create-claude-workspace 1.1.41 → 1.1.44

package/dist/template/.claude/agents/orchestrator.md

@@ -220,6 +220,37 @@ To determine if a task is frontend, backend, or fullstack, use this heuristic:
   After planner updates TODO.md -> if git integration active, delegate to `devops-integrator` to sync new tasks as issues. Then restart STEP 1 with the first sub-task.
 - **Phase transition check**: If this is the FIRST task of a new phase (all previous phase tasks done):
   - **CI/CD generation (Phase 0 → Phase 1 only):** If Phase 0 just completed AND CLAUDE.md has a `## Deployment` section (deployment interview was done during setup) AND no CI/CD config files exist yet (`.gitlab-ci.yml`, `.github/workflows/`): delegate to `deployment-engineer`: "Phase 0 (workspace scaffolding) is complete — the project now has package.json and source code. Read CLAUDE.md ## Deployment section for deployment config collected during setup. Generate CI/CD config files now. [If CLAUDE.md has Distribution: npm:] Also generate CI publish jobs — read MEMORY.md NPM_REGISTRY/NPM_CI_AUTH for registry config."
+  - **Dependency freshness check** (skip at Phase 0 → Phase 1 — deps were just installed during scaffolding):
+    1. Detect package manager from lockfile (`package-lock.json` → npm, `yarn.lock` → yarn, `pnpm-lock.yaml` → pnpm, `bun.lock` → bun). Default to npm.
+    2. Run outdated check — capture output, then validate. Note: `npm outdated` exits with code 1 when outdated packages exist (this is normal, not an error):
+       ```bash
+       # npm
+       OUTDATED=$(npm outdated --json 2>&1) || true
+       # yarn: yarn outdated --json 2>&1 || true
+       # pnpm: pnpm outdated --format json 2>&1 || true
+       # bun: bun outdated 2>&1 || true
+       ```
+       If the output is not valid JSON (network failure, corrupt lockfile), log warning in MEMORY.md Notes and skip.
+    3. Skip if no outdated dependencies found (empty JSON object `{}`).
+    4. **Categorize updates:**
+       - **Patch** (e.g., `1.2.3` → `1.2.5`): safe, auto-upgrade
+       - **Minor** (e.g., `1.2.3` → `1.3.0`): likely safe, auto-upgrade
+       - **Major** (e.g., `1.2.3` → `2.0.0`): breaking changes — do NOT auto-upgrade
+    5. **Auto-upgrade patch + minor:** Run `npm update` (respects semver ranges in package.json). If package.json pins exact versions or ranges exclude the available update, use `npm install [pkg]@[wanted]` for each outdated package where wanted ≤ latest within the semver range. For other package managers: `yarn upgrade`, `pnpm update`, `bun update`.
+    6. **Verify:** Run full workspace build, lint, and test from the project root on main (not scoped to a specific project — there is no active task or worktree at this point). If ANY fail:
+       - Revert files AND restore node_modules to match:
+         ```bash
+         git restore package.json [lockfile]
+         npm ci    # or: yarn install --frozen-lockfile / pnpm install --frozen-lockfile / bun install --frozen-lockfile
+         ```
+       - Log failed upgrade in MEMORY.md Notes: "Dependency upgrade failed at phase transition — [error summary]. Skipped."
+       - Do NOT block phase transition — continue with current versions.
+    7. **If verification passes:** Commit on main: `git add package.json [lockfile] && git commit -m "chore: upgrade dependencies"`. Push if remote exists.
+    8. **Major version upgrades:** For each package with a major version available, add a maintenance task to the CURRENT phase in TODO.md. Infer task type from the package's nature — devDependencies (eslint, vitest, typescript) use `Type: backend`, runtime dependencies use `Type: fullstack` or the appropriate frontend/backend type:
+       - `- [ ] **Upgrade [package]@[current] → [latest]** — major version, review changelog for breaking changes (Complexity: S, Type: [inferred])`
+       - If git integration active, delegate to `devops-integrator` to create issues for these tasks.
+       - Log in MEMORY.md Notes: "Major upgrades available: [list packages with current → latest]"
+    9. **Monorepo / Nx workspace:** If `nx.json` exists, run outdated check from workspace root (covers all hoisted deps — do NOT run per-project). Use `nx report` to verify plugin compatibility after upgrades. For Nx plugin major upgrades, prefer `nx migrate [package]@latest` over manual update — it generates migrations that handle config changes.
   - Delegate to `product-owner` agent: "This is a PHASE RE-EVALUATION (not initial creation). Phase [N-1] is complete. Read PRODUCT.md, TODO.md, MEMORY.md, and scan the current codebase. Evaluate: are Phase [N] priorities still correct? Output a structured diff: ADD / REMOVE / REPRIORITIZE / CONFIRM. If everything looks good, just CONFIRM."
   - If product-owner recommends changes -> delegate to `technical-planner` to update TODO.md
   - CLAUDE.md refresh: attempt `/revise-claude-md` skill. If the skill is not available, manually read CLAUDE.md, append any new patterns/conventions discovered during the completed phase under `## Project-Specific Details`, and commit the update.

