delimit-cli 4.0.5 → 4.1.0

package/README.md

@@ -10,5 +10,5 @@ The universal command for the Delimit Swarm. When you say **"Think and Build"**,
 - **"Vault"**: Manage local secrets and API keys (AES-256 encrypted).
 
 Works across any configuration — from a single model on a budget to an enterprise swarm of 4+ models.
-\n[![npm](https://img.shields.io/npm/v/delimit-cli)](https://www.npmjs.com/package/delimit-cli)\n[![GitHub Action](https://img.shields.io/badge/GitHub%20Action-v1.6.0-blue)](https://github.com/marketplace/actions/delimit-api-governance)\n[![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](https://opensource.org/licenses/MIT)\n[![Glama](https://glama.ai/mcp/servers/delimit-ai/delimit/badge)](https://glama.ai/mcp/servers/delimit-ai/delimit)\n[![API Governance](https://delimit-ai.github.io/badge/pass.svg)](https://github.com/marketplace/actions/delimit-api-governance)\n\n<p align="center">\n  <img src="docs/demo.gif" alt="Delimit detecting breaking API changes" width="700">\n</p>\n\n---\n\n## Try it in 2 minutes\n\n```bash\nnpx delimit-cli demo     # See governance in action — no setup needed\nnpx delimit-cli init     # Set up governance for your project\nnpx delimit-cli setup    # Configure your AI assistants\n```\n\nNo API keys. No account. No config files.\n\n### Pick your first win\n\n**Protect my API** — catch breaking changes before merge:\n```bash\nnpx delimit-cli try\n# Creates a sample API, introduces breaking changes, shows what gets blocked.\n# Saves a governance report to delimit-report.md\n```\n\n**Watch for drift** — detect spec changes without review:\n```bash\nnpx delimit-cli init        # Sets up governance + drift baseline\n# Weekly drift checks run automatically via GitHub Action\n```\n\n**Run PR copilot** — governance gates on every pull request:\n```yaml\n# .github/workflows/api-governance.yml\n- uses: delimit-ai/delimit-action@v1\n  with:\n    spec: api/openapi.yaml\n# Posts gate status, violations, and remediation in PR comments\n```\n\n---\n\n## What's New in v4.0\n\n- **Toolcard Delta Cache** -- SHA256 schema hashing, delta-only transmission, saves tokens\n- **Session Phoenix** -- cross-model session resurrection with soul capture\n- **Handoff Receipts** -- structured acknowledgment protocol between agents\n- **Cross-Model Audit** -- 3 lenses (security, correctness, governance) with deterministic synthesis\n- **4-model deliberation** -- Claude + Grok + Gemini + Codex debate until consensus\n- **Social target scanner** -- 6-platform engagement discovery\n- **Universal Swarm Triggers** -- "Think and Build", "Keep building", "Ask Delimit"
-- **174 MCP tools** -- governance, context, shipping, observability, orchestration, and swarm\n\n---\n\n## GitHub Action\n\nZero-config -- auto-detects your OpenAPI spec:\n\n```yaml\n- uses: delimit-ai/delimit-action@v1\n```\n\nOr with full configuration:\n\n```yaml\nname: API Contract Check\non: pull_request\n\njobs:\n  delimit:\n    runs-on: ubuntu-latest\n    permissions:\n      pull-requests: write\n    steps:\n      - uses: actions/checkout@v4\n        with:\n          fetch-depth: 0\n      - uses: delimit-ai/delimit-action@v1\n        with:\n          spec: api/openapi.yaml\n```\n\nThat's it. Delimit auto-fetches the base branch spec, diffs it, and posts a PR comment with breaking changes, semver classification, migration guides, and governance gate results.