multimodel-dev-os 2.8.0 → 2.8.1

package/README.md

@@ -155,7 +155,7 @@ npx multimodel-dev-os@latest handoff build
 | **v2.5.0** | Repository Intelligence Command Center | ✅ Released |
 | **v2.6.0** | Real-Repo Onboarding & Adapter Sync | ✅ Released |
 | **v2.7.0** | Website, Demo & Distribution System | ✅ Released |
-| **v2.8.0** | Interactive TUI Dashboard & Plugin Hooks | ✅ Released |
+| **v2.8.0 / v2.8.1** | Interactive TUI Dashboard & Plugin Hooks | ✅ Released |
 | **v3.0.0** | Unified Autonomous Co-Pilot Ecosystem | 🔮 Future |
 
 **[Full Roadmap →](https://rizvee.github.io/multimodel-dev-os/v2-roadmap)**

package/bin/multimodel-dev-os.js

@@ -52,7 +52,8 @@ function parseArgs(args) {
     title: null,
     approved: false,
     intelligence: false,
-    onboarding: false
+    onboarding: false,
+    listActions: false
   };
 
   for (let i = 0; i < args.length; i++) {
@@ -67,6 +68,8 @@ function parseArgs(args) {
       params.caveman = true;
     } else if (arg === '--dry-run' || arg === '-d') {
       params.dryRun = true;
+    } else if (arg === '--list-actions') {
+      params.listActions = true;
     } else if (arg === '--force' || arg === '-f') {
       params.force = true;
     } else if (arg === '--help' || arg === '-h') {
@@ -4407,28 +4410,33 @@ function handleDashboard(options) {
     ]
   };
 
-  if (!process.stdout.isTTY || !process.stdin.isTTY || options.dryRun) {
-    console.log(`\n🧠 \x1b[36mMultiModel Dev OS Command Center (Headless mode)\x1b[0m`);
+  if (!process.stdout.isTTY || !process.stdin.isTTY || options.dryRun || options.listActions) {
+    console.log(`\n📊 \x1b[36mMultiModel Dev OS Command Center (Headless/CI Preview)\x1b[0m`);
+    console.log(`Target Workspace: \x1b[32m${options.target}\x1b[0m`);
     console.log('==================================================');
+    
+    const targetFlag = options.target === process.cwd() ? '' : ` --target "${options.target}"`;
+
     mainMenu.forEach(item => {
       if (item.action === 'command') {
-        console.log(`  - ${item.name}: equivalent command: "npx multimodel-dev-os ${item.command}"`);
+        console.log(`  \x1b[33m•\x1b[0m ${item.name.padEnd(30)} → \x1b[36mnpx multimodel-dev-os ${item.command}${targetFlag}\x1b[0m`);
       } else if (item.action === 'submenu') {
-        console.log(`  - ${item.name}`);
+        console.log(`\n  \x1b[35m[${item.name.replace('...', '')}]\x1b[0m`);
         submenus[item.menu].forEach(sub => {
           if (sub.action === 'command') {
-            console.log(`    └─ ${sub.name}: equivalent command: "npx multimodel-dev-os ${sub.command}"`);
+            console.log(`    └─ ${sub.name.padEnd(35)} → \x1b[36mnpx multimodel-dev-os ${sub.command}${targetFlag}\x1b[0m`);
           }
         });
       }
     });
-    console.log('');
+    console.log('\n\x1b[90m(Run with -t or --target to specify another workspace directory)\x1b[0m\n');
     return;
   }
 
   const runCommandWrapper = (cmdStr) => {
     console.clear();
-    console.log(`\n\x1b[36mRunning Command:\x1b[0m npx multimodel-dev-os ${cmdStr}`);
+    const targetFlag = options.target === process.cwd() ? '' : ` --target "${options.target}"`;
+    console.log(`\n\x1b[36mRunning Command:\x1b[0m npx multimodel-dev-os ${cmdStr}${targetFlag}`);
     console.log('--------------------------------------------------\n');
     try {
       const cliPath = join(sourceRoot, 'bin', 'multimodel-dev-os.js');
@@ -4473,6 +4481,9 @@ function getPluginsDir(targetDir) {
 
