mustflow 2.22.4 → 2.22.9

package/README.md

@@ -147,7 +147,9 @@ mustflow is not an automatic project editor and is not tied to a single agent pr
 
 ## Installed files
 
-`mf init` installs only the agent workflow into the current directory.
+`mf init` installs only the agent workflow into the current directory. The exact skill files depend
+on the selected profile; run `mf init --dry-run --profile <profile>` to preview the concrete plan
+for a project before writing files.
 
 ```text
 your-project/
@@ -166,83 +168,15 @@ your-project/
    │  └─ agent-workflow.md
    └─ skills/
       ├─ INDEX.md
-      ├─ artifact-integrity-check/
-      │  └─ SKILL.md
-      ├─ behavior-preserving-refactor/
-      │  └─ SKILL.md
-      ├─ code-review/
-      │  └─ SKILL.md
-      ├─ codebase-orientation/
-      │  └─ SKILL.md
-      ├─ contract-sync-check/
-      │  └─ SKILL.md
-      ├─ date-number-audit/
-      │  └─ SKILL.md
-      ├─ database-change-safety/
-      │  └─ SKILL.md
-      ├─ dependency-reality-check/
-      │  └─ SKILL.md
-      ├─ diff-risk-review/
-      │  └─ SKILL.md
-      ├─ docs-prose-review/
-      │  └─ SKILL.md
-      ├─ docs-update/
-      │  └─ SKILL.md
-      ├─ external-prompt-injection-defense/
-      │  └─ SKILL.md
-      ├─ external-skill-intake/
-      │  └─ SKILL.md
-      ├─ failure-triage/
-      │  └─ SKILL.md
-      ├─ instruction-conflict-scope-check/
-      │  └─ SKILL.md
-      ├─ migration-safety-check/
-      │  └─ SKILL.md
-      ├─ multi-agent-work-coordination/
-      │  └─ SKILL.md
-      ├─ performance-budget-check/
-      │  └─ SKILL.md
-      ├─ project-context-authoring/
-      │  └─ SKILL.md
-      ├─ pattern-scout/
-      │  └─ SKILL.md
-      ├─ repo-improvement-loop/
-      │  └─ SKILL.md
-      ├─ requirement-regression-guard/
-      │  └─ SKILL.md
-      ├─ repro-first-debug/
-      │  └─ SKILL.md
-      ├─ security-privacy-review/
-      │  └─ SKILL.md
-      ├─ source-freshness-check/
-      │  └─ SKILL.md
-      ├─ structure-discovery-gate/
-      │  └─ SKILL.md
-      ├─ security-regression-tests/
-      │  └─ SKILL.md
-      ├─ skill-authoring/
-      │  └─ SKILL.md
-      ├─ test-design-guard/
-      │  └─ SKILL.md
-      ├─ test-maintenance/
-      │  └─ SKILL.md
-      ├─ vertical-slice-tdd/
-      │  └─ SKILL.md
-      ├─ llm-service-ux-review/
-      │  └─ SKILL.md
-      ├─ search-ad-content-authoring/
-      │  └─ SKILL.md
-      ├─ ui-quality-gate/
-      │  └─ SKILL.md
-      ├─ visual-review-artifact/
-      │  ├─ SKILL.md
-      │  ├─ resources.toml
-      │  └─ assets/
-      │     └─ review-template.html
-      └─ web-asset-optimization/
+      ├─ routes.toml
+      └─ <profile-selected-skill>/
          └─ SKILL.md
 ```
 
+Profiles select the installed skill surface. The package can include optional skill files that are
+not copied into every project profile. Non-English workflow documents are localized when available;
+skill procedures currently fall back to the canonical English skill files.
+
 The default template does not create project-owned root documents or contract files such as `README.md`, `PROJECT.md`, `ROADMAP.md`, `DESIGN.md`, `GOVERNANCE.md`, `TESTING.md`, `API.md`, `project.contract.json`, or `openapi.yaml`. It also does not create CI configuration, general `docs/`, or general `skills/`. User projects may already use those names for their own files.