\n\n[View on GitHub Marketplace](https://github.com/marketplace/actions/delimit-api-governance) | [See a live demo (23 breaking changes)](https://github.com/delimit-ai/delimit-action-demo/pull/2)\n\n### Example PR comment\n\n> **Breaking Changes Detected**\n>\n> | Change | Path | Severity |\n> |--------|------|----------|\n> | endpoint_removed | `DELETE /pets/{petId}` | error |\n> | type_changed | `/pets:GET:200[].id` (string -> integer) | warning |\n> | enum_value_removed | `/pets:GET:200[].status` | warning |\n>\n> **Semver**: MAJOR (1.0.0 -> 2.0.0)\n>\n> **Migration Guide**: 3 steps to update your integration\n>\n> ### Governance Gates\n> | Gate | Status | Chain |\n> |------|--------|-------|\n> | API Lint | Pass/Fail | lint -> semver -> gov_evaluate |\n> | Policy Compliance | Pass/Fail | policy -> evidence_collect |\n> | Security Audit | Pass | security_audit -> evidence_collect |\n> | Deploy Readiness | Ready/Blocked | deploy_plan -> security_audit |\n\n---\n\n## CLI commands\n\n```bash\nnpx delimit-cli quickstart                       # Clone demo project + guided walkthrough\nnpx delimit-cli try                              # Zero-risk demo — saves governance report\nnpx delimit-cli demo                             # Self-contained governance demo\nnpx delimit-cli init                             # Guided wizard with compliance templates\nnpx delimit-cli init --preset strict             # Initialize with strict policy\nnpx delimit-cli setup                            # Install into all AI assistants\nnpx delimit-cli setup --dry-run                  # Preview changes first\nnpx delimit-cli lint api/openapi.yaml            # Check for breaking changes\nnpx delimit-cli diff old.yaml new.yaml           # Compare two specs\nnpx delimit-cli explain old.yaml new.yaml        # Generate migration guide\nnpx delimit-cli doctor                           # Check setup health\nnpx delimit-cli uninstall --dry-run              # Preview removal\n```\n\n### What the MCP toolkit adds\n\nWhen installed into your AI coding assistant, Delimit provides tools across two tiers:\n\n#### Free (no account needed)\n\n- **API governance** -- lint, diff, policy enforcement, semver classification\n- **Persistent ledger** -- track tasks across sessions, shared between all AI assistants\n- **Zero-spec extraction** -- generate OpenAPI specs from FastAPI, Express, or NestJS source\n- **Project scan** -- auto-detect specs, frameworks, security issues, and tests\n- **Quickstart** -- guided first-run that proves value in 60 seconds\n\n#### Pro\n\n- **Multi-model deliberation** -- Grok, Gemini, and Codex debate until they agree\n- **Security audit** -- dependency scanning, secret detection, SAST analysis\n- **Test verification** -- confirms tests ran, measures coverage, generates new tests\n- **Memory & vault** -- persistent context and encrypted secrets across sessions\n- **Evidence collection** -- governance audit trail for compliance\n- **Deploy pipeline** -- governed build, publish, and rollback\n- **OS layer** -- agent identity, execution plans, approval gates\n\n---\n\n## What It Detects\n\n27 change types (17 breaking, 10 non-breaking) -- deterministic rules, not AI inference. Same input always produces the same result.\n\n### Breaking Changes\n\n| # | Change Type | Example |\n|---|-------------|---------|\n| 1 | `endpoint_removed` | `DELETE /users/{id}` removed entirely |\n| 2 | `method_removed` | `PATCH /orders` no longer exists |\n| 3 | `required_param_added` | New required header on `GET /items` |\n| 4 | `param_removed` | `sort` query parameter removed |\n| 5 | `response_removed` | `200 OK` response dropped |\n| 6 | `required_field_added` | Request body now requires `tenant_id` |\n| 7 | `field_removed` | `email` dropped from response object |\n| 8 | `type_changed` | `id` went from `string` to `integer` |\n| 9 | `format_changed` | `date-time` changed to `date` |\n| 10 | `enum_value_removed` | `status: "pending"` no longer valid |\n| 11 | `param_type_changed` | Query param `limit` changed from `integer` to `string` |\n| 12 | `param_required_changed` | `filter` param became required |\n| 13 | `response_type_changed` | Response `data` changed from `array` to `object` |\n| 14 | `security_removed` | OAuth2 security scheme removed |\n| 15 | `security_scope_removed` | `write:pets` scope removed from OAuth2 |\n| 16 | `max_length_decreased` | `name` maxLength reduced from 255 to 100 |\n| 17 | `min_length_increased` | `code` minLength increased from 1 to 5 |\n\n### Non-Breaking Changes\n\n| # | Change Type | Example |\n|---|-------------|---------|\n| 18 | `endpoint_added` | New `POST /webhooks` endpoint |\n| 19 | `method_added` | `PATCH /users/{id}` method added |\n| 20 | `optional_param_added` | Optional `format` query param added |\n| 21 | `response_added` | `201 Created` response added |\n| 22 | `optional_field_added` | Optional `nickname` field added to response |\n| 23 | `enum_value_added` | `status: "archived"` value added |\n| 24 | `description_changed` | Updated description for `/health` endpoint |\n| 25 | `security_added` | API key security scheme added |\n| 26 | `deprecated_added` | `GET /v1/users` marked as deprecated |\n| 27 | `default_changed` | Default value for `page_size` changed from 10 to 20 |\n\n---\n\n## Policy presets\n\n```bash\nnpx delimit-cli init --preset strict    # All violations are errors\nnpx delimit-cli init --preset default   # Balanced (default)\nnpx delimit-cli init --preset relaxed   # All violations are warnings\n```\n\nOr write custom rules in `.delimit/policies.yml`:\n\n```yaml\nrules:\n  - id: freeze_v1\n    name: Freeze V1 API\n    change_types: [endpoint_removed, method_removed, field_removed]\n    severity: error\n    action: forbid\n    conditions:\n      path_pattern: "^/v1/.*"\n    message: "V1 API is frozen. Changes must be made in V2."\n```\n\n---\n\n## Supported formats\n\n- OpenAPI 3.0 and 3.1\n- Swagger 2.0\n- YAML and JSON\n\n---\n\n## Links\n\n- [delimit.ai](https://delimit.ai) -- homepage\n- [Dashboard](https://app.delimit.ai) -- governance console\n- [Docs](https://delimit.ai/docs) -- full documentation\n- [GitHub Action](https://github.com/marketplace/actions/delimit-api-governance) -- Marketplace listing\n- [Quickstart](https://github.com/delimit-ai/delimit-mcp-server) -- try it in 2 minutes\n- [npm](https://www.npmjs.com/package/delimit-cli) -- CLI package\n- [Pricing](https://delimit.ai/pricing) -- free tier + Pro\n\nMIT License
+\n[![npm](https://img.shields.io/npm/v/delimit-cli)](https://www.npmjs.com/package/delimit-cli)\n[![GitHub Action](https://img.shields.io/badge/GitHub%20Action-v1.6.0-blue)](https://github.com/marketplace/actions/delimit-api-governance)\n[![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](https://opensource.org/licenses/MIT)\n[![Glama](https://glama.ai/mcp/servers/delimit-ai/delimit/badge)](https://glama.ai/mcp/servers/delimit-ai/delimit)\n[![API Governance](https://delimit-ai.github.io/badge/pass.svg)](https://github.com/marketplace/actions/delimit-api-governance)\n\n<p align="center">\n  <img src="docs/demo.gif" alt="Delimit detecting breaking API changes" width="700">\n</p>\n\n---\n\n## Try it in 2 minutes\n\n```bash\nnpx delimit-cli demo     # See governance in action — no setup needed\nnpx delimit-cli init     # Set up governance for your project\nnpx delimit-cli setup    # Configure your AI assistants\n```\n\nNo API keys. No account. No config files.\n\n### Pick your first win\n\n**Protect my API** — catch breaking changes before merge:\n```bash\nnpx delimit-cli try\n# Creates a sample API, introduces breaking changes, shows what gets blocked.\n# Saves a governance report to delimit-report.md\n```\n\n**Watch for drift** — detect spec changes without review:\n```bash\nnpx delimit-cli init        # Sets up governance + drift baseline\n# Weekly drift checks run automatically via GitHub Action\n```\n\n**Run PR copilot** — governance gates on every pull request:\n```yaml\n# .github/workflows/api-governance.yml\n- uses: delimit-ai/delimit-action@v1\n  with:\n    spec: api/openapi.yaml\n# Posts gate status, violations, and remediation in PR comments\n```\n\n---\n\n## What's New in v4.1\n\n- **TUI** -- terminal-native Ventures panel, real `delimit think` and `delimit build` commands\n- **Security hardening** -- notify.py stubbed in npm, axios pinned against supply chain attacks\n- **Free tier restructure** -- deliberations use Gemini Flash + GPT-4o-mini (cost: <$20/mo)\n- **Zero-config onboarding** -- auto-detect framework, scan, and