 function handlePluginList(options) {
   const pluginsDir = getPluginsDir(options.target);
+  const rawRelPath = relative(process.cwd(), join(sourceRoot, '.ai', 'plugins', 'plugin.example.yaml')).replace(/\\/g, '/');
+  const examplePath = rawRelPath.startsWith('.') ? rawRelPath : `./${rawRelPath}`;
+
   if (!existsSync(pluginsDir)) {
     if (options.json) {
       console.log('[]');
@@ -4481,7 +4492,7 @@ function handlePluginList(options) {
     console.log(`\n🔌 \x1b[36mInstalled Plugins in: ${options.target}\x1b[0m`);
     console.log('==================================================');
     console.log('  No plugins installed. Try:');
-    console.log('  npx multimodel-dev-os plugin install .ai/plugins/plugin.example.yaml --approved');
+    console.log(`  npx multimodel-dev-os plugin install ${examplePath} --approved`);
     console.log('');
     return;
   }
@@ -4509,7 +4520,8 @@ function handlePluginList(options) {
   console.log(`\n🔌 \x1b[36mInstalled Plugins in: ${options.target} (${plugins.length})\x1b[0m`);
   console.log('==================================================');
   if (plugins.length === 0) {
-    console.log('  No plugins installed.');
+    console.log('  No plugins installed. Try:');
+    console.log(`  npx multimodel-dev-os plugin install ${examplePath} --approved`);
   } else {
     plugins.forEach(p => {
       console.log(`\n\x1b[32m* ${p.name} (v${p.version || '1.0.0'})\x1b[0m [slug: \x1b[33m${p.slug}\x1b[0m]`);
@@ -4521,6 +4533,11 @@ function handlePluginList(options) {
 }
 
 function handlePluginShow(slug, options) {
+  if (!/^[a-z0-9-_]+$/i.test(slug)) {
+    console.error(`\x1b[31mError: Invalid plugin slug '${slug}'. Slugs must be alphanumeric with dashes or underscores only.\x1b[0m`);
+    process.exit(1);
+  }
+
   const pluginsDir = getPluginsDir(options.target);
   let p = null;
   if (existsSync(pluginsDir)) {
@@ -4538,6 +4555,7 @@ function handlePluginShow(slug, options) {
 
   if (!p) {
     console.error(`\x1b[31mError: Plugin with slug '${slug}' is not installed.\x1b[0m`);
+    console.error(`  Run \x1b[36mplugin list\x1b[0m to see installed plugins, or validate a new plugin config using \x1b[36mplugin validate <path>\x1b[0m.`);
     process.exit(1);
   }
 
@@ -4586,13 +4604,14 @@ function handlePluginValidate(pluginPath, options) {
   }
   
   console.log(`\n📋 \x1b[34mValidating Plugin: ${pluginPath}\x1b[0m`);
+  console.log('==================================================');
   
   let errors = 0;
   let plugin = null;
   try {
     plugin = parseYaml(readFileSync(fullPath, 'utf8'));
   } catch (e) {
-    console.error(`  \x1b[31m✗ Failed to parse YAML: ${e.message}\x1b[0m`);
+    console.error(`  \x1b[31m✗ [SYNTAX] Failed to parse YAML: ${e.message}\x1b[0m`);
     errors++;
   }
 
@@ -4600,79 +4619,114 @@ function handlePluginValidate(pluginPath, options) {
     const reqKeys = ['name', 'slug', 'version', 'description', 'author'];
     reqKeys.forEach(k => {
       if (plugin[k] === undefined || plugin[k] === null) {
-        console.error(`  \x1b[31m✗ Missing required key: ${k}\x1b[0m`);
+        console.error(`  \x1b[31m✗ [METADATA] Missing required key: ${k}\x1b[0m`);
         errors++;
       } else if (typeof plugin[k] !== 'string') {
-        console.error(`  \x1b[31m✗ Key '${k}' must be a string (found: ${typeof plugin[k]})\x1b[0m`);
+        console.error(`  \x1b[31m✗ [METADATA] Key '${k}' must be a string (found: ${typeof plugin[k]})\x1b[0m`);
         errors++;
+      } else if (k === 'slug') {
+        if (!/^[a-z0-9-_]+$/i.test(plugin[k])) {
+          console.error(`  \x1b[31m✗ [METADATA] Key 'slug' must be alphanumeric with dashes or underscores only (found: "${plugin[k]}")\x1b[0m`);
+          errors++;
+        } else {
+          console.log(`  \x1b[32m✓ [METADATA] Key: slug ("${plugin[k]}")`);
+        }
       } else {
-        console.log(`  \x1b[32m✓\x1b[0m Key: ${k} ("${plugin[k]}")`);
+        console.log(`  \x1b[32m✓ [METADATA] Key: ${k} ("${plugin[k]}")`);
       }
     });
 
