only the sub-agent return strings, not their tool transcripts',
         '',

package/dist/agent/toolsets.d.ts

@@ -1,4 +1,4 @@
-export type ToolsetName = 'auto' | 'safe' | 'diagnostic' | 'communications' | 'memory' | 'full';
+export type ToolsetName = 'auto' | 'safe' | 'diagnostic' | 'communications' | 'memory' | 'none' | 'full';
 export interface ToolsetPreset {
     name: ToolsetName;
     label: string;
@@ -11,4 +11,10 @@ export declare function getToolsetPreset(name: ToolsetName): ToolsetPreset;
 export declare function formatToolsetChoices(): string;
 export declare function isRestrictedToolset(name: ToolsetName): boolean;
 export declare function toolsetAllowsLocalWrites(name: ToolsetName): boolean;
+/**
+ * "none" toolset: not just restricted, but actively disables ALL tools
+ * including the core Clementine MCP server. Used by builder/JSON-gen
+ * chats where tool schemas in the system prompt are pure cost overhead.
+ */
+export declare function toolsetDisablesAllTools(name: ToolsetName): boolean;
 //# sourceMappingURL=toolsets.d.ts.map

package/dist/agent/toolsets.js

@@ -29,6 +29,12 @@ export const TOOLSET_PRESETS = [
         description: 'Memory, transcript, and relationship tools only unless explicitly changed.',
         directive: 'Toolset memory: use memory_read, memory_search, memory_recall, transcript_search, working_memory, and user_model. Avoid external integrations and local shell/file writes.',
     },
+    {
+        name: 'none',
+        label: 'None',
+        description: 'No tools at all — pure-LLM conversation. Used by builders and JSON-generating chats where tool schemas are dead weight in the system prompt.',
+        directive: 'Toolset none: do not call any tools. Respond from the prompt context only. Generate JSON, summaries, or text directly.',
+    },
     {
         name: 'full',
         label: 'Full',
@@ -60,9 +66,17 @@ export function formatToolsetChoices() {
         .join('\n');
 }
 export function isRestrictedToolset(name) {
-    return name === 'safe' || name === 'diagnostic' || name === 'memory';
+    return name === 'safe' || name === 'diagnostic' || name === 'memory' || name === 'none';
 }
 export function toolsetAllowsLocalWrites(name) {
     return name === 'auto' || name === 'full';
 }
+/**
+ * "none" toolset: not just restricted, but actively disables ALL tools
+ * including the core Clementine MCP server. Used by builder/JSON-gen
+ * chats where tool schemas in the system prompt are pure cost overhead.
+ */
+export function toolsetDisablesAllTools(name) {
+    return name === 'none';
+}
 //# sourceMappingURL=toolsets.js.map

package/dist/cli/dashboard.js

@@ -8053,6 +8053,12 @@ If the tool returns nothing or errors, return an empty array \`[]\`.`,
         }
         try {
             const gateway = await getGateway();
+            // Builder generates JSON artifacts — no tool calls. Pin the session
+            // toolset to 'none' so buildOptions strips all MCP servers and tool
+            // schemas from the system prompt. Without this, every tiny builder
+            // turn writes 60–280 KB of cache_creation for tool schemas the
+            // model never uses.
+            gateway.setSessionToolset(sessionKey, 'none');
             const response = await gateway.handleMessage(sessionKey, enrichedMessage);
             // Parse any json-artifact blocks from the response
             let artifact = null;
@@ -8180,6 +8186,9 @@ If the tool returns nothing or errors, return an empty array \`[]\`.`,
         try {
             writeEvent('progress', { status: 'thinking…' });
             const gateway = await getGateway();
+            // Builder generates JSON artifacts — no tool calls. Pin to 'none'
+            // toolset so the SDK system prompt drops the tool inventory.
+            gateway.setSessionToolset(sessionKey, 'none');
             let lastText = '';
             const response = await gateway.handleMessage(sessionKey, enrichedMessage, async (text) => {
                 lastText = text ?? '';

package/dist/gateway/agent-heartbeat-scheduler.js

@@ -171,7 +171,15 @@ export class AgentHeartbeatScheduler {
         catch {
             signals.latestGoalUpdate = '';
         }
-        // 3. Latest cron run for any of this agent's crons (file mtime is enough)
+        // 3. Latest cron run for any of this agent's crons (file mtime is enough).
+        //
+        // INFO ONLY — kept in `signals` for the LLM prompt context, but NOT
+        // included in the fingerprint hash below. A cron firing is expected
+        // background activity, not a "wake up Sonnet" signal. Including it
+        // caused every cron run to bump the fingerprint → fire a $1+ Sonnet
+        // pass that just confirmed "yep, the cron ran, nothing else to do."
+        // Actionable wake-ups are pendingTasks growing and goal-state changes;
+        // those still trip the fingerprint below.
         try {
             const runsDir = path.join(this.baseDir, 'cron', 'runs');
             let latestMs = 0;
@@ -195,8 +203,15 @@ export class AgentHeartbeatScheduler {
         catch {
             signals.latestCronRunMs = 0;
         }
+        // Fingerprint only includes ACTIONABLE signals. latestCronRunMs is
+        // info-only and explicitly excluded.
+        const fingerprintSource = {
+            slug: signals.slug,
+            pendingTasks: signals.pendingTasks,
+            latestGoalUpdate: signals.latestGoalUpdate,
+        };
         const fingerprint = createHash('sha1')
-            .update(JSON.stringify(signals))
+            .update(JSON.stringify(fingerprintSource))
             .digest('hex')
             .slice(0, 16);
         return { fingerprint, signals };

