loki-mode 6.4.0 → 6.6.0

package/autonomy/run.sh

@@ -1137,6 +1137,20 @@ validate_api_keys() {
         claude) key_var="ANTHROPIC_API_KEY" ;;
         codex)  key_var="OPENAI_API_KEY" ;;
         gemini) key_var="GOOGLE_API_KEY" ;;
+        cline)  # Cline manages its own keys via `cline auth`
+            if ! command -v cline &>/dev/null; then
+                log_error "Cline CLI not found. Install: npm install -g cline"
+                return 1
+            fi
+            return 0
+            ;;
+        aider)  # Aider manages keys via env vars or .aider.conf.yml
+            if ! command -v aider &>/dev/null; then
+                log_error "Aider not found. Install: pip install aider-chat"
+                return 1
+            fi
+            return 0
+            ;;
     esac
 
     if [[ -z "$key_var" ]]; then
@@ -1390,6 +1404,14 @@ get_provider_tier_param() {
                 *) echo "medium" ;;
             esac
             ;;
+        cline)
+            # Cline uses single externally-configured model
+            echo "${LOKI_CLINE_MODEL:-default}"
+            ;;
+        aider)
+            # Aider uses single externally-configured model
+            echo "${LOKI_AIDER_MODEL:-claude-3.7-sonnet}"
+            ;;
         *)
             echo "development"
             ;;
@@ -2177,6 +2199,15 @@ spawn_worktree_session() {
                 invoke_gemini "Loki Mode: $task_prompt. Read .loki/CONTINUITY.md for context." \
                     >> "$log_file" 2>&1
                 ;;
+            cline)
+                # Cline supports parallel instances
+                invoke_cline "Loki Mode: $task_prompt. Read .loki/CONTINUITY.md for context." \
+                    >> "$log_file" 2>&1
+                ;;
+            aider)
+                # Aider has known issues with parallel - skip
+                log_warn "Aider does not support parallel sessions, skipping"
+                ;;
             *)
                 log_error "Unknown provider: ${PROVIDER_NAME}"
                 return 1
@@ -2269,6 +2300,12 @@ Output ONLY the resolved file content with no conflict markers. No explanations.
                 # Uses invoke_gemini_capture for rate limit fallback to flash model
                 resolution=$(invoke_gemini_capture "$conflict_prompt" 2>/dev/null)
                 ;;
+            cline)
+                resolution=$(invoke_cline_capture "$conflict_prompt" 2>/dev/null)
+                ;;
+            aider)
+                resolution=$(invoke_aider_capture "$conflict_prompt" 2>/dev/null)
+                ;;
             *)
                 log_error "Unknown provider: ${PROVIDER_NAME}"
                 return 1
@@ -2515,6 +2552,12 @@ check_prerequisites() {
                 # TODO: Verify official Gemini CLI package name when available
                 log_info "Install: npm install -g @google/gemini-cli (or visit https://ai.google.dev/)"
                 ;;
+            cline)
+                log_info "Install: npm install -g cline"
+                ;;
+            aider)
+                log_info "Install: pip install aider-chat"
+                ;;
             *)
                 log_info "Install the $cli_name CLI for your provider"
                 ;;
@@ -2828,6 +2871,62 @@ invoke_gemini_capture() {
     echo "$output"
 }
 
