hadara 0.2.0-rc.3 → 0.3.0-rc.1

package/README.md

@@ -5,7 +5,7 @@
 </p>
 
 <p align="center">
-  <img alt="Release candidate" src="https://img.shields.io/badge/release-0.2.0--rc.3-blue">
+  <img alt="Published npm release" src="https://img.shields.io/badge/npm-0.3.0--rc.0-blue">
   <img alt="Node.js" src="https://img.shields.io/badge/node-%3E%3D22-brightgreen">
   <img alt="License" src="https://img.shields.io/badge/license-MIT-lightgrey">
 </p>
@@ -14,31 +14,37 @@
 
 > Unbroken Context, Verified Development.
 
-HADARA is named from **Harness + Dara**. A harness safely binds and controls complex systems; Dara carries layered associations of holding, wisdom, durability, and continuity. HADARA binds non-deterministic LLM agent work into a production-oriented workflow through Task Capsules, Session Continuity, Policy Layers, Evidence Logs, and Handoff Protocols.
+HADARA binds non-deterministic LLM agent work into a production-oriented workflow through Task Capsules, Session Continuity, Policy Layers, Evidence Logs, and Handoff Protocols.
 
 This repository is both the HADARA source checkout and the HADARA protocol workspace used to build it.
 
 ## Release Status
 
-The current source checkout targets:
+Current release candidate prepared for operator publish:
 
 ```text
-hadara@0.2.0-rc.3
+hadara@0.3.0-rc.1
 ```
 
-T-0287 prepares the source checkout for `0.2.0-rc.3` after the rc2 dogfooding findings and the T-0284 through T-0286 proof reliability hardening. `hadara@0.2.0-rc.3` is a publish candidate until an operator explicitly runs an approval-gated publish capsule. The latest npm-published release candidate remains `hadara@0.2.0-rc.2`.
+Current published npm release:
 
-Current publish boundaries:
+```text
+hadara@0.3.0-rc.0
+```
+
+The 0.3.0 line is the Phase 7 Surface Refactor. It organizes HADARA's existing task, evidence, proof, lifecycle, release, and document surfaces so agents can distinguish primary lifecycle commands, diagnostics, advanced surfaces, canonical documents, historical documents, and safe Markdown update boundaries.
+
+Phase 7.x labels are internal implementation phases, not npm release-candidate labels. Publishing `0.3.0-rc.1` or any later release still requires the approval-gated release path and explicit operator confirmation.
 
 | Surface | Status |
 |---|---|
 | npm package | Primary release target. |
-| `hadara@0.1.0-rc.0` | Published first RC. |
-| `hadara@0.2.0-rc.0` | Superseded internal publish candidate after recycle findings. |
 | `hadara@0.2.0-rc.1` | Previous published npm RC. |
-| `hadara@0.2.0-rc.2` | Current published npm RC. |
-| `hadara@0.2.0-rc.3` | Current source publish candidate; not published by this capsule. |
-| GitHub Release | Secondary target, still approval-gated. |
+| `hadara@0.2.0-rc.2` | Previous published npm RC. |
+| `hadara@0.2.0-rc.3` | Previous published npm RC. |
+| `hadara@0.3.0-rc.0` | Current published npm RC; package metadata lacks the intended discovery fields. |
+| `hadara@0.3.0-rc.1` | Current publish candidate; T-0301 prepares the operator-confirmed npm publish path. |
+| GitHub Release | Secondary target, approval-gated. |
 | Docker image | Deferred. |
 | PyPI/Python package | `hadara==0.2.0rc1` published preview bridge. |
 | Installer scripts / USB launchers | Deferred. |
@@ -49,23 +55,28 @@ No release command should publish, create a GitHub Release, build Docker images,
 
 Requires Node.js 22.
 