 
 `mf init` creates `.gitignore` if it is missing. If `.gitignore` exists, mustflow updates only its managed block and preserves user rules.
@@ -433,6 +367,12 @@ bun run docs:check
 bun run check:install
 ```
 
+When Bun is not available, maintainers can still run the core CLI and package metadata checks with Node/npm:
+
+```sh
+npm run check:core:node
+```
+
 Agents working in this repository should prefer the configured mustflow intents for routine verification.
 
 ```sh
@@ -442,6 +382,7 @@ mf run test_related
 mf run test
 mf run test_coverage
 mf run test_release
+mf run maintainer_check_node
 mf run docs_validate_fast
 mf run docs_validate
 mf run mustflow_check
@@ -479,6 +420,7 @@ The npm package includes only:
 dist/
 templates/
 schemas/
+examples/
 README.md
 LICENSE
 ```

package/dist/cli/commands/classify.js

@@ -1,5 +1,6 @@
 import path from 'node:path';
 import { createChangeClassificationReport, } from '../../core/change-classification.js';
+import { createCorrelationId } from '../../core/correlation-id.js';
 import { writeJsonFileInsideWithoutSymlinks } from '../../core/safe-filesystem.js';
 import { printUsageError, renderHelp } from '../lib/cli-output.js';
 import { requireGitChangedFiles } from '../lib/git-changes.js';
@@ -71,6 +72,7 @@ export function createClassifyOutput(projectRoot, source, paths) {
     return {
         schema_version: CLASSIFY_SCHEMA_VERSION,
         command: 'classify',
+        correlation_id: createCorrelationId('classify'),
         mustflow_root: projectRoot,
         ...createChangeClassificationReport(source, files),
     };

package/dist/cli/commands/contract-lint.js

@@ -2,11 +2,11 @@ import { existsSync } from 'node:fs';
 import path from 'node:path';
 import { lintCommandContract } from '../../core/contract-lint.js';
 import { readCommandContract, isRecord } from '../../core/config-loading.js';
-import { readTomlFile } from '../../core/toml.js';
 import { releaseVersioningIsEnabled } from '../../core/version-sources.js';
 import { printUsageError, renderHelp } from '../lib/cli-output.js';
 import { t } from '../lib/i18n.js';
 import { resolveMustflowRoot } from '../lib/project-root.js';
+import { readMustflowTomlFile } from '../lib/toml.js';
 const CONTRACT_LINT_SCHEMA_VERSION = '1';
 export function getContractLintHelp(lang = 'en') {
     return renderHelp({
@@ -30,7 +30,7 @@ function readPreferences(projectRoot) {
     if (!existsSync(preferencesPath)) {
         return undefined;
     }
-    const preferences = readTomlFile(preferencesPath);
+    const preferences = readMustflowTomlFile(projectRoot, '.mustflow/config/preferences.toml');
     return isRecord(preferences) ? preferences : undefined;
 }
 function createContractLintOutput(projectRoot, coverage, suggest) {

package/dist/cli/commands/dashboard.js

@@ -1,8 +1,8 @@
-import { randomBytes } from 'node:crypto';
+import { createHash, randomBytes } from 'node:crypto';
 import { existsSync, readFileSync, statSync } from 'node:fs';
 import http from 'node:http';
 import path from 'node:path';
-import { openPathInFileManager, openUrlInBrowser } from '../lib/browser-open.js';
+import { openUrlInBrowser } from '../lib/browser-open.js';
 import { printUsageError, renderHelp } from '../lib/cli-output.js';
 import { renderDashboardHtml, } from '../lib/dashboard-html.js';
 import { DashboardExportPathError, writeDashboardExport, } from '../lib/dashboard-export.js';
@@ -12,12 +12,14 @@ import { parseSkillIndexRoutes } from '../../core/skill-route-alignment.js';
 import { getAgentContext } from '../lib/agent-context.js';
 import { readGitChangedFiles } from '../lib/git-changes.js';