package/dist/gateway/cron-scheduler.js

@@ -23,7 +23,7 @@ import { listBackgroundTasks, markDone as markBgTaskDone, markFailed as markBgTa
 import { outcomeStatusFromGoalDisposition, recentDecisions, recordDecisionOutcome, } from '../agent/proactive-ledger.js';
 import { formatCreditBlock, getBackgroundCreditBlock, isCreditBalanceError, markBackgroundCreditBlocked, } from './credit-guard.js';
 import { isRunHealthFailure } from './job-health.js';
-import { analyzeLongTaskPreflight, compactLongTaskPreflight, formatLongTaskPromptPrefix, } from './long-task-preflight.js';
+import { analyzeLongTaskPreflight, compactLongTaskPreflight, shouldDowngradeUnleashed, formatLongTaskPromptPrefix, } from './long-task-preflight.js';
 const logger = pino({ name: 'clementine.cron' });
 /** Default timeout for standard cron jobs (10 minutes). */
 const CRON_STANDARD_TIMEOUT_MS = 10 * 60 * 1000;
@@ -1061,6 +1061,34 @@ export class CronScheduler {
             // Sonnet runs every job by default. Opus 1M is opt-in: set
             // `model: claude-opus-4-7[1m]` in CRON.md per-job, or flip
             // CLEMENTINE_1M_CONTEXT_MODE=on for global enable.
+            // ── Auto-downgrade unleashed → standard ────────────────────────
+            // CRON.md `mode: unleashed` is a CEILING, not a floor. If the
+            // job's history shows it's a quiet probe that completes in 1
+            // phase with __NOTHING__ or short output, the multi-phase
+            // wrapper is wasteful overhead — each phase is a fresh SDK
+            // query with full system prompt + tool schemas in cache_creation.
+            // For a "did anything new come in?" cron firing every 2 hours,
+            // that's 12+ unleashed runs/day at ~$1/each instead of standard
+            // mode at ~$0.05/each.
+            if (job.mode === 'unleashed') {
+                const downgrade = shouldDowngradeUnleashed(this.runLog.readRecent(job.name, 5));
+                if (downgrade.downgrade) {
+                    job = { ...job, mode: 'standard' };
+                    logger.info({
+                        job: job.name,
+                        reason: downgrade.reason,
+                        quietRatio: downgrade.quietRatio,
+                        avgDurationMs: downgrade.avgDurationMs,
+                    }, 'Cron mode downgraded unleashed → standard based on run history');
+                    this.logAutonomy('mode_downgrade', job, {
+                        from: 'unleashed',
+                        to: 'standard',
+                        reason: downgrade.reason,
+                        quietRatio: downgrade.quietRatio,
+                        avgDurationMs: downgrade.avgDurationMs,
+                    });
+                }
+            }
             let longTaskPreflight;
             const preflight = analyzeLongTaskPreflight(job, jobPrompt, this.runLog.readRecent(job.name, 5));
             if (preflight.risk !== 'normal') {

package/dist/gateway/long-task-preflight.d.ts

@@ -15,6 +15,15 @@ export interface LongTaskPreflightOptions {
     opusModel?: string;
     sonnetModel?: string;
 }
+export interface UnleashedDowngradeDecision {
+    downgrade: boolean;
+    reason: string;
+    /** Quiet ratio observed in the sample (for telemetry). */
+    quietRatio?: number;
+    /** Average duration of recent runs in ms (for telemetry). */
+    avgDurationMs?: number;
+}
+export declare function shouldDowngradeUnleashed(recentRuns: CronRunEntry[], now?: number): UnleashedDowngradeDecision;
 export declare function analyzeLongTaskPreflight(job: CronJobDefinition, prompt: string, recentRuns?: CronRunEntry[], opts?: LongTaskPreflightOptions): LongTaskPreflightDecision;
 export declare function formatLongTaskPromptPrefix(decision: LongTaskPreflightDecision): string;
 export declare function compactLongTaskPreflight(decision: LongTaskPreflightDecision): LongTaskPreflightSnapshot;

