instar 1.3.336 → 1.3.337

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "instar",
3
- "version": "1.3.336",
3
+ "version": "1.3.337",
4
4
  "description": "Coherence infrastructure for self-evolving AI agents — on the Claude Code or Codex subscription you already have.",
5
5
  "type": "module",
6
6
  "main": "dist/index.js",
@@ -1,8 +1,8 @@
1
1
  {
2
2
  "$schema": "./builtin-manifest.schema.json",
3
3
  "schemaVersion": 1,
4
- "generatedAt": "2026-06-06T03:58:05.940Z",
5
- "instarVersion": "1.3.336",
4
+ "generatedAt": "2026-06-06T04:27:42.668Z",
5
+ "instarVersion": "1.3.337",
6
6
  "entryCount": 199,
7
7
  "entries": {
8
8
  "hook:session-start": {
@@ -11,7 +11,7 @@
11
11
  "domain": "identity",
12
12
  "sourcePath": "src/core/PostUpdateMigrator.ts",
13
13
  "installedPath": ".instar/hooks/instar/session-start.sh",
14
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
14
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
15
15
  "since": "2025-01-01"
16
16
  },
17
17
  "hook:dangerous-command-guard": {
@@ -20,7 +20,7 @@
20
20
  "domain": "safety",
21
21
  "sourcePath": "src/core/PostUpdateMigrator.ts",
22
22
  "installedPath": ".instar/hooks/instar/dangerous-command-guard.sh",
23
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
23
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
24
24
  "since": "2025-01-01"
25
25
  },
26
26
  "hook:grounding-before-messaging": {
@@ -29,7 +29,7 @@
29
29
  "domain": "safety",
30
30
  "sourcePath": "src/core/PostUpdateMigrator.ts",
31
31
  "installedPath": ".instar/hooks/instar/grounding-before-messaging.sh",
32
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
32
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
33
33
  "since": "2025-01-01"
34
34
  },
35
35
  "hook:compaction-recovery": {
@@ -38,7 +38,7 @@
38
38
  "domain": "identity",
39
39
  "sourcePath": "src/core/PostUpdateMigrator.ts",
40
40
  "installedPath": ".instar/hooks/instar/compaction-recovery.sh",
41
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
41
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
42
42
  "since": "2025-01-01"
43
43
  },
44
44
  "hook:external-operation-gate": {
@@ -47,7 +47,7 @@
47
47
  "domain": "safety",
48
48
  "sourcePath": "src/core/PostUpdateMigrator.ts",
49
49
  "installedPath": ".instar/hooks/instar/external-operation-gate.js",
50
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
50
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
51
51
  "since": "2025-01-01"
52
52
  },
53
53
  "hook:deferral-detector": {
@@ -56,7 +56,7 @@
56
56
  "domain": "safety",
57
57
  "sourcePath": "src/core/PostUpdateMigrator.ts",
58
58
  "installedPath": ".instar/hooks/instar/deferral-detector.js",
59
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
59
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
60
60
  "since": "2025-01-01"
61
61
  },
62
62
  "hook:self-stop-guard": {
@@ -65,7 +65,7 @@
65
65
  "domain": "coherence",
66
66
  "sourcePath": "src/core/PostUpdateMigrator.ts",
67
67
  "installedPath": ".instar/hooks/instar/self-stop-guard.js",
68
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
68
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
69
69
  "since": "2025-01-01"
70
70
  },
71
71
  "hook:post-action-reflection": {
@@ -74,7 +74,7 @@
74
74
  "domain": "evolution",
75
75
  "sourcePath": "src/core/PostUpdateMigrator.ts",
76
76
  "installedPath": ".instar/hooks/instar/post-action-reflection.js",
77
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
77
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
78
78
  "since": "2025-01-01"
79
79
  },
80
80
  "hook:external-communication-guard": {
@@ -83,7 +83,7 @@
83
83
  "domain": "safety",
84
84
  "sourcePath": "src/core/PostUpdateMigrator.ts",
85
85
  "installedPath": ".instar/hooks/instar/external-communication-guard.js",
86
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
86
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
87
87
  "since": "2025-01-01"
88
88
  },
89
89
  "hook:scope-coherence-collector": {
@@ -92,7 +92,7 @@
92
92
  "domain": "coherence",
93
93
  "sourcePath": "src/core/PostUpdateMigrator.ts",
94
94
  "installedPath": ".instar/hooks/instar/scope-coherence-collector.js",
95
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
95
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
96
96
  "since": "2025-01-01"
97
97
  },
98
98
  "hook:scope-coherence-checkpoint": {
@@ -101,7 +101,7 @@
101
101
  "domain": "coherence",
102
102
  "sourcePath": "src/core/PostUpdateMigrator.ts",
103
103
  "installedPath": ".instar/hooks/instar/scope-coherence-checkpoint.js",
104
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