+#===============================================================================
+# Cline Invocation (Tier 2 - Near-Full)
+#===============================================================================
+
+# Invoke Cline CLI in autonomous mode
+# Usage: invoke_cline "prompt" [additional args...]
+invoke_cline() {
+    local prompt="$1"
+    shift
+    local model="${LOKI_CLINE_MODEL:-}"
+    local model_flag=""
+    [[ -n "$model" ]] && model_flag="-m $model"
+    # shellcheck disable=SC2086
+    cline -y $model_flag "$prompt" "$@" 2>&1
+}
+
+# Invoke Cline and capture output (for variable assignment)
+# Usage: result=$(invoke_cline_capture "prompt")
+invoke_cline_capture() {
+    local prompt="$1"
+    shift
+    local model="${LOKI_CLINE_MODEL:-}"
+    local model_flag=""
+    [[ -n "$model" ]] && model_flag="-m $model"
+    # shellcheck disable=SC2086
+    cline -y $model_flag "$prompt" "$@" 2>&1
+}
+
+#===============================================================================
+# Aider Invocation (Tier 3 - Degraded, 18+ Providers)
+#===============================================================================
+
+# Invoke Aider in autonomous single-instruction mode
+# Usage: invoke_aider "prompt" [additional args...]
+invoke_aider() {
+    local prompt="$1"
+    shift
+    local model="${LOKI_AIDER_MODEL:-claude-3.7-sonnet}"
+    local extra_flags="${LOKI_AIDER_FLAGS:-}"
+    # shellcheck disable=SC2086
+    aider --message "$prompt" --yes-always --no-auto-commits \
+          --model "$model" $extra_flags "$@" 2>&1
+}
+
+# Invoke Aider and capture output (for variable assignment)
+# Usage: result=$(invoke_aider_capture "prompt")
+invoke_aider_capture() {
+    local prompt="$1"
+    shift
+    local model="${LOKI_AIDER_MODEL:-claude-3.7-sonnet}"
+    local extra_flags="${LOKI_AIDER_FLAGS:-}"
+    # shellcheck disable=SC2086
+    aider --message "$prompt" --yes-always --no-auto-commits \
+          --model "$model" $extra_flags "$@" 2>&1
+}
+
 #===============================================================================
 # Copy Skill Files to Project Directory
 #===============================================================================
@@ -3343,6 +3442,10 @@ track_iteration_complete() {
         model_tier="gpt-5.3-codex"
     elif [ "${PROVIDER_NAME:-claude}" = "gemini" ]; then
         model_tier="gemini-3-pro"
+    elif [ "${PROVIDER_NAME:-claude}" = "cline" ]; then
+        model_tier="${LOKI_CLINE_MODEL:-sonnet}"
+    elif [ "${PROVIDER_NAME:-claude}" = "aider" ]; then
+        model_tier="${LOKI_AIDER_MODEL:-claude-3.7-sonnet}"
     fi
     local phase="${LAST_KNOWN_PHASE:-}"
     [ -z "$phase" ] && phase=$(python3 -c "import json; print(json.load(open('.loki/state/orchestrator.json')).get('currentPhase', 'unknown'))" 2>/dev/null || echo "unknown")
@@ -5143,6 +5246,14 @@ BUILD_PROMPT
                     invoke_gemini_capture "$prompt_text" \
                         > "$review_output" 2>/dev/null
                     ;;
+                cline)
+                    invoke_cline_capture "$prompt_text" \
+                        > "$review_output" 2>/dev/null
+                    ;;
+                aider)
+                    invoke_aider_capture "$prompt_text" \
+                        > "$review_output" 2>/dev/null
+                    ;;
                 *)
                     echo "VERDICT: PASS" > "$review_output"
                     echo "FINDINGS:" >> "$review_output"
@@ -5347,6 +5458,18 @@ OVERALL_RISK: HIGH or MEDIUM or LOW"
                     > "$result_file" 2>/dev/null || true
             fi
             ;;
+        cline)
+            if command -v cline &>/dev/null; then
+                invoke_cline_capture "$adversarial_prompt" \
+                    > "$result_file" 2>/dev/null || true
+            fi
+            ;;
+        aider)
+            if command -v aider &>/dev/null; then
+                invoke_aider_capture "$adversarial_prompt" \
+                    > "$result_file" 2>/dev/null || true
+            fi
+            ;;
         *)
             echo "ATTACK_VECTORS: None (unknown provider)" > "$result_file"
             echo "OVERALL_RISK: LOW" >> "$result_file"
@@ -6063,7 +6186,7 @@ detect_rate_limit() {
         claude)
             wait_secs=$(parse_claude_reset_time "$log_file")
             ;;
-        codex|gemini|*)
+        codex|gemini|cline|aider|*)
             # No provider-specific reset time format known
             # Fall through to generic parsing
             ;;
@@ -7434,12 +7557,13 @@ run_autonomous() {
         audit_agent_action "cli_invoke" "Starting iteration $ITERATION_COUNT" "provider=${PROVIDER_NAME:-claude},tier=$CURRENT_TIER"
 