-Install the current published RC:
+Install the latest published RC before the T-0301 publish step:
 
 ```bash
-npm install -g hadara@0.2.0-rc.2
+npm install -g hadara@0.3.0-rc.0
+hadara help
 hadara doctor --json
-hadara task list --json
-hadara tools list --json
 ```
 
 Run without a global install:
 
 ```bash
-npx hadara@0.2.0-rc.2 doctor --json
-npx hadara@0.2.0-rc.2 tools list --json
+npx hadara@0.3.0-rc.0 help
+npx hadara@0.3.0-rc.0 doctor --json
 ```
 
-After an operator publishes rc3, use `hadara@0.2.0-rc.3` in the install and npx commands above. Previous published RCs remain available on npm for comparison or rollback.
+After the T-0301 npm publish helper verifies `hadara@0.3.0-rc.1` on the registry, install the new RC:
+
+```bash
+npm install -g hadara@0.3.0-rc.1
+hadara help
+hadara doctor --json
+```
 
 ## What HADARA Gives You
 
@@ -74,54 +85,126 @@ After an operator publishes rc3, use `hadara@0.2.0-rc.3` in the install and npx
 | Task Capsules | Keep each unit of work scoped, evidenced, and resumable. |
 | Evidence Logs | Record public, reduced proof of validation without raw private logs. |
 | Handoff Protocol | Preserve current state for the next operator or agent. |
-| Policy Surfaces | Inspect command risk and release boundaries before mutation. |
-| CLI JSON Reports | Give agents and automation stable read models. |
+| Structured Help | Separate primary lifecycle commands from diagnostics, advanced, release, UI, and integration surfaces. |
+| Document Governance | Classify canonical, active, reference, historical, superseded, and archived docs. |
+| Managed Markdown Safety | Patch declared generated sections with dry-run and hash guards. |
+| Release Gates | Check package and release readiness through evidence-backed dry-run reports. |
 | Read-only MCP Bridge | Expose project/task/evidence state without default write tools. |
 | Dashboard and TUI | Provide local operator observation surfaces over existing read models. |
-| Release Gates | Check release readiness through evidence-backed dry-run reports. |
 
 HADARA is deliberately conservative. Read surfaces are broad; write and release surfaces are narrow, explicit, and evidence-oriented.
 
-## Common Commands
+## Start Here
 
-Project and protocol health:
+Ask the CLI for the workflow before choosing commands:
 
 ```bash
-hadara doctor --json
-hadara status --json
-hadara ops status --json
-hadara tools list --json
-hadara protocol doctor --json
-hadara protocol doctor --scope docs --json
+hadara help
+hadara help lifecycle
+hadara task next --json
 ```
 
-Task workflow:
+Use structured discovery when an agent or tool needs machine-readable command metadata:
+
+```bash
+hadara commands --json
+hadara commands --family capsule-lifecycle --json
+hadara help command task.close
+```
+
+## Primary Capsule Lifecycle
+
+The primary path is intentionally small:
 
 ```bash
 hadara task next --json
 hadara task create "implement a focused change" --json
-hadara task status --task T-0001 --json
-hadara task finish --task T-0001 --json
-hadara task finish --task T-0001 --execute --json
-hadara task ready --task T-0001 --level done --json
-hadara task close --task T-0001 --json
-hadara task close --task T-0001 --execute --json
-hadara task audit-close --task T-0001 --json
+hadara task status --task T-XXXX --json
+hadara evidence add-command --task T-XXXX --summary "..." --result passed --idempotency-key "command:T-XXXX:check" --json
+hadara task finish --task T-XXXX --json
+hadara task finish --task T-XXXX --execute --json
+# Finalize Task Capsule docs and tracked state docs before closing.
+hadara task ready --task T-XXXX --level done --json
+hadara task close --task T-XXXX --json
+hadara task close --task T-XXXX --execute --json
+hadara task audit-close --task T-XXXX --json
+hadara handoff suggest --task T-XXXX --json
+```
+
+Optional workflow compression is read-only. Use it separately when you want a compact current-stage report and next recommended action:
+
+```bash
+hadara task complete --task T-XXXX --json
 ```
 
