opencode-orchestrator 1.0.37 → 1.0.40

package/README.md

@@ -19,7 +19,7 @@ npm install -g opencode-orchestrator
 In an OpenCode environment:
 ```bash
 /task "Implement"
-```
+``` 
 
 ## Overview
 
@@ -67,6 +67,7 @@ OpenCode Orchestrator manages complex software tasks through **parallel multi-ag
                 [MISSION SEALED]
 ```
 
+
 ---
 
 ## 🚀 Agents

package/dist/core/orchestrator/session-manager.d.ts

@@ -0,0 +1,37 @@
+/**
+ * Session Manager
+ *
+ * Centralizes all direct access to the global `state` and session initialization logic.
+ * Eliminates redundant state checks across hooks and handlers.
+ */
+/**
+ * Ensures a local session object exists in the plugin context map.
+ * This is "Session State 1" (Plugin-local tracking).
+ */
+export declare function ensureSessionInitialized(sessions: Map<string, any>, sessionID: string): any;
+/**
+ * Activates the global mission state for a specific session.
+ * This is "Session State 2" (Global Orchestrator State).
+ */
+export declare function activateMissionState(sessionID: string): void;
+/**
+ * Checks if the mission is globally active and the session is enabled.
+ */
+export declare function isMissionActive(sessionID: string): boolean;
+/**
+ * Deactivates mission state (e.g., on cancellation or error).
+ */
+export declare function deactivateMissionState(sessionID: string): void;
+/**
+ * Updates token usage and estimated cost for a session.
+ */
+export declare function updateSessionTokens(sessions: Map<string, any>, sessionID: string, inputLen: number, outputLen: number): void;
+/**
+ * Anomaly Management
+ */
+export declare function recordAnomaly(sessionID: string): number;
+export declare function resetAnomaly(sessionID: string): void;
+/**
+ * Task Tracking
+ */
+export declare function updateCurrentTask(sessionID: string, taskID: string): void;

package/dist/hooks/custom/resource-control.d.ts

@@ -10,5 +10,4 @@ export declare class ResourceControlHook implements PostToolUseHook, AssistantDo
     private lastCompactionTime;
     execute(ctx: HookContext, toolOrText: string, input?: any, output?: any): Promise<any>;
     private checkMemoryHealth;
-    private generateCompactionPrompt;
 }

package/dist/hooks/custom/strict-role-guard.d.ts

@@ -10,7 +10,10 @@ export declare class StrictRoleGuardHook implements PreToolUseHook {
     name: "StrictRoleGuard";
     execute(ctx: HookContext, tool: string, args: any): Promise<{
         action: "block";
-        reason: string;
+        reason: "Fork bomb detected.";
+    } | {
+        action: "block";
+        reason: "Root deletion blocked.";
     } | {
         action: "allow";
         reason?: undefined;

package/dist/hooks/features/mission-loop.d.ts

@@ -5,6 +5,8 @@
  * - Mission seal detection (Stop)
  * - Auto-continuation injection (Loop)
  * - User cancellation detection
+ *
+ * Refactored to use SessionManager and SystemMessages for better maintainability.
  */
 import type { AssistantDoneHook, ChatMessageHook, HookContext } from "../types.js";
 export declare class MissionControlHook implements AssistantDoneHook, ChatMessageHook {

package/dist/index.js

@@ -19714,55 +19714,75 @@ function checkOutputSanity(text) {
   return { isHealthy: true, severity: SEVERITY.OK };
 }
 
