npm - martin-loop - Versions diffs - 0.1.4 → 1.3.0 - Mend

martin-loop 0.1.4 → 1.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (286) hide show

package/CODE_OF_CONDUCT.md +32 -0
package/README.md +172 -227
package/demo/seeded-workspace/README.md +35 -0
package/demo/seeded-workspace/TASKS.md +29 -0
package/demo/seeded-workspace/martin.config.yaml +11 -0
package/demo/seeded-workspace/package.json +8 -0
package/demo/seeded-workspace/src/invoice-summary.js +11 -0
package/demo/seeded-workspace/test/invoice-summary.test.js +20 -0
package/dist/bin/martin-loop.js +0 -0
package/dist/vendor/adapters/claude-cli.d.ts +19 -4
package/dist/vendor/adapters/claude-cli.js +55 -24
package/dist/vendor/adapters/cli-bridge.d.ts +1 -0
package/dist/vendor/adapters/cli-bridge.js +154 -28
package/dist/vendor/adapters/counter.d.ts +1 -0
package/dist/vendor/adapters/counter.js +4 -0
package/dist/vendor/adapters/git-baseline.d.ts +50 -0
package/dist/vendor/adapters/git-baseline.js +233 -0
package/dist/vendor/adapters/index.d.ts +1 -0
package/dist/vendor/adapters/index.js +1 -0
package/dist/vendor/adapters/openrouter-adapter.d.ts +15 -0
package/dist/vendor/adapters/openrouter-adapter.js +302 -0
package/dist/vendor/adapters/usage.d.ts +48 -0
package/dist/vendor/adapters/usage.js +66 -0
package/dist/vendor/adapters/verifier-only.d.ts +7 -0
package/dist/vendor/adapters/verifier-only.js +57 -0
package/dist/vendor/cli/bin/exit.d.ts +12 -0
package/dist/vendor/cli/bin/exit.js +28 -0
package/dist/vendor/cli/commands/analyze.d.ts +5 -0
package/dist/vendor/cli/commands/analyze.js +58 -0
package/dist/vendor/cli/commands/audit-log-verify.d.ts +34 -0
package/dist/vendor/cli/commands/audit-log-verify.js +99 -0
package/dist/vendor/cli/commands/audit.d.ts +8 -0
package/dist/vendor/cli/commands/audit.js +199 -0
package/dist/vendor/cli/commands/corpus.d.ts +5 -0
package/dist/vendor/cli/commands/corpus.js +60 -0
package/dist/vendor/cli/commands/doctor.d.ts +8 -0
package/dist/vendor/cli/commands/doctor.js +219 -0
package/dist/vendor/cli/commands/explain.d.ts +17 -0
package/dist/vendor/cli/commands/explain.js +176 -0
package/dist/vendor/cli/commands/export.d.ts +5 -0
package/dist/vendor/cli/commands/export.js +60 -0
package/dist/vendor/cli/commands/governance.d.ts +8 -0
package/dist/vendor/cli/commands/governance.js +95 -0
package/dist/vendor/cli/commands/improve.d.ts +18 -0
package/dist/vendor/cli/commands/improve.js +396 -0
package/dist/vendor/cli/commands/init.d.ts +8 -0
package/dist/vendor/cli/commands/init.js +281 -0
package/dist/vendor/cli/commands/migration.d.ts +8 -0
package/dist/vendor/cli/commands/migration.js +67 -0
package/dist/vendor/cli/commands/prior.d.ts +23 -0
package/dist/vendor/cli/commands/prior.js +145 -0
package/dist/vendor/cli/commands/resume.d.ts +21 -0
package/dist/vendor/cli/commands/resume.js +73 -0
package/dist/vendor/cli/commands/verify.d.ts +6 -0
package/dist/vendor/cli/commands/verify.js +43 -0
package/dist/vendor/cli/index.d.ts +6 -1
package/dist/vendor/cli/index.js +124 -7
package/dist/vendor/cli/research/public-corpus.d.ts +43 -0
package/dist/vendor/cli/research/public-corpus.js +151 -0
package/dist/vendor/cli/ui/error-card.d.ts +38 -0
package/dist/vendor/cli/ui/error-card.js +103 -0
package/dist/vendor/cli/ui/mission-brief.d.ts +41 -0
package/dist/vendor/cli/ui/mission-brief.js +173 -0
package/dist/vendor/cli/ui/summary-card.d.ts +34 -0
package/dist/vendor/cli/ui/summary-card.js +102 -0
package/dist/vendor/contracts/audit.d.ts +46 -0
package/dist/vendor/contracts/audit.js +360 -0
package/dist/vendor/contracts/index.d.ts +3 -1
package/dist/vendor/contracts/post-phase15.d.ts +240 -0
package/dist/vendor/contracts/post-phase15.js +166 -0
package/dist/vendor/core/agent/mandates.d.ts +46 -0
package/dist/vendor/core/agent/mandates.js +178 -0
package/dist/vendor/core/agent/receipts.d.ts +38 -0
package/dist/vendor/core/agent/receipts.js +131 -0
package/dist/vendor/core/agent/signing.d.ts +17 -0
package/dist/vendor/core/agent/signing.js +91 -0
package/dist/vendor/core/attestation/sign.d.ts +25 -0
package/dist/vendor/core/attestation/sign.js +216 -0
package/dist/vendor/core/autonomy/autonomous-promotion.d.ts +120 -0
package/dist/vendor/core/autonomy/autonomous-promotion.js +346 -0
package/dist/vendor/core/autonomy/envelope-v2.d.ts +29 -0
package/dist/vendor/core/autonomy/envelope-v2.js +60 -0
package/dist/vendor/core/autonomy/envelope.d.ts +17 -0
package/dist/vendor/core/autonomy/envelope.js +27 -0
package/dist/vendor/core/autonomy/escalation-ledger.d.ts +20 -0
package/dist/vendor/core/autonomy/escalation-ledger.js +18 -0
package/dist/vendor/core/autonomy/resume.d.ts +15 -0
package/dist/vendor/core/autonomy/resume.js +23 -0
package/dist/vendor/core/circuit/circuit-breaker.d.ts +60 -0
package/dist/vendor/core/circuit/circuit-breaker.js +143 -0
package/dist/vendor/core/compiler.d.ts +2 -0
package/dist/vendor/core/compiler.js +10 -4
package/dist/vendor/core/context-distillation.d.ts +3 -0
