instar 1.3.462 → 1.3.464
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/commands/server.d.ts.map +1 -1
- package/dist/commands/server.js +43 -2
- package/dist/commands/server.js.map +1 -1
- package/dist/config/ConfigDefaults.d.ts.map +1 -1
- package/dist/config/ConfigDefaults.js +10 -0
- package/dist/config/ConfigDefaults.js.map +1 -1
- package/dist/core/types.d.ts +10 -0
- package/dist/core/types.d.ts.map +1 -1
- package/dist/core/types.js.map +1 -1
- package/dist/feedback-factory/cutoverReadiness.d.ts +34 -0
- package/dist/feedback-factory/cutoverReadiness.d.ts.map +1 -1
- package/dist/feedback-factory/cutoverReadiness.js +37 -0
- package/dist/feedback-factory/cutoverReadiness.js.map +1 -1
- package/dist/feedback-factory/migration/PersistedShadowImportTarget.d.ts +54 -0
- package/dist/feedback-factory/migration/PersistedShadowImportTarget.d.ts.map +1 -0
- package/dist/feedback-factory/migration/PersistedShadowImportTarget.js +121 -0
- package/dist/feedback-factory/migration/PersistedShadowImportTarget.js.map +1 -0
- package/dist/feedback-factory/migration/integrityPassRunner.d.ts +26 -0
- package/dist/feedback-factory/migration/integrityPassRunner.d.ts.map +1 -0
- package/dist/feedback-factory/migration/integrityPassRunner.js +83 -0
- package/dist/feedback-factory/migration/integrityPassRunner.js.map +1 -0
- package/dist/monitoring/ActiveWorkSilenceSentinel.d.ts +27 -2
- package/dist/monitoring/ActiveWorkSilenceSentinel.d.ts.map +1 -1
- package/dist/monitoring/ActiveWorkSilenceSentinel.js +50 -0
- package/dist/monitoring/ActiveWorkSilenceSentinel.js.map +1 -1
- package/dist/monitoring/SentinelNotifier.d.ts +1 -1
- package/dist/monitoring/SentinelNotifier.d.ts.map +1 -1
- package/dist/monitoring/SentinelNotifier.js.map +1 -1
- package/dist/monitoring/sentinelWiring.d.ts +8 -0
- package/dist/monitoring/sentinelWiring.d.ts.map +1 -1
- package/dist/monitoring/sentinelWiring.js +10 -0
- package/dist/monitoring/sentinelWiring.js.map +1 -1
- package/dist/server/AgentServer.d.ts.map +1 -1
- package/dist/server/AgentServer.js +49 -0
- package/dist/server/AgentServer.js.map +1 -1
- package/dist/server/CapabilityIndex.d.ts.map +1 -1
- package/dist/server/CapabilityIndex.js +1 -0
- package/dist/server/CapabilityIndex.js.map +1 -1
- package/dist/server/middleware.d.ts.map +1 -1
- package/dist/server/middleware.js +3 -0
- package/dist/server/middleware.js.map +1 -1
- package/dist/server/routes.d.ts.map +1 -1
- package/dist/server/routes.js +28 -0
- package/dist/server/routes.js.map +1 -1
- package/package.json +1 -1
- package/src/data/builtin-manifest.json +47 -47
- package/upgrades/1.3.463.md +27 -0
- package/upgrades/1.3.464.md +72 -0
- package/upgrades/eli16/integrity-leg-shadow-import.md +27 -0
- package/upgrades/side-effects/autoheal-silence-ladder.md +98 -0
- package/upgrades/side-effects/integrity-leg-shadow-import.md +35 -0
package/package.json
CHANGED
|
@@ -1,8 +1,8 @@
|
|
|
1
1
|
{
|
|
2
2
|
"$schema": "./builtin-manifest.schema.json",
|
|
3
3
|
"schemaVersion": 1,
|
|
4
|
-
"generatedAt": "2026-06-
|
|
5
|
-
"instarVersion": "1.3.