package/dist/template/.claude/scripts/autonomous.mjs

@@ -8,7 +8,7 @@ import { getErrorAction } from './lib/errors.mjs';
 import { createLogger } from './lib/logger.mjs';
 import { emptyCheckpoint, readCheckpoint, writeCheckpoint } from './lib/state.mjs';
 import { runClaude, currentChild } from './lib/claude-runner.mjs';
-import { sleep, formatDuration, acquireLock, releaseLock, readMemory, isProjectComplete, getCurrentTask, getCurrentPhase, checkClaudeInstalled, checkAuth, checkGitIdentity, checkFilesystemWritable, gitFetchAndPull, gitCheckState, notify, printSummary, promptUser, } from './lib/utils.mjs';
+import { sleep, formatDuration, acquireLock, releaseLock, readMemory, isProjectComplete, getCurrentTask, getCurrentPhase, checkClaudeInstalled, checkAuth, checkGitIdentity, checkFilesystemWritable, gitFetchAndPull, gitCheckState, notify, printSummary, promptUser, parseUsageLimitResetMs, } from './lib/utils.mjs';
 import { isTokenExpiringSoon, refreshOAuthToken } from './lib/oauth-refresh.mjs';
 // ─── Args ───
 function parseArgs(argv) {
@@ -371,6 +371,28 @@ async function main() {
             consecutiveFailures: checkpoint.consecutiveFailures,
             authRetries: checkpoint.authRetries,
         });
+        // Handle usage limit — wait until reset time if parseable, otherwise stop
+        if (category === 'usage_limit') {
+            const waitMs = parseUsageLimitResetMs(output.stderr);
+            if (waitMs) {
+                log.warn(`Account usage limit reached. Waiting ${formatDuration(waitMs + 60_000)} until reset...`);
+                notify(opts.notifyCommand, 'error', `Usage limit — waiting ${formatDuration(waitMs + 60_000)}`, i);
+                writeCheckpoint(opts.projectDir, checkpoint, log);
+                await sleep(waitMs + 60_000, stoppingRef); // +1min buffer
+                if (stopping)
+                    break;
+                checkpoint.consecutiveFailures = 0;
+                i--; // Retry this iteration
+                continue;
+            }
+            // Can't parse reset time — stop
+            checkpoint.consecutiveFailures++;
+            log.error('Account usage limit reached. Could not parse reset time from output.');
+            log.error('Restart the loop after your limit resets.');
+            notify(opts.notifyCommand, 'stopped', 'Account usage limit (unknown reset time)', i);
+            writeCheckpoint(opts.projectDir, checkpoint, log);
+            break;
+        }
         // Handle stop — try OAuth refresh for auth errors before giving up
         if (action.type === 'stop') {
             if (category === 'auth_expired') {