         # Provider-specific invocation with dynamic tier selection
+        local exit_code=0
         case "${PROVIDER_NAME:-claude}" in
             claude)
                 # Claude: Full features with stream-json output and agent tracking
                 # Uses dynamic tier for model selection based on RARV phase
                 # Pass tier to Python via environment for dashboard display
-                LOKI_CURRENT_MODEL="$tier_param" \
+                { LOKI_CURRENT_MODEL="$tier_param" \
                 claude --dangerously-skip-permissions --model "$tier_param" -p "$prompt" \
             --output-format stream-json --verbose 2>&1 | \
             tee -a "$log_file" "$agent_log" | \
@@ -7647,7 +7771,7 @@ if __name__ == "__main__":
     except BrokenPipeError:
         sys.exit(0)
 '
-                local exit_code=${PIPESTATUS[0]}
+                } && exit_code=0 || exit_code=$?
                 ;;
 
             codex)
@@ -7655,10 +7779,10 @@ if __name__ == "__main__":
                 # Uses positional prompt after exec subcommand
                 # Note: Effort is set via env var, not CLI flag
                 # Uses dynamic tier from RARV phase (tier_param already set above)
-                CODEX_MODEL_REASONING_EFFORT="$tier_param" \
+                { CODEX_MODEL_REASONING_EFFORT="$tier_param" \
                 codex exec --full-auto \
-                    "$prompt" 2>&1 | tee -a "$log_file" "$agent_log"
-                local exit_code=${PIPESTATUS[0]}
+                    "$prompt" 2>&1 | tee -a "$log_file" "$agent_log"; \
+                } && exit_code=0 || exit_code=$?
                 ;;
 
             gemini)
@@ -7672,8 +7796,8 @@ if __name__ == "__main__":
                 # Try primary model, fallback on rate limit
                 local tmp_output
                 tmp_output=$(mktemp)
-                gemini --approval-mode=yolo --model "$model" "$prompt" < /dev/null 2>&1 | tee "$tmp_output" | tee -a "$log_file" "$agent_log"
-                local exit_code=${PIPESTATUS[0]}
+                { gemini --approval-mode=yolo --model "$model" "$prompt" < /dev/null 2>&1 | tee "$tmp_output" | tee -a "$log_file" "$agent_log"; \
+                } && exit_code=0 || exit_code=$?
 
                 if [[ $exit_code -ne 0 ]] && grep -qiE "(rate.?limit|429|quota|resource.?exhausted)" "$tmp_output"; then
                     log_warn "Rate limit hit on $model, falling back to $fallback"
@@ -7684,6 +7808,21 @@ if __name__ == "__main__":
                 rm -f "$tmp_output"
                 ;;
 