package/dist/vendor/core/context-distillation.js +44 -0
package/dist/vendor/core/context-flow/compile-context.d.ts +8 -0
package/dist/vendor/core/context-flow/compile-context.js +111 -0
package/dist/vendor/core/context-flow/entities.d.ts +2 -0
package/dist/vendor/core/context-flow/entities.js +44 -0
package/dist/vendor/core/context-flow/evaluate-policy.d.ts +2 -0
package/dist/vendor/core/context-flow/evaluate-policy.js +42 -0
package/dist/vendor/core/context-flow/index.d.ts +11 -0
package/dist/vendor/core/context-flow/index.js +24 -0
package/dist/vendor/core/context-flow/labels.d.ts +3 -0
package/dist/vendor/core/context-flow/labels.js +17 -0
package/dist/vendor/core/context-flow/normalizer.d.ts +9 -0
package/dist/vendor/core/context-flow/normalizer.js +69 -0
package/dist/vendor/core/context-flow/profiles.d.ts +33 -0
package/dist/vendor/core/context-flow/profiles.js +36 -0
package/dist/vendor/core/context-flow/redaction.d.ts +1 -0
package/dist/vendor/core/context-flow/redaction.js +6 -0
package/dist/vendor/core/context-flow/sensitivity.d.ts +2 -0
package/dist/vendor/core/context-flow/sensitivity.js +27 -0
package/dist/vendor/core/context-flow/sync-preview.d.ts +2 -0
package/dist/vendor/core/context-flow/sync-preview.js +22 -0
package/dist/vendor/core/context-flow/token-estimator.d.ts +3 -0
package/dist/vendor/core/context-flow/token-estimator.js +13 -0
package/dist/vendor/core/context-flow/types.d.ts +91 -0
package/dist/vendor/core/context-flow/types.js +2 -0
package/dist/vendor/core/context-integrity.d.ts +26 -0
package/dist/vendor/core/context-integrity.js +56 -0
package/dist/vendor/core/context-utility.d.ts +47 -0
package/dist/vendor/core/context-utility.js +405 -0
package/dist/vendor/core/cost/pipeline.d.ts +92 -0
package/dist/vendor/core/cost/pipeline.js +141 -0
package/dist/vendor/core/cost/tagged-cost.d.ts +27 -0
package/dist/vendor/core/cost/tagged-cost.js +55 -0
package/dist/vendor/core/cost-governor.d.ts +2 -0
package/dist/vendor/core/cost-governor.js +50 -0
package/dist/vendor/core/cve/cve-check.d.ts +80 -0
package/dist/vendor/core/cve/cve-check.js +172 -0
package/dist/vendor/core/digital-twin/index.d.ts +27 -0
package/dist/vendor/core/digital-twin/index.js +90 -0
package/dist/vendor/core/drift/drift-graph.d.ts +47 -0
package/dist/vendor/core/drift/drift-graph.js +100 -0
package/dist/vendor/core/drift/objective-lock.d.ts +69 -0
package/dist/vendor/core/drift/objective-lock.js +88 -0
package/dist/vendor/core/drift/scope.d.ts +46 -0
package/dist/vendor/core/drift/scope.js +102 -0
package/dist/vendor/core/drift/signature-lock.d.ts +48 -0
package/dist/vendor/core/drift/signature-lock.js +202 -0
package/dist/vendor/core/drift/stale-proof-gate.d.ts +21 -0
package/dist/vendor/core/drift/stale-proof-gate.js +19 -0
package/dist/vendor/core/eval/known-bad-world-runner.d.ts +24 -0
package/dist/vendor/core/eval/known-bad-world-runner.js +256 -0
package/dist/vendor/core/evidence/claim-audit.d.ts +18 -0
package/dist/vendor/core/evidence/claim-audit.js +89 -0
package/dist/vendor/core/exit-intelligence.d.ts +2 -0
package/dist/vendor/core/exit-intelligence.js +58 -0
package/dist/vendor/core/explain/formatter.d.ts +42 -0
package/dist/vendor/core/explain/formatter.js +171 -0
package/dist/vendor/core/explain/timeline.d.ts +29 -0
package/dist/vendor/core/explain/timeline.js +213 -0
package/dist/vendor/core/failure-taxonomy.d.ts +2 -0
package/dist/vendor/core/failure-taxonomy.js +76 -0
package/dist/vendor/core/gateway/index.d.ts +10 -0
package/dist/vendor/core/gateway/index.js +12 -0
package/dist/vendor/core/gateway/registry.d.ts +40 -0
package/dist/vendor/core/gateway/registry.js +97 -0
package/dist/vendor/core/gateway/transport.d.ts +31 -0
package/dist/vendor/core/gateway/transport.js +82 -0
package/dist/vendor/core/gateway/vault.d.ts +19 -0
package/dist/vendor/core/gateway/vault.js +29 -0
package/dist/vendor/core/graph/adapters.d.ts +43 -0
package/dist/vendor/core/graph/adapters.js +91 -0
package/dist/vendor/core/graph/hotspots.d.ts +22 -0
package/dist/vendor/core/graph/hotspots.js +30 -0
package/dist/vendor/core/graph/index.d.ts +1 -0
package/dist/vendor/core/graph/index.js +2 -0
package/dist/vendor/core/honey/honey-tokens.d.ts +32 -0
package/dist/vendor/core/honey/honey-tokens.js +44 -0
package/dist/vendor/core/index.d.ts +7 -4
package/dist/vendor/core/index.js +222 -64
package/dist/vendor/core/learning/bayesian-update.d.ts +31 -0
package/dist/vendor/core/learning/bayesian-update.js +60 -0
package/dist/vendor/core/learning/prior-sets.d.ts +42 -0
package/dist/vendor/core/learning/prior-sets.js +111 -0
package/dist/vendor/core/learning/promotion-gate.d.ts +17 -0
package/dist/vendor/core/learning/promotion-gate.js +23 -0
package/dist/vendor/core/leash/blast-radius.d.ts +42 -0
package/dist/vendor/core/leash/blast-radius.js +156 -0
package/dist/vendor/core/leash/policy-leash.d.ts +31 -0
package/dist/vendor/core/leash/policy-leash.js +117 -0