-Evidence and handoff:
+Important boundaries:
+
+| Command | Boundary |
+|---|---|
+| `task status` | Read-only operator console. `ok:true` means the report was generated, not that the task is ready. |
+| `task complete` | Optional read-only workflow compressor. It reports the current stage and next action. |
+| `task finish --execute` | Writes only bounded status bookkeeping in `TASK.md` and `docs/TASK_BOARD.md`. |
+| `task close --execute` | Appends close evidence only. |
+| `task audit-close` | Read-only close proof audit. |
+
+Before `task close --execute`, finish Task Capsule docs, acceptance/tests/handoff notes, evidence summaries, Task Board updates, and tracked state docs. After close execute, changing close-source docs intentionally invalidates the previous close proof and requires rerunning ready/close/audit.
+
+The full command semantics live in `docs/TASK_WORKFLOW_COMMANDS.md`.
+
+## Proof and Diagnostics
+
+Diagnostics are useful, but they are not the primary lifecycle:
 
 ```bash
-hadara evidence collect --task T-0001 --json
-hadara evidence add-command --task T-0001 --summary "Focused validation passed." --result passed --json
+hadara evidence lint --task T-0001 --json
 hadara evidence list --task T-0001 --json
 hadara proof status --task T-0001 --json
 hadara proof explain --task T-0001 --json
 hadara ci gate --mode advisory --task T-0001 --json
-hadara handoff suggest --task T-0001 --json
+hadara ci gate --mode strict --task T-0001 --json
+hadara protocol doctor --json
+```
+
+Use strict gates before Done/close/release claims. Use advisory gates while exploring.
+
+## Document Governance
+
+HADARA projects can register and classify their operating documents:
+
+```bash
+hadara docs list --json
+hadara docs doctor --json
+hadara docs explain --path docs/PROJECT_STATE.md --json
+hadara docs required-reading --json
+```
+
+The document registry distinguishes canonical, active, reference, historical, superseded, and archived docs. `docs required-reading` reports the effective default reading set and excludes historical, superseded, and archived docs.
+
+Docs cleanup is metadata-first:
+
+```bash
+hadara docs mark --path docs/specs/old.md --status superseded --by docs/specs/new.md --reason "Replaced" --json
+hadara docs archive --status superseded --json
+```
+
+`docs mark --execute` is hash-guarded and writes only `.hadara/docs-registry.json`. `docs archive` is dry-run planning only in the current implementation; it does not move or delete historical files.
+
+## Managed Markdown Safety
+
+HADARA can update declared managed sections only. Managed patch execution is dry-run-first and hash-guarded. User-authored prose remains outside automated writes.
+
+```bash
+hadara docs managed list --json
+hadara docs managed explain --path docs/TASK_BOARD.md --json
+hadara docs patch --path docs/TASK_BOARD.md --section task-board --content-file .hadara/local/patches/task-board.md --json
+hadara docs patch --path docs/TASK_BOARD.md --section task-board --content-file .hadara/local/patches/task-board.md --execute --before-hash sha256:... --json
 ```
 