 import { isRecord, readCommandContract, readPositiveInteger, readString, readStringArray, } from '../lib/command-contract.js';
-import { readDashboardPreferences, updateDashboardPreferences, } from '../lib/dashboard-preferences.js';
-import { DOC_REVIEW_LEDGER_RELATIVE_PATH, isDocReviewStatus, isReviewerKind, listDocReviewEntries, markDocReviewEntry, } from '../lib/doc-review-ledger.js';
+import { readDashboardPreferences, } from '../lib/dashboard-preferences.js';
+import { DOC_REVIEW_LEDGER_RELATIVE_PATH, isDocReviewStatus, listDocReviewEntries, } from '../lib/doc-review-ledger.js';
+import { markDashboardDocReviewFromPayload, openDashboardMustflowFolder, updateDashboardPreferencesFromPayload, } from '../lib/dashboard-mutations.js';
 import { MANIFEST_LOCK_RELATIVE_PATH, inspectManifestLock } from '../lib/manifest-lock.js';
 import { getLocalIndexDatabasePath, readLatestLocalVerificationReadModelQueries, readLocalCommandEffectGraphs, } from '../lib/local-index.js';
 import { readPackageMetadata } from '../lib/package-info.js';
 import { t } from '../lib/i18n.js';
+import { MUSTFLOW_JSON_MAX_BYTES, readMustflowTextFile, readMustflowTextFileIfExists, } from '../lib/mustflow-read.js';
 import { resolveMustflowRoot } from '../lib/project-root.js';
 import { detectVersionSources } from '../../core/version-sources.js';
 import { planUpdate, summarizePlan } from './update.js';
@@ -25,7 +27,6 @@ const DEFAULT_DASHBOARD_HOST = '127.0.0.1';
 const DEFAULT_DASHBOARD_PORT = 0;
 const MAX_REQUEST_BYTES = 64 * 1024;
 const LOCAL_DASHBOARD_HOSTS = new Set(['127.0.0.1', 'localhost', '::1']);
-const DOC_REVIEW_BULK_PAYLOAD_FIELDS = ['paths', 'documents', 'entries'];
 const RELEASE_FILE_PATTERNS = [
     /^package\.json$/u,
     /^bun\.lockb?$/u,
@@ -39,6 +40,7 @@ const LATEST_RUN_RELATIVE_PATH = '.mustflow/state/runs/latest.json';
 const COMMANDS_RELATIVE_PATH = '.mustflow/config/commands.toml';
 const AGENTS_RELATIVE_PATH = 'AGENTS.md';
 const STATUS_BLOCK_CACHE_TTL_MS = 750;
+const STATUS_SIGNATURE_HASH_MAX_BYTES = 1024 * 1024;
 const dashboardStatusBlockCache = new Map();
 function dashboardStatusBlockCacheKey(projectRoot, blockName) {
     return `${path.resolve(projectRoot)}\0${blockName}`;
@@ -46,7 +48,11 @@ function dashboardStatusBlockCacheKey(projectRoot, blockName) {
 function readFileSignature(filePath) {
     try {
         const stat = statSync(filePath);
-        return `${stat.mtimeMs}:${stat.size}`;
+        if (!stat.isFile() || stat.size > STATUS_SIGNATURE_HASH_MAX_BYTES) {
+            return `${stat.mtimeMs}:${stat.ctimeMs}:${stat.size}:unhashed`;
+        }
+        const digest = createHash('sha256').update(readFileSync(filePath)).digest('hex');
+        return `${stat.mtimeMs}:${stat.ctimeMs}:${stat.size}:${digest}`;
     }
     catch {
         return 'missing';
@@ -317,66 +323,6 @@ async function readRequestJson(request) {
     const rawBody = Buffer.concat(chunks).toString('utf8');
     return rawBody.trim().length === 0 ? {} : JSON.parse(rawBody);
 }
-function readUpdatePayload(value) {
-    if (typeof value !== 'object' || value === null || Array.isArray(value)) {
-        throw new Error('Request body must be a JSON object.');
-    }
-    const updates = value.updates;
-    if (!Array.isArray(updates)) {
-        throw new Error('Request body must include an updates array.');
-    }
-    return updates.map((entry) => {
-        if (typeof entry !== 'object' || entry === null || Array.isArray(entry)) {
-            throw new Error('Each update must be a JSON object.');
-        }
-        const update = entry;
-        if (typeof update.id !== 'string' || update.id.trim().length === 0) {