package/dist/vendor/core/memo/memo.d.ts +63 -0
package/dist/vendor/core/memo/memo.js +97 -0
package/dist/vendor/core/memory/learning-pipeline.d.ts +154 -0
package/dist/vendor/core/memory/learning-pipeline.js +391 -0
package/dist/vendor/core/memory/palace.d.ts +84 -0
package/dist/vendor/core/memory/palace.js +379 -0
package/dist/vendor/core/merge/ast-merge.d.ts +22 -0
package/dist/vendor/core/merge/ast-merge.js +350 -0
package/dist/vendor/core/merge/text-merge.d.ts +12 -0
package/dist/vendor/core/merge/text-merge.js +182 -0
package/dist/vendor/core/otel/tracer.d.ts +45 -0
package/dist/vendor/core/otel/tracer.js +116 -0
package/dist/vendor/core/parallel/parallel-attempts.d.ts +28 -0
package/dist/vendor/core/parallel/parallel-attempts.js +41 -0
package/dist/vendor/core/parallel/scorer.d.ts +24 -0
package/dist/vendor/core/parallel/scorer.js +65 -0
package/dist/vendor/core/pattern-detection.d.ts +64 -0
package/dist/vendor/core/pattern-detection.js +108 -0
package/dist/vendor/core/persistence/checkpoint.d.ts +44 -0
package/dist/vendor/core/persistence/checkpoint.js +156 -0
package/dist/vendor/core/persistence/cleanup.d.ts +22 -0
package/dist/vendor/core/persistence/cleanup.js +131 -0
package/dist/vendor/core/persistence/index.d.ts +2 -0
package/dist/vendor/core/persistence/index.js +1 -0
package/dist/vendor/core/persistence/runs-reader.d.ts +52 -0
package/dist/vendor/core/persistence/runs-reader.js +84 -0
package/dist/vendor/core/persistence/store.d.ts +6 -1
package/dist/vendor/core/persistence/store.js +5 -0
package/dist/vendor/core/policy/file-touch-quota.d.ts +60 -0
package/dist/vendor/core/policy/file-touch-quota.js +105 -0
package/dist/vendor/core/policy/policy-loader.d.ts +30 -0
package/dist/vendor/core/policy/policy-loader.js +170 -0
package/dist/vendor/core/policy/policy-schema.d.ts +55 -0
package/dist/vendor/core/policy/policy-schema.js +78 -0
package/dist/vendor/core/policy.d.ts +6 -0
package/dist/vendor/core/probe/probe.d.ts +49 -0
package/dist/vendor/core/probe/probe.js +115 -0
package/dist/vendor/core/proof/patch-proof.d.ts +58 -0
package/dist/vendor/core/proof/patch-proof.js +84 -0
package/dist/vendor/core/proof/semantic-probe.d.ts +25 -0
package/dist/vendor/core/proof/semantic-probe.js +82 -0
package/dist/vendor/core/recovery/failure-mode-runner.d.ts +29 -0
package/dist/vendor/core/recovery/failure-mode-runner.js +39 -0
package/dist/vendor/core/red-blue/red-phase.d.ts +64 -0
package/dist/vendor/core/red-blue/red-phase.js +141 -0
package/dist/vendor/core/red-blue/risk-tiers.d.ts +22 -0
package/dist/vendor/core/red-blue/risk-tiers.js +33 -0
package/dist/vendor/core/replay/replay.d.ts +85 -0
package/dist/vendor/core/replay/replay.js +109 -0
package/dist/vendor/core/router/engine.d.ts +54 -0
package/dist/vendor/core/router/engine.js +131 -0
package/dist/vendor/core/router/index.d.ts +1 -0
package/dist/vendor/core/router/index.js +2 -0
package/dist/vendor/core/router/trust-calibration.d.ts +57 -0
package/dist/vendor/core/router/trust-calibration.js +127 -0
package/dist/vendor/core/run-martin.d.ts +2 -0
package/dist/vendor/core/run-martin.js +287 -0
package/dist/vendor/core/security/cve-scanner.d.ts +62 -0
package/dist/vendor/core/security/cve-scanner.js +178 -0
package/dist/vendor/core/sentinel/efficiency-sentinel.d.ts +29 -0
package/dist/vendor/core/sentinel/efficiency-sentinel.js +30 -0
package/dist/vendor/core/sentinel/progress-guard.d.ts +35 -0
package/dist/vendor/core/sentinel/progress-guard.js +46 -0
package/dist/vendor/core/siem/siem-emitter.d.ts +49 -0
package/dist/vendor/core/siem/siem-emitter.js +157 -0
package/dist/vendor/core/strategy/attempt-brief.d.ts +22 -0
package/dist/vendor/core/strategy/attempt-brief.js +89 -0
package/dist/vendor/core/summarize/diff-summary.d.ts +35 -0
package/dist/vendor/core/summarize/diff-summary.js +204 -0
package/dist/vendor/core/surface-signals.d.ts +21 -0
package/dist/vendor/core/surface-signals.js +139 -0
package/dist/vendor/core/truth/truth-wall.d.ts +51 -0
package/dist/vendor/core/truth/truth-wall.js +69 -0
package/dist/vendor/core/truth-spine.d.ts +26 -0
package/dist/vendor/core/truth-spine.js +62 -0
package/dist/vendor/core/types.d.ts +115 -0
package/dist/vendor/core/types.js +2 -0
package/dist/vendor/core/verification/tiered-verify.d.ts +17 -0
package/dist/vendor/core/verification/tiered-verify.js +29 -0
package/dist/vendor/core/verifier-pyramid.d.ts +32 -0
package/dist/vendor/core/verifier-pyramid.js +111 -0
package/dist/vendor/core/workflow-artifacts.d.ts +99 -0
package/dist/vendor/core/workflow-artifacts.js +668 -0
package/dist/vendor/core/wrap/supervised-run.d.ts +96 -0
package/dist/vendor/core/wrap/supervised-run.js +178 -0
package/docs/assets/cli-animated.svg +139 -0
package/docs/assets/cli-static.svg +34 -0
package/docs/assets/github-hero-v2.svg +23 -0
package/docs/assets/martin-raplph.png.jpg +0 -0
package/docs/assets/martinloop-logo.png +0 -0
package/docs/assets/nvidia-inception-program-light.png +0 -0