104
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
105
105
  "since": "2025-01-01"
106
106
  },
107
107
  "hook:free-text-guard": {
@@ -110,7 +110,7 @@
110
110
  "domain": "safety",
111
111
  "sourcePath": "src/core/PostUpdateMigrator.ts",
112
112
  "installedPath": ".instar/hooks/instar/free-text-guard.sh",
113
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
113
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
114
114
  "since": "2025-01-01"
115
115
  },
116
116
  "hook:claim-intercept": {
@@ -119,7 +119,7 @@
119
119
  "domain": "coherence",
120
120
  "sourcePath": "src/core/PostUpdateMigrator.ts",
121
121
  "installedPath": ".instar/hooks/instar/claim-intercept.js",
122
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
122
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
123
123
  "since": "2025-01-01"
124
124
  },
125
125
  "hook:claim-intercept-response": {
@@ -128,7 +128,7 @@
128
128
  "domain": "coherence",
129
129
  "sourcePath": "src/core/PostUpdateMigrator.ts",
130
130
  "installedPath": ".instar/hooks/instar/claim-intercept-response.js",
131
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
131
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
132
132
  "since": "2025-01-01"
133
133
  },
134
134
  "hook:stop-gate-router": {
@@ -137,7 +137,7 @@
137
137
  "domain": "safety",
138
138
  "sourcePath": "src/core/PostUpdateMigrator.ts",
139
139
  "installedPath": ".instar/hooks/instar/stop-gate-router.js",
140
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
140
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
141
141
  "since": "2025-01-01"
142
142
  },
143
143
  "hook:auto-approve-permissions": {
@@ -146,7 +146,7 @@
146
146
  "domain": "safety",
147
147
  "sourcePath": "src/core/PostUpdateMigrator.ts",
148
148
  "installedPath": ".instar/hooks/instar/auto-approve-permissions.js",
149
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
149
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
150
150
  "since": "2025-01-01"
151
151
  },
152
152
  "job:health-check": {
@@ -418,7 +418,7 @@
418
418
  "type": "route-group",
419
419
  "domain": "monitoring",
420
420
  "sourcePath": "src/server/routes.ts",
421
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
421
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
422
422
  "since": "2025-01-01"
423
423
  },
424
424
  "route-group:agents": {
@@ -426,7 +426,7 @@
426
426
  "type": "route-group",
427
427
  "domain": "sessions",
428
428
  "sourcePath": "src/server/routes.ts",
429
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
429
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
430
430
  "since": "2025-01-01"
431
431
  },
432
432
  "route-group:backups": {
@@ -434,7 +434,7 @@
434
434
  "type": "route-group",
435
435
  "domain": "operations",
436
436
  "sourcePath": "src/server/routes.ts",
437
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
437
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
438
438
  "since": "2025-01-01"
439
439
  },
440
440
  "route-group:git": {
@@ -442,7 +442,7 @@
442
442
  "type": "route-group",
443
443
  "domain": "coordination",
444
444
  "sourcePath": "src/server/routes.ts",
445
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
445
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
446
446
  "since": "2025-01-01"
447
447
  },
448
448
  "route-group:memory": {
@@ -450,7 +450,7 @@
450
450
  "type": "route-group",
451
451
  "domain": "memory",
452
452
  "sourcePath": "src/server/routes.ts",
453
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
453
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
454
454
  "since": "2025-01-01"
455
455
  },
456
456
  "route-group:semantic": {
@@ -458,7 +458,7 @@
458
458
  "type": "route-group",
459
459
  "domain": "memory",
460
460
  "sourcePath": "src/server/routes.ts",
461
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
461
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
462
462
  "since": "2025-01-01"
463
463
  },
464
464
  "route-group:status": {
@@ -466,7 +466,7 @@
466
466
  "type": "route-group",
467
467
  "domain": "monitoring",
468
468
  "sourcePath": "src/server/routes.ts",
469
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
469
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
470
470
  "since": "2025-01-01"
471
471
  },
472
472
  "route-group:capabilities": {
@@ -474,7 +474,7 @@
474
474
  "type": "route-group",
475
475
  "domain": "mapping",
476
476
  "sourcePath": "src/server/routes.ts",
477
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
477
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
478
478
  "since": "2025-01-01"