     if (plugin.allowed_file_patterns !== undefined) {
       if (!Array.isArray(plugin.allowed_file_patterns)) {
-        console.error(`  \x1b[31m✗ allowed_file_patterns must be an array\x1b[0m`);
+        console.error(`  \x1b[31m✗ [SAFETY] allowed_file_patterns must be an array\x1b[0m`);
         errors++;
       } else {
         plugin.allowed_file_patterns.forEach(pat => {
           if (typeof pat !== 'string') {
-            console.error(`  \x1b[31m✗ allowed_file_patterns item must be a string: ${pat}\x1b[0m`);
+            console.error(`  \x1b[31m✗ [SAFETY] allowed_file_patterns item must be a string: ${pat}\x1b[0m`);
+            errors++;
+            return;
+          }
+          const normPattern = pat.replace(/\\/g, '/').trim();
+          const isSafeSubdir = [
+            '.ai/plugins/',
+            '.ai/registries/',
+            '.ai/templates/',
+            '.ai/skills/',
+            '.ai/checks/',
+            '.ai/prompts/',
+            '.ai/adapters/'
+          ].some(prefix => normPattern.startsWith(prefix));
+
+          const hasTraversal = normPattern.includes('..') || normPattern.startsWith('/');
+          const isBlacklisted = [
+            '.env',
+            '.npmrc',
+            '.git/',
+            'node_modules/',
+            'package.json',
+            'package-lock.json'
+          ].some(black => normPattern.includes(black));
+
+          if (!isSafeSubdir || hasTraversal || isBlacklisted) {
+            console.error(`  \x1b[31m✗ [SAFETY] File pattern '${pat}' violates safety boundaries (must reside under .ai/ or adapters/, contain no '..', and exclude blacklisted files)\x1b[0m`);
             errors++;
           }
         });
-        console.log(`  \x1b[32m✓\x1b[0m allowed_file_patterns checked: ${plugin.allowed_file_patterns.length} items`);
+        if (errors === 0) {
+          console.log(`  \x1b[32m✓ [SAFETY] allowed_file_patterns verified: ${plugin.allowed_file_patterns.length} items`);
+        }
       }
     }
 
     if (plugin.denied_file_patterns !== undefined) {
       if (!Array.isArray(plugin.denied_file_patterns)) {
-        console.error(`  \x1b[31m✗ denied_file_patterns must be an array\x1b[0m`);
+        console.error(`  \x1b[31m✗ [SAFETY] denied_file_patterns must be an array\x1b[0m`);
         errors++;
       } else {
         plugin.denied_file_patterns.forEach(pat => {
           if (typeof pat !== 'string') {
-            console.error(`  \x1b[31m✗ denied_file_patterns item must be a string: ${pat}\x1b[0m`);
+            console.error(`  \x1b[31m✗ [SAFETY] denied_file_patterns item must be a string: ${pat}\x1b[0m`);
             errors++;
           }
         });
-        console.log(`  \x1b[32m✓\x1b[0m denied_file_patterns checked: ${plugin.denied_file_patterns.length} items`);
+        console.log(`  \x1b[32m✓ [SAFETY] denied_file_patterns verified: ${plugin.denied_file_patterns.length} items`);
       }
     }
 
     if (plugin.workflows !== undefined) {
       if (typeof plugin.workflows !== 'object' || Array.isArray(plugin.workflows)) {
-        console.error(`  \x1b[31m✗ workflows must be an object\x1b[0m`);
+        console.error(`  \x1b[31m✗ [CAPABILITIES] workflows must be an object\x1b[0m`);
         errors++;
       } else {
-        console.log(`  \x1b[32m✓\x1b[0m workflows object checked`);
+        console.log(`  \x1b[32m✓ [CAPABILITIES] workflows verified`);
       }
     }
 