package/docs/assets/nvidia-inception-program.png +0 -0
package/docs/assets/phase3c-sidesidebyside-demo.html +228 -0
package/docs/assets/side-by-side.svg +134 -0
package/docs/oss/CLAUDE-CODE-WALKTHROUGH.md +142 -0
package/docs/oss/EXAMPLES.md +9 -1
package/docs/oss/OSS-BOUNDARY-REPORT.json +109 -113
package/docs/oss/OSS-BOUNDARY-REPORT.md +48 -48
package/docs/oss/QUICKSTART.md +39 -4
package/docs/oss/RALPH-LOOP-SAFETY.md +113 -0
package/docs/oss/README.md +7 -4
package/docs/oss/RELEASE-SURFACE-REPORT.json +46 -45
package/docs/oss/RELEASE-SURFACE-REPORT.md +36 -35
package/package.json +129 -49

package/dist/vendor/core/index.js CHANGED Viewed

@@ -5,12 +5,15 @@ import { evaluateChangeApprovalLeash, evaluateFilesystemLeash, evaluateSecretLea
 import { buildRepoGroundingIndex, loadOrBuildRepoGroundingIndex, queryRepoGroundingIndex, scanPatchForGroundingViolations } from "./grounding.js";
 import { captureRollbackBoundary, restoreRollbackBoundary } from "./rollback.js";
 import { compilePromptPacket } from "./compiler.js";
-import { makeLedgerEvent } from "./persistence/index.js";
+import { makeLedgerEvent, resolveRunsRoot, runDir } from "./persistence/index.js";
+import { runContextIntegrityPrecheck } from "./context-integrity.js";
 export { classifyFailure, computeEvidenceVector, evaluatePatchDecision, evaluateCostGovernor, evaluateBudgetPreflight, inferExit, nextPolicyPhase, policyPhaseToLifecycleState, scorePatchDecision, selectRecoveryRecipe, evaluateVerificationLeash, evaluateFilesystemLeash, evaluateChangeApprovalLeash, evaluateSecretLeash, resolveExecutionProfile, redactSecretsFromText, buildRepoGroundingIndex, loadOrBuildRepoGroundingIndex, queryRepoGroundingIndex, scanPatchForGroundingViolations, captureRollbackBoundary, restoreRollbackBoundary };
+// ─── Context Integrity Pre-gate ──────────────────────────────────────────────
+export { runContextIntegrityPrecheck } from "./context-integrity.js";
 // ─── Prompt packet compiler ──────────────────────────────────────────────────
 export { compilePromptPacket } from "./compiler.js";
 // ─── Persistence (RunStore, LedgerEvent, FileRunStore) ──────────────────────
-export { createFileRunStore, makeLedgerEvent, resolveRunsRoot } from "./persistence/index.js";
+export { createFileRunStore, makeLedgerEvent, readAllLoopRecords, readLatestLoopRecord, readLatestLoopRecordFromFile, readLoopRecordsFromFile, resolveRunsRoot } from "./persistence/index.js";
 export { compileAndPersistContext } from "./persistence/index.js";
 /**
  * Admission gate — must pass before any attempt is executed.
@@ -126,6 +129,7 @@ export async function runMartin(input) {
             runId: loop.loopId,
             payload: { workspaceId: input.workspaceId, projectId: input.projectId }
         }));
+        await persistLoopRecordIfSupported(input.store, loop);
     }
     const DEFAULT_FALLBACK_MODELS = [
         "claude-haiku-4-5",
@@ -136,6 +140,7 @@ export async function runMartin(input) {
     let currentAdapterIndex = 0;
     let currentAdapter = adapterChain[currentAdapterIndex] ?? input.adapter;
     let useCompressedContext = false;
+    const isVerifyOnly = input.task.mutationMode === "verify_only";
     const executionProfile = resolveExecutionProfile({
         executionProfile: input.task.executionProfile,
         allowedNetworkDomains: input.task.allowedNetworkDomains
@@ -153,7 +158,8 @@ export async function runMartin(input) {
             shouldExit: true,
             lifecycleState: "human_escalation",
             status: "exited",
-            reason
+            reason,
+            ...classifySafetyLeashExit(leashDecision, "verifier")
         };
         if (input.store) {
             await input.store.appendLedger(loop.loopId, makeLedgerEvent({
@@ -169,15 +175,13 @@ export async function runMartin(input) {
             await input.store.appendLedger(loop.loopId, makeLedgerEvent({
                 kind: "run.exited",
                 runId: loop.loopId,
-                payload: {
-                    lifecycleState: leashExitDecision.lifecycleState,
-                    status: leashExitDecision.status,
-                    reason: leashExitDecision.reason
-                }
+                payload: createRunExitPayload(leashExitDecision)
             }));
         }
+        const finalizedLoop = finalizeLoop(loop, leashExitDecision, now(), idFactory);
+        await persistLoopRecordIfSupported(input.store, finalizedLoop);
         return {
-            loop: finalizeLoop(loop, leashExitDecision, now(), idFactory),
+            loop: finalizedLoop,
             decision: leashExitDecision
         };
     }
@@ -193,7 +197,8 @@ export async function runMartin(input) {
             shouldExit: true,
             lifecycleState: "human_escalation",
             status: "exited",
-            reason: secretDecision.reason ?? "Safety leash blocked secret-like values in the runtime context."
