loki-mode 5.48.2 → 5.49.0

package/SKILL.md

@@ -3,7 +3,7 @@ name: loki-mode
 description: Multi-agent autonomous startup system. Triggers on "Loki Mode". Takes PRD to deployed product with zero human intervention. Requires --dangerously-skip-permissions flag.
 ---
 
-# Loki Mode v5.48.2
+# Loki Mode v5.49.0
 
 **You are an autonomous agent. You make decisions. You do not ask questions. You do not stop.**
 
@@ -263,4 +263,4 @@ The following features are documented in skill modules but not yet fully automat
 | Quality gates 3-reviewer system | Implemented (v5.35.0) | 5 specialist reviewers in `skills/quality-gates.md`; execution in run.sh |
 | Benchmarks (HumanEval, SWE-bench) | Infrastructure only | Runner scripts and datasets exist in `benchmarks/`; no published results |
 
-**v5.48.2 | [Autonomi](https://www.autonomi.dev/) flagship product | ~260 lines core**
+**v5.49.0 | [Autonomi](https://www.autonomi.dev/) flagship product | ~260 lines core**

package/VERSION

@@ -1 +1 @@
-5.48.2
+5.49.0

package/autonomy/completion-council.sh

@@ -45,6 +45,14 @@ COUNCIL_MIN_ITERATIONS=${LOKI_COUNCIL_MIN_ITERATIONS:-3}
 COUNCIL_CONVERGENCE_WINDOW=${LOKI_COUNCIL_CONVERGENCE_WINDOW:-3}
 COUNCIL_STAGNATION_LIMIT=${LOKI_COUNCIL_STAGNATION_LIMIT:-5}
 
+# Error budget: severity-aware completion (v5.49.0)
+# SEVERITY_THRESHOLD: minimum severity that blocks completion (critical, high, medium, low)
+#   "critical" = only critical issues block (most permissive)
+#   "low" = all issues block (strictest, default for backwards compat)
+# ERROR_BUDGET: fraction of non-blocking issues allowed (0.0 = none, 0.1 = 10% tolerance)
+COUNCIL_SEVERITY_THRESHOLD=${LOKI_COUNCIL_SEVERITY_THRESHOLD:-low}
+COUNCIL_ERROR_BUDGET=${LOKI_COUNCIL_ERROR_BUDGET:-0.0}
+
 # Internal state
 COUNCIL_STATE_DIR=""
 COUNCIL_PRD_PATH=""
@@ -235,6 +243,38 @@ council_vote() {
         local vote_result
         vote_result=$(echo "$verdict" | grep -oE "VOTE:\s*(APPROVE|REJECT)" | grep -oE "APPROVE|REJECT" | head -1)
 
+        # Extract severity-categorized issues (v5.49.0 error budget)
+        local member_issues=""
+        member_issues=$(echo "$verdict" | grep -oE "ISSUES:\s*(CRITICAL|HIGH|MEDIUM|LOW):.*" || true)
+
+        # If error budget is active and member rejected, check if rejection
+        # is based only on issues below the severity threshold
+        if [ "$vote_result" = "REJECT" ] && [ "$COUNCIL_SEVERITY_THRESHOLD" != "low" ] && [ -n "$member_issues" ]; then
+            local has_blocking_issue=false
+            local severity_order="critical high medium low"
+            local threshold_reached=false
+
+            while IFS= read -r issue_line; do
+                local issue_severity
+                issue_severity=$(echo "$issue_line" | grep -oE "(CRITICAL|HIGH|MEDIUM|LOW)" | head -1 | tr '[:upper:]' '[:lower:]')
+                # Check if this severity meets or exceeds the threshold
+                for sev in $severity_order; do
+                    if [ "$sev" = "$COUNCIL_SEVERITY_THRESHOLD" ]; then
+                        threshold_reached=true
+                    fi
+                    if [ "$sev" = "$issue_severity" ] && [ "$threshold_reached" = "false" ]; then
+                        has_blocking_issue=true
+                        break
+                    fi
+                done
+            done <<< "$member_issues"
+
+            if [ "$has_blocking_issue" = "false" ]; then
+                log_info "  Member $member ($role): REJECT overridden to APPROVE (issues below ${COUNCIL_SEVERITY_THRESHOLD} threshold)"
+                vote_result="APPROVE"
+            fi
+        fi
+
         if [ "$vote_result" = "APPROVE" ]; then
             ((approve_count++))
             log_info "  Member $member ($role): APPROVE"
@@ -618,23 +658,37 @@ council_member_review() {
             ;;
     esac
 