package/dist/template/.claude/scripts/lib/claude-runner.mjs

@@ -165,11 +165,12 @@ function killProcessTree(pid, isWin) {
     }, 5000).unref();
 }
 // ─── Error signal patterns ───
-const RATE_LIMIT_RE = /rate.?limit|429|overloaded|529/;
-const AUTH_ERROR_RE = /authentication_error|failed to authenticate|api error: 401|invalid authentication|403 forbidden/;
+const RATE_LIMIT_RE = /rate.?limit|429|overloaded|529|at capacity|capacity reached|503 service unavailable|502 bad gateway/;
+const AUTH_ERROR_RE = /authentication_error|failed to authenticate|api error: 401|invalid authentication|403 forbidden|account.{0,10}(?:suspended|disabled|deactivated)/;
 const AUTH_TYPE_RE = /authentication/;
 const AUTH_MSG_RE = /authentication|401|403/;
 const AUTH_SERVER_RE = /\b5\d\d\b/;
+const USAGE_LIMIT_RE = /you.ve hit your limit|usage.?limit|plan.?limit|quota.?exceeded|daily.?limit|monthly.?limit/;
 export let currentChild = null;
 export function runClaude(opts, log, runOpts = {}) {
     const startTime = process.hrtime.bigint();
@@ -229,6 +230,7 @@ export function runClaude(opts, log, runOpts = {}) {
         let isRateLimit = false;
         let isAuthError = false;
         let isAuthServerError = false;
+        let isUsageLimit = false;
         let resultReceived = false;
         let buffer = '';
         let killed = false;
@@ -240,6 +242,8 @@ export function runClaude(opts, log, runOpts = {}) {
                 return;
             const msg = (event.error?.message ?? (typeof event.message === 'string' ? event.message : '') ?? '').toLowerCase();
             const errType = (event.error?.type ?? '').toLowerCase();
+            if (USAGE_LIMIT_RE.test(msg))
+                isUsageLimit = true;
             if (RATE_LIMIT_RE.test(msg))
                 isRateLimit = true;
             if (AUTH_TYPE_RE.test(errType) || AUTH_MSG_RE.test(msg))
@@ -248,6 +252,8 @@ export function runClaude(opts, log, runOpts = {}) {
                 isAuthServerError = true;
         }
         function detectTextSignals(lower) {
+            if (USAGE_LIMIT_RE.test(lower))
+                isUsageLimit = true;
             if (RATE_LIMIT_RE.test(lower))
                 isRateLimit = true;
             if (AUTH_ERROR_RE.test(lower))
@@ -405,6 +411,7 @@ export function runClaude(opts, log, runOpts = {}) {
                 isRateLimit,
                 isAuthError,
                 isAuthServerError,
+                isUsageLimit,
                 timedOut: killReason === 'process_timeout',
                 activityTimedOut: killReason === 'activity_timeout',
                 hasResult: resultReceived,