+            cline)
+                # Cline: Tier 2 - near-full mode with subagents and MCP
+                echo "[loki] Cline model: ${LOKI_CLINE_MODEL:-default}, tier: $tier_param" >> "$log_file"
+                echo "[loki] Cline model: ${LOKI_CLINE_MODEL:-default}, tier: $tier_param" >> "$agent_log"
+                { invoke_cline "$prompt" 2>&1 | tee -a "$log_file" "$agent_log"; \
+                } && exit_code=0 || exit_code=$?
+                ;;
+            aider)
+                # Aider: Tier 3 - degraded mode, 18+ providers
+                echo "[loki] Aider model: ${LOKI_AIDER_MODEL:-claude-3.7-sonnet}, tier: $tier_param" >> "$log_file"
+                echo "[loki] Aider model: ${LOKI_AIDER_MODEL:-claude-3.7-sonnet}, tier: $tier_param" >> "$agent_log"
+                { invoke_aider "$prompt" 2>&1 | tee -a "$log_file" "$agent_log"; \
+                } && exit_code=0 || exit_code=$?
+                ;;
+
             *)
                 log_error "Unknown provider: ${PROVIDER_NAME:-unknown}"
                 local exit_code=1
@@ -8143,17 +8282,18 @@ except (json.JSONDecodeError, OSError): pass
         stop_dashboard
         stop_status_monitor
         kill_all_registered
-        rm -f .loki/loki.pid .loki/PAUSE 2>/dev/null
+        rm -f "$loki_dir/loki.pid" "$loki_dir/PAUSE" 2>/dev/null
         # Clean up per-session PID file if running with session ID
         if [ -n "${LOKI_SESSION_ID:-}" ]; then
-            rm -f ".loki/sessions/${LOKI_SESSION_ID}/loki.pid" 2>/dev/null
+            rm -f "$loki_dir/sessions/${LOKI_SESSION_ID}/loki.pid" 2>/dev/null
         fi
         # Mark session.json as stopped
-        if [ -f ".loki/session.json" ]; then
-            python3 -c "
-import json
+        if [ -f "$loki_dir/session.json" ]; then
+            _LOKI_SESSION_FILE="$loki_dir/session.json" python3 -c "
+import json, os
+sf = os.environ['_LOKI_SESSION_FILE']
 try:
-    with open('.loki/session.json', 'r+') as f:
+    with open(sf, 'r+') as f:
         d = json.load(f); d['status'] = 'stopped'
         f.seek(0); f.truncate(); json.dump(d, f)
 except (json.JSONDecodeError, OSError): pass
@@ -8277,7 +8417,7 @@ main() {
                     fi
                     shift 2
                 else
-                    log_error "--provider requires a value (claude, codex, gemini)"
+                    log_error "--provider requires a value (claude, codex, gemini, cline, aider)"
                     exit 1
                 fi
                 ;;
@@ -8311,7 +8451,7 @@ main() {
                 echo "Options:"
                 echo "  --parallel           Enable git worktree-based parallel workflows"
                 echo "  --allow-haiku        Enable Haiku model for fast tier (default: disabled)"
-                echo "  --provider <name>    Provider: claude (default), codex, gemini"
+                echo "  --provider <name>    Provider: claude (default), codex, gemini, cline, aider"
                 echo "  --bg, --background   Run in background mode"
                 echo "  --interactive-prd    Interactive PRD pre-flight analysis"
                 echo "  --help, -h           Show this help message"
@@ -8736,17 +8876,19 @@ main() {
     fi
     stop_dashboard
     stop_status_monitor
-    rm -f .loki/loki.pid 2>/dev/null
+    local loki_dir="${TARGET_DIR:-.}/.loki"
+    rm -f "$loki_dir/loki.pid" 2>/dev/null
     # Clean up per-session PID file if running with session ID
     if [ -n "${LOKI_SESSION_ID:-}" ]; then
-        rm -f ".loki/sessions/${LOKI_SESSION_ID}/loki.pid" 2>/dev/null
+        rm -f "$loki_dir/sessions/${LOKI_SESSION_ID}/loki.pid" 2>/dev/null
     fi
     # Mark session.json as stopped
-    if [ -f ".loki/session.json" ]; then
-        python3 -c "
-import json
+    if [ -f "$loki_dir/session.json" ]; then
+        _LOKI_SESSION_FILE="$loki_dir/session.json" python3 -c "
+import json, os
+sf = os.environ['_LOKI_SESSION_FILE']
 try:
-    with open('.loki/session.json', 'r+') as f:
+    with open(sf, 'r+') as f:
         d = json.load(f); d['status'] = 'stopped'
         f.seek(0); f.truncate(); json.dump(d, f)
 except (json.JSONDecodeError, OSError): pass

package/autonomy/sandbox.sh

@@ -68,28 +68,32 @@ PROMPT_INJECTION_ENABLED="${LOKI_PROMPT_INJECTION:-false}"
 