first evidence in one command\n- **Auto-approve tools** -- `delimit setup` configures permissions for Claude Code, Codex, and Gemini CLI\n\n### v4.0\n\n- **Toolcard Delta Cache** -- SHA256 schema hashing, delta-only transmission, saves tokens\n- **Session Phoenix** -- cross-model session resurrection with soul capture\n- **Handoff Receipts** -- structured acknowledgment protocol between agents\n- **Cross-Model Audit** -- 3 lenses (security, correctness, governance) with deterministic synthesis\n- **4-model deliberation** -- Claude + Grok + Gemini + Codex debate until consensus\n- **Universal Swarm Triggers** -- "Think and Build", "Keep building", "Ask Delimit"
+- **176 MCP tools** -- governance, context, shipping, observability, orchestration, and swarm\n\n---\n\n## GitHub Action\n\nZero-config -- auto-detects your OpenAPI spec:\n\n```yaml\n- uses: delimit-ai/delimit-action@v1\n```\n\nOr with full configuration:\n\n```yaml\nname: API Contract Check\non: pull_request\n\njobs:\n  delimit:\n    runs-on: ubuntu-latest\n    permissions:\n      pull-requests: write\n    steps:\n      - uses: actions/checkout@v4\n        with:\n          fetch-depth: 0\n      - uses: delimit-ai/delimit-action@v1\n        with:\n          spec: api/openapi.yaml\n```\n\nThat's it. Delimit auto-fetches the base branch spec, diffs it, and posts a PR comment with breaking changes, semver classification, migration guides, and governance gate results.\n\n[View on GitHub Marketplace](https://github.com/marketplace/actions/delimit-api-governance) | [See a live demo (23 breaking changes)](https://github.com/delimit-ai/delimit-action-demo/pull/2)\n\n### Example PR comment\n\n> **Breaking Changes Detected**\n>\n> | Change | Path | Severity |\n> |--------|------|----------|\n> | endpoint_removed | `DELETE /pets/{petId}` | error |\n> | type_changed | `/pets:GET:200[].id` (string -> integer) | warning |\n> | enum_value_removed | `/pets:GET:200[].status` | warning |\n>\n> **Semver**: MAJOR (1.0.0 -> 2.0.0)\n>\n> **Migration Guide**: 3 steps to update your integration\n>\n> ### Governance Gates\n> | Gate | Status | Chain |\n> |------|--------|-------|\n> | API Lint | Pass/Fail | lint -> semver -> gov_evaluate |\n> | Policy Compliance | Pass/Fail | policy -> evidence_collect |\n> | Security Audit | Pass | security_audit -> evidence_collect |\n> | Deploy Readiness | Ready/Blocked | deploy_plan -> security_audit |\n\n---\n\n## CLI commands\n\n```bash\nnpx delimit-cli quickstart                       # Clone demo project + guided walkthrough\nnpx delimit-cli try                              # Zero-risk demo — saves governance report\nnpx delimit-cli demo                             # Self-contained governance demo\nnpx delimit-cli init                             # Guided wizard with compliance templates\nnpx delimit-cli init --preset strict             # Initialize with strict policy\nnpx delimit-cli setup                            # Install into all AI assistants\nnpx delimit-cli setup --dry-run                  # Preview changes first\nnpx delimit-cli lint api/openapi.yaml            # Check for breaking changes\nnpx delimit-cli diff old.yaml new.yaml           # Compare two specs\nnpx delimit-cli explain old.yaml new.yaml        # Generate migration guide\nnpx delimit-cli doctor                           # Check setup health\nnpx delimit-cli uninstall --dry-run              # Preview removal\n```\n\n### What the MCP toolkit adds\n\nWhen installed into your AI coding assistant, Delimit provides tools across two tiers:\n\n#### Free (no account needed)\n\n- **API governance** -- lint, diff, policy enforcement, semver classification\n- **Persistent ledger** -- track tasks across sessions, shared between all AI assistants\n- **Zero-spec extraction** -- generate OpenAPI specs from FastAPI, Express, or NestJS source\n- **Project scan** -- auto-detect specs, frameworks, security issues, and tests\n- **Quickstart** -- guided first-run that proves value