|
|
4
|
+
"generatedAt": "2026-06-10T05:50:26.360Z",
|
|
5
|
+
"instarVersion": "1.3.464",
|
|
6
6
|
"entryCount": 199,
|
|
7
7
|
"entries": {
|
|
8
8
|
"hook:session-start": {
|
|
@@ -418,7 +418,7 @@
|
|
|
418
418
|
"type": "route-group",
|
|
419
419
|
"domain": "monitoring",
|
|
420
420
|
"sourcePath": "src/server/routes.ts",
|
|
421
|
-
"contentHash": "
|
|
421
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
422
422
|
"since": "2025-01-01"
|
|
423
423
|
},
|
|
424
424
|
"route-group:agents": {
|
|
@@ -426,7 +426,7 @@
|
|
|
426
426
|
"type": "route-group",
|
|
427
427
|
"domain": "sessions",
|
|
428
428
|
"sourcePath": "src/server/routes.ts",
|
|
429
|
-
"contentHash": "
|
|
429
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
430
430
|
"since": "2025-01-01"
|
|
431
431
|
},
|
|
432
432
|
"route-group:backups": {
|
|
@@ -434,7 +434,7 @@
|
|
|
434
434
|
"type": "route-group",
|
|
435
435
|
"domain": "operations",
|
|
436
436
|
"sourcePath": "src/server/routes.ts",
|
|
437
|
-
"contentHash": "
|
|
437
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
438
438
|
"since": "2025-01-01"
|
|
439
439
|
},
|
|
440
440
|
"route-group:git": {
|
|
@@ -442,7 +442,7 @@
|
|
|
442
442
|
"type": "route-group",
|
|
443
443
|
"domain": "coordination",
|
|
444
444
|
"sourcePath": "src/server/routes.ts",
|
|
445
|
-
"contentHash": "
|
|
445
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
446
446
|
"since": "2025-01-01"
|
|
447
447
|
},
|
|
448
448
|
"route-group:memory": {
|
|
@@ -450,7 +450,7 @@
|
|
|
450
450
|
"type": "route-group",
|
|
451
451
|
"domain": "memory",
|
|
452
452
|
"sourcePath": "src/server/routes.ts",
|
|
453
|
-
"contentHash": "
|
|
453
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
454
454
|
"since": "2025-01-01"
|
|
455
455
|
},
|
|
456
456
|
"route-group:semantic": {
|
|
@@ -458,7 +458,7 @@
|
|
|
458
458
|
"type": "route-group",
|
|
459
459
|
"domain": "memory",
|
|
460
460
|
"sourcePath": "src/server/routes.ts",
|
|
461
|
-
"contentHash": "
|
|
461
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
462
462
|
"since": "2025-01-01"
|
|
463
463
|
},
|
|
464
464
|
"route-group:status": {
|
|
@@ -466,7 +466,7 @@
|
|
|
466
466
|
"type": "route-group",
|
|
467
467
|
"domain": "monitoring",
|
|
468
468
|
"sourcePath": "src/server/routes.ts",
|
|
469
|
-
"contentHash": "
|
|
469
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
470
470
|
"since": "2025-01-01"
|
|
471
471
|
},
|
|
472
472
|
"route-group:capabilities": {
|
|
@@ -474,7 +474,7 @@
|
|
|
474
474
|
"type": "route-group",
|
|
475
475
|
"domain": "mapping",
|
|
476
476
|
"sourcePath": "src/server/routes.ts",
|
|
477
|
-
"contentHash": "
|
|
477
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
478
478
|
"since": "2025-01-01"
|
|
479
479
|
},
|
|
480
480
|
"route-group:project-map": {
|
|
@@ -482,7 +482,7 @@
|
|
|
482
482
|
"type": "route-group",
|
|
483
483
|
"domain": "mapping",
|
|
484
484
|
"sourcePath": "src/server/routes.ts",
|
|
485
|
-
"contentHash": "
|
|
485
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
486
486
|
"since": "2025-01-01"
|
|
487
487
|
},
|
|
488
488
|
"route-group:coherence": {
|
|
@@ -490,7 +490,7 @@
|
|
|
490
490
|
"type": "route-group",
|
|
491
491
|
"domain": "coherence",
|
|
492
492
|
"sourcePath": "src/server/routes.ts",
|
|
493
|
-
"contentHash": "
|
|
493
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
494
494
|
"since": "2025-01-01"
|
|
495
495
|
},
|
|
496
496
|
"route-group:topic-bindings": {
|
|
@@ -498,7 +498,7 @@
|
|
|
498
498
|
"type": "route-group",
|
|
499
499
|
"domain": "sessions",
|
|
500
500
|
"sourcePath": "src/server/routes.ts",
|
|
501
|
-
"contentHash": "
|
|
501
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
502
502
|
"since": "2025-01-01"
|
|
503
503
|
},
|
|
504
504
|
"route-group:context": {
|
|
@@ -506,7 +506,7 @@
|
|
|
506
506
|
"type": "route-group",
|
|
507
507
|
"domain": "context",
|
|
508
508
|
"sourcePath": "src/server/routes.ts",
|
|
509
|
-
"contentHash": "
|
|
509
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
510
510
|
"since": "2025-01-01"
|
|
511
511
|
},
|
|
512
512
|
"route-group:scope-coherence": {
|
|
@@ -514,7 +514,7 @@
|
|
|
514
514
|
"type": "route-group",
|
|
515
515
|
"domain": "coherence",
|
|
516
516
|
"sourcePath": "src/server/routes.ts",
|
|
517
|
-
"contentHash": "
|
|
517
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
518
518
|
"since": "2025-01-01"
|
|
519
519
|
},
|
|
520
520
|
"route-group:canonical-state": {
|
|
@@ -522,7 +522,7 @@
|
|
|
522
522
|
"type": "route-group",
|
|
523
523
|
"domain": "state",
|
|
524
524
|
"sourcePath": "src/server/routes.ts",