 # Preset definitions: "host_path:container_path:mode"
 # Container runs as user 'loki' (UID 1000), so mount to /home/loki/
-declare -A DOCKER_MOUNT_PRESETS
-DOCKER_MOUNT_PRESETS=(
-    # Note: gh and git are also hardcoded in start_sandbox() defaults
-    [gh]="$HOME/.config/gh:/home/loki/.config/gh:ro"
-    [git]="$HOME/.gitconfig:/home/loki/.gitconfig:ro"
-    [ssh]="$HOME/.ssh/known_hosts:/home/loki/.ssh/known_hosts:ro"
-    [aws]="$HOME/.aws:/home/loki/.aws:ro"
-    [azure]="$HOME/.azure:/home/loki/.azure:ro"
-    [kube]="$HOME/.kube:/home/loki/.kube:ro"
-    [terraform]="$HOME/.terraform.d:/home/loki/.terraform.d:ro"
-    [gcloud]="$HOME/.config/gcloud:/home/loki/.config/gcloud:ro"
-    [npm]="$HOME/.npmrc:/home/loki/.npmrc:ro"
-)
+# Uses functions instead of declare -A for bash 3.2 compatibility (macOS default)
+_get_mount_preset() {
+    case "$1" in
+        gh)        echo "$HOME/.config/gh:/home/loki/.config/gh:ro" ;;
+        git)       echo "$HOME/.gitconfig:/home/loki/.gitconfig:ro" ;;
+        ssh)       echo "$HOME/.ssh/known_hosts:/home/loki/.ssh/known_hosts:ro" ;;
+        aws)       echo "$HOME/.aws:/home/loki/.aws:ro" ;;
+        azure)     echo "$HOME/.azure:/home/loki/.azure:ro" ;;
+        kube)      echo "$HOME/.kube:/home/loki/.kube:ro" ;;
+        terraform) echo "$HOME/.terraform.d:/home/loki/.terraform.d:ro" ;;
+        gcloud)    echo "$HOME/.config/gcloud:/home/loki/.config/gcloud:ro" ;;
+        npm)       echo "$HOME/.npmrc:/home/loki/.npmrc:ro" ;;
+        *)         echo "" ;;
+    esac
+}
 
 # Environment variables auto-passed per preset (comma-separated)
-declare -A DOCKER_ENV_PRESETS
-DOCKER_ENV_PRESETS=(
-    [aws]="AWS_REGION,AWS_PROFILE,AWS_DEFAULT_REGION"
-    [azure]="AZURE_SUBSCRIPTION_ID,AZURE_TENANT_ID"
-    [gcloud]="GOOGLE_PROJECT,GOOGLE_REGION,GCLOUD_PROJECT"
-    [terraform]="TF_VAR_*"
-)
+_get_env_preset() {
+    case "$1" in
+        aws)       echo "AWS_REGION,AWS_PROFILE,AWS_DEFAULT_REGION" ;;
+        azure)     echo "AZURE_SUBSCRIPTION_ID,AZURE_TENANT_ID" ;;
+        gcloud)    echo "GOOGLE_PROJECT,GOOGLE_REGION,GCLOUD_PROJECT" ;;
+        terraform) echo "TF_VAR_*" ;;
+        *)         echo "" ;;
+    esac
+}
 
 #===============================================================================
 # Utility Functions
@@ -160,6 +164,14 @@ warn_missing_api_keys() {
                 log_warn "GOOGLE_API_KEY not set - Gemini commands will fail inside container"
             fi
             ;;
+        cline)
+            log_info "Cline manages its own API keys via 'cline auth' - ensure authentication is configured"
+            ;;
+        aider)
+            if [[ -z "${OPENAI_API_KEY:-}" ]] && [[ -z "${ANTHROPIC_API_KEY:-}" ]]; then
+                log_warn "No API key set for Aider - set OPENAI_API_KEY or ANTHROPIC_API_KEY"
+            fi
+            ;;
     esac
 }
 