-            throw new Error('Each update must include an id.');
-        }
-        return { id: update.id, value: update.value };
-    });
-}
-function readOptionalStringField(value, key) {
-    const field = value[key];
-    return typeof field === 'string' && field.trim().length > 0 ? field.trim() : undefined;
-}
-function readRequiredStringField(value, key) {
-    const field = readOptionalStringField(value, key);
-    if (!field) {
-        throw new Error(`${key} is required.`);
-    }
-    return field;
-}
-function readDocReviewPayload(value) {
-    if (typeof value !== 'object' || value === null || Array.isArray(value)) {
-        throw new Error('Request body must be a JSON object.');
-    }
-    const payload = value;
-    for (const field of DOC_REVIEW_BULK_PAYLOAD_FIELDS) {
-        if (field in payload) {
-            throw new Error('Bulk documentation review updates require a separate confirmed flow.');
-        }
-    }
-    const status = readRequiredStringField(payload, 'status');
-    if (status !== 'approved' && status !== 'needs_human' && status !== 'ignored') {
-        throw new Error('status must be approved, needs_human, or ignored.');
-    }
-    const reviewerKind = readRequiredStringField(payload, 'reviewerKind');
-    if (!isReviewerKind(reviewerKind)) {
-        throw new Error('reviewerKind must be human, llm, tool, or external.');
-    }
-    return {
-        path: readRequiredStringField(payload, 'path'),
-        status,
-        reviewerKind,
-        reviewerId: readRequiredStringField(payload, 'reviewerId'),
-        reviewerLabel: readOptionalStringField(payload, 'reviewerLabel'),
-        reviewerProvider: readOptionalStringField(payload, 'reviewerProvider'),
-        reviewerModel: readOptionalStringField(payload, 'reviewerModel'),
-        reviewerCommandIntent: readOptionalStringField(payload, 'reviewerCommandIntent'),
-        summary: readOptionalStringField(payload, 'summary'),
-    };
-}
 function renderDocReviewResponse(projectRoot, requestUrl) {
     const status = requestUrl.searchParams.get('status');
     if (status && !isDocReviewStatus(status)) {
@@ -590,10 +536,12 @@ function renderSkillsResponse(projectRoot) {
             routes: [],
         };
     }
-    const routes = parseSkillIndexRoutes(readFileSync(indexPath, 'utf8')).map((route) => {
+    const indexContent = readMustflowTextFile(projectRoot, SKILL_INDEX_RELATIVE_PATH);
+    const routes = parseSkillIndexRoutes(indexContent).map((route) => {
         const skillPath = path.join(projectRoot, ...route.skillPath.split('/'));
-        const exists = existsSync(skillPath);
-        const declaredCommandIntents = exists ? readFrontmatterList(readFileSync(skillPath, 'utf8'), 'command_intents') : [];
+        const skillContent = readMustflowTextFileIfExists(projectRoot, route.skillPath);
+        const exists = skillContent !== null && existsSync(skillPath);
+        const declaredCommandIntents = skillContent ? readFrontmatterList(skillContent, 'command_intents') : [];
         const sortedRouteIntents = [...route.commandIntents].sort((left, right) => left.localeCompare(right));
         const sortedDeclaredIntents = [...declaredCommandIntents].sort((left, right) => left.localeCompare(right));
         return {
@@ -686,7 +634,7 @@ function renderRunHistoryResponse(projectRoot) {
         };
     }
     try {
-        const receipt = JSON.parse(readFileSync(receiptPath, 'utf8'));
+        const receipt = JSON.parse(readMustflowTextFile(projectRoot, LATEST_RUN_RELATIVE_PATH, { maxBytes: MUSTFLOW_JSON_MAX_BYTES }));
         if (!isRecord(receipt)) {