|
|
525
|
-
"contentHash": "
|
|
525
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
526
526
|
"since": "2025-01-01"
|
|
527
527
|
},
|
|
528
528
|
"route-group:ci": {
|
|
@@ -530,7 +530,7 @@
|
|
|
530
530
|
"type": "route-group",
|
|
531
531
|
"domain": "monitoring",
|
|
532
532
|
"sourcePath": "src/server/routes.ts",
|
|
533
|
-
"contentHash": "
|
|
533
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
534
534
|
"since": "2025-01-01"
|
|
535
535
|
},
|
|
536
536
|
"route-group:sessions": {
|
|
@@ -538,7 +538,7 @@
|
|
|
538
538
|
"type": "route-group",
|
|
539
539
|
"domain": "sessions",
|
|
540
540
|
"sourcePath": "src/server/routes.ts",
|
|
541
|
-
"contentHash": "
|
|
541
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
542
542
|
"since": "2025-01-01"
|
|
543
543
|
},
|
|
544
544
|
"route-group:jobs": {
|
|
@@ -546,7 +546,7 @@
|
|
|
546
546
|
"type": "route-group",
|
|
547
547
|
"domain": "scheduling",
|
|
548
548
|
"sourcePath": "src/server/routes.ts",
|
|
549
|
-
"contentHash": "
|
|
549
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
550
550
|
"since": "2025-01-01"
|
|
551
551
|
},
|
|
552
552
|
"route-group:skip-ledger": {
|
|
@@ -554,7 +554,7 @@
|
|
|
554
554
|
"type": "route-group",
|
|
555
555
|
"domain": "scheduling",
|
|
556
556
|
"sourcePath": "src/server/routes.ts",
|
|
557
|
-
"contentHash": "
|
|
557
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
558
558
|
"since": "2025-01-01"
|
|
559
559
|
},
|
|
560
560
|
"route-group:telegram": {
|
|
@@ -562,7 +562,7 @@
|
|
|
562
562
|
"type": "route-group",
|
|
563
563
|
"domain": "communication",
|
|
564
564
|
"sourcePath": "src/server/routes.ts",
|
|
565
|
-
"contentHash": "
|
|
565
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
566
566
|
"since": "2025-01-01"
|
|
567
567
|
},
|
|
568
568
|
"route-group:attention": {
|
|
@@ -570,7 +570,7 @@
|
|
|
570
570
|
"type": "route-group",
|
|
571
571
|
"domain": "communication",
|
|
572
572
|
"sourcePath": "src/server/routes.ts",
|
|
573
|
-
"contentHash": "
|
|
573
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
574
574
|
"since": "2025-01-01"
|
|
575
575
|
},
|
|
576
576
|
"route-group:relationships": {
|
|
@@ -578,7 +578,7 @@
|
|
|
578
578
|
"type": "route-group",
|
|
579
579
|
"domain": "relationships",
|
|
580
580
|
"sourcePath": "src/server/routes.ts",
|
|
581
|
-
"contentHash": "
|
|
581
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
582
582
|
"since": "2025-01-01"
|
|
583
583
|
},
|
|
584
584
|
"route-group:feedback": {
|
|
@@ -586,7 +586,7 @@
|
|
|
586
586
|
"type": "route-group",
|
|
587
587
|
"domain": "feedback",
|
|
588
588
|
"sourcePath": "src/server/routes.ts",
|
|
589
|
-
"contentHash": "
|
|
589
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
590
590
|
"since": "2025-01-01"
|
|
591
591
|
},
|
|
592
592
|
"route-group:updates": {
|
|
@@ -594,7 +594,7 @@
|
|
|
594
594
|
"type": "route-group",
|
|
595
595
|
"domain": "updates",
|
|
596
596
|
"sourcePath": "src/server/routes.ts",
|
|
597
|
-
"contentHash": "
|
|
597
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
598
598
|
"since": "2025-01-01"
|
|
599
599
|
},
|
|
600
600
|
"route-group:dispatches": {
|
|
@@ -602,7 +602,7 @@
|
|
|
602
602
|
"type": "route-group",
|
|
603
603
|
"domain": "dispatches",
|
|
604
604
|
"sourcePath": "src/server/routes.ts",
|
|
605
|
-
"contentHash": "
|
|
605
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
606
606
|
"since": "2025-01-01"
|
|
607
607
|
},
|
|
608
608
|
"route-group:quota": {
|
|
@@ -610,7 +610,7 @@
|
|
|
610
610
|
"type": "route-group",
|
|
611
611
|
"domain": "monitoring",
|
|
612
612
|
"sourcePath": "src/server/routes.ts",
|
|
613
|
-
"contentHash": "
|
|
613
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
614
614
|
"since": "2025-01-01"
|
|
615
615
|
},
|
|
616
616
|
"route-group:publishing": {
|
|
@@ -618,7 +618,7 @@
|
|
|
618
618
|
"type": "route-group",
|
|
619
619
|
"domain": "publishing",
|
|
620
620
|
"sourcePath": "src/server/routes.ts",
|
|
621
|
-
"contentHash": "
|
|
621
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
622
622
|
"since": "2025-01-01"
|
|
623
623
|
},
|
|
624
624
|
"route-group:private-views": {
|
|
@@ -626,7 +626,7 @@
|
|
|
626
626
|
"type": "route-group",
|
|
627
627
|
"domain": "publishing",
|
|
628
628
|
"sourcePath": "src/server/routes.ts",
|
|
629
|
-
"contentHash": "
|
|
629
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
630
630
|
"since": "2025-01-01"
|
|
631
631
|
},
|
|
632
632
|
"route-group:tunnel": {
|
|
@@ -634,7 +634,7 @@
|
|
|
634
634
|
"type": "route-group",
|
|
635
635
|
"domain": "networking",
|
|
636