@@ -592,6 +604,18 @@ _desktop_install_provider_cli() {
                 docker sandbox exec "$sandbox_name" npm install -g @google/gemini-cli 2>&1 | tail -1
             fi
             ;;
+        cline)
+            if ! docker sandbox exec "$sandbox_name" which cline &>/dev/null 2>&1; then
+                log_info "Installing Cline CLI in sandbox (one-time)..."
+                docker sandbox exec "$sandbox_name" npm install -g cline 2>&1 | tail -1
+            fi
+            ;;
+        aider)
+            if ! docker sandbox exec "$sandbox_name" which aider &>/dev/null 2>&1; then
+                log_info "Installing Aider in sandbox (one-time)..."
+                docker sandbox exec "$sandbox_name" pip install aider-chat 2>&1 | tail -1
+            fi
+            ;;
         # claude is pre-installed in the sandbox template
     esac
 }
@@ -836,7 +860,8 @@ except: pass
         while IFS= read -r name; do
             [[ -z "$name" ]] && continue
 
-            local preset_value="${DOCKER_MOUNT_PRESETS[$name]:-}"
+            local preset_value
+            preset_value="$(_get_mount_preset "$name")"
             if [[ -z "$preset_value" ]]; then
                 log_warn "Unknown Docker mount preset: $name"
                 continue
@@ -861,7 +886,8 @@ except: pass
             fi
 
             # Add associated env vars
-            local env_list="${DOCKER_ENV_PRESETS[$name]:-}"
+            local env_list
+            env_list="$(_get_env_preset "$name")"
             if [[ -n "$env_list" ]]; then
                 IFS=',' read -ra env_names <<< "$env_list"
                 local env_name

package/autonomy/telemetry.sh

@@ -52,17 +52,30 @@ loki_telemetry() {
     os_name=$(uname -s 2>/dev/null || echo "unknown")
     arch=$(uname -m 2>/dev/null || echo "unknown")
 
-    # Build properties from remaining args (key=value pairs)
-    local extra_props=""
+    # Build JSON payload safely using Python to prevent injection
+    local extra_args=""
     for arg in "$@"; do
-        local key="${arg%%=*}"
-        local val="${arg#*=}"
-        extra_props="${extra_props},\"${key}\":\"${val}\""
+        extra_args="${extra_args}${extra_args:+ }${arg}"
     done
 
     local payload
-    payload=$(printf '{"api_key":"%s","event":"%s","distinct_id":"%s","properties":{"os":"%s","arch":"%s","version":"%s","channel":"%s"%s}}' \
-        "$LOKI_POSTHOG_KEY" "$event" "$distinct_id" "$os_name" "$arch" "$version" "$channel" "$extra_props")
+    payload=$(python3 -c "
+import json, sys
+props = {'os': sys.argv[1], 'arch': sys.argv[2], 'version': sys.argv[3], 'channel': sys.argv[4]}
+for arg in sys.argv[5:]:
+    if '=' in arg:
+        k, v = arg.split('=', 1)
+        props[k] = v
+print(json.dumps({'api_key': '$LOKI_POSTHOG_KEY', 'event': sys.argv[5] if len(sys.argv) > 5 else '', 'distinct_id': '$distinct_id', 'properties': props}))
+" "$os_name" "$arch" "$version" "$channel" $extra_args 2>/dev/null) || return 0
+    # Re-inject event and distinct_id properly
+    payload=$(python3 -c "
+import json, sys
+d = json.loads(sys.argv[1])
+d['event'] = sys.argv[2]
+d['distinct_id'] = sys.argv[3]
+print(json.dumps(d))
+" "$payload" "$event" "$distinct_id" 2>/dev/null) || return 0
 
     (curl -sS --max-time 3 -X POST "${LOKI_POSTHOG_HOST}/capture/" \
         -H "Content-Type: application/json" \

package/dashboard/__init__.py

@@ -7,7 +7,7 @@ Modules:
     control: Session control API (start/stop/pause/resume)
 """
 