             throw new Error('Run receipt must be a JSON object.');
         }
@@ -850,7 +798,7 @@ export async function runDashboard(args, reporter, lang = 'en') {
                 }
                 if (request.method === 'POST') {
                     const body = await readRequestJson(request);
-                    sendJson(response, 200, updateDashboardPreferences(projectRoot, readUpdatePayload(body)));
+                    sendJson(response, 200, updateDashboardPreferencesFromPayload(projectRoot, body));
                     return;
                 }
             }
@@ -863,12 +811,12 @@ export async function runDashboard(args, reporter, lang = 'en') {
                     sendText(response, 405, 'Method not allowed');
                     return;
                 }
-                const mustflowPath = path.join(projectRoot, '.mustflow');
-                if (!existsSync(mustflowPath)) {
+                const openResult = openDashboardMustflowFolder(projectRoot);
+                if (openResult === 'missing') {
                     sendText(response, 404, '.mustflow folder not found');
                     return;
                 }
-                if (!openPathInFileManager(mustflowPath)) {
+                if (openResult === 'unavailable') {
                     sendText(response, 500, 'No file manager opener is available for this platform');
                     return;
                 }
@@ -886,7 +834,7 @@ export async function runDashboard(args, reporter, lang = 'en') {
                 }
                 if (request.method === 'POST') {
                     const body = await readRequestJson(request);
-                    markDocReviewEntry(projectRoot, readDocReviewPayload(body));
+                    markDashboardDocReviewFromPayload(projectRoot, body);
                     sendJson(response, 200, renderDocReviewResponse(projectRoot, requestUrl));
                     return;
                 }

package/dist/cli/commands/help.js

@@ -1,23 +1,22 @@
-import { existsSync, readFileSync } from 'node:fs';
-import path from 'node:path';
 import { printUsageError, renderCliError, renderHelp } from '../lib/cli-output.js';
 import { t } from '../lib/i18n.js';
+import { readMustflowTextFileIfExists } from '../lib/mustflow-read.js';
 import { resolveMustflowRoot } from '../lib/project-root.js';
-import { readTomlFile } from '../lib/toml.js';
+import { readMustflowTomlFile } from '../lib/toml.js';
 function isRecord(value) {
     return typeof value === 'object' && value !== null && !Array.isArray(value);
 }
 function readTextIfExists(projectRoot, relativePath) {
-    const filePath = path.join(projectRoot, ...relativePath.split('/'));
-    return existsSync(filePath) ? readFileSync(filePath, 'utf8') : undefined;
+    return readMustflowTextFileIfExists(projectRoot, relativePath) ?? undefined;
 }
 function readTomlIfExists(projectRoot, relativePath) {
-    const filePath = path.join(projectRoot, ...relativePath.split('/'));
-    if (!existsSync(filePath)) {
+    try {
+        const parsed = readMustflowTomlFile(projectRoot, relativePath);
+        return isRecord(parsed) ? parsed : undefined;
+    }
+    catch {
         return undefined;
     }
-    const parsed = readTomlFile(filePath);
-    return isRecord(parsed) ? parsed : undefined;
 }
 function renderMissing(relativePath, lang) {
     return t(lang, 'help.missingFile', { path: relativePath });

package/dist/cli/commands/impact.js

@@ -1,4 +1,3 @@
-import path from 'node:path';
 import { createChangeClassificationReport } from '../../core/change-classification.js';
 import { summarizeVersionImpact } from '../../core/version-impact.js';