in 60 seconds\n\n#### Pro\n\n- **Multi-model deliberation** -- AI models debate until they agree (free: Gemini Flash + GPT-4o-mini; BYOK: any models)\n- **Security audit** -- dependency scanning, secret detection, SAST analysis\n- **Test verification** -- confirms tests ran, measures coverage, generates new tests\n- **Memory & vault** -- persistent context and encrypted secrets across sessions\n- **Evidence collection** -- governance audit trail for compliance\n- **Deploy pipeline** -- governed build, publish, and rollback\n- **OS layer** -- agent identity, execution plans, approval gates\n\n---\n\n## What It Detects\n\n27 change types (17 breaking, 10 non-breaking) -- deterministic rules, not AI inference. Same input always produces the same result.\n\n### Breaking Changes\n\n| # | Change Type | Example |\n|---|-------------|---------|\n| 1 | `endpoint_removed` | `DELETE /users/{id}` removed entirely |\n| 2 | `method_removed` | `PATCH /orders` no longer exists |\n| 3 | `required_param_added` | New required header on `GET /items` |\n| 4 | `param_removed` | `sort` query parameter removed |\n| 5 | `response_removed` | `200 OK` response dropped |\n| 6 | `required_field_added` | Request body now requires `tenant_id` |\n| 7 | `field_removed` | `email` dropped from response object |\n| 8 | `type_changed` | `id` went from `string` to `integer` |\n| 9 | `format_changed` | `date-time` changed to `date` |\n| 10 | `enum_value_removed` | `status: "pending"` no longer valid |\n| 11 | `param_type_changed` | Query param `limit` changed from `integer` to `string` |\n| 12 | `param_required_changed` | `filter` param became required |\n| 13 | `response_type_changed` | Response `data` changed from `array` to `object` |\n| 14 | `security_removed` | OAuth2 security scheme removed |\n| 15 | `security_scope_removed` | `write:pets` scope removed from OAuth2 |\n| 16 | `max_length_decreased` | `name` maxLength reduced from 255 to 100 |\n| 17 | `min_length_increased` | `code` minLength increased from 1 to 5 |\n\n### Non-Breaking Changes\n\n| # | Change Type | Example |\n|---|-------------|---------|\n| 18 | `endpoint_added` | New `POST /webhooks` endpoint |\n| 19 | `method_added` | `PATCH /users/{id}` method added |\n| 20 | `optional_param_added` | Optional `format` query param added |\n| 21 | `response_added` | `201 Created` response added |\n| 22 | `optional_field_added` | Optional `nickname` field added to response |\n| 23 | `enum_value_added` | `status: "archived"` value added |\n| 24 | `description_changed` | Updated description for `/health` endpoint |\n| 25 | `security_added` | API key security scheme added |\n| 26 | `deprecated_added` | `GET /v1/users` marked as deprecated |\n| 27 | `default_changed` | Default value for `page_size` changed from 10 to 20 |\n\n---\n\n## Policy presets\n\n```bash\nnpx delimit-cli init --preset strict    # All violations are errors\nnpx delimit-cli init --preset default   # Balanced (default)\nnpx delimit-cli init --preset relaxed   # All violations are warnings\n```\n\nOr write custom rules in `.delimit/policies.yml`:\n\n```yaml\nrules:\n  - id: freeze_v1\n    name: Freeze V1 API\n    change_types: [endpoint_removed, method_removed, field_removed]\n    severity: error\n    action: forbid\n    conditions:\n      path_pattern: "^/v1/.*"\n    message: "V1 API is frozen. Changes must be made in V2."\n```\n\n---\n\n## Supported formats\n\n- OpenAPI 3.0 and 3.1\n- Swagger 2.0\n- YAML and JSON\n\n---\n\n## Links\n\n- [delimit.ai](https://delimit.ai) -- homepage\n- [Dashboard](https://app.delimit.ai) -- governance console\n- [Docs](https://delimit.ai/docs) -- full documentation\n- [GitHub Action](https://github.com/marketplace/actions/delimit-api-governance) -- Marketplace listing\n- [Quickstart](https://github.com/delimit-ai/delimit-mcp-server) -- try it in 2 minutes\n- [npm](https://www.npmjs.com/package/delimit-cli) -- CLI package\n- [Pricing](https://delimit.ai/pricing) -- free tier + Pro\n\nMIT License