     if (plugin.templates !== undefined) {
       if (typeof plugin.templates !== 'object' || Array.isArray(plugin.templates)) {
-        console.error(`  \x1b[31m✗ templates must be an object\x1b[0m`);
+        console.error(`  \x1b[31m✗ [CAPABILITIES] templates must be an object\x1b[0m`);
         errors++;
       } else {
-        console.log(`  \x1b[32m✓\x1b[0m templates object checked`);
+        console.log(`  \x1b[32m✓ [CAPABILITIES] templates verified`);
       }
     }
 
     if (plugin.adapters !== undefined) {
       if (typeof plugin.adapters !== 'object' || Array.isArray(plugin.adapters)) {
-        console.error(`  \x1b[31m✗ adapters must be an object\x1b[0m`);
+        console.error(`  \x1b[31m✗ [CAPABILITIES] adapters must be an object\x1b[0m`);
         errors++;
       } else {
-        console.log(`  \x1b[32m✓\x1b[0m adapters object checked`);
+        console.log(`  \x1b[32m✓ [CAPABILITIES] adapters verified`);
       }
     }
 
     if (plugin.safety_notes !== undefined) {
       if (typeof plugin.safety_notes !== 'string') {
-        console.error(`  \x1b[31m✗ safety_notes must be a string\x1b[0m`);
+        console.error(`  \x1b[31m✗ [SAFETY] safety_notes must be a string\x1b[0m`);
         errors++;
       } else {
-        console.log(`  \x1b[32m✓\x1b[0m safety_notes checked`);
+        console.log(`  \x1b[32m✓ [SAFETY] safety_notes verified`);
       }
     }
   }
@@ -4682,7 +4736,9 @@ function handlePluginValidate(pluginPath, options) {
     if (options && options.noExit) return false;
     process.exit(1);
   } else {
-    console.log(`\n\x1b[32m✔ Plugin '${plugin.slug || plugin.name}' is fully valid and compliant!\x1b[0m\n`);
+    console.log(`\n\x1b[32m✔ Plugin '${plugin.slug || plugin.name}' is fully valid and compliant!\x1b[0m`);
+    console.log(`\n\x1b[35mRecommended Next Command:\x1b[0m`);
+    console.log(`    npx multimodel-dev-os plugin install ${pluginPath} --approved\n`);
     if (options && options.noExit) return true;
     return true;
   }
@@ -4772,14 +4828,15 @@ function handlePluginInstall(pluginPath, options) {
   }
 
   if (!options.approved) {
+    console.error(`\x1b[31mError: Plugin cannot be installed without explicit user approval. Pass the --approved flag.\x1b[0m`);
     console.log(`\n\x1b[33mPlanned Installation Actions:\x1b[0m`);
     filesToCopy.forEach(item => {
       const exists = existsSync(join(options.target, item.dest));
       const suffix = exists ? ' \x1b[33m(will overwrite)\x1b[0m' : '';
       console.log(`  - \x1b[36m[WOULD COPY]\x1b[0m ${item.src} -> ${item.dest}${suffix}`);
     });
-    console.log(`\nRun with \x1b[32m--approved\x1b[0m to apply these changes.\n`);
-    return;
+    console.error(`\n\x1b[31mError: Installation refused. Run with --approved to apply these changes.\x1b[0m\n`);
+    process.exit(1);
   }
 
   filesToCopy.forEach(item => {
@@ -4799,7 +4856,22 @@ function handlePluginInstall(pluginPath, options) {
     console.log(`  \x1b[32mCOPY:\x1b[0m ${item.dest}`);
   });
 
-  console.log(`\n\x1b[32m✔ Plugin '${plugin.name}' installed successfully!\x1b[0m\n`);
+  console.log(`\n\x1b[32m✔ Plugin '${plugin.name}' installed successfully!\x1b[0m`);
+  console.log(`\nSummary of actions:`);
+  console.log(`  - Manifest registered: .ai/plugins/${slug}.yaml`);
+  const assetCount = filesToCopy.length - 1;
+  console.log(`  - Synced assets:       ${assetCount} file(s)`);
+  
+  console.log(`\n\x1b[35mRecommended Next Commands:\x1b[0m`);
+  console.log(`    • View plugin details: npx multimodel-dev-os plugin show ${slug}`);
+  console.log(`    • Audit plugin health:  npx multimodel-dev-os plugin status --target .`);
+  if (plugin.workflows) {
+    const wfKeys = Object.keys(plugin.workflows);
+    if (wfKeys.length > 0) {
+      console.log(`    • Run custom workflow:  npx multimodel-dev-os workflow run ${wfKeys[0]}`);
+    }
+  }
+  console.log('');
 }
 