 import { printUsageError, renderHelp } from '../lib/cli-output.js';
@@ -6,7 +5,7 @@ import { isRecord } from '../lib/command-contract.js';
 import { requireGitChangedFiles } from '../lib/git-changes.js';
 import { t } from '../lib/i18n.js';
 import { resolveMustflowRoot } from '../lib/project-root.js';
-import { readTomlFile } from '../lib/toml.js';
+import { readMustflowTomlFile } from '../lib/toml.js';
 import { detectVersionSources, releaseVersioningIsEnabled, } from '../../core/version-sources.js';
 const IMPACT_SCHEMA_VERSION = '1';
 export function getImpactHelp(lang = 'en') {
@@ -47,7 +46,7 @@ function parseImpactArgs(args) {
 }
 function readPreferences(projectRoot) {
     try {
-        const preferences = readTomlFile(path.join(projectRoot, '.mustflow', 'config', 'preferences.toml'));
+        const preferences = readMustflowTomlFile(projectRoot, '.mustflow/config/preferences.toml');
         return isRecord(preferences) ? preferences : undefined;
     }
     catch {

package/dist/cli/commands/init.js

@@ -1,4 +1,4 @@
-import { existsSync, readFileSync } from 'node:fs';
+import { existsSync, readSync } from 'node:fs';
 import path from 'node:path';
 import { stdin as processStdin, stdout as processStdout } from 'node:process';
 import { createInterface } from 'node:readline/promises';
@@ -13,6 +13,9 @@ const MUSTFLOW_BLOCK_START = '<!-- mustflow:start schema=1 -->';
 const MUSTFLOW_BLOCK_END = '<!-- mustflow:end -->';
 const GITIGNORE_RELATIVE_PATH = '.gitignore';
 const GITIGNORE_FRAGMENT_RELATIVE_PATH = 'gitignore.mustflow';
+const NON_INTERACTIVE_PROMPT_MAX_BYTES = 16 * 1024;
+const NON_INTERACTIVE_PROMPT_MAX_RESPONSES = 64;
+const NON_INTERACTIVE_PROMPT_READ_CHUNK_BYTES = 4096;
 const LOCALE_LABELS = {
     en: 'English',
     ko: 'Korean',
@@ -473,9 +476,52 @@ function formatLocaleChoice(locale) {
     const label = LOCALE_LABELS[locale] ?? locale;
     return `${label} (${locale})`;
 }
-function createPromptReader(reporter) {
+function readNonInteractivePromptInput() {
+    const chunks = [];
+    let totalBytes = 0;
+    for (;;) {
+        const remainingBudget = NON_INTERACTIVE_PROMPT_MAX_BYTES + 1 - totalBytes;
+        if (remainingBudget <= 0) {
+            return {
+                lines: [],
+                errorKey: 'init.error.promptInputTooLarge',
+                limit: NON_INTERACTIVE_PROMPT_MAX_BYTES,
+            };
+        }
+        const buffer = Buffer.alloc(Math.min(NON_INTERACTIVE_PROMPT_READ_CHUNK_BYTES, remainingBudget));
+        const bytesRead = readSync(0, buffer, 0, buffer.length, null);
+        if (bytesRead === 0) {
+            break;
+        }
+        totalBytes += bytesRead;
+        chunks.push(Buffer.from(buffer.subarray(0, bytesRead)));
+        if (totalBytes > NON_INTERACTIVE_PROMPT_MAX_BYTES) {
+            return {
+                lines: [],
+                errorKey: 'init.error.promptInputTooLarge',
+                limit: NON_INTERACTIVE_PROMPT_MAX_BYTES,
+            };
+        }
+    }
+    const lines = Buffer.concat(chunks, totalBytes).toString('utf8').split(/\r?\n/u);
+    if (lines.length > NON_INTERACTIVE_PROMPT_MAX_RESPONSES) {
+        return {
+            lines: [],
+            errorKey: 'init.error.promptInputTooManyResponses',
+            limit: NON_INTERACTIVE_PROMPT_MAX_RESPONSES,
+        };
+    }
+    return { lines };
+}
+function createPromptReader(reporter, lang) {
     if (!processStdin.isTTY) {
-        const lines = readFileSync(0, 'utf8').split(/\r?\n/u);
+        const input = readNonInteractivePromptInput();
+        if (input.errorKey) {
+            const paramName = input.errorKey === 'init.error.promptInputTooLarge' ? 'maxBytes' : 'maxResponses';