479
479
  },
480
480
  "route-group:project-map": {
@@ -482,7 +482,7 @@
482
482
  "type": "route-group",
483
483
  "domain": "mapping",
484
484
  "sourcePath": "src/server/routes.ts",
485
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
485
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
486
486
  "since": "2025-01-01"
487
487
  },
488
488
  "route-group:coherence": {
@@ -490,7 +490,7 @@
490
490
  "type": "route-group",
491
491
  "domain": "coherence",
492
492
  "sourcePath": "src/server/routes.ts",
493
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
493
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
494
494
  "since": "2025-01-01"
495
495
  },
496
496
  "route-group:topic-bindings": {
@@ -498,7 +498,7 @@
498
498
  "type": "route-group",
499
499
  "domain": "sessions",
500
500
  "sourcePath": "src/server/routes.ts",
501
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
501
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
502
502
  "since": "2025-01-01"
503
503
  },
504
504
  "route-group:context": {
@@ -506,7 +506,7 @@
506
506
  "type": "route-group",
507
507
  "domain": "context",
508
508
  "sourcePath": "src/server/routes.ts",
509
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
509
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
510
510
  "since": "2025-01-01"
511
511
  },
512
512
  "route-group:scope-coherence": {
@@ -514,7 +514,7 @@
514
514
  "type": "route-group",
515
515
  "domain": "coherence",
516
516
  "sourcePath": "src/server/routes.ts",
517
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
517
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
518
518
  "since": "2025-01-01"
519
519
  },
520
520
  "route-group:canonical-state": {
@@ -522,7 +522,7 @@
522
522
  "type": "route-group",
523
523
  "domain": "state",
524
524
  "sourcePath": "src/server/routes.ts",
525
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
525
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
526
526
  "since": "2025-01-01"
527
527
  },
528
528
  "route-group:ci": {
@@ -530,7 +530,7 @@
530
530
  "type": "route-group",
531
531
  "domain": "monitoring",
532
532
  "sourcePath": "src/server/routes.ts",
533
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
533
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
534
534
  "since": "2025-01-01"
535
535
  },
536
536
  "route-group:sessions": {
@@ -538,7 +538,7 @@
538
538
  "type": "route-group",
539
539
  "domain": "sessions",
540
540
  "sourcePath": "src/server/routes.ts",
541
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
541
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
542
542
  "since": "2025-01-01"
543
543
  },
544
544
  "route-group:jobs": {
@@ -546,7 +546,7 @@
546
546
  "type": "route-group",
547
547
  "domain": "scheduling",
548
548
  "sourcePath": "src/server/routes.ts",
549
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
549
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
550
550
  "since": "2025-01-01"
551
551
  },
552
552
  "route-group:skip-ledger": {
@@ -554,7 +554,7 @@
554
554
  "type": "route-group",
555
555
  "domain": "scheduling",
556
556
  "sourcePath": "src/server/routes.ts",
557
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
557
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
558
558
  "since": "2025-01-01"
559
559
  },
560
560
  "route-group:telegram": {
@@ -562,7 +562,7 @@
562
562
  "type": "route-group",
563
563
  "domain": "communication",
564
564
  "sourcePath": "src/server/routes.ts",
565
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
565
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
566
566
  "since": "2025-01-01"
567
567
  },
568
568
  "route-group:attention": {
@@ -570,7 +570,7 @@
570
570
  "type": "route-group",
571
571
  "domain": "communication",
572
572
  "sourcePath": "src/server/routes.ts",
573
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
573
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
574
574
  "since": "2025-01-01"
575
575
  },
576
576
  "route-group:relationships": {
@@ -578,7 +578,7 @@
578
578
  "type": "route-group",
579
579
  "domain": "relationships",
580
580
  "sourcePath": "src/server/routes.ts",
581
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
581
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
582
582
  "since": "2025-01-01"
583
583
  },
584
584
  "route-group:feedback": {
@@ -586,7 +586,7 @@
586
586
  "type": "route-group",
587
587
  "domain": "feedback",
588
588
  "sourcePath": "src/server/routes.ts",
589
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
589
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
590
590
  "since": "2025-01-01"