package/bin/delimit-cli.js

@@ -439,6 +439,39 @@ program
         });
     });
 
+program
+    .command('think [question...]')
+    .description('Run multi-model deliberation on a question')
+    .action(async (questionParts) => {
+        const question = Array.isArray(questionParts) ? questionParts.join(' ').trim() : '';
+        if (!question) {
+            console.log(chalk.yellow('Usage: delimit think <question>'));
+            console.log(chalk.gray('Example: delimit think "Should we use REST or GraphQL for the new API?"'));
+            return;
+        }
+        console.log(chalk.blue('Deliberating...'));
+        console.log(chalk.gray(`Question: ${question}`));
+        try {
+            const result = execSync(
+                `python3 -c "import sys; sys.path.insert(0, '${continuityContext.serverDir}'); from ai.deliberation import deliberate; import json; r = deliberate(question='${question.replace(/'/g, "\\'")}'); print(json.dumps(r, indent=2))"`,
+                { encoding: 'utf-8', timeout: 120000, cwd: continuityContext.serverDir }
+            );
+            const parsed = JSON.parse(result);
+            if (parsed.error) {
+                console.log(chalk.red(`Error: ${parsed.error}`));
+            } else if (parsed.synthesis) {
+                console.log(chalk.green('\nConsensus:'));
+                console.log(parsed.synthesis);
+                if (parsed.verdict) console.log(chalk.blue(`\nVerdict: ${parsed.verdict}`));
+                if (parsed.confidence) console.log(chalk.gray(`Confidence: ${parsed.confidence}`));
+            } else {
+                console.log(JSON.stringify(parsed, null, 2));
+            }
+        } catch (e) {
+            console.log(chalk.red(`Deliberation failed: ${e.message}`));
+        }
+    });
+
 program
     .command('open [venture]')
     .description('Open a venture session without changing directories')