+            reporter.stderr(t(lang, input.errorKey, { [paramName]: input.limit }));
+            return undefined;
+        }
+        const lines = [...input.lines];
         return {
             async question(prompt) {
                 reporter.stdout(prompt.trimEnd());
@@ -553,7 +599,10 @@ function addPromptedPreferenceOverride(overrides, key, value, reporter, lang) {
     }
 }
 async function promptInitOptions(template, options, reporter, lang) {
-    const reader = createPromptReader(reporter);
+    const reader = createPromptReader(reporter, lang);
+    if (!reader) {
+        return undefined;
+    }
     try {
         const preferenceOverrides = [...options.preferenceOverrides];
         const localeChoices = template.manifest.locales.map((locale) => ({
@@ -916,7 +965,14 @@ export async function runInit(args, reporter, lang = 'en') {
         reporter.stderr(error instanceof Error ? error.message : String(error));
         return 1;
     }
-    const options = shouldPromptForInit(args, parsedOptions) ? await promptInitOptions(template, parsedOptions, reporter, lang) : parsedOptions;
+    let options = parsedOptions;
+    if (shouldPromptForInit(args, parsedOptions)) {
+        const promptedOptions = await promptInitOptions(template, parsedOptions, reporter, lang);
+        if (!promptedOptions) {
+            return 1;
+        }
+        options = promptedOptions;
+    }
     const selectedLocale = options.locale ?? template.manifest.defaultLocale;
     if (!validateInitSelection(template, options, reporter, lang)) {
         return 1;

package/dist/cli/commands/run/receipt.js

@@ -1,6 +1,7 @@
 import { createRunReceipt, createRunReceiptRelativePath, } from '../../../core/run-receipt.js';
 export function assembleRunReceipt(input) {
     return createRunReceipt({
+        correlationId: input.correlationId,
         intent: input.intentName,
         status: input.runStatus,
         timedOut: input.runStatus === 'timed_out',

package/dist/cli/commands/run.js

@@ -1,10 +1,12 @@
 import { performance } from 'node:perf_hooks';
 import { createCommandEnv } from '../../core/command-env.js';
+import { createCorrelationId } from '../../core/correlation-id.js';
 import { printUsageError, renderCliError, renderHelp } from '../lib/cli-output.js';
 import { readCommandContract, readMustflowConfigIfExists } from '../../core/config-loading.js';
 import { resolveRunReceiptRetentionPolicy } from '../../core/retention-policy.js';
 import { t } from '../lib/i18n.js';
 import { resolveMustflowRoot } from '../lib/project-root.js';
+import { ALLOW_UNTRUSTED_ROOT_OPTION, assessRunRootTrust } from '../lib/run-root-trust.js';
 import { createRunPlan, createRunPreview, renderRunPreviewText, } from '../lib/run-plan.js';
 import { writeRunReceipt, } from '../../core/run-receipt.js';
 import { recordRunPerformanceHistory } from '../../core/run-performance-history.js';
@@ -92,6 +94,7 @@ export function getRunHelp(lang = 'en') {
             { label: '--dry-run', description: t(lang, 'run.help.option.dryRun') },
             { label: '--plan-only', description: t(lang, 'run.help.option.planOnly') },
             { label: '--json', description: t(lang, 'run.help.option.json') },
+            { label: ALLOW_UNTRUSTED_ROOT_OPTION, description: t(lang, 'run.help.option.allowUntrustedRoot') },
             { label: '-h, --help', description: t(lang, 'cli.option.help') },
         ],
         examples: ['mf run test', 'mf run lint --json', 'mf run mustflow_check --dry-run --json'],
@@ -121,7 +124,7 @@ export async function runRun(args, reporter, lang = 'en', options = {}) {