591
591
  },
592
592
  "route-group:updates": {
@@ -594,7 +594,7 @@
594
594
  "type": "route-group",
595
595
  "domain": "updates",
596
596
  "sourcePath": "src/server/routes.ts",
597
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
597
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
598
598
  "since": "2025-01-01"
599
599
  },
600
600
  "route-group:dispatches": {
@@ -602,7 +602,7 @@
602
602
  "type": "route-group",
603
603
  "domain": "dispatches",
604
604
  "sourcePath": "src/server/routes.ts",
605
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
605
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
606
606
  "since": "2025-01-01"
607
607
  },
608
608
  "route-group:quota": {
@@ -610,7 +610,7 @@
610
610
  "type": "route-group",
611
611
  "domain": "monitoring",
612
612
  "sourcePath": "src/server/routes.ts",
613
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
613
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
614
614
  "since": "2025-01-01"
615
615
  },
616
616
  "route-group:publishing": {
@@ -618,7 +618,7 @@
618
618
  "type": "route-group",
619
619
  "domain": "publishing",
620
620
  "sourcePath": "src/server/routes.ts",
621
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
621
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
622
622
  "since": "2025-01-01"
623
623
  },
624
624
  "route-group:private-views": {
@@ -626,7 +626,7 @@
626
626
  "type": "route-group",
627
627
  "domain": "publishing",
628
628
  "sourcePath": "src/server/routes.ts",
629
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
629
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
630
630
  "since": "2025-01-01"
631
631
  },
632
632
  "route-group:tunnel": {
@@ -634,7 +634,7 @@
634
634
  "type": "route-group",
635
635
  "domain": "networking",
636
636
  "sourcePath": "src/server/routes.ts",
637
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
637
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
638
638
  "since": "2025-01-01"
639
639
  },
640
640
  "route-group:events": {
@@ -642,7 +642,7 @@
642
642
  "type": "route-group",
643
643
  "domain": "networking",
644
644
  "sourcePath": "src/server/routes.ts",
645
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
645
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
646
646
  "since": "2025-01-01"
647
647
  },
648
648
  "route-group:evolution": {
@@ -650,7 +650,7 @@
650
650
  "type": "route-group",
651
651
  "domain": "evolution",
652
652
  "sourcePath": "src/server/routes.ts",
653
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
653
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
654
654
  "since": "2025-01-01"
655
655
  },
656
656
  "route-group:watchdog": {
@@ -658,7 +658,7 @@
658
658
  "type": "route-group",
659
659
  "domain": "monitoring",
660
660
  "sourcePath": "src/server/routes.ts",
661
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
661
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
662
662
  "since": "2025-01-01"
663
663
  },
664
664
  "route-group:topic-memory": {
@@ -666,7 +666,7 @@
666
666
  "type": "route-group",
667
667
  "domain": "memory",
668
668
  "sourcePath": "src/server/routes.ts",
669
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
669
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
670
670
  "since": "2025-01-01"
671
671
  },
672
672
  "route-group:state-sync": {
@@ -674,7 +674,7 @@
674
674
  "type": "route-group",
675
675
  "domain": "coordination",
676
676
  "sourcePath": "src/server/routes.ts",
677
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
677
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
678
678
  "since": "2025-01-01"
679
679
  },
680
680
  "route-group:intent": {
@@ -682,7 +682,7 @@
682
682
  "type": "route-group",
683
683
  "domain": "intent",
684
684
  "sourcePath": "src/server/routes.ts",
685
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
685
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
686
686
  "since": "2025-01-01"
687
687
  },
688
688
  "route-group:triage": {
@@ -690,7 +690,7 @@
690
690
  "type": "route-group",
691
691
  "domain": "safety",
692
692
  "sourcePath": "src/server/routes.ts",
693
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
693
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
694
694
  "since": "2025-01-01"
695
695
  },
696
696
  "route-group:operations": {
@@ -698,7 +698,7 @@
698
698
  "type": "route-group",
699
699
  "domain": "safety",
700
700
  "sourcePath": "src/server/routes.ts",
701
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
701
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
702
702
  "since": "2025-01-01"
703