+            reason: secretDecision.reason ?? "Safety leash blocked secret-like values in the runtime context.",
+            ...classifySafetyLeashExit(secretDecision, "secret")
         };
         if (input.store) {
             await input.store.appendLedger(loop.loopId, makeLedgerEvent({
@@ -208,15 +213,13 @@ export async function runMartin(input) {
             await input.store.appendLedger(loop.loopId, makeLedgerEvent({
                 kind: "run.exited",
                 runId: loop.loopId,
-                payload: {
-                    lifecycleState: secretExitDecision.lifecycleState,
-                    status: secretExitDecision.status,
-                    reason: secretExitDecision.reason
-                }
+                payload: createRunExitPayload(secretExitDecision)
             }));
         }
+        const finalizedLoop = finalizeLoop(loop, secretExitDecision, now(), idFactory);
+        await persistLoopRecordIfSupported(input.store, finalizedLoop);
         return {
-            loop: finalizeLoop(loop, secretExitDecision, now(), idFactory),
+            loop: finalizedLoop,
             decision: secretExitDecision
         };
     }
@@ -254,20 +257,52 @@ export async function runMartin(input) {
                 await input.store.appendLedger(loop.loopId, makeLedgerEvent({
                     kind: "run.exited",
                     runId: loop.loopId,
-                    payload: {
-                        lifecycleState: preflightExitDecision.lifecycleState,
-                        status: preflightExitDecision.status,
-                        reason: preflightExitDecision.reason
-                    }
+                    payload: createRunExitPayload(preflightExitDecision)
                 }));
             }
+            const finalizedLoop = finalizeLoop(loop, preflightExitDecision, now(), idFactory);
+            await persistLoopRecordIfSupported(input.store, finalizedLoop);
             return {
-                loop: finalizeLoop(loop, preflightExitDecision, now(), idFactory),
+                loop: finalizedLoop,
                 decision: preflightExitDecision
             };
         }
         // GATHER → ADMIT: run admission control before executing
         currentPhase = "ADMIT";
+        // T05: Context Integrity Pre-gate — blocks authority inversion / injection before reasoning
+        const contextPrecheck = await runContextIntegrityPrecheck(loop.loopId, loop.attempts.length + 1, runDir(resolveRunsRoot(), loop.loopId), {
+            userPrompt: distilled.focus,
+            history: loop.attempts.map(a => a.summary).join("\n")
+        });
+        if (contextPrecheck.verdict === "context_poisoning_block") {
+            currentPhase = "ABORT";
+            const poisoningExitDecision = {
+                shouldExit: true,
+                lifecycleState: "human_escalation",
+                status: "exited",
+                reason: "Context Integrity Pre-gate: context poisoning attempt detected.",
+                failureClass: "safety_leash_blocked",
+                safetySurface: "context_integrity",
+                reasonCode: "context_poisoning_blocked"
+            };
+            if (input.store) {
+                await input.store.appendLedger(loop.loopId, makeLedgerEvent({
+                    kind: "safety.violations_found",
+                    runId: loop.loopId,
+                    payload: {
+                        verdict: contextPrecheck.verdict,
+                        signals: contextPrecheck.detectedSignals,
+                        source: "context_integrity_pregate"
+                    }
+                }));
+            }
+            const finalizedLoop = finalizeLoop(loop, poisoningExitDecision, now(), idFactory);
+            await persistLoopRecordIfSupported(input.store, finalizedLoop);
+            return {
+                loop: finalizedLoop,
+                decision: poisoningExitDecision
+            };
+        }
         const admissionDecision = evaluateAttemptPolicy({
             request: {
                 loopId: loop.loopId,
@@ -315,15 +350,13 @@ export async function runMartin(input) {
                 await input.store.appendLedger(loop.loopId, makeLedgerEvent({
                     kind: "run.exited",
                     runId: loop.loopId,
-                    payload: {
-                        lifecycleState: exitDecision.lifecycleState,
-                        status: exitDecision.status,
-                        reason: exitDecision.reason
-                    }
+                    payload: createRunExitPayload(exitDecision)
                 }));
             }
+            const finalizedLoop = finalizeLoop(loop, exitDecision, now(), idFactory);
+            await persistLoopRecordIfSupported(input.store, finalizedLoop);
             return {
-                loop: finalizeLoop(loop, exitDecision, now(), idFactory),
+                loop: finalizedLoop,
                 decision: exitDecision
             };
         }
@@ -361,6 +394,7 @@ export async function runMartin(input) {
                 objective: loop.task.objective,
                 verificationPlan: loop.task.verificationPlan,
                 ...(loop.task.verificationStack ? { verificationStack: loop.task.verificationStack } : {}),
+                ...(loop.task.mutationMode ? { mutationMode: loop.task.mutationMode } : {}),
                 ...(loop.task.repoRoot ? { repoRoot: loop.task.repoRoot } : {}),
                 ...(loop.task.allowedPaths ? { allowedPaths: loop.task.allowedPaths } : {}),
                 ...(loop.task.deniedPaths ? { deniedPaths: loop.task.deniedPaths } : {}),
@@ -539,6 +573,92 @@ export async function runMartin(input) {
         // returned a non-empty list. A repoRoot alone is insufficient — git may fail (e.g. not
         // a git repo) and silently return [], which would falsely trigger no_code_change.