636
|
"sourcePath": "src/server/routes.ts",
|
|
637
|
-
"contentHash": "
|
|
637
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
638
638
|
"since": "2025-01-01"
|
|
639
639
|
},
|
|
640
640
|
"route-group:events": {
|
|
@@ -642,7 +642,7 @@
|
|
|
642
642
|
"type": "route-group",
|
|
643
643
|
"domain": "networking",
|
|
644
644
|
"sourcePath": "src/server/routes.ts",
|
|
645
|
-
"contentHash": "
|
|
645
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
646
646
|
"since": "2025-01-01"
|
|
647
647
|
},
|
|
648
648
|
"route-group:evolution": {
|
|
@@ -650,7 +650,7 @@
|
|
|
650
650
|
"type": "route-group",
|
|
651
651
|
"domain": "evolution",
|
|
652
652
|
"sourcePath": "src/server/routes.ts",
|
|
653
|
-
"contentHash": "
|
|
653
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
654
654
|
"since": "2025-01-01"
|
|
655
655
|
},
|
|
656
656
|
"route-group:watchdog": {
|
|
@@ -658,7 +658,7 @@
|
|
|
658
658
|
"type": "route-group",
|
|
659
659
|
"domain": "monitoring",
|
|
660
660
|
"sourcePath": "src/server/routes.ts",
|
|
661
|
-
"contentHash": "
|
|
661
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
662
662
|
"since": "2025-01-01"
|
|
663
663
|
},
|
|
664
664
|
"route-group:topic-memory": {
|
|
@@ -666,7 +666,7 @@
|
|
|
666
666
|
"type": "route-group",
|
|
667
667
|
"domain": "memory",
|
|
668
668
|
"sourcePath": "src/server/routes.ts",
|
|
669
|
-
"contentHash": "
|
|
669
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
670
670
|
"since": "2025-01-01"
|
|
671
671
|
},
|
|
672
672
|
"route-group:state-sync": {
|
|
@@ -674,7 +674,7 @@
|
|
|
674
674
|
"type": "route-group",
|
|
675
675
|
"domain": "coordination",
|
|
676
676
|
"sourcePath": "src/server/routes.ts",
|
|
677
|
-
"contentHash": "
|
|
677
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
678
678
|
"since": "2025-01-01"
|
|
679
679
|
},
|
|
680
680
|
"route-group:intent": {
|
|
@@ -682,7 +682,7 @@
|
|
|
682
682
|
"type": "route-group",
|
|
683
683
|
"domain": "intent",
|
|
684
684
|
"sourcePath": "src/server/routes.ts",
|
|
685
|
-
"contentHash": "
|
|
685
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
686
686
|
"since": "2025-01-01"
|
|
687
687
|
},
|
|
688
688
|
"route-group:triage": {
|
|
@@ -690,7 +690,7 @@
|
|
|
690
690
|
"type": "route-group",
|
|
691
691
|
"domain": "safety",
|
|
692
692
|
"sourcePath": "src/server/routes.ts",
|
|
693
|
-
"contentHash": "
|
|
693
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
694
694
|
"since": "2025-01-01"
|
|
695
695
|
},
|
|
696
696
|
"route-group:operations": {
|
|
@@ -698,7 +698,7 @@
|
|
|
698
698
|
"type": "route-group",
|
|
699
699
|
"domain": "safety",
|
|
700
700
|
"sourcePath": "src/server/routes.ts",
|
|
701
|
-
"contentHash": "
|
|
701
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
702
702
|
"since": "2025-01-01"
|
|
703
703
|
},
|
|
704
704
|
"route-group:sentinel": {
|
|
@@ -706,7 +706,7 @@
|
|
|
706
706
|
"type": "route-group",
|
|
707
707
|
"domain": "safety",
|
|
708
708
|
"sourcePath": "src/server/routes.ts",
|
|
709
|
-
"contentHash": "
|
|
709
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
710
710
|
"since": "2025-01-01"
|
|
711
711
|
},
|
|
712
712
|
"route-group:trust": {
|
|
@@ -714,7 +714,7 @@
|
|
|
714
714
|
"type": "route-group",
|
|
715
715
|
"domain": "safety",
|
|
716
716
|
"sourcePath": "src/server/routes.ts",
|
|
717
|
-
"contentHash": "
|
|
717
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
718
718
|
"since": "2025-01-01"
|
|
719
719
|
},
|
|
720
720
|
"route-group:monitoring": {
|
|
@@ -722,7 +722,7 @@
|
|
|
722
722
|
"type": "route-group",
|
|
723
723
|
"domain": "monitoring",
|
|
724
724
|
"sourcePath": "src/server/routes.ts",
|
|
725
|
-
"contentHash": "
|
|
725
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
726
726
|
"since": "2025-01-01"
|
|
727
727
|
},
|
|
728
728
|
"route-group:commitments": {
|
|
@@ -730,7 +730,7 @@
|
|
|
730
730
|
"type": "route-group",
|
|
731
731
|
"domain": "commitments",
|
|
732
732
|
"sourcePath": "src/server/routes.ts",
|
|
733
|
-
"contentHash": "
|
|
733
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
734
734
|
"since": "2025-01-01"
|
|
735
735
|
},
|
|
736
736
|
"route-group:episodes": {
|
|
@@ -738,7 +738,7 @@
|
|
|
738
738
|
"type": "route-group",
|
|
739
739
|
"domain": "memory",
|
|
740
740
|
"sourcePath": "src/server/routes.ts",
|
|
741
|
-
"contentHash": "
|
|
741
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
742
742
|
"since": "2025-01-01"
|
|
743
743
|
},
|
|
744
744
|
"route-group:messages": {
|
|
@@ -746,7 +746,7 @@
|
|
|
746
746
|
"type": "route-group",
|
|
747
747
|
"domain": "coordination",