703
  },
704
704
  "route-group:sentinel": {
@@ -706,7 +706,7 @@
706
706
  "type": "route-group",
707
707
  "domain": "safety",
708
708
  "sourcePath": "src/server/routes.ts",
709
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
709
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
710
710
  "since": "2025-01-01"
711
711
  },
712
712
  "route-group:trust": {
@@ -714,7 +714,7 @@
714
714
  "type": "route-group",
715
715
  "domain": "safety",
716
716
  "sourcePath": "src/server/routes.ts",
717
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
717
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
718
718
  "since": "2025-01-01"
719
719
  },
720
720
  "route-group:monitoring": {
@@ -722,7 +722,7 @@
722
722
  "type": "route-group",
723
723
  "domain": "monitoring",
724
724
  "sourcePath": "src/server/routes.ts",
725
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
725
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
726
726
  "since": "2025-01-01"
727
727
  },
728
728
  "route-group:commitments": {
@@ -730,7 +730,7 @@
730
730
  "type": "route-group",
731
731
  "domain": "commitments",
732
732
  "sourcePath": "src/server/routes.ts",
733
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
733
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
734
734
  "since": "2025-01-01"
735
735
  },
736
736
  "route-group:episodes": {
@@ -738,7 +738,7 @@
738
738
  "type": "route-group",
739
739
  "domain": "memory",
740
740
  "sourcePath": "src/server/routes.ts",
741
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
741
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
742
742
  "since": "2025-01-01"
743
743
  },
744
744
  "route-group:messages": {
@@ -746,7 +746,7 @@
746
746
  "type": "route-group",
747
747
  "domain": "coordination",
748
748
  "sourcePath": "src/server/routes.ts",
749
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
749
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
750
750
  "since": "2025-01-01"
751
751
  },
752
752
  "route-group:system-reviews": {
@@ -754,7 +754,7 @@
754
754
  "type": "route-group",
755
755
  "domain": "monitoring",
756
756
  "sourcePath": "src/server/routes.ts",
757
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
757
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
758
758
  "since": "2025-01-01"
759
759
  },
760
760
  "route-group:machine-mesh": {
@@ -770,7 +770,7 @@
770
770
  "type": "route-group",
771
771
  "domain": "security",
772
772
  "sourcePath": "src/server/routes.ts",
773
- "contentHash": "538d1cb91709f8101b27562caede175c9c6f22a86119f3ee9dcca7c82e6c50ee",
773
+ "contentHash": "53d9f4dd41e84b754d3b7a239dfd509e41987c3bcdd8c9504159f8c5345ea6d9",
774
774
  "since": "2025-01-01"
775
775
  },
776
776
  "cli:init": {
@@ -1538,7 +1538,7 @@
1538
1538
  "type": "subsystem",
1539
1539
  "domain": "updates",
1540
1540
  "sourcePath": "src/core/PostUpdateMigrator.ts",
1541
- "contentHash": "95566e07396ebe97b2096817786f681f79dd6cc7d3a4ecc8f787c2948857c09b",
1541
+ "contentHash": "a502a72add49bb29376a4932c9c6b9378193a7eb2bd9614156cbd55f6a9b5857",
1542
1542
  "since": "2025-01-01"
1543
1543
  },
1544
1544
  "subsystem:scheduler": {
@@ -0,0 +1,56 @@
1
+ # Upgrade Guide — vNEXT
2
+
3
+ <!-- assembled-by: assemble-next-md -->
4
+ <!-- bump: patch -->
5
+
6
+ ## What Changed
7
+
8
+ Second wedge-signature family + the API fresh-respawn lever, from the
9
+ 2026-06-05 EXO 3.0 incident. A session whose transcript accumulated literal
10
+ red-team test payloads (generated during MTP security-harness work) got EVERY
11
+ reply rejected by the API's Usage Policy classifier — `API Error: … appears to
12
+ violate our Usage Policy` on each turn, because every turn re-sends the full
13
+ conversation. Same permanent-death shape as the thinking-block 400 (still
14
+ emitting output, so the silence + socket sentinels miss it), but the
15
+ ContextWedgeSentinel only knew the thinking-block signature, so it watched the
16
+ session die for an hour and said nothing. Recovery required hand-editing
17
+ `topic-resume-map.json` because `/sessions/refresh` did not forward `fresh`.
18
+
19
+ Now: `classifyWedgeTail()` recognizes both families and tags every sentinel
20
+ event with `kind` (`thinking-block-400` | `aup-rejection`) in the audit trail
21
+ and escalation wording. The AUP family carries an extra discriminator — the
22
+ signature must appear on MORE THAN ONE line (the loop always repeats; a benign
23
+ one-off rejection must not cost the session its conversation). And
24
+ `POST /sessions/refresh` accepts `fresh: true`, reaching the same
25
+ SessionRefresh fresh-mode the sentinel uses internally.