         const changedFileEvidenceAvailable = result.execution?.changedFiles !== undefined || changedFiles.length > 0;
+        if (isVerifyOnly && changedFiles.length > 0) {
+            const patchDecision = evaluatePatchDecision({
+                verificationPassed: result.verification.passed,
+                previousVerifierScore,
+                verifierScore: result.verification.passed ? 1 : 0,
+                scopeViolationCount: changedFiles.length,
+                changedFileCount: changedFiles.length,
+                diffNovelty: 1,
+                diffStats: result.execution?.diffStats,
+                costUsd: getUsageUsd(result.usage),
+                summary: result.summary
+            });
+            const verifyOnlyExitDecision = {
+                shouldExit: true,
+                lifecycleState: "human_escalation",
+                status: "exited",
+                reason: "Verify-only mode forbids file changes.",
+                failureClass: "safety_leash_blocked",
+                safetySurface: "filesystem",
+                reasonCode: "verify_only_write_attempt"
+            };
+            const rollbackOutcome = await restoreRollbackBoundary({
+                repoRoot: request.context.repoRoot,
+                boundary: rollbackBoundary,
+                restoredAt: attemptCompletedAt,
+                decision: patchDecision.decision
+            });
+            if (input.store) {
+                const verifyOnlyViolation = {
+                    kind: "path_not_allowed",
+                    message: `Verify-only mode forbids changed files: ${changedFiles.join(", ")}`,
+                    file: changedFiles[0]
+                };
+                await input.store.writeAttemptArtifacts(loop.loopId, currentAttemptIndex, {
+                    compiledContext,
+                    leash: createLeashArtifact({
+                        surface: "filesystem",
+                        reason: verifyOnlyExitDecision.reason,
+                        violations: [verifyOnlyViolation]
+                    }, currentAttemptIndex),
+                    patchScore: patchDecision.score,
+                    patchDecision: toPatchDecisionArtifact(patchDecision),
+                    ...(rollbackBoundary ? { rollbackBoundary } : {}),
+                    ...(rollbackOutcome ? { rollbackOutcome } : {})
+                });
+                await input.store.appendLedger(loop.loopId, makeLedgerEvent({
+                    kind: "safety.violations_found",
+                    runId: loop.loopId,
+                    attemptIndex: currentAttemptIndex,
+                    payload: {
+                        surface: "filesystem",
+                        blocked: true,
+                        attemptIndex: currentAttemptIndex,
+                        violations: [
+                            {
+                                kind: "path_not_allowed",
+                                message: verifyOnlyExitDecision.reason,
+                                files: changedFiles
+                            }
+                        ]
+                    }
+                }));
+                await input.store.appendLedger(loop.loopId, makeLedgerEvent({
+                    kind: "attempt.discarded",
+                    runId: loop.loopId,
+                    attemptIndex: currentAttemptIndex,
+                    payload: {
+                        decision: patchDecision.decision,
+                        reason: patchDecision.summary,
+                        reasonCodes: patchDecision.reasonCodes,
+                        score: patchDecision.score.score
+                    }
+                }));
+                await input.store.appendLedger(loop.loopId, makeLedgerEvent({
+                    kind: "run.exited",
+                    runId: loop.loopId,
+                    payload: createRunExitPayload(verifyOnlyExitDecision)
+                }));
+            }
+            const finalizedLoop = finalizeLoop(loop, verifyOnlyExitDecision, now(), idFactory);
+            await persistLoopRecordIfSupported(input.store, finalizedLoop);
+            return {
+                loop: finalizedLoop,
+                decision: verifyOnlyExitDecision
+            };
+        }
         const filesystemDecision = evaluateFilesystemLeash({
             repoRoot: request.context.repoRoot,
             changedFiles,
@@ -561,7 +681,8 @@ export async function runMartin(input) {
                 shouldExit: true,
                 lifecycleState: "human_escalation",
                 status: "exited",
-                reason: filesystemDecision.reason ?? "Safety leash blocked filesystem changes."
+                reason: filesystemDecision.reason ?? "Safety leash blocked filesystem changes.",
+                ...classifySafetyLeashExit(filesystemDecision, "filesystem")
             };
             const rollbackOutcome = await restoreRollbackBoundary({
                 repoRoot: request.context.repoRoot,
@@ -603,15 +724,13 @@ export async function runMartin(input) {
                 await input.store.appendLedger(loop.loopId, makeLedgerEvent({
                     kind: "run.exited",
                     runId: loop.loopId,
-                    payload: {
-                        lifecycleState: filesystemExitDecision.lifecycleState,
-                        status: filesystemExitDecision.status,
-                        reason: filesystemExitDecision.reason
-                    }
+                    payload: createRunExitPayload(filesystemExitDecision)
                 }));
             }
+            const finalizedLoop = finalizeLoop(loop, filesystemExitDecision, now(), idFactory);
+            await persistLoopRecordIfSupported(input.store, finalizedLoop);
             return {
-                loop: finalizeLoop(loop, filesystemExitDecision, now(), idFactory),
+                loop: finalizedLoop,
                 decision: filesystemExitDecision
             };
         }
@@ -638,7 +757,8 @@ export async function runMartin(input) {
                 lifecycleState: "human_escalation",
                 status: "exited",
                 reason: changeApprovalDecision.reason ??
-                    "Safety leash blocked dependency or migration changes that require approval."