-Release and package readiness:
+Managed patch reports describe target hashes, section hashes, planned operations, and issues before any write is applied.
+
+## Release and Advanced Surfaces
+
+Release/package commands are release-only surfaces, not ordinary lifecycle steps:
 
 ```bash
 hadara package smoke --dry-run --json
@@ -137,55 +220,49 @@ hadara release publish --mode dry-run --json
 
 `release publish --mode dry-run` reports readiness, token presence by name, approval requirements, and mutation privacy flags without running `npm publish`. Any publish execution must happen only in a separate approval-gated release capsule with explicit operator confirmation.
 
-## Task Capsule Lifecycle
-
-HADARA task workflow commands have distinct read/write boundaries. The full command semantics live in `docs/TASK_WORKFLOW_COMMANDS.md`.
-
-Phase 6 reports support optional actor/run metadata for future multi-agent-compatible workflows. Commands such as `task complete`, `task finish`, `task ready`, `task close`, `task audit-close`, `handoff suggest`, and `dev docker-check` may accept metadata such as `--agent-id`, `--run-id`, `--actor-role`, and `--parent-run-id`. These fields improve provenance but do not enable a scheduler or full multi-agent runtime.
+Dashboard, TUI, Hermes, MCP, installer, package, release, and run commands stay out of the primary lifecycle unless a task explicitly needs them.
 
-```bash
-hadara task next --json
+## Safety Boundaries
 
-# If a matching capsule already exists:
-hadara task status --task T-XXXX --json
-
-# If no matching capsule exists, create one first:
-hadara task create "implement a focused change" --json
-hadara task status --task T-XXXX --json
-
-# Do the scoped work.
-
-hadara evidence add-command --task T-XXXX --summary "..." --result passed --idempotency-key "command:T-XXXX:check" --json
+HADARA 0.3.0 is not:
 
-hadara task finish --task T-XXXX --json
-hadara task finish --task T-XXXX --execute --json
+- a full agent runtime;
+- Rack/enterprise behavior;
+- automatic broad document rewriting;
+- automatic historical document deletion;
+- default shell execution through agents;
+- default MCP write tooling;
+- release or publish automation without operator approval.
 
-# Finalize Task Capsule docs and tracked state docs before closing.
+HADARA separates portable runtime state from project-owned development state.
 
-hadara task ready --task T-XXXX --level done --json
+Portable/local runtime state:
 
-# Optional workflow compression / next action preview:
-hadara task complete --task T-XXXX --json
+```text
+data/
+  config/
+  secrets/
+  sessions/
+  logs/
+  audit/
+  cache/
+  exports/
+```
 
-hadara task close --task T-XXXX --json
-hadara task close --task T-XXXX --execute --json
+Project-owned reproducible state:
 
-hadara task audit-close --task T-XXXX --json
+```text
+docs/
+tasks/
+.hadara/
+AGENTS.md
 ```
 
-Important distinctions:
-
-| Command | Boundary |
-|---|---|
-| `task status` | Read-only operator console. `ok:true` means the report was generated, not that the task is ready. |
-| `task complete` | Read-only workflow compressor. It reports the current stage and next action. |
-| `task finish --execute` | Writes only bounded status bookkeeping in `TASK.md` and `docs/TASK_BOARD.md`. |
-| `task close --execute` | Appends close evidence only. |
-| `task audit-close` | Read-only close proof audit. |
+Portable/local state is not committed. Project docs, Task Capsules, and reduced public evidence are committed when they represent reproducible context.
 
-Before `task close --execute`, finish Task Capsule docs, acceptance/tests/handoff notes, evidence summaries, Task Board updates, and tracked state docs. After close execute, changing those close-source docs intentionally invalidates the previous close proof and requires rerunning ready/close/audit. Use stable wording for close results instead of pasting volatile close evidence ids into close-source docs.
+## Development / Contributing
 
-## Initialize a Project
+Initialize a project:
 
 ```bash
 hadara init                  # default: standard
@@ -211,11 +288,7 @@ hadara init register-doc --path docs/specs/LOCAL.md --when "Local work" --purpos
 hadara init enable-integration --integration mcp --json
 ```
 
-`register-doc` can use `--require-exists` when missing referenced docs should be treated as an error. `enable-integration` registers project guidance docs only; it does not enable Hermes/MCP runtime behavior or change capability gates. `upgrade` creates missing scaffold docs and updates known generated profile metadata; it does not rewrite unrelated user-authored content.
-
-## Develop from Source
-
-Use Node.js 22.
+Develop from source with Node.js 22:
 
 ```bash
 npm install
@@ -237,56 +310,7 @@ Focused validation:
 npm run test:focused -- tests/unit/release-dry-run.test.ts
 ```
 