package/bin/delimit-os.sh

@@ -0,0 +1,105 @@
+#!/bin/bash
+# Delimit OS — the AI developer operating system
+# Type 'delimit' to launch the TUI, or 'delimit <command>' for CLI tools
+#
+# Usage:
+#   delimit              → Launch TUI (interactive terminal dashboard)
+#   delimit --quick      → Quick status (non-interactive)
+#   delimit think        → Trigger deliberation
+#   delimit build        → Start autonomous build loop
+#   delimit ask <query>  → Ask the swarm
+#   delimit lint <spec>  → Lint an API spec
+#   delimit init         → Initialize governance in current repo
+#   delimit setup        → Configure AI assistants
+
+set -e
+
+DELIMIT_HOME="${DELIMIT_HOME:-$HOME/.delimit}"
+GATEWAY="$DELIMIT_HOME/server/ai"
+
+# If no args, launch TUI (interactive if terminal, quick if piped)
+if [ $# -eq 0 ]; then
+    if [ -f "$GATEWAY/tui.py" ]; then
+        if [ -t 1 ] && [ -t 0 ]; then
+            cd "$DELIMIT_HOME/server" && exec python3 -m ai.tui
+        else
+            cd "$DELIMIT_HOME/server" && exec python3 -m ai.tui --quick
+        fi
+    else
+        # Fallback to npm CLI
+        exec delimit-cli "$@"
+    fi
+fi
+
+# Route commands
+case "$1" in
+    --quick|-q)
+        if [ -f "$GATEWAY/tui.py" ]; then
+            cd "$DELIMIT_HOME/server" && exec python3 -m ai.tui --quick
+        else
+            exec delimit-cli status
+        fi
+        ;;
+    think|deliberate)
+        shift
+        QUESTION="${*:-What should we build next based on the current ledger and signals?}"
+        echo "[Delimit OS] Triggering deliberation..."
+        cd "$DELIMIT_HOME/server" && python3 -c "
+from ai.deliberation import deliberate
+import json
+result = deliberate('''$QUESTION''', mode='dialogue', max_rounds=3)
+if 'error' in result:
+    print(f'Error: {result[\"error\"]}')
+elif result.get('mode') == 'single_model_reflection':
+    print(f'Model: {result.get(\"model\", \"?\")}')
+    print(f'\\nAdvocate:\\n{result.get(\"advocate\", \"\")[:500]}')
+    print(f'\\nCritic:\\n{result.get(\"critic\", \"\")[:500]}')
+    print(f'\\nSynthesis:\\n{result.get(\"synthesis\", \"\")}')
+else:
+    print(f'Verdict: {result.get(\"final_verdict\", \"no consensus\")[:500]}')
+    print(f'Rounds: {result.get(\"rounds\", 0)}')
+" 2>&1
+        ;;
+    build|loop)
+        shift
+        echo "[Delimit OS] Starting autonomous build loop..."
+        echo "Checking ledger for next task..."
+        cd "$DELIMIT_HOME/server" && python3 -c "
+from ai.ledger_manager import get_context
+import json
+result = get_context()
+items = result.get('next_up', [])
+if items:
+    print(f'Next up: {items[0].get(\"id\", \"?\")} [{items[0].get(\"priority\", \"?\")}] {items[0].get(\"title\", \"?\")[:60]}')
+    print(f'Total open: {result.get(\"open_items\", 0)}')
+else:
+    print('Ledger is clear — nothing to build.')
+" 2>&1
+        ;;
+    ask)
+        shift
+        QUERY="$*"
+        if [ -z "$QUERY" ]; then
+            echo "Usage: delimit ask <question>"
+            exit 1
+        fi
+        echo "[Delimit OS] Checking context..."
+        cd "$DELIMIT_HOME/server" && python3 -c "
+from ai.ledger_manager import get_context
+import json
+result = get_context()
+print(json.dumps(result, indent=2)[:2000])
+" 2>&1
+        ;;
+    status)
+        if [ -f "$GATEWAY/tui.py" ]; then
+            cd "$GATEWAY/.." && exec python3 -m ai.tui --quick
+        else
+            exec delimit-cli status
+        fi
+        ;;
+    *)
+        # Pass through to delimit-cli for all other commands
+        exec delimit-cli "$@"
+        ;;
+esac

package/gateway/ai/agent_dispatch.py

@@ -61,10 +61,6 @@ def dispatch_task(
     tools_needed: Optional[List[str]] = None,
     constraints: Optional[List[str]] = None,
     context: str = "",
-    task_type: str = "",
-    venture: str = "",
-    variables: Optional[Dict[str, Any]] = None,
-    external_key: str = "",
 ) -> Dict[str, Any]:
     """Create a tracked agent task.
 