+                    "Safety leash blocked dependency or migration changes that require approval.",
+                ...classifySafetyLeashExit(changeApprovalDecision, "dependency")
             };
             const rollbackOutcome = await restoreRollbackBoundary({
                 repoRoot: request.context.repoRoot,
@@ -681,15 +801,13 @@ export async function runMartin(input) {
                 await input.store.appendLedger(loop.loopId, makeLedgerEvent({
                     kind: "run.exited",
                     runId: loop.loopId,
-                    payload: {
-                        lifecycleState: approvalExitDecision.lifecycleState,
-                        status: approvalExitDecision.status,
-                        reason: approvalExitDecision.reason
-                    }
+                    payload: createRunExitPayload(approvalExitDecision)
                 }));
             }
+            const finalizedLoop = finalizeLoop(loop, approvalExitDecision, now(), idFactory);
+            await persistLoopRecordIfSupported(input.store, finalizedLoop);
             return {
-                loop: finalizeLoop(loop, approvalExitDecision, now(), idFactory),
+                loop: finalizedLoop,
                 decision: approvalExitDecision
             };
         }
@@ -728,8 +846,8 @@ export async function runMartin(input) {
                 previousVerifierScore,
                 verifierScore: result.verification.passed ? 1 : 0,
                 groundingViolationCount: groundingScanResult?.violations.length ?? 0,
-                changedFileCount: changedFileEvidenceAvailable ? changedFiles.length : undefined,
-                diffNovelty: changedFileEvidenceAvailable ? (changedFiles.length > 0 ? 1 : 0) : undefined,
+                changedFileCount: !isVerifyOnly && changedFileEvidenceAvailable ? changedFiles.length : undefined,
+                diffNovelty: !isVerifyOnly && changedFileEvidenceAvailable ? (changedFiles.length > 0 ? 1 : 0) : undefined,
                 diffStats: result.execution?.diffStats,
                 costUsd: getUsageUsd(result.usage),
                 summary: result.summary
@@ -822,15 +940,13 @@ export async function runMartin(input) {
                 await input.store.appendLedger(loop.loopId, makeLedgerEvent({
                     kind: "run.exited",
                     runId: loop.loopId,
-                    payload: {
-                        lifecycleState: patchExitDecision.lifecycleState,
-                        status: patchExitDecision.status,
-                        reason: patchExitDecision.reason
-                    }
+                    payload: createRunExitPayload(patchExitDecision)
                 }));
             }
+            const finalizedLoop = finalizeLoop(loop, patchExitDecision, now(), idFactory);
+            await persistLoopRecordIfSupported(input.store, finalizedLoop);
             return {
-                loop: finalizeLoop(loop, patchExitDecision, now(), idFactory),
+                loop: finalizedLoop,
                 decision: patchExitDecision
             };
         }
@@ -870,15 +986,13 @@ export async function runMartin(input) {
                 await input.store.appendLedger(loop.loopId, makeLedgerEvent({
                     kind: "run.exited",
                     runId: loop.loopId,
-                    payload: {
-                        lifecycleState: decision.lifecycleState,
-                        status: decision.status,
-                        reason: decision.reason
-                    }
+                    payload: createRunExitPayload(decision)
                 }));
             }
+            const finalizedLoop = finalizeLoop(loop, decision, now(), idFactory);
+            await persistLoopRecordIfSupported(input.store, finalizedLoop);
             return {
-                loop: finalizeLoop(loop, decision, now(), idFactory),
+                loop: finalizedLoop,
                 decision
             };
         }
@@ -893,23 +1007,64 @@ export async function runMartin(input) {
         await input.store.appendLedger(loop.loopId, makeLedgerEvent({
             kind: "run.exited",
             runId: loop.loopId,
-            payload: {
-                lifecycleState: decision.lifecycleState,
-                status: decision.status,
-                reason: decision.reason
-            }
+            payload: createRunExitPayload(decision)
         }));
     }
+    const finalizedLoop = finalizeLoop(loop, decision, now(), idFactory);
+    await persistLoopRecordIfSupported(input.store, finalizedLoop);
     return {
-        loop: finalizeLoop(loop, decision, now(), idFactory),
+        loop: finalizedLoop,
         decision
     };
 }
+function createRunExitPayload(decision) {
+    return {
+        lifecycleState: decision.lifecycleState,
+        status: decision.status,
+        reason: decision.reason,
+        ...(decision.failureClass ? { failureClass: decision.failureClass } : {}),
+        ...(decision.safetySurface ? { safetySurface: decision.safetySurface } : {}),
+        ...(decision.reasonCode ? { reasonCode: decision.reasonCode } : {})
+    };
+}
+function classifySafetyLeashExit(decision, safetySurface = decision.surface) {
+    return {
+        failureClass: "safety_leash_blocked",
+        safetySurface,
+        reasonCode: safetyLeashReasonCode(decision, safetySurface)
+    };
+}
+function safetyLeashReasonCode(decision, safetySurface) {
+    const kind = decision.violations[0]?.kind;
+    switch (kind) {
+        case "command_blocked":
+            return safetySurface === "verifier" ? "destructive_verifier_command" : "command_blocked";
+        case "network_blocked":
+            return safetySurface === "verifier" ? "verifier_network_blocked" : "network_access_blocked";
+        case "secret_value":
+            return "secret_context_value";
+        case "path_denied":
+        case "protected_path":
+            return "protected_surface_write";
+        case "path_not_allowed":
+            return "surface_write_not_allowed";
+        case "path_outside_repo":
+            return "outside_repo_write";
+        case "dependency_approval_required":
+            return "dependency_approval_required";
+        case "migration_approval_required":
+            return "migration_approval_required";
+        case "config_change_approval_required":
+            return "config_change_approval_required";
+        default:
+            return `${safetySurface}_safety_block`;
+    }
+}
 function finalizeLoop(loop, decision, timestamp, idFactory) {
     const finalized = appendLoopEvent(loop, {
         type: "run.completed",
         lifecycleState: decision.lifecycleState,
-        payload: { status: decision.status, reason: decision.reason }
+        payload: createRunExitPayload(decision)
     }, { now: timestamp, idFactory });
     return {
         ...finalized,
@@ -918,6 +1073,9 @@ function finalizeLoop(loop, decision, timestamp, idFactory) {
         updatedAt: timestamp
     };
 }
+async function persistLoopRecordIfSupported(store, loop) {
+    await store?.writeLoopRecord?.(loop.loopId, loop);
+}
 function getAdapterTransport(adapter) {
     return adapter.metadata.transport ?? (adapter.kind === "agent-cli" ? "cli" : "http");
 }
@@ -934,7 +1092,7 @@ function getUsageProvenance(usage) {
     return "actual";
 }
 function resolveChangedFiles(result, repoRoot) {
-    if (result.execution?.changedFiles?.length) {
+    if (result.execution?.changedFiles !== undefined) {
         return result.execution.changedFiles;
     }
     if (!repoRoot) {

package/dist/vendor/core/learning/bayesian-update.d.ts ADDED Viewed

@@ -0,0 +1,31 @@
+/**
+ * Applies a single-step Bayesian update to a prior probability.
+ *
+ * Formula: posterior = (prior * likelihood) / normalizing_constant
+ *
+ * The normalizing constant ensures the result stays in [0, 1]:
+ *   Z = prior * likelihood + (1 - prior) * (1 - likelihood)
+ *
+ * This is the standard Beta-Bernoulli update for binary outcomes.