 function handlePluginStatus(options) {
@@ -4849,6 +4921,15 @@ function handlePluginStatus(options) {
           console.log(`  Status: \x1b[32mHealthy\x1b[0m (All ${presentCount}/${total} assets present)`);
         } else {
           console.log(`  Status: \x1b[33mIncomplete\x1b[0m (${presentCount}/${total} assets present, ${missingCount} missing)`);
+          console.log(`  Missing Assets:`);
+          p.allowed_file_patterns.forEach(pat => {
+            const destPath = join(options.target, pat);
+            if (!existsSync(destPath) || !statSync(destPath).isFile()) {
+              console.log(`    \x1b[31m✗\x1b[0m ${pat}`);
+            }
+          });
+          console.log(`  To fix: Reinstall the plugin or validate the configuration:`);
+          console.log(`    npx multimodel-dev-os plugin validate <path-to-plugin-source.yaml>`);
         }
       }
     } catch (e) {

package/docs/.vitepress/config.js

@@ -32,7 +32,7 @@ export default {
         'license': 'https://opensource.org/licenses/MIT',
         'url': 'https://github.com/rizvee/multimodel-dev-os',
         'downloadUrl': 'https://www.npmjs.com/package/multimodel-dev-os',
-        'softwareVersion': '2.8.0',
+        'softwareVersion': '2.8.1',
         'description': 'Portable, vendor-neutral AI Developer OS for multi-agent coding workflows.'
       })
     ]

package/docs/dashboard.md

@@ -81,18 +81,20 @@ In automated environments (CI/CD pipelines, GitHub Actions) or when piped, the t
 
 To prevent execution from hanging indefinitely, the TUI automatically detects non-TTY environments:
 * **Interactive Mode**: Triggered when both `process.stdout.isTTY` and `process.stdin.isTTY` are true.
-* **Headless Fallback**: Triggered when run in non-interactive shells, or if `--dry-run` is passed. The dashboard immediately prints a structured list of all menu options along with their corresponding CLI execution strings and exits cleanly.
+* **Headless Fallback**: Triggered when run in non-interactive shells, or if `--dry-run` or `--list-actions` is passed. The dashboard immediately prints a structured, grouped list of all menu options along with their corresponding CLI execution strings (including active target flags) and exits cleanly.
 
 Example headless output:
 
 ```txt
-🧠 MultiModel Dev OS Command Center (Headless mode)
+📊 MultiModel Dev OS Command Center (Headless/CI Preview)
+Target Workspace: /workspace
 ==================================================
-  - Active Workspace Status: equivalent command: "npx multimodel-dev-os status"
-  - Codebase Scan Analysis: equivalent command: "npx multimodel-dev-os scan"
-  - Onboarding Operations...
-    └─ Onboard: Analyze Repository: equivalent command: "npx multimodel-dev-os onboard analyze"
-    └─ Onboard: Recommendation Summary: equivalent command: "npx multimodel-dev-os onboard recommend"
+  • Active Workspace Status        → npx multimodel-dev-os status
+  • Codebase Scan Analysis         → npx multimodel-dev-os scan
+
+  [Onboarding Operations]
+    └─ Onboard: Analyze Repository        → npx multimodel-dev-os onboard analyze
+    └─ Onboard: Recommendation Summary    → npx multimodel-dev-os onboard recommend
 ...
 ```
 

package/docs/faq.md

@@ -97,7 +97,7 @@ The improvement proposal system enforces 12 strict safety checks including path
 It is a terminal-based operational menu (`npx multimodel-dev-os dashboard` or `ui`) that allows developers to run diagnostics, sync rules, build memory indexes, and check proposal status in a guided interface. It uses Node.js's native `readline` module for raw-keypress navigation, keeping execution zero-dependency and fast.
 
 **Will the TUI Dashboard hang in CI/CD pipelines?**
-No. The dashboard detects when stdin or stdout is non-interactive. In non-TTY environments, it prints a dry-run list of all options with their equivalent CLI commands and exits immediately, preventing pipelines from stalling.
+No. The dashboard detects when stdin or stdout is non-interactive. In non-TTY environments, or when `--dry-run` or `--list-actions` is passed, it prints a grouped preview of all options with their equivalent CLI commands and exits immediately, preventing pipelines from stalling.
 