-## Release Discipline
-
-HADARA release work is evidence-first.
-
-Before any npm publish:
-
-1. Confirm the git worktree is clean.
-2. Run `hadara release dry-run --json`.
-3. Run `hadara release publish --mode dry-run --json`.
-4. Confirm `NPM_TOKEN` presence without printing the token value.
-5. Confirm the exact package version is not already on npm.
-6. Generate fresh package, clean-checkout, and release-artifact evidence for the active release capsule.
-7. Publish only after explicit operator approval.
-8. Verify with `npm view hadara@<version> version`.
-9. Attach reduced publish evidence.
-10. Update release notes, Project State, Agent Handoff, and the active Task Capsule.
-
-Never write token values, private logs, raw npm output, private paths, or local machine state into committed evidence.
-
-## Store Separation
-
-HADARA separates portable runtime state from project-owned development state.
-
-Portable/local runtime state:
-
-```text
-data/
-  config/
-  secrets/
-  sessions/
-  logs/
-  audit/
-  cache/
-  exports/
-```
-
-Project-owned reproducible state:
-
-```text
-docs/
-tasks/
-.hadara/
-AGENTS.md
-```
-
-Portable/local state is not committed. Project docs, Task Capsules, and reduced public evidence are committed when they represent reproducible context.
-
-## Optional / Deferred Integrations
-
-Hermes and MCP surfaces exist for compatibility experiments and read-only bridge work. They are not generated by `hadara init` and are not part of the default scaffold. Use them only when a project explicitly opts into integration guidance.
+Optional integrations are not generated by `hadara init` and are not part of the default scaffold:
 
 ```bash
 hadara init enable-integration --integration hermes --execute --json
@@ -298,19 +322,6 @@ hadara mcp serve
 
 The default MCP server remains read-only. Evidence attach is opt-in, approval-recorded, and audited.
 
-## Deferred
-
-These are intentionally not part of the current default runtime:
-
-- Full multi-agent scheduler/controller.
-- Broad MCP write tools.
-- Shell execution through agents.
-- Real provider execution as the default path.
-- GitHub Release automation as a default path.
-- Docker image publishing.
-- Installer scripts and USB portable launchers.
-- Live dashboard streaming.
-
 ## License
 
 HADARA is released under the MIT License. You can use, copy, modify, distribute, and build on it under the terms in `LICENSE`.

package/dist/cli/commands.js

@@ -0,0 +1,34 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.handleCommandsCommand = handleCommandsCommand;
+exports.createCommandsRegistryReport = createCommandsRegistryReport;
+const args_1 = require("./args");
+const capability_registry_1 = require("../services/capability-registry");
+function handleCommandsCommand(input) {
+    const family = (0, args_1.getStringOption)(input.args, '--family');
+    const requiredness = (0, args_1.getStringOption)(input.args, '--requiredness');
+    const report = createCommandsRegistryReport({ family, requiredness });
+    if (input.jsonOutput) {
+        console.log(JSON.stringify(report, null, 2));
+    }
+    else {
+        for (const entry of report.commands) {
+            console.log(`${entry.id} | ${entry.family} | ${entry.requiredness} | ${entry.command}`);
+        }
+    }
+    return true;
+}
+function createCommandsRegistryReport(filters = {}) {
+    return {
+        schemaVersion: 'hadara.commands.registry.v1',
+        command: 'commands',
+        ok: true,
+        registryVersion: capability_registry_1.HADARA_COMMAND_REGISTRY_VERSION,
+        filters: {
+            family: filters.family ?? null,
+            requiredness: filters.requiredness ?? null
+        },
+        commands: (0, capability_registry_1.listCommandRegistryEntries)(filters),
+        issues: []
+    };
+}

package/dist/cli/docs.js

@@ -0,0 +1,81 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.handleDocsCommand = handleDocsCommand;