+ * - likelihood > 0.5 → positive evidence → posterior increases
+ * - likelihood < 0.5 → negative evidence → posterior decreases
+ * - likelihood = 0.5 → no information → posterior unchanged
+ *
+ * @param prior     Current prior probability (0.0 – 1.0)
+ * @param likelihood Likelihood of observation given the hypothesis (0.0 – 1.0)
+ * @returns Updated posterior probability (0.0 – 1.0)
+ */
+export declare function updatePriorBayesian(prior: number, likelihood: number): number;
+/**
+ * Applies a Bayesian update to a PriorSet's individual symbol priors
+ * using confidence deltas from the hypothesis ledger.
+ *
+ * confidenceDelta > 0 → validated evidence → likelihood = 0.5 + delta/2
+ * confidenceDelta < 0 → invalidated evidence → likelihood = 0.5 + delta/2
+ *
+ * @param priors     Symbol → prior probability map
+ * @param symbol     The specific symbol to update
+ * @param confidenceDelta  From hypothesis ledger (−1.0 to +1.0)
+ * @returns New priors map with updated value for symbol
+ */
+export declare function updateSymbolPrior(priors: Record<string, number>, symbol: string, confidenceDelta: number): Record<string, number>;

package/dist/vendor/core/learning/bayesian-update.js ADDED Viewed

@@ -0,0 +1,60 @@
+// ─── Bayesian Update ─────────────────────────────────────────────────────────
+/**
+ * Applies a single-step Bayesian update to a prior probability.
+ *
+ * Formula: posterior = (prior * likelihood) / normalizing_constant
+ *
+ * The normalizing constant ensures the result stays in [0, 1]:
+ *   Z = prior * likelihood + (1 - prior) * (1 - likelihood)
+ *
+ * This is the standard Beta-Bernoulli update for binary outcomes.
+ * - likelihood > 0.5 → positive evidence → posterior increases
+ * - likelihood < 0.5 → negative evidence → posterior decreases
+ * - likelihood = 0.5 → no information → posterior unchanged
+ *
+ * @param prior     Current prior probability (0.0 – 1.0)
+ * @param likelihood Likelihood of observation given the hypothesis (0.0 – 1.0)
+ * @returns Updated posterior probability (0.0 – 1.0)
+ */
+export function updatePriorBayesian(prior, likelihood) {
+    if (prior < 0 || prior > 1)
+        throw new Error(`prior must be in [0, 1], got ${prior}`);
+    if (likelihood < 0 || likelihood > 1)
+        throw new Error(`likelihood must be in [0, 1], got ${likelihood}`);
+    // P(H|E) = P(E|H) * P(H) / P(E)
+    // P(E) = P(E|H)*P(H) + P(E|¬H)*P(¬H)
+    const pEgivenH = likelihood;
+    const pEgivenNotH = 1 - likelihood;
+    const pH = prior;
+    const pNotH = 1 - prior;
+    const pE = pEgivenH * pH + pEgivenNotH * pNotH;
+    // Avoid division by zero (shouldn't happen with valid inputs)
+    if (pE === 0)
+        return prior;
+    return (pEgivenH * pH) / pE;
+}
+/**
+ * Applies a Bayesian update to a PriorSet's individual symbol priors
+ * using confidence deltas from the hypothesis ledger.
+ *
+ * confidenceDelta > 0 → validated evidence → likelihood = 0.5 + delta/2
+ * confidenceDelta < 0 → invalidated evidence → likelihood = 0.5 + delta/2
+ *
+ * @param priors     Symbol → prior probability map
+ * @param symbol     The specific symbol to update
+ * @param confidenceDelta  From hypothesis ledger (−1.0 to +1.0)
+ * @returns New priors map with updated value for symbol
+ */
+export function updateSymbolPrior(priors, symbol, confidenceDelta) {
+    const currentPrior = priors[symbol] ?? 0.5;
+    // Map confidenceDelta (−1..+1) to likelihood (0..1)
+    // delta=+1.0 → likelihood=1.0 (strong positive evidence)
+    // delta=0.0  → likelihood=0.5 (no information)
+    // delta=−1.0 → likelihood=0.0 (strong negative evidence)
+    const likelihood = Math.max(0, Math.min(1, 0.5 + confidenceDelta / 2));
+    return {
+        ...priors,
+        [symbol]: updatePriorBayesian(currentPrior, likelihood)
+    };
+}
+//# sourceMappingURL=bayesian-update.js.map

package/dist/vendor/core/learning/prior-sets.d.ts ADDED Viewed

@@ -0,0 +1,42 @@
+export type PromotionGate = "development" | "backtest" | "shadow" | "live";
+export interface PriorSet {
+    priorSetId: string;
+    taskClass: string;
+    version: number;
+    confidence: number;
+    priors: Record<string, number>;
+    lastUpdatedAt: string;
+    promotionGate: PromotionGate;
+    sampleCount: number;
+}
+export interface PriorStore {
+    priorSets: PriorSet[];
+}
+export interface CreatePriorSetInput {
+    priorSetId: string;
+    taskClass: string;
+    priors: Record<string, number>;
+}
+export declare function createPriorSet(input: CreatePriorSetInput): PriorSet;
+export declare function loadPriorStore(storeDir: string): Promise<PriorStore>;
+export declare function savePriorStore(store: PriorStore, storeDir: string): Promise<void>;
+/**
+ * Promotes a PriorSet to the next gate in the sequence.
+ * Gates must advance sequentially: development → backtest → shadow → live.
+ * Throws if the target gate is not the immediate next gate.
+ */
+export declare function promotePriorSet(priorSetId: string, targetGate: PromotionGate, storeDir: string): Promise<PriorSet>;
+/**
+ * Rolls back a PriorSet to the previous gate.
+ * Rollback is always available from any gate above development.
+ * Throws if already at development.
+ */
+export declare function rollbackPriorSet(priorSetId: string, storeDir: string): Promise<PriorSet>;
+/**
+ * Returns all PriorSets from the store.
+ */
+export declare function listPriorSets(storeDir: string): Promise<PriorSet[]>;
+/**
+ * Returns a single PriorSet by ID, or null if not found.
+ */
+export declare function getPriorSet(priorSetId: string, storeDir: string): Promise<PriorSet | null>;