 **How secure is the Declarative Plugin system?**
 Extremely secure. Plugins are strictly configuration-based (YAML manifest files). They cannot run arbitrary bash commands, execute node scripts, download npm packages, or make network calls. File copies are restricted to whitelisted `.ai/` and `adapters/` directories, and blacklists protect files like `.env`, `.git/`, `package.json`, and source code folders. Overwriting existing files requires `--force` and automatically generates backups.

package/docs/plugin-authoring.md

@@ -11,7 +11,7 @@ A plugin is defined by a single YAML or JSON file. The manifest schema structure
 ### Required Fields
 
 * **`name`** (string): The human-readable name of the plugin (e.g. `Git Integration Plugin`).
-* **`slug`** (string): A unique, URL-friendly slug identifier (e.g. `git-integration`). This slug determines the filename under `.ai/plugins/<slug>.yaml` after installation.
+* **`slug`** (string): A unique, URL-friendly slug identifier. Must consist strictly of lowercase alphanumeric characters, dashes, or underscores (`/^[a-z0-9-_]+$/i`, e.g. `git-integration`). This slug determines the filename under `.ai/plugins/<slug>.yaml` after installation.
 * **`version`** (string): Semantic version string (e.g. `1.0.0`).
 * **`description`** (string): A brief summary of the capabilities introduced by the plugin.
 * **`author`** (string): The creator's name or team.

package/docs/plugin-hooks.md

@@ -78,3 +78,12 @@ npx multimodel-dev-os@latest plugin status [--target <path>]
 When a plugin installation causes file conflicts:
 * By default, the installer aborts and prints a list of conflicting files.
 * Running with `--force` overwrites the destination files but automatically copies the existing file to `<filename>.bak` in the same directory.
+
+---
+
+## Validation & Safe Execution Gates
+
+To prevent path traversal and enforce robust script auditing:
+* **Alphanumeric Slug Constraints**: Slugs are validated against `/^[a-z0-9-_]+$/i` to block directory escapes when writing to `.ai/plugins/<slug>.yaml`.
+* **Path Boundary checks**: The `plugin validate` CLI command automatically parses `allowed_file_patterns` to assert they fit within whitelisted `.ai/` and `adapters/` folders, checking that no `..` traversal or blacklisted files are referenced.
+* **Non-zero CI exit codes**: If `plugin install` is called without the `--approved` flag, it prints planned actions and exits with **exit code 1** to abort scripting pipelines safely.

package/docs/public/llms-full.txt

@@ -1,4 +1,4 @@
-# MultiModel Dev OS — Comprehensive AI Assistant Discoverability Guide (v2.8.0 Stable Release)
+# MultiModel Dev OS — Comprehensive AI Assistant Discoverability Guide (v2.8.1 Stable Release)
 
 MultiModel Dev OS is a repository-level porting specification designed to align context and instructions across diverse developer tools and AI models.
 

package/docs/public/llms.txt

@@ -1,4 +1,4 @@
-# MultiModel Dev OS (v2.8.0 Stable Release)
+# MultiModel Dev OS (v2.8.1 Stable Release)
 
 Portable, vendor-neutral workspace configuration standard for multi-agent AI pair-programming workflows.
 

package/docs/tui-safety.md

@@ -36,7 +36,7 @@ The installer restricts all plugin file copies to specific directories inside th
 * `.ai/prompts/`
 * `.ai/adapters/`
 
-If a plugin manifest attempts to write to paths outside of these folders (such as `src/`, `lib/`, or `tests/`), the validator immediately throws an error and aborts the installation.
+If a plugin manifest attempts to write to paths outside of these folders (such as `src/`, `lib/`, or `tests/`), the validator immediately throws an error and aborts the installation. To guarantee safety, the validation phase restricts plugin `slug` parameters to alphanumeric characters with dashes and underscores only (`/^[a-z0-9-_]+$/i`), hard-blocking directory traversal patterns (`..`, `/`, `\`) to prevent manifest write escapes.
 