+    local severity_instruction=""
+    if [ "$COUNCIL_SEVERITY_THRESHOLD" != "low" ]; then
+        severity_instruction="
+ERROR BUDGET: This council uses severity-aware evaluation.
+- Categorize each issue as CRITICAL, HIGH, MEDIUM, or LOW severity
+- Blocking threshold: ${COUNCIL_SEVERITY_THRESHOLD} and above
+- Only issues at ${COUNCIL_SEVERITY_THRESHOLD} severity or above should cause REJECT
+- Issues below threshold are acceptable (error budget: ${COUNCIL_ERROR_BUDGET})
+- List issues as ISSUES: SEVERITY:description (one per line)"
+    fi
+
     local prompt="You are a council member reviewing project completion.
 
 ${role_instruction}
 
 EVIDENCE:
 ${evidence}
+${severity_instruction}
 
 INSTRUCTIONS:
 1. Review the evidence carefully
 2. Determine if the project meets completion criteria
 3. Output EXACTLY one line starting with VOTE:APPROVE or VOTE:REJECT
 4. Output EXACTLY one line starting with REASON: explaining your decision
-5. Be honest - do not approve incomplete work
+5. If issues found, output lines starting with ISSUES: SEVERITY:description
+6. Be honest - do not approve incomplete work
 
-Output format (exactly two lines):
+Output format:
 VOTE:APPROVE or VOTE:REJECT
-REASON: your reasoning here"
+REASON: your reasoning here
+ISSUES: CRITICAL:description (optional, one per line per issue)"
 
     local verdict_file="$vote_dir/member-${member_id}.txt"
 
@@ -1300,5 +1354,5 @@ council_get_dashboard_state() {
         state_json=$(cat "$COUNCIL_STATE_DIR/state.json" 2>/dev/null || echo "{}")
     fi
 
-    echo "\"council\": {\"enabled\": true, \"size\": $COUNCIL_SIZE, \"threshold\": $COUNCIL_THRESHOLD, \"check_interval\": $COUNCIL_CHECK_INTERVAL, \"consecutive_no_change\": $COUNCIL_CONSECUTIVE_NO_CHANGE, \"done_signals\": $COUNCIL_DONE_SIGNALS, \"iteration\": $ITERATION_COUNT, \"state\": $state_json}"
+    echo "\"council\": {\"enabled\": true, \"size\": $COUNCIL_SIZE, \"threshold\": $COUNCIL_THRESHOLD, \"check_interval\": $COUNCIL_CHECK_INTERVAL, \"consecutive_no_change\": $COUNCIL_CONSECUTIVE_NO_CHANGE, \"done_signals\": $COUNCIL_DONE_SIGNALS, \"iteration\": $ITERATION_COUNT, \"severity_threshold\": \"$COUNCIL_SEVERITY_THRESHOLD\", \"error_budget\": $COUNCIL_ERROR_BUDGET, \"state\": $state_json}"
 }

package/autonomy/hooks/validate-bash.sh

@@ -30,11 +30,21 @@ BLOCKED_PATTERNS=(
     "wget.*\|.*sh"
     "curl.*\|.*bash"
     "wget.*\|.*bash"
+    # Config self-protection: prevent agents from corrupting internal state
+    "rm -rf \.loki"
+    "rm -rf \./\.loki"
+    "rm .*\.loki/council/"
+    "rm .*\.loki/config\.yaml"
+    "rm .*\.loki/logs/bash-audit"
+    "rm .*\.loki/session\.lock"
+    "> \.loki/council/"
+    "> \.loki/config\.yaml"
 )
 
-# Safe path patterns that override rm -rf / matches
+# Safe path patterns that override blocked pattern matches
 SAFE_PATTERNS=(
     "rm -rf /tmp/"
+    "rm -rf \.loki/queue/dead-letter"
 )
 