26
+
27
+ ## What to Tell Your User
28
+
29
+ If a conversation ever dies the way the EXO session did — every reply
30
+ instantly refused by the AI provider because of what's accumulated in the
31
+ transcript — I now notice it, can recover it automatically with a fresh
32
+ restart (when auto-recovery is enabled), and explain what happened instead of
33
+ leaving you staring at "delivered" receipts with no answers.
34
+
35
+ ## Summary of New Capabilities
36
+
37
+ - ContextWedgeSentinel detects the AUP-rejection loop (second signature
38
+ family) with a repetition discriminator against benign one-off rejections;
39
+ audit events + escalations carry the wedge kind. No configuration change —
40
+ rides the existing `monitoring.contextWedgeSentinel` settings.
41
+ - `POST /sessions/refresh` accepts `fresh: true` — kill + respawn WITHOUT
42
+ `--resume` (clears the topic's resume UUID), the recovery lever for any
43
+ poisoned transcript.
44
+ - CLAUDE.md template + migration: existing agents learn about the second
45
+ family, the API lever, and the prevention rule (adversarial payloads live in
46
+ files on disk, never pasted into conversation transcripts).
47
+
48
+ ## Evidence
49
+
50
+ Live incident recovery (2026-06-05, topic 19437): manual kill + resume-map
51
+ clear + fresh spawn verified end-to-end — fresh session answered immediately
52
+ where the wedged one had failed every turn for ~1h. Unit: 32 sentinel tests
53
+ (incl. both sides of the one-off-vs-loop boundary, kind tagging, escalation
54
+ wording per family) + 8 route tests (fresh validation, forwarding, 202 shape)
55
+ + 3 migrator tests (fresh install carries the note; existing-section patch;
56
+ idempotency). Integration + e2e wedge suites green; tsc clean; preflight PASS.
@@ -0,0 +1,45 @@
1
+ # ELI16 — AUP-Rejection Wedge Signature + Fresh-Respawn API
2
+
3
+ ## What happened
4
+
5
+ Last night one of my sessions died in a new way. Justin and the session had
6
+ been designing security test scenarios (deliberately-sneaky "try to trick the
7
+ agent" prompts, for the EXO 3.0 test harness). Enough of that content piled up
8
+ in the conversation that the AI provider's safety filter started refusing the
9
+ ENTIRE conversation — every single reply came back "this request appears to
10
+ violate our Usage Policy." Since each reply re-sends the whole conversation,
11
+ every reply failed, forever. From Justin's side it looked like me ignoring him
12
+ for an hour: "✓ Delivered" receipts, no answers.
13
+
14
+ The watchdog that's supposed to catch dead-but-still-printing sessions (the
15
+ ContextWedgeSentinel) only knew ONE death signature — the "thinking block"
16
+ error from May. This new one sailed right past it. And the only repair lever —
17
+ "restart fresh, do NOT reload the poisoned conversation" — existed solely
18
+ inside the watchdog's own wiring, so fixing it by hand meant editing a state
19
+ file directly.
20
+
21
+ ## What this change does
22
+
23
+ 1. **Teaches the watchdog the second signature.** It now recognizes the
24
+ policy-rejection loop too, and the audit log says WHICH kind of wedge it
25
+ caught. Safety detail: one single policy rejection is NOT treated as a
26
+ wedge — sometimes one message just gets refused and the next works fine,
27
+ and killing the conversation for that would destroy real state. The loop
28
+ version always repeats, so we require seeing it more than once.
29
+
30
+ 2. **Adds the repair lever to the API.** `POST /sessions/refresh` now accepts
31
+ `"fresh": true` — restart this session WITHOUT reloading its conversation.
32
+ That's the right move whenever a transcript itself is poisoned.
33
+
34
+ 3. **Tells every deployed agent about it.** The CLAUDE.md migration adds the
35
+ new signature, the API lever, and the prevention rule: keep literal attack
36
+ payloads in files on disk and reference them by path — never paste them
37
+ into the conversation itself.
38
+
39
+ ## Why it's safe
40
+
41
+ Detection alone never kills anything (auto-recovery stays opt-in, unchanged).
42
+ The one-off-vs-loop distinction is tested on both sides with the real pane
43
+ text from the incident. The API param is validated, rate-guarded by the same
44
+ limiter every refresh uses, and reuses the exact internal mode the sentinel
45
+ already exercised in production twice this week.