 ### 3. Blacklist Enforcement
 The system hard-blocks write operations to critical files or directories to prevent credentials exposure or project hijack:

package/docs/v2-roadmap.md

@@ -7,7 +7,7 @@ This document outlines the development path, completed milestones, and future pl
 ## 1. Current Status
 
 > [!IMPORTANT]
-> **v2.7.0 is the active stable release** on the public npm registry. All features below marked ✅ are shipped and production-ready.
+> **v2.8.1 is the active stable release** on the public npm registry. All features below marked ✅ are shipped and production-ready.
 
 ---
 
@@ -59,6 +59,13 @@ This document outlines the development path, completed milestones, and future pl
 - Created docs-first examples for key developer workflows
 - Updated sitemaps, model registries, and search indices
 
+### v2.8.0 / v2.8.1 — Interactive TUI Dashboard & Plugin Hooks ✅
+- **Interactive TUI Dashboard**: Added `dashboard`/`ui` command launching a zero-dependency keyboard-interactive command center built with Node's native `readline` module.
+- **Declarative Plugin Hooks**: Added `plugin` command suite (`list`, `show`, `validate`, `install`, `status`) and JSON schema to securely extend workspace templates, workflows, and skills.
+- **Secure Plugin Installer**: Supports `--approved` execution gate, path whitelisting to `.ai/` and `adapters/` directories, and automatic conflict `.bak` backups.
+- **Headless Fallback & CI Polish**: Polish dry-run outputs and added `--list-actions` parameter to prevent TUI hangs in CI.
+- **Path Traversal Hardening**: Enforce alphanumeric slug checks (`/^[a-z0-9-_]+$/i`) and pattern validation bounds to block traversal vectors.
+
 ---
 
 ## 3. Publishing Workflow
@@ -66,7 +73,7 @@ This document outlines the development path, completed milestones, and future pl
 All releases follow this strict publishing checklist:
 
 1. Bump version in `package.json`
-2. Run `npm run verify` (214+ assertions must pass)
+2. Run `npm run verify` (220+ assertions must pass)
 3. Run `npm run docs:build` to verify documentation
 4. Run `npm publish --dry-run` to review package hygiene
 5. Set `MMDO_ALLOW_PUBLISH=true` and publish:
@@ -76,12 +83,10 @@ All releases follow this strict publishing checklist:
 
 ---
 
-## 4. Upcoming: v2.8.0 — Interactive Dashboard & Plugin Hooks
+## 4. Upcoming: v2.9.0 — Auto-Detection & Custom Adaptors
 
-*   **Interactive TUI Status Dashboard**: Rich terminal UI for `status` and `workflow` commands
-*   **Plugin Hook System**: Pre/post hooks for `init`, `scan`, `memory`, and `workflow` commands
-*   **Custom Workflow Authoring**: User-defined workflow definitions beyond bundled registries
-*   **Adapter Auto-Detection**: Detect installed tools and automatically recommend adapter setup
+*   **Adapter Auto-Detection**: Detect installed tools and automatically recommend adapter setup.
+*   **Custom Adapter Hookups**: Programmatic hooks allowing plugins to register physical adapter configurations dynamically.
 
 ---
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "multimodel-dev-os",
-  "version": "2.8.0",
+  "version": "2.8.1",
   "bin": {
     "multimodel-dev-os": "bin/multimodel-dev-os.js"
   },

package/scripts/install.ps1

@@ -11,7 +11,7 @@ param(
   [switch]$Help
 )
 
-$Version = "2.8.0"
+$Version = "2.8.1"
 $RepoUrl = "https://raw.githubusercontent.com/rizvee/multimodel-dev-os/main"
 
 if ($Help) {

package/scripts/install.sh

@@ -7,7 +7,7 @@ set -euo pipefail
 #        --all      (install all adapters)
 #        --dry-run  (show what would be created without creating)
 
-VERSION="2.8.0"
+VERSION="2.8.1"
 REPO_URL="https://raw.githubusercontent.com/rizvee/multimodel-dev-os/main"
 CAVEMAN=false
 DRY_RUN=false

package/scripts/verify.js

@@ -456,11 +456,99 @@ try {
     console.error(`  ${RED}✗${NC} CLI help is missing scan, memory, status, workflow, or handoff commands`);
     fail++;
   }
+
+  if (helpOutput.includes('dashboard') && helpOutput.includes('ui') && helpOutput.includes('plugin')) {
+    console.log(`  ${GREEN}✓${NC} CLI help includes dashboard, ui, and plugin commands`);
+    pass++;
+  } else {
+    console.error(`  ${RED}✗${NC} CLI help is missing dashboard, ui, or plugin commands`);
+    fail++;
+  }
 } catch (e) {
   console.error(`  ${RED}✗${NC} node bin/multimodel-dev-os.js --help failed: ${e.message}`);
   fail++;
 }
 