 # Check for blocked patterns

package/autonomy/run.sh

@@ -5681,6 +5681,132 @@ load_handoff_context() {
     fi
 }
 
+# Write structured handoff document (v5.49.0)
+# Produces both JSON (machine-readable) and markdown (human-readable) handoffs
+# Called at end of session or before context clear
+write_structured_handoff() {
+    local reason="${1:-session_end}"
+    local handoff_dir=".loki/memory/handoffs"
+    mkdir -p "$handoff_dir"
+
+    local timestamp
+    timestamp=$(date -u +"%Y-%m-%dT%H:%M:%SZ")
+    local file_ts
+    file_ts=$(date +"%Y%m%d-%H%M%S")
+    local handoff_json="$handoff_dir/${file_ts}.json"
+    local handoff_md="$handoff_dir/${file_ts}.md"
+
+    # Gather structured data
+    local files_modified=""
+    files_modified=$(git diff --name-only HEAD 2>/dev/null | head -20 | tr '\n' ',' | sed 's/,$//')
+    local recent_commits=""
+    recent_commits=$(git log --oneline -5 2>/dev/null | tr '\n' '|' | sed 's/|$//')
+    local pending_tasks=0
+    local completed_tasks=0
+    if [ -f ".loki/queue/pending.json" ]; then
+        pending_tasks=$(_QF=".loki/queue/pending.json" python3 -c "import json,os;print(len(json.load(open(os.environ['_QF']))))" 2>/dev/null || echo "0")
+    fi
+    if [ -f ".loki/queue/completed.json" ]; then
+        completed_tasks=$(_QF=".loki/queue/completed.json" python3 -c "import json,os;print(len(json.load(open(os.environ['_QF']))))" 2>/dev/null || echo "0")
+    fi
+
+    # Write JSON handoff
+    _H_TS="$timestamp" \
+    _H_REASON="$reason" \
+    _H_ITER="${ITERATION_COUNT:-0}" \
+    _H_FILES="$files_modified" \
+    _H_COMMITS="$recent_commits" \
+    _H_PENDING="$pending_tasks" \
+    _H_COMPLETED="$completed_tasks" \
+    _H_JSON="$handoff_json" \
+    python3 -c "
+import json, os
+handoff = {
+    'schema_version': '1.0.0',
+    'timestamp': os.environ['_H_TS'],
+    'reason': os.environ['_H_REASON'],
+    'iteration': int(os.environ['_H_ITER']),
+    'files_modified': [f for f in os.environ['_H_FILES'].split(',') if f],
+    'recent_commits': [c for c in os.environ['_H_COMMITS'].split('|') if c],
+    'task_status': {
+        'pending': int(os.environ['_H_PENDING']),
+        'completed': int(os.environ['_H_COMPLETED'])
+    },
+    'open_questions': [],
+    'key_decisions': [],
+    'blockers': []
+}
+with open(os.environ['_H_JSON'], 'w') as f:
+    json.dump(handoff, f, indent=2)
+" 2>/dev/null || log_warn "Failed to write structured handoff JSON"
+
+    # Write markdown companion
+    cat > "$handoff_md" << HANDOFF_EOF
+# Session Handoff - $timestamp
+
+**Reason:** $reason
+**Iteration:** ${ITERATION_COUNT:-0}
+
+## Files Modified
+$files_modified
+
+## Recent Commits
+$(git log --oneline -5 2>/dev/null || echo "none")
+
+## Task Status
+- Pending: $pending_tasks
+- Completed: $completed_tasks
+
+## Notes
+Session handoff generated automatically.
+HANDOFF_EOF
+
+    log_info "Structured handoff written to $handoff_json"
+}
+
+# Load recent handoffs for context (reads both JSON and markdown)
+load_handoff_context() {
+    local handoff_content=""
+
+    # Prefer JSON handoffs (structured, v5.49.0+)
+    local recent_json
+    recent_json=$(find .loki/memory/handoffs -name "*.json" -mtime -1 2>/dev/null | sort -r | head -1)
+
+    if [ -n "$recent_json" ] && [ -f "$recent_json" ]; then
+        handoff_content=$(_HF="$recent_json" python3 -c "
+import json, os
+try:
+    h = json.load(open(os.environ['_HF']))
+    parts = []
+    parts.append(f\"Handoff from {h.get('timestamp','unknown')} (reason: {h.get('reason','unknown')})\")
+    parts.append(f\"Iteration: {h.get('iteration',0)}\")
+    files = h.get('files_modified', [])
+    if files:
+        parts.append(f\"Modified files: {', '.join(files[:10])}\")
+    tasks = h.get('task_status', {})
+    parts.append(f\"Tasks - pending: {tasks.get('pending',0)}, completed: {tasks.get('completed',0)}\")
+    for q in h.get('open_questions', []):
+        parts.append(f\"Open question: {q}\")
+    for b in h.get('blockers', []):
+        parts.append(f\"Blocker: {b}\")
+    print(' | '.join(parts))
+except Exception as e:
+    print(f'Error reading handoff: {e}')
+" 2>/dev/null)
+        echo "$handoff_content"
+        return
+    fi
+
+    # Fallback to markdown handoffs (pre-v5.49.0)
+    local recent_handoff
+    recent_handoff=$(find .loki/memory/handoffs -name "*.md" -mtime -1 2>/dev/null | sort -r | head -1)
+
+    if [ -n "$recent_handoff" ] && [ -f "$recent_handoff" ]; then
+        handoff_content=$(cat "$recent_handoff" | head -80)
+        echo "$handoff_content"
+    fi
+}
+
 # Load relevant learnings
 load_learnings_context() {
     local learnings=""
@@ -7489,6 +7615,9 @@ main() {
             --context "{\"provider\":\"${PROVIDER_NAME:-claude}\",\"iterations\":$ITERATION_COUNT,\"exit_code\":$result}"
     fi
 