package/dist/gateway/long-task-preflight.js

@@ -48,6 +48,88 @@ function recentContextFailures(recentRuns, now = Date.now()) {
     }
     return [...new Set(reasons)];
 }
+// ── Auto-downgrade unleashed → standard for quiet/probe jobs ──────────
+//
+// `mode: unleashed` wraps a job in multi-phase machinery: each phase is a
+// fresh SDK query with the full system prompt + tool schemas, and the
+// orchestrator chains phases until TASK_COMPLETE or max-phases. That
+// machinery is essential for genuinely-long tasks (sasha briefs, market
+// outreach), but it's pure overhead on quiet probe jobs that finish in
+// 1 phase with `__NOTHING__` or a short output.
+//
+// Detect that pattern from history and downgrade the next run to
+// standard mode. Single SDK call, single cache write, fraction of the
+// cost. The user's CRON.md `mode: unleashed` becomes a "ceiling" rather
+// than a forced floor — actual mode chosen dynamically per-run.
+//
+// Conservative by design: requires 3+ prior runs of evidence, refuses
+// to downgrade if any recent run hit context overflow (the unleashed
+// wrapper might be actively saving us), and only triggers on jobs that
+// historically complete fast with short or empty output.
+const UNLEASHED_DOWNGRADE_SAMPLE_SIZE = 5;
+const UNLEASHED_DOWNGRADE_MIN_HISTORY = 3;
+const UNLEASHED_DOWNGRADE_QUIET_RATIO = 0.6;
+const UNLEASHED_DOWNGRADE_MAX_DURATION_MS = 90_000;
+const UNLEASHED_DOWNGRADE_AVG_DURATION_MS = 60_000;
+const UNLEASHED_DOWNGRADE_QUIET_PREVIEW_CHARS = 200;
+export function shouldDowngradeUnleashed(recentRuns, now = Date.now()) {
+    const sample = recentRuns
+        .slice(0, UNLEASHED_DOWNGRADE_SAMPLE_SIZE)
+        .filter(r => r.status === 'ok' || r.status === 'error');
+    if (sample.length < UNLEASHED_DOWNGRADE_MIN_HISTORY) {
+        return { downgrade: false, reason: 'insufficient_history' };
+    }
+    // Refuse to downgrade if any recent run hit a context-window failure —
+    // the unleashed multi-phase wrapper might be the only thing keeping
+    // this job from thrashing on a single huge SDK query. Pair this guard
+    // with the existing fanout-policy directive (1.18.35) so by the next
+    // few runs the agent has learned to fan out and the wrapper can be
+    // shed safely.
+    const cutoff = now - RECENT_CONTEXT_FAILURE_WINDOW_MS;
+    const hadOverflow = sample.some(r => {
+        const startedMs = Date.parse(r.startedAt);
+        if (!Number.isFinite(startedMs) || startedMs < cutoff)
+            return false;
+        return r.terminalReason === 'rapid_refill_breaker'
+            || r.terminalReason === 'prompt_too_long';
+    });
+    if (hadOverflow) {
+        return { downgrade: false, reason: 'recent_context_overflow_protect_unleashed' };
+    }
+    // Quiet pattern: most recent runs returned __NOTHING__ or a short
+    // output. These jobs don't need multi-phase orchestration.
+    const quietCount = sample.filter(r => {
+        const preview = (r.outputPreview ?? '').trim();
+        if (!preview)
+            return false;
+        if (/__nothing__/i.test(preview))
+            return true;
+        return preview.length < UNLEASHED_DOWNGRADE_QUIET_PREVIEW_CHARS;
+    }).length;
+    const quietRatio = quietCount / sample.length;
+    if (quietRatio >= UNLEASHED_DOWNGRADE_QUIET_RATIO) {
+        return {
+            downgrade: true,
+            reason: `quiet_pattern_${Math.round(quietRatio * 100)}pct`,
+            quietRatio,
+        };
+    }
+    // Fast-completion pattern: every run finishes well under the standard
+    // cron timeout, average is short. Multi-phase wrapper is overhead.
+    const durations = sample.map(r => r.durationMs || 0).filter(d => d > 0);
+    if (durations.length === sample.length) {
+        const avgDuration = durations.reduce((a, b) => a + b, 0) / durations.length;
+        const allFast = durations.every(d => d < UNLEASHED_DOWNGRADE_MAX_DURATION_MS);
+        if (allFast && avgDuration < UNLEASHED_DOWNGRADE_AVG_DURATION_MS) {
+            return {
+                downgrade: true,
+                reason: `fast_completion_avg_${Math.round(avgDuration / 1000)}s`,
+                avgDurationMs: Math.round(avgDuration),
+            };
+        }
+    }
+    return { downgrade: false, reason: 'workload_warrants_unleashed' };
+}
 function classifyRisk(args) {
     const { inputTokens, projectedTokens, signalCount, recentContextIssue, job, oneMillionAvailable } = args;
     if (inputTokens >= 185_000)

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "clementine-agent",
-  "version": "1.18.35",
+  "version": "1.18.36",
   "description": "Clementine — Personal AI Assistant (TypeScript)",
   "type": "module",
   "main": "dist/index.js",