         reporter.stdout(getRunHelp(lang));
         return 0;
     }
-    const supportedOptions = new Set(['--json', '--dry-run', '--plan-only']);
+    const supportedOptions = new Set(['--json', '--dry-run', '--plan-only', ALLOW_UNTRUSTED_ROOT_OPTION]);
     const unsupported = args.filter((arg) => arg.startsWith('-') && !supportedOptions.has(arg));
     if (unsupported.length > 0) {
         printUsageError(reporter, t(lang, 'cli.error.unknownOption', { option: unsupported[0] }), 'mf run --help', getRunHelp(lang), lang);
@@ -130,6 +133,7 @@ export async function runRun(args, reporter, lang = 'en', options = {}) {
     const json = args.includes('--json');
     const dryRun = args.includes('--dry-run');
     const planOnly = args.includes('--plan-only');
+    const allowUntrustedRoot = args.includes(ALLOW_UNTRUSTED_ROOT_OPTION);
     const previewMode = dryRun ? 'dry-run' : planOnly ? 'plan-only' : null;
     if (dryRun && planOnly) {
         printUsageError(reporter, t(lang, 'run.error.conflictingPreviewModes'), 'mf run --help', getRunHelp(lang), lang);
@@ -146,6 +150,14 @@ export async function runRun(args, reporter, lang = 'en', options = {}) {
         return 1;
     }
     const projectRoot = profiler.measure('root_detection', () => resolveMustflowRoot());
+    const rootTrust = profiler.measure('root_trust', () => assessRunRootTrust(projectRoot));
+    if (!previewMode && !allowUntrustedRoot && !rootTrust.trusted) {
+        const message = rootTrust.reason === 'manifest_lock_invalid'
+            ? t(lang, 'run.error.untrustedRootInvalid', { detail: rootTrust.detail ?? rootTrust.manifestLockPath })
+            : t(lang, 'run.error.untrustedRootMissing', { path: rootTrust.detail ?? rootTrust.manifestLockPath });
+        reporter.stderr(renderCliError(message, 'mf run --help', lang));
+        return 1;
+    }
     const contract = profiler.measure('command_contract', () => readCommandContract(projectRoot));
     const plan = profiler.measure('plan_creation', () => createRunPlan(projectRoot, contract, intentName, { testTargets: options.testTargets }));
     if (previewMode) {
@@ -208,6 +220,7 @@ export async function runRun(args, reporter, lang = 'en', options = {}) {
         }
     }
     const receipt = profiler.measure('receipt_create', () => assembleRunReceipt({
+        correlationId: options.correlationId ?? createCorrelationId('run'),
         intentName,
         runStatus,
         startedAt,

package/dist/cli/commands/update.js

@@ -7,7 +7,7 @@ import { printUsageError, renderHelp } from '../lib/cli-output.js';
 import { t } from '../lib/i18n.js';
 import { resolveMustflowRoot } from '../lib/project-root.js';
 import { getDefaultTemplate, getTemplateFiles, skillNameForTemplatePath } from '../lib/templates.js';
-import { readTomlFile, stringifyToml } from '../lib/toml.js';
+import { readMustflowTomlFile, stringifyToml } from '../lib/toml.js';
 import { createUpdateDiffPreview, shouldPreviewUpdateDiff } from '../lib/update-diff-preview.js';
 const UPDATE_SCHEMA_VERSION = '1';
 const CUSTOMIZED_LOCK_ACTION = 'customized';
@@ -250,7 +250,7 @@ function updateManifestLockAfterApply(projectRoot, appliedItems) {
     const lockPath = path.join(projectRoot, MANIFEST_LOCK_RELATIVE_PATH);
     ensureInside(projectRoot, lockPath);
     ensureFileTargetInsideWithoutSymlinks(projectRoot, lockPath);
-    const parsed = readTomlFile(lockPath);
+    const parsed = readMustflowTomlFile(projectRoot, MANIFEST_LOCK_RELATIVE_PATH);
     if (!isMutableTable(parsed)) {
         throw new Error(`Invalid manifest lock: ${MANIFEST_LOCK_RELATIVE_PATH} must contain a TOML table`);
     }