+    # Write structured handoff for future sessions (v5.49.0)
+    write_structured_handoff "session_end_result_${result}" 2>/dev/null || true
+
     # Create PR from agent branch if branch protection was enabled
     create_session_pr
     audit_agent_action "session_stop" "Session ended" "result=$result,iterations=$ITERATION_COUNT"

package/autonomy/sandbox.sh

@@ -843,6 +843,15 @@ start_sandbox() {
         docker_args+=("--volume" "$PROJECT_DIR:/workspace:rw")
     fi
 
+    # Config self-protection: mount critical .loki/ paths as read-only
+    # Prevents agents from corrupting council state, config, or audit trail
+    if [[ -d "$PROJECT_DIR/.loki/council" ]]; then
+        docker_args+=("--volume" "$PROJECT_DIR/.loki/council:/workspace/.loki/council:ro")
+    fi
+    if [[ -f "$PROJECT_DIR/.loki/config.yaml" ]]; then
+        docker_args+=("--volume" "$PROJECT_DIR/.loki/config.yaml:/workspace/.loki/config.yaml:ro")
+    fi
+
     # Mount git config (read-only) - mount to /home/loki since container runs as user loki
     if [[ -f "$HOME/.gitconfig" ]]; then
         docker_args+=("--volume" "$HOME/.gitconfig:/home/loki/.gitconfig:ro")

package/dashboard/__init__.py

@@ -7,7 +7,7 @@ Modules:
     control: Session control API (start/stop/pause/resume)
 """
 
-__version__ = "5.48.2"
+__version__ = "5.49.0"
 
 # Expose the control app for easy import
 try:

package/docs/INSTALLATION.md

@@ -2,7 +2,7 @@
 
 The flagship product of [Autonomi](https://www.autonomi.dev/). Complete installation instructions for all platforms and use cases.
 
-**Version:** v5.48.2
+**Version:** v5.49.0
 
 ---
 

package/mcp/__init__.py

@@ -21,4 +21,4 @@ try:
 except ImportError:
     __all__ = ['mcp']
 
-__version__ = '5.48.2'
+__version__ = '5.49.0'

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "loki-mode",
-  "version": "5.48.2",
+  "version": "5.49.0",
   "description": "Loki Mode by Autonomi - Multi-agent autonomous startup system for Claude Code, Codex CLI, and Gemini CLI",
   "keywords": [
     "autonomi",