-__version__ = "6.4.0"
+__version__ = "6.6.0"
 
 # Expose the control app for easy import
 try:

package/dashboard/control.py

@@ -132,7 +132,7 @@ class StartRequest(BaseModel):
 
     def validate_provider(self) -> None:
         """Validate provider is from allowed list."""
-        allowed_providers = ["claude", "codex", "gemini"]
+        allowed_providers = ["claude", "codex", "gemini", "cline", "aider"]
         if self.provider not in allowed_providers:
             raise ValueError(f"Invalid provider: {self.provider}. Must be one of: {', '.join(allowed_providers)}")
 

package/dashboard/migration_engine.py

@@ -886,7 +886,7 @@ Summary: {summary}
             if len(entries) > 50:
                 header = entries[0]
                 recent = entries[-50:]
-                content = header + "\n## Session:".join(recent)
+                content = header + "\n## Session:" + "\n## Session:".join(recent)
             else:
                 content = existing
             content += entry

package/dashboard/server.py

@@ -391,7 +391,7 @@ async def agent_card() -> dict:
             "agents": 41,
             "swarms": 8,
             "quality_gates": 9,
-            "providers": ["claude", "codex", "gemini"],
+            "providers": ["claude", "codex", "gemini", "cline", "aider"],
             "streaming": True,
             "pushNotifications": False,
             "stateTransitionHistory": True,
@@ -536,9 +536,13 @@ async def get_status() -> StatusResponse:
 
     # Global session
     if running:
+        try:
+            _global_pid = int(pid_str) if pid_str else 0
+        except (ValueError, TypeError):
+            _global_pid = 0
         active_session_list.append(SessionInfo(
             session_id="global",
-            pid=int(pid_str) if pid_str else 0,
+            pid=_global_pid,
             status=status,
         ))
 
@@ -1441,7 +1445,7 @@ async def query_audit_logs(
     action: Optional[str] = None,
     resource_type: Optional[str] = None,
     resource_id: Optional[str] = None,
-    limit: int = 100,
+    limit: int = Query(default=100, ge=1, le=1000),
     offset: int = 0,
 ):
     """
@@ -1561,7 +1565,7 @@ async def get_memory_summary():
 
 
 @app.get("/api/memory/episodes")
-async def list_episodes(limit: int = 50):
+async def list_episodes(limit: int = Query(default=50, ge=1, le=1000)):
     """List episodic memory entries."""
     ep_dir = _get_loki_dir() / "memory" / "episodic"
     episodes = []
@@ -1578,11 +1582,15 @@ async def list_episodes(limit: int = 50):
 @app.get("/api/memory/episodes/{episode_id}")
 async def get_episode(episode_id: str):
     """Get a specific episodic memory entry."""
-    ep_dir = _get_loki_dir() / "memory" / "episodic"
+    loki_dir = _get_loki_dir()
+    ep_dir = loki_dir / "memory" / "episodic"
     if not ep_dir.exists():
         raise HTTPException(status_code=404, detail="Episode not found")
     # Try direct filename match
     for f in ep_dir.glob("*.json"):
+        resolved = os.path.realpath(f)
+        if not resolved.startswith(os.path.realpath(str(loki_dir))):
+            raise HTTPException(status_code=403, detail="Access denied")
         try:
             data = json.loads(f.read_text())
             if data.get("id") == episode_id or f.stem == episode_id:
@@ -1633,10 +1641,14 @@ async def list_skills():
 @app.get("/api/memory/skills/{skill_id}")
 async def get_skill(skill_id: str):
     """Get a specific procedural skill."""
-    skills_dir = _get_loki_dir() / "memory" / "skills"
+    loki_dir = _get_loki_dir()
+    skills_dir = loki_dir / "memory" / "skills"
     if not skills_dir.exists():
         raise HTTPException(status_code=404, detail="Skill not found")
     for f in skills_dir.glob("*.json"):
+        resolved = os.path.realpath(f)
+        if not resolved.startswith(os.path.realpath(str(loki_dir))):
+            raise HTTPException(status_code=403, detail="Access denied")
         try:
             data = json.loads(f.read_text())
             if data.get("id") == skill_id or f.stem == skill_id:
@@ -1706,6 +1718,7 @@ def _read_learning_signals(signal_type: Optional[str] = None, limit: int = 50) -
     (learning/emitter.py). Each file contains a single signal object with fields:
     id, type, source, action, timestamp, confidence, outcome, data, context.
     """
+    limit = min(limit, 1000)
     signals_dir = _get_loki_dir() / "learning" / "signals"
     if not signals_dir.exists() or not signals_dir.is_dir():
         return []
@@ -1825,7 +1838,7 @@ async def get_learning_signals(
     timeRange: str = "7d",
     signalType: Optional[str] = None,
     source: Optional[str] = None,
-    limit: int = 50,
+    limit: int = Query(default=50, ge=1, le=1000),
     offset: int = 0,
 ):
     """Get raw learning signals from both events.jsonl and learning signals directory."""
@@ -2030,7 +2043,7 @@ async def trigger_aggregation():
 