+// --- v2.8.0 / v2.8.1 Dashboard & Plugin Tests ---
+console.log('\nRunning TUI Dashboard & Plugin Pre-Flight Tests...');
+
+// 1. Dashboard dry-run check
+try {
+  const output = execSync('node bin/multimodel-dev-os.js dashboard --dry-run', { cwd: projectRoot, encoding: 'utf8' });
+  if (output.includes('Headless/CI Preview') && output.includes('npx multimodel-dev-os')) {
+    console.log(`  ${GREEN}✓${NC} dashboard --dry-run executes successfully and displays headless preview`);
+    pass++;
+  } else {
+    console.error(`  ${RED}✗${NC} dashboard --dry-run output is missing preview strings`);
+    fail++;
+  }
+} catch (e) {
+  console.error(`  ${RED}✗${NC} dashboard --dry-run execution failed: ${e.message}`);
+  fail++;
+}
+
+// 2. Dashboard list-actions check
+try {
+  const output = execSync('node bin/multimodel-dev-os.js dashboard --list-actions', { cwd: projectRoot, encoding: 'utf8' });
+  if (output.includes('Headless/CI Preview') && output.includes('npx multimodel-dev-os')) {
+    console.log(`  ${GREEN}✓${NC} dashboard --list-actions executes successfully and displays headless preview`);
+    pass++;
+  } else {
+    console.error(`  ${RED}✗${NC} dashboard --list-actions output is missing preview strings`);
+    fail++;
+  }
+} catch (e) {
+  console.error(`  ${RED}✗${NC} dashboard --list-actions execution failed: ${e.message}`);
+  fail++;
+}
+
+// 3. Plugin validation check
+try {
+  const output = execSync('node bin/multimodel-dev-os.js plugin validate .ai/plugins/plugin.example.yaml', { cwd: projectRoot, encoding: 'utf8' });
+  if (output.includes('fully valid and compliant')) {
+    console.log(`  ${GREEN}✓${NC} plugin validate on example manifest passes successfully`);
+    pass++;
+  } else {
+    console.error(`  ${RED}✗${NC} plugin validate on example manifest failed to report compliance`);
+    fail++;
+  }
+} catch (e) {
+  console.error(`  ${RED}✗${NC} plugin validate execution failed: ${e.message}`);
+  fail++;
+}
+
+// 4. Plugin install refusal check (no --approved, should exit with code 1)
+try {
+  execSync('node bin/multimodel-dev-os.js plugin install .ai/plugins/plugin.example.yaml', { cwd: projectRoot, stdio: 'pipe' });
+  console.error(`  ${RED}✗${NC} plugin install without --approved should have exited with code 1, but exited with 0`);
+  fail++;
+} catch (e) {
+  if (e.status === 1) {
+    const stdErrOut = e.stderr ? e.stderr.toString() : '';
+    const stdOutOut = e.stdout ? e.stdout.toString() : '';
+    if (stdErrOut.includes('Installation refused') || stdOutOut.includes('Installation refused')) {
+      console.log(`  ${GREEN}✓${NC} plugin install without --approved correctly refuses and exits with code 1`);
+      pass++;
+    } else {
+      console.error(`  ${RED}✗${NC} plugin install without --approved exited with 1 but missing refusal message`);
+      fail++;
+    }
+  } else {
+    console.error(`  ${RED}✗${NC} plugin install without --approved failed with unexpected code ${e.status}: ${e.message}`);
+    fail++;
+  }
+}
+
+// 5. Plugin status check
+try {
+  execSync('node bin/multimodel-dev-os.js plugin status', { cwd: projectRoot, stdio: 'ignore' });
+  console.log(`  ${GREEN}✓${NC} plugin status executes without crashing`);
+  pass++;
+} catch (e) {
+  console.error(`  ${RED}✗${NC} plugin status execution failed: ${e.message}`);
+  fail++;
+}
+
 // Verify docs mention memory build
 try {
   const mdContent = readFileSync(join(projectRoot, 'docs', 'hash-compressed-memory.md'), 'utf8');