@@ -82,23 +78,6 @@ def dispatch_task(
     if priority not in VALID_PRIORITIES:
         return {"error": f"priority must be one of: {', '.join(sorted(VALID_PRIORITIES))}"}
 
-    tasks = _load_tasks()
-
-    normalized_external_key = external_key.strip()
-    if normalized_external_key:
-        for existing in tasks.values():
-            if existing.get("external_key") != normalized_external_key:
-                continue
-            if existing.get("status") in ("dispatched", "in_progress", "handed_off", "done"):
-                prompt = _build_agent_prompt(existing)
-                return {
-                    "status": "deduped",
-                    "task_id": existing["id"],
-                    "task": existing,
-                    "agent_prompt": prompt,
-                    "message": f"Task {existing['id']} already exists for {normalized_external_key}",
-                }
-
     task_id = f"AGT-{uuid.uuid4().hex[:8].upper()}"
 
     task = {
@@ -110,10 +89,6 @@ def dispatch_task(
         "tools_needed": tools_needed or [],
         "constraints": constraints or [],
         "context": context.strip(),
-        "task_type": task_type.strip(),
-        "venture": venture.strip(),
-        "variables": variables or {},
-        "external_key": normalized_external_key,
         "status": "dispatched",
         "created_at": time.strftime("%Y-%m-%dT%H:%M:%SZ"),
         "updated_at": time.strftime("%Y-%m-%dT%H:%M:%SZ"),
@@ -122,6 +97,7 @@ def dispatch_task(
         "handoffs": [],
     }
 
+    tasks = _load_tasks()
     tasks[task_id] = task
     _save_tasks(tasks)
 
@@ -159,11 +135,6 @@ def _build_agent_prompt(task: Dict[str, Any]) -> str:
     if task.get("context"):
         lines.append(f"\n**Context:**\n{task['context']}")
 
-    if task.get("variables"):
-        lines.append("\n**Variables:**")
-        for key, value in task["variables"].items():
-            lines.append(f"- {key}: {value}")
-
     if task.get("tools_needed"):
         lines.append(f"\n**Tools needed:** {', '.join(task['tools_needed'])}")
 
@@ -476,10 +447,7 @@ def get_agent_dashboard() -> Dict[str, Any]:
                 "tasks": [
                     {"id": t["id"], "title": t["title"], "status": t["status"],
                      "priority": t.get("priority", "P1"),
-                     "linked_ledger": t.get("linked_ledger_items", []),
-                     "task_type": t.get("task_type", ""),
-                     "venture": t.get("venture", ""),
-                     "variables": t.get("variables", {})}
+                     "linked_ledger": t.get("linked_ledger_items", [])}
                     for t in model_tasks
                 ],
             }

package/gateway/ai/github_scanner.py

@@ -30,7 +30,7 @@ OWN_REPOS = [
     "delimit-ai/delimit-quickstart",
 ]
 
-INTERNAL_USERS = set()
+INTERNAL_USERS = set()  # Populated at runtime from config
 
 COMPETITOR_ACTIONS = [
     "tufin/oasdiff-action",

package/gateway/ai/ledger_manager.py

@@ -91,20 +91,10 @@ def _register_venture(info: Dict[str, str]):
         VENTURES_FILE.write_text(json.dumps(ventures, indent=2))
 
 
-CENTRAL_LEDGER_DIR = Path.home() / ".delimit" / "ledger"
-
-
 def _project_ledger_dir(project_path: str = ".") -> Path:
-    """Get the ledger directory — ALWAYS uses central ~/.delimit/ledger/.
-
-    Cross-model handoff fix: Codex and Gemini were writing to $PWD/.delimit/ledger/
-    which caused ledger fragmentation. All models must use the same central location
-    so Claude, Codex, and Gemini see the same items.
-
-    The central ledger at ~/.delimit/ledger/ is the source of truth.
-    Per-project .delimit/ dirs are for policies and config only, not ledger state.
-    """
-    return CENTRAL_LEDGER_DIR
+    """Get the ledger directory for the current project."""
+    p = Path(project_path).resolve()
+    return p / ".delimit" / "ledger"
 
 
 def _ensure(project_path: str = "."):