|
|
748
748
|
"sourcePath": "src/server/routes.ts",
|
|
749
|
-
"contentHash": "
|
|
749
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
750
750
|
"since": "2025-01-01"
|
|
751
751
|
},
|
|
752
752
|
"route-group:system-reviews": {
|
|
@@ -754,7 +754,7 @@
|
|
|
754
754
|
"type": "route-group",
|
|
755
755
|
"domain": "monitoring",
|
|
756
756
|
"sourcePath": "src/server/routes.ts",
|
|
757
|
-
"contentHash": "
|
|
757
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
758
758
|
"since": "2025-01-01"
|
|
759
759
|
},
|
|
760
760
|
"route-group:machine-mesh": {
|
|
@@ -770,7 +770,7 @@
|
|
|
770
770
|
"type": "route-group",
|
|
771
771
|
"domain": "security",
|
|
772
772
|
"sourcePath": "src/server/routes.ts",
|
|
773
|
-
"contentHash": "
|
|
773
|
+
"contentHash": "f8368ea548abfd012ba860cd6c3de18b278029e88667be225795cf53e321d741",
|
|
774
774
|
"since": "2025-01-01"
|
|
775
775
|
},
|
|
776
776
|
"cli:init": {
|
|
@@ -1506,7 +1506,7 @@
|
|
|
1506
1506
|
"type": "subsystem",
|
|
1507
1507
|
"domain": "server",
|
|
1508
1508
|
"sourcePath": "src/server/AgentServer.ts",
|
|
1509
|
-
"contentHash": "
|
|
1509
|
+
"contentHash": "c649846feae2eaef0c33a8ca902817fc84ff200eb306bbf4b2c37e26b8f91747",
|
|
1510
1510
|
"since": "2025-01-01"
|
|
1511
1511
|
},
|
|
1512
1512
|
"subsystem:session-manager": {
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
# Upgrade Guide — vNEXT
|
|
2
|
+
|
|
3
|
+
<!-- assembled-by: assemble-next-md -->
|
|
4
|
+
<!-- bump: patch -->
|
|
5
|
+
|
|
6
|
+
## What Changed
|
|
7
|
+
|
|
8
|
+
The feedback-migration **cutover-readiness door** can now resolve its **integrity** leg. A new trigger — `POST /cutover-readiness/integrity-pass` — runs the REAL pre-click integrity pass and records the verdict to the canonical integrity path.
|
|
9
|
+
|
|
10
|
+
Previously the door's formula (`ready = integrity.passed && parity.cleared && !parity.stale`) was unsatisfiable: the parity leg worked (#1007), but `recordIntegrityReport` had **zero callers** — nothing ever ran a real import and wrote the report, so `integrity.passed` could never become true and the door could never open. The import-dryrun route is deliberately walled off from the integrity path (its report can never green the gate), so it couldn't fill the gap either.
|
|
11
|
+
|
|
12
|
+
The new pass: live read-only fetch → AS-IS import into a **persisted shadow** (`PersistedShadowImportTarget`, a throwaway JSONL copy — never canonical) → the full integrity gate over the readback → `recordIntegrityReport`. A passing report greens the leg; a failing one flips it closed (the door always reflects the latest real verdict). The heavy 145K-row pass runs OFF the event loop in a child process (`integrityPassRunner`) — the same event-loop-contention lesson that drove the parity fix (#948) — sharing `CutoverReadiness`'s single-flight guard and max-hold backstop.
|
|
13
|
+
|
|
14
|
+
## What to Tell Your User
|
|
15
|
+
|
|
16
|
+
Internal migration infrastructure — nothing to configure. This wires the last piece needed for the cutover-readiness door to go fully green ahead of the operator-gated cutover click. Building or deploying it does NOT green the door — that requires explicitly running the integrity pass, and the cutover flip itself remains the operator's manual click.
|
|
17
|
+
|
|
18
|
+
## Summary of New Capabilities
|
|
19
|
+
|
|
20
|
+
| Capability | How to use |
|
|
21
|
+
|-----------|-----------|
|
|
22
|
+
| Run the REAL pre-click integrity pass + record the canonical verdict | `POST /cutover-readiness/integrity-pass` (Bearer-gated; 409 when no `feedbackMigration.paritySource` is configured) |
|
|
23
|
+
| Durable AS-IS import shadow for verification | `new PersistedShadowImportTarget(dir)` — JSONL-backed, dup-PK refusing, `dispose()`-able; never canonical |
|
|
24
|
+
|
|
25
|
+
## Evidence
|
|
26
|
+
|
|
27
|
+
Unit `tests/unit/cutover-readiness.test.ts` (28, incl. 7 new `runIntegrityPass`: greens-on-pass → door ready with parity / flips-closed-on-fail / no-record-on-abort / no-record-on-fetch-fail / unconfigured-refuse / single-flight-guard) + `tests/unit/feedback-factory/persisted-shadow-import-target.test.ts` (5 new). Integration `tests/integration/cutover-readiness-routes.test.ts` (14, incl. 4 new integrity-pass route). E2E `tests/e2e/cutover-readiness-lifecycle.test.ts` (5, incl. 1 new feature-alive on the real AgentServer init path). All green; `tsc --noEmit` clean. The integrity substance was independently proven over the live 145K-row corpus (0 issues). Earned from topic 12476 (feedback-process migration, Phase-2 / cutover-readiness integrity leg).