+const args_1 = require("./args");
+const docs_cleanup_1 = require("../services/docs-cleanup");
+const docs_registry_1 = require("../services/docs-registry");
+const managed_sections_1 = require("../services/managed-sections");
+function handleDocsCommand(input) {
+    const sub = input.args[1];
+    if (sub === 'list') {
+        const report = (0, docs_registry_1.createDocsListReport)(input.projectRoot, {
+            status: (0, args_1.getStringOption)(input.args, '--status'),
+            readWhen: (0, args_1.getStringOption)(input.args, '--read-when')
+        });
+        printReport(report, input.jsonOutput);
+        return true;
+    }
+    if (sub === 'doctor') {
+        const report = (0, docs_registry_1.createDocsDoctorReport)(input.projectRoot, (0, args_1.getStringOption)(input.args, '--scope', 'all') ?? 'all');
+        printReport(report, input.jsonOutput);
+        return true;
+    }
+    if (sub === 'explain') {
+        const documentPath = (0, args_1.getStringOption)(input.args, '--path') ?? input.args[2] ?? '';
+        const report = (0, docs_registry_1.createDocsExplainReport)(input.projectRoot, documentPath);
+        printReport(report, input.jsonOutput);
+        return true;
+    }
+    if (sub === 'managed') {
+        const managedSub = input.args[2];
+        if (managedSub === 'list') {
+            printReport((0, managed_sections_1.createManagedSectionsListReport)(input.projectRoot), input.jsonOutput);
+            return true;
+        }
+        if (managedSub === 'explain') {
+            printReport((0, managed_sections_1.createManagedSectionExplainReport)(input.projectRoot, (0, args_1.getRequiredStringOption)(input.args, '--path')), input.jsonOutput);
+            return true;
+        }
+    }
+    if (sub === 'patch') {
+        const report = (0, managed_sections_1.createDocsPatchPlanReport)(input.projectRoot, {
+            targetPath: (0, args_1.getRequiredStringOption)(input.args, '--path'),
+            sectionId: (0, args_1.getRequiredStringOption)(input.args, '--section'),
+            contentFile: (0, args_1.getRequiredStringOption)(input.args, '--content-file'),
+            mode: (0, args_1.getFlag)(input.args, '--execute') ? 'execute' : 'dry-run',
+            beforeHash: (0, args_1.getStringOption)(input.args, '--before-hash'),
+            owner: (0, args_1.getStringOption)(input.args, '--owner', 'operator') ?? 'operator'
+        });
+        printReport(report, input.jsonOutput);
+        return true;
+    }
+    if (sub === 'mark') {
+        const report = (0, docs_cleanup_1.createDocsMarkReport)(input.projectRoot, {
+            documentPath: (0, args_1.getRequiredStringOption)(input.args, '--path'),
+            status: (0, args_1.getRequiredStringOption)(input.args, '--status'),
+            reason: (0, args_1.getStringOption)(input.args, '--reason'),
+            by: (0, args_1.getStringOption)(input.args, '--by'),
+            mode: (0, args_1.getFlag)(input.args, '--execute') ? 'execute' : 'dry-run',
+            beforeHash: (0, args_1.getStringOption)(input.args, '--before-hash'),
+            forceCanonical: (0, args_1.getFlag)(input.args, '--force-canonical')
+        });
+        printReport(report, input.jsonOutput);
+        return true;
+    }
+    if (sub === 'archive') {
+        printReport((0, docs_cleanup_1.createDocsArchivePlanReport)(input.projectRoot, (0, args_1.getStringOption)(input.args, '--status')), input.jsonOutput);
+        return true;
+    }
+    if (sub === 'required-reading') {
+        printReport((0, docs_cleanup_1.createDocsRequiredReadingReport)(input.projectRoot), input.jsonOutput);
+        return true;
+    }
+    return false;
+}
+function printReport(report, jsonOutput) {
+    if (jsonOutput) {
+        console.log(JSON.stringify(report, null, 2));
+        return;
+    }
+    console.log(JSON.stringify(report, null, 2));
+}