 
 @app.get("/api/learning/preferences")
-async def get_learning_preferences(limit: int = 50):
+async def get_learning_preferences(limit: int = Query(default=50, ge=1, le=1000)):
     """Get aggregated user preferences from events and learning signals directory."""
     events = _read_events("30d")
     prefs = [e for e in events if e.get("type") == "user_preference"]
@@ -2042,7 +2055,7 @@ async def get_learning_preferences(limit: int = 50):
 
 
 @app.get("/api/learning/errors")
-async def get_learning_errors(limit: int = 50):
+async def get_learning_errors(limit: int = Query(default=50, ge=1, le=1000)):
     """Get aggregated error patterns from events and learning signals directory."""
     events = _read_events("30d")
     errors = [e for e in events if e.get("type") == "error_pattern"]
@@ -2054,7 +2067,7 @@ async def get_learning_errors(limit: int = 50):
 
 
 @app.get("/api/learning/success")
-async def get_learning_success(limit: int = 50):
+async def get_learning_success(limit: int = Query(default=50, ge=1, le=1000)):
     """Get aggregated success patterns from events and learning signals directory."""
     events = _read_events("30d")
     successes = [e for e in events if e.get("type") == "success_pattern"]
@@ -2066,7 +2079,7 @@ async def get_learning_success(limit: int = 50):
 
 
 @app.get("/api/learning/tools")
-async def get_tool_efficiency(limit: int = 50):
+async def get_tool_efficiency(limit: int = Query(default=50, ge=1, le=1000)):
     """Get tool efficiency rankings from events and learning signals directory."""
     events = _read_events("30d")
     tools = [e for e in events if e.get("type") == "tool_efficiency"]
@@ -2442,6 +2455,8 @@ _MODEL_PROVIDERS = {
     "gpt-5.3-codex": "codex",
     "gemini-3-pro": "gemini",
     "gemini-3-flash": "gemini",
+    "cline-default": "cline",
+    "aider-default": "aider",
 }
 
 
@@ -2505,7 +2520,7 @@ async def get_council_state():
 
 
 @app.get("/api/council/verdicts")
-async def get_council_verdicts(limit: int = 20):
+async def get_council_verdicts(limit: int = Query(default=20, ge=1, le=1000)):
     """Get council vote history (decision log)."""
     state_file = _get_loki_dir() / "council" / "state.json"
     verdicts = []

package/docs/INSTALLATION.md

@@ -2,11 +2,11 @@
 
 The flagship product of [Autonomi](https://www.autonomi.dev/). Complete installation instructions for all platforms and use cases.
 
-**Version:** v6.4.0
+**Version:** v6.6.0
 
 ---
 
-## What's New in v6.4.0
+## What's New in v6.6.0
 
 ### Dual-Mode Architecture (v6.0.0)
 - `loki run` command for direct autonomous execution