|
|
@@ -0,0 +1,72 @@
|
|
|
1
|
+
# Upgrade Guide — vNEXT
|
|
2
|
+
|
|
3
|
+
<!-- assembled-by: assemble-next-md -->
|
|
4
|
+
<!-- bump: patch -->
|
|
5
|
+
|
|
6
|
+
## What Changed
|
|
7
|
+
|
|
8
|
+
Extends the **ActiveWorkSilenceSentinel** (the watchdog that notices when a
|
|
9
|
+
session was working then went quiet) with two things:
|
|
10
|
+
|
|
11
|
+
1. **Notices now go to the stalled session's OWN topic** — not the consolidated
|
|
12
|
+
lifeline feed. Previously a "this went quiet, want me to dig in?" escalation
|
|
13
|
+
landed in the shared system topic, where it was easy to miss and gave no
|
|
14
|
+
signal about *which* conversation stalled. Now it posts in that conversation's
|
|
15
|
+
own Telegram topic, falling back to the consolidated feed only if the topic
|
|
16
|
+
can't be resolved or delivery fails. (Operator ask, 2026-06-09.)
|
|
17
|
+
|
|
18
|
+
2. **An opt-in auto-heal ladder** (`autoRecover`, DARK / off by default): when a
|
|
19
|
+
confirmed-silent session doesn't respond to the gentle nudge, instead of only
|
|
20
|
+
asking the operator, the sentinel can **respawn it fresh** (conversation
|
|
21
|
+
preserved via `--resume`) and report the outcome in that session's topic. The
|
|
22
|
+
respawn is loop-capped (`maxAutoRecoveries`, default 1): a session that stays
|
|
23
|
+
stuck after one respawn is asked-about once and then left alone — never
|
|
24
|
+
re-respawned in a loop. A failed respawn falls back to the old "ask the
|
|
25
|
+
operator" behavior.
|
|
26
|
+
|
|
27
|
+
The respawn reuses the exact `refreshSession({fresh:true})` primitive the
|
|
28
|
+
ContextWedgeSentinel already uses in production, so it is framework-agnostic and
|
|
29
|
+
well-exercised.
|
|
30
|
+
|
|
31
|
+
## What to Tell Your User
|
|
32
|
+
|
|
33
|
+
When one of my work sessions goes quiet mid-task, two things are better now.
|
|
34
|
+
First, the heads-up about it lands **in that conversation's own topic** instead
|
|
35
|
+
of a shared system channel — so you can see exactly which thread stalled. Second,
|
|
36
|
+
there's a new opt-in mode (⚗️ experimental, off by default) where I don't just
|
|
37
|
+
tell you a session is stuck — I **automatically restart it** (keeping the
|
|
38
|
+
conversation) and report back, only falling back to asking you if the restart
|
|
39
|
+
itself doesn't work. It can only auto-restart a given stuck session once, so it
|
|
40
|
+
can never get into a restart loop. It's off by default — just ask me to turn on
|
|
41
|
+
auto-recovery for stalled sessions and I'll enable it for you.
|
|
42
|
+
|
|
43
|
+
## Summary of New Capabilities
|
|
44
|
+
|
|
45
|
+
| Capability | How to Use |
|
|
46
|
+
|-----------|-----------|
|
|
47
|
+
| Silence/recovery notices route to the stalled session's own topic | automatic — no config |
|
|
48
|
+
| Opt-in auto-heal: respawn a confirmed-stuck session instead of only asking (⚗️ experimental, off by default) | `monitoring.activeWorkSilenceSentinel.autoRecover: true` |
|
|
49
|
+
| Loop-cap on auto-respawn | `monitoring.activeWorkSilenceSentinel.maxAutoRecoveries` (default 1) |
|
|
50
|
+
|
|
51
|
+
## Evidence
|
|
52
|
+
|
|
53
|
+
Reproduction (live, 2026-06-09): a session that kicked off a long change went
|
|
54
|
+
quiet for ~1 hour. The sentinel correctly detected the silence and escalated,
|
|
55
|
+
but the escalation went to the consolidated lifeline topic — which had been
|
|
56
|
+
deleted on the Telegram side — so the operator saw pure silence and couldn't
|
|
57
|
+
tell a stalled session from a working one. The fix has two halves: the
|
|
58
|
+
deleted-topic self-heal (shipped separately) and this change, which routes the
|
|
59
|
+
notice to the session's own topic and (opt-in) recovers the session instead of
|
|
60
|
+
only asking.
|
|
61
|
+
|
|
62
|
+
After the change:
|
|
63
|
+
- `tests/unit/monitoring/ActiveWorkSilenceSentinel.test.ts` — 6 new cases pin the
|
|
64
|
+
ladder: autoRecover OFF → ask, never respawn; ON + respawn succeeds → one
|
|
65
|
+
respawn, recovery notices, state cleared; ON + respawn fails → recovery-failed,
|
|
66
|
+
ask, state kept (loop-stopper); loop-cap → respawned at most once across
|
|
67
|
+
repeated ticks; recoverFn throws → recover-error surfaced + ask.
|
|
68
|
+
- `tests/unit/monitoring/sentinelWiring.test.ts` — 5 new cases pin notice
|
|
69
|
+
routing (session topic on resolve; escalate fallback when unresolved or when
|
|
70
|
+
delivery fails) and recoverFn passthrough (present vs undefined-when-dark).
|
|
71
|
+
- Existing silently-stopped unit/integration/e2e suites stay green. `tsc` +
|
|
72
|
+
repo lint clean.