package/dist/template/.claude/scripts/lib/errors.mjs

@@ -2,8 +2,9 @@
 // Pure functions, no side effects. Lookup maps instead of nested conditions.
 /** Pattern table: checked in order, first match wins. */
 const STDERR_PATTERNS = [
-    ['auth_expired', /authentication_error|invalid authentication|api error: 401|failed to authenticate|403 forbidden/i],
-    ['rate_limited', /rate.?limit|too many requests|429|overloaded|529/i],
+    ['auth_expired', /authentication_error|invalid authentication|api error: 401|failed to authenticate|403 forbidden|account.{0,10}(?:suspended|disabled|deactivated)/i],
+    ['usage_limit', /you.ve hit your limit|usage.?limit|plan.?limit|quota.?exceeded|daily.?limit|monthly.?limit/i],
+    ['rate_limited', /rate.?limit|too many requests|429|overloaded|529|at capacity|capacity reached|503 service unavailable|502 bad gateway/i],
     ['disk_full', /ENOSPC|no space left/i],
     ['oom_killed', /out of memory|heap|allocation failed/i],
     ['network_error', /ENOTFOUND|EAI_AGAIN|ECONNREFUSED|ECONNRESET|ETIMEDOUT|network|CERT_|SSL_|proxy/i],
@@ -20,6 +21,9 @@ export function classifyError(signals) {
         return 'auth_expired';
     if (signals.isAuthServerError)
         return 'auth_server_error';
+    // Usage limit (account quota) takes priority over rate limit — it's hours, not seconds
+    if (signals.isUsageLimit)
+        return 'usage_limit';
     if (signals.isRateLimit)
         return 'rate_limited';
     if (signals.timedOut) {
@@ -69,6 +73,12 @@ const STRATEGIES = {
     auth_server_error: (ctx) => ctx.authRetries >= MAX_AUTH_RETRIES
         ? { type: 'stop', reason: `Auth server failed ${MAX_AUTH_RETRIES}x. Try again later.` }
         : { type: 'backoff', ms: 30_000 * (ctx.authRetries + 1) },
+    // Note: usage_limit has custom handling in autonomous.mts (wait until reset time).
+    // The 'stop' here is a fallback if that custom handler can't parse the reset time.
+    usage_limit: () => ({
+        type: 'stop',
+        reason: 'Account usage limit reached. Loop will resume automatically if reset time is detected.',
+    }),
     rate_limited: () => ({ type: 'backoff', ms: 0 }), // ms overridden by checkpoint.rateLimitBackoff
     network_error: (ctx) => ctx.consecutiveFailures >= MAX_CONSECUTIVE
         ? { type: 'stop', reason: `${MAX_CONSECUTIVE} consecutive network errors.` }

package/dist/template/.claude/scripts/lib/utils.mjs

@@ -6,6 +6,35 @@ import { hostname } from 'node:os';
 import { createInterface } from 'node:readline';
 // Node.js runtime accepts `true` for shell but @types expects string
 const SHELL = process.platform === 'win32' ? 'cmd.exe' : '/bin/sh';
+// ─── Usage limit reset time parser ───
+/** Parse "resets Xpm (UTC)" / "resets X:XX AM (UTC)" / "resets HH:MM (UTC)" from stderr text.
+ *  Returns milliseconds to wait, or null if unparseable. */
+export function parseUsageLimitResetMs(text) {
+    // Match patterns: "resets 6pm (UTC)", "resets 6:30pm (UTC)", "resets 18:00 (UTC)", "resets 6 PM (UTC)"
+    const match = text.match(/resets\s+(\d{1,2})(?::(\d{2}))?\s*(am|pm)?\s*\(UTC\)/i);
+    if (!match)
+        return null;
+    let hours = parseInt(match[1], 10);
+    const minutes = match[2] ? parseInt(match[2], 10) : 0;
+    const ampm = match[3]?.toLowerCase();
+    if (ampm === 'pm' && hours < 12)
+        hours += 12;
+    if (ampm === 'am' && hours === 12)
+        hours = 0;
+    if (hours > 23 || minutes > 59)
+        return null;
+    const now = new Date();
+    const reset = new Date(Date.UTC(now.getUTCFullYear(), now.getUTCMonth(), now.getUTCDate(), hours, minutes, 0, 0));
+    // If reset time is in the past, it's tomorrow
+    if (reset.getTime() <= now.getTime()) {
+        reset.setUTCDate(reset.getUTCDate() + 1);
+    }
+    const waitMs = reset.getTime() - now.getTime();
+    // Sanity: max 24 hours
+    if (waitMs > 24 * 60 * 60_000)
+        return null;
+    return waitMs;
+}
 // ─── Sleep ───
 export function sleep(ms, stoppingRef) {
     if (!stoppingRef)

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "create-claude-workspace",
-  "version": "1.1.41",
+  "version": "1.1.44",
   "description": "Scaffold a project with Claude Code agents for autonomous AI-driven development",
   "type": "module",
   "bin": {