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
# ELI16 — Wire the cutover door's integrity check so it can actually go green
|
|
2
|
+
|
|
3
|
+
## What this is
|
|
4
|
+
|
|
5
|
+
The feedback-process migration (Dawn → Echo) ends with one irreversible step: an operator clicks "cut over," and from then on the new instance is canonical. To make that click safe, there's a **readiness door** that only reads green when two things are true: the live data still matches (parity), AND a real import of the curated data passes every integrity check (no corrupted clusters, no broken links, no schema surprises).
|
|
6
|
+
|
|
7
|
+
The door's formula is literally `ready = integrity.passed && parity.cleared && !parity.stale`.
|
|
8
|
+
|
|
9
|
+
## What already existed
|
|
10
|
+
|
|
11
|
+
- The **parity** half works (verified live — a clusters-only pass clears in ~1s).
|
|
12
|
+
- The integrity gate's *math* existed (`runIntegrityGate` — checksums, fingerprint-uniqueness, schema-equivalence, referential integrity) and was already proven clean over the live 145K-row corpus.
|
|
13
|
+
- BUT the function that records a passing integrity report — `recordIntegrityReport` — had **zero callers**. Nothing in the running server ever ran a real import and wrote that report. So the integrity half could never turn green, which meant the door could never open. The migration was stuck one wire short of the finish line.
|
|
14
|
+
|
|
15
|
+
## What's new
|
|
16
|
+
|
|
17
|
+
A single new trigger: **`POST /cutover-readiness/integrity-pass`**. When called, it:
|
|
18
|
+
1. Fetches the live curated corpus (read-only).
|
|
19
|
+
2. Imports it AS-IS into a **persisted shadow** (a throwaway on-disk copy — never the canonical database).
|
|
20
|
+
3. Runs the full integrity gate over what landed.
|
|
21
|
+
4. Records the verdict to the canonical integrity path — a **passing** report turns the integrity leg green; a **failing** one keeps it shut (the door always reflects the latest real check).
|
|
22
|
+
|
|
23
|
+
Because importing 145K rows would freeze the server's event loop, the heavy work runs in a **separate child process** (the same lesson that drove the parity fix). The shadow is a verification copy only — the real production import still happens *after* the operator clicks, on Dawn's side.
|
|
24
|
+
|
|
25
|
+
## What you need to decide
|
|
26
|
+
|
|
27
|
+
Nothing changes automatically. Building or merging this **cannot** make the door go green — that only happens when someone explicitly triggers the pass on the deployed server. The cutover click itself stays entirely the operator's. This change just makes "is everything up to the door green?" answerable from real evidence instead of an un-runnable gap.
|
|
@@ -0,0 +1,98 @@
|
|
|
1
|
+
# Side-effects review — Auto-heal ladder (ActiveWorkSilenceSentinel)
|
|
2
|
+
|
|
3
|
+
## Scope of change
|
|
4
|
+
|
|
5
|
+
Extends the existing `ActiveWorkSilenceSentinel` (silent-freeze watchdog) with a
|
|
6
|
+
dark-by-default auto-recovery ladder and routes its notices to the stalled
|
|
7
|
+
session's own topic. Touched src files:
|
|
8
|
+
|
|
9
|
+
- `src/monitoring/ActiveWorkSilenceSentinel.ts` — `SilenceStatus` gains
|
|
10
|
+
`recovering` / `recovery-failed`; `SilenceState.recoveryAttempts`; deps gain
|
|
11
|
+
optional `recoverFn`; config gains `autoRecover` (default false) +
|
|
12
|
+
`maxAutoRecoveries` (default 1); `escalate()` now branches to `runRecovery()`
|
|
13
|
+
when `autoRecover && recoverFn && recoveryAttempts < maxAutoRecoveries`; new
|
|
14
|
+
`runRecovery()` ladder (notify → respawn → notify outcome; emits
|
|
15
|
+
`recovering`/`recovered`/`recovery-failed`/`recover-error`).
|
|
16
|
+
- `src/monitoring/sentinelWiring.ts` — `buildActiveWorkSilenceDeps` gains
|
|
17
|
+
optional `recoverFn`, `getTopicForSession`, `deliverToTopic`; `notifyFn` now
|
|
18
|
+
routes to the session's own topic, falling back to the consolidated `escalate`
|
|
19
|
+
path when the topic can't be resolved OR delivery returns false.
|
|
20
|
+
- `src/commands/server.ts` — wires `recoverFn` (gated on `autoRecover`, via the
|
|
21
|
+
same `_sessionRefresh.refreshSession({fresh:true})` primitive ContextWedge
|
|
22
|
+
uses), `getTopicForSession` (telegram), `deliverToTopic` (POST
|
|
23
|
+
`/telegram/reply/:topicId`), and the new ladder event recorders.
|
|
24
|
+
- `src/core/types.ts` — config type fields `autoRecover` + `maxAutoRecoveries`.
|
|
25
|
+
- `src/config/ConfigDefaults.ts` — comment-only; `autoRecover` deliberately NOT
|
|
26
|
+
persisted (see Migration Parity below).
|
|
27
|
+
- `src/monitoring/SentinelNotifier.ts` — adds `recovering` to `SentinelEventKind`
|
|
28
|
+
for the audit trail.
|
|
29
|
+
|
|
30
|
+
## Blast radius
|
|
31
|
+
|
|
32
|
+
The only behavioral path that DESTROYS state is `recoverFn` → fresh respawn.
|
|
33
|
+
It is reachable ONLY when `monitoring.activeWorkSilenceSentinel.autoRecover ===
|
|
34
|
+
true` (off by default) AND a session is confirmed silent past the threshold AND
|
|
35
|
+
a nudge failed to advance output. The respawn uses `fresh:true`, preserving the
|
|
36
|
+
conversation via `--resume` (same semantics ContextWedge already relies on in
|
|
37
|
+
production). When `autoRecover` is off, the only behavior change from before is
|
|
38
|
+
the notice ROUTING (see below) — no respawn ever occurs.
|
|
39
|
+
|
|
40
|
+
## Notice-routing behavior change (applies even when autoRecover is OFF)
|
|
41
|
+
|
|
42
|
+
Previously every silence escalation went through `notifier.escalate` →
|
|
43
|
+
consolidated lifeline feed. Now `notifyFn` first tries the stalled session's own
|
|
44
|
+
topic (`getTopicForSession` → `deliverToTopic`), and falls back to `escalate`
|
|
45
|
+
only when the topic is unresolved or delivery fails. This is the operator's
|
|
46
|
+
explicit ask ("messages should only go to the topic that's stalled").
|
|
47
|
+
|
|
48
|
+
- **Tradeoff (flagged for the promotion review):** the per-session route posts
|
|
49
|
+
via `/telegram/reply/:topicId`, which does NOT pass through the consolidated
|
|
50
|
+
tone-gate / attention-topic anti-flood budget the `escalate` path uses. For a
|
|
51
|
+
fixed-template, low-frequency sentinel notice this is acceptable, and the
|
|
52
|
+
volume is intrinsically bounded (one detect + at most one recovery per stuck
|
|
53
|
+
session, and a stuck session is rare). The fallback path is still the
|
|
54
|
+
anti-flood-guarded `escalate`. If auto-heal is ever promoted to fire at higher
|
|
55
|
+
volume, revisit whether the per-session route needs its own rate cap.
|
|
56
|
+
|
|
57
|
+
## Loop / runaway analysis
|
|
58
|
+
|
|
59
|
+
- `maxAutoRecoveries` (default 1) caps respawns per session. The cap is enforced
|
|
60
|
+
twice: the `escalate()` guard (`recoveryAttempts < maxAutoRecoveries`) and the
|
|
61
|
+
fact that a failed recovery sets status `recovery-failed` WITHOUT clearing
|
|
62
|
+
state — so `tick()`'s `if (existing) continue` (already-tracked skip) prevents
|
|
63
|
+
re-detection. A session that stays stuck after one respawn is asked-about once
|
|
64
|
+
and then left alone, never re-respawned. Unit-tested explicitly
|
|
65
|
+
("loop cap: respawned at most once").
|
|
66
|
+
- A SUCCESSFUL recovery clears state so the freshly-respawned session is
|
|
67
|
+
monitored anew; the respawn resets its output clock so it won't immediately
|
|
68
|
+
re-trigger.
|
|
69
|
+
|
|
70
|
+
## Framework generality
|
|
71
|
+
|
|
72
|
+
`recoverFn` delegates to `_sessionRefresh.refreshSession`, which respawns
|
|
73
|
+
whatever framework the session runs (claude-code / codex / others) — it does not
|
|
74
|
+
assume Claude. No framework-specific branching is introduced. The notice text is
|
|
75
|
+
plain-English and framework-neutral.
|
|
76
|
+
|
|
77
|
+
## Migration parity
|
|
78
|
+
|
|
79
|
+
No agent-installed file changes (no `.claude/settings.json` hooks, no hook
|
|
80
|
+
scripts, no CLAUDE.md template section, no persisted config default). `autoRecover`
|
|
81
|
+
is intentionally OMITTED from `ConfigDefaults` (mirroring
|
|
82
|
+
`contextWedgeSentinel.autoRecovery`): `applyDefaults()` is add-missing-only, so
|
|
83
|
+
persisting `false` now would freeze it and block a future default-on flip from
|
|
84
|
+
reaching existing agents. The dark default lives as the runtime check in
|
|
85
|
+
server.ts. New and existing agents get identical (off) behavior. Promotion to
|
|
86
|
+
default-on = flip the runtime check + add the persisted default (documented in
|
|
87
|
+
the ConfigDefaults comment).
|
|
88
|
+
|
|
89
|
+
## Test coverage
|
|
90
|
+
|
|
91
|
+
- `tests/unit/monitoring/ActiveWorkSilenceSentinel.test.ts` (+6): autoRecover
|
|
92
|
+
off → ask (no respawn); on + success → respawn once, notify, clear; on +
|
|
93
|
+
failure → recovery-failed, ask, keep state; loop-cap → at most one respawn;
|
|
94
|
+
recoverFn throws → recover-error + ask.
|
|
95
|
+
- `tests/unit/monitoring/sentinelWiring.test.ts` (+5): notifyFn routes to the
|
|
96
|
+
session topic; falls back to escalate when topic unresolved; falls back when
|
|
97
|
+
delivery fails; recoverFn passthrough present-vs-undefined.
|
|
98
|
+
- Existing unit/integration/e2e silently-stopped suites stay green.
|