-// src/hooks/features/sanity-check.ts
-var SanityCheckHook = class {
-  name = HOOK_NAMES.SANITY_CHECK;
-  async execute(ctx, toolOrText, input, output) {
-    if (output) {
-      if (toolOrText === TOOL_NAMES.CALL_AGENT) {
-        return this.checkToolOutput(ctx, input, output);
-      }
-    } else {
-      return this.checkFinalText(ctx, toolOrText);
-    }
+// src/core/orchestrator/session-manager.ts
+function ensureSessionInitialized(sessions, sessionID) {
+  if (!sessions.has(sessionID)) {
+    const now = Date.now();
+    const newSession = {
+      active: true,
+      step: 0,
+      timestamp: now,
+      startTime: now,
+      lastStepTime: now,
+      tokens: { totalInput: 0, totalOutput: 0, estimatedCost: 0 }
+    };
+    sessions.set(sessionID, newSession);
+  }
+  return sessions.get(sessionID);
+}
+function activateMissionState(sessionID) {
+  let stateSession = state.sessions.get(sessionID);
+  if (!stateSession) {
+    state.sessions.set(sessionID, {
+      enabled: true,
+      iterations: 0,
+      taskRetries: /* @__PURE__ */ new Map(),
+      currentTask: "",
+      anomalyCount: 0
+    });
+    stateSession = state.sessions.get(sessionID);
+    log(`[SessionManager] Created new global mission state for ${sessionID}`);
   }
-  async checkToolOutput(ctx, toolInput, toolOutput) {
-    const stateSession = state.sessions.get(ctx.sessionID);
-    if (!stateSession) return {};
-    const sanityResult = checkOutputSanity(toolOutput.output);
-    if (!sanityResult.isHealthy) {
-      stateSession.anomalyCount = (stateSession.anomalyCount || 0) + 1;
-      const agentName = toolInput?.agent || "unknown";
-      const errorMsg = `[${agentName.toUpperCase()}] OUTPUT ANOMALY DETECTED
-
-Gibberish/loop detected: ${sanityResult.reason}
-Anomaly count: ${stateSession.anomalyCount}
-
-` + (stateSession.anomalyCount >= 2 ? ESCALATION_PROMPT : RECOVERY_PROMPT);
-      return { output: errorMsg };
-    } else {
-      if (stateSession.anomalyCount > 0) stateSession.anomalyCount = 0;
-    }
-    return {};
+  if (stateSession) {
+    stateSession.enabled = true;
+    stateSession.anomalyCount = 0;
   }
-  async checkFinalText(ctx, finalText) {
-    const stateSession = state.sessions.get(ctx.sessionID);
-    if (!stateSession) return { action: HOOK_ACTIONS.CONTINUE };
-    const sanityResult = checkOutputSanity(finalText);
-    if (!sanityResult.isHealthy) {
-      stateSession.anomalyCount = (stateSession.anomalyCount || 0) + 1;
-      const recoveryText = stateSession.anomalyCount >= 2 ? ESCALATION_PROMPT : RECOVERY_PROMPT;
-      return {
-        action: HOOK_ACTIONS.INJECT,
-        prompts: [`\u26A0\uFE0F ANOMALY #${stateSession.anomalyCount}: ${sanityResult.reason}
-
-${recoveryText}`]
-      };
-    }
-    if (stateSession.anomalyCount > 0) stateSession.anomalyCount = 0;
-    return { action: HOOK_ACTIONS.CONTINUE };
+  state.missionActive = true;
+  log(`[SessionManager] Mission Activated: ${sessionID}`);
+}
+function isMissionActive(sessionID) {
+  const stateSession = state.sessions.get(sessionID);
+  return !!(state.missionActive && stateSession?.enabled);
+}
+var COST_PER_1K_INPUT = 3e-3;
+var COST_PER_1K_OUTPUT = 0.015;
+function updateSessionTokens(sessions, sessionID, inputLen, outputLen) {
+  const session = ensureSessionInitialized(sessions, sessionID);
+  if (!session.tokens) {
+    session.tokens = { totalInput: 0, totalOutput: 0, estimatedCost: 0 };
   }
-};
+  const inputTokens = Math.ceil(inputLen / 4);
+  const outputTokens = Math.ceil(outputLen / 4);
+  session.tokens.totalInput += inputTokens;
+  session.tokens.totalOutput += outputTokens;
+  const cost = session.tokens.totalInput / 1e3 * COST_PER_1K_INPUT + session.tokens.totalOutput / 1e3 * COST_PER_1K_OUTPUT;
+  session.tokens.estimatedCost = Number(cost.toFixed(4));
+}
+function recordAnomaly(sessionID) {
+  const session = ensureSessionInitialized(state.sessions, sessionID);
+  session.anomalyCount = (session.anomalyCount || 0) + 1;
+  return session.anomalyCount;
+}
+function resetAnomaly(sessionID) {
+  const session = ensureSessionInitialized(state.sessions, sessionID);
+  if (session.anomalyCount > 0) {
+    session.anomalyCount = 0;
+  }
+}
+function updateCurrentTask(sessionID, taskID) {
+  const session = ensureSessionInitialized(state.sessions, sessionID);
+  session.currentTask = taskID;
+}
 
 // src/core/loop/mission-seal.ts
 import { existsSync as existsSync4, readFileSync, writeFileSync, unlinkSync, mkdirSync } from "node:fs";
@@ -19925,6 +19945,119 @@ ${state2.prompt}
 </mission_loop>`;
 }
 
+// src/shared/constants/system-messages.ts
+var MISSION_MESSAGES = {
+  START_LOG: "[MissionControl] Detected /task command. Starting mission...",
+  CANCEL_LOG: "[MissionControl] Detected user cancellation signal.",
+  SEAL_LOG: "[MissionControl] Mission Seal detected! Finishing loop.",
+  TOAST_COMPLETE_TITLE: "Mission Complete",
+  TOAST_COMPLETE_MESSAGE: "Agent sealed the mission.",
+  STOP_TRIGGER: "STOP MISSION",
+  CANCEL_TRIGGER: "CANCEL MISSION",
+  // UI Messages
+  AGENT_HEADER_FORMAT: (indicator, name) => `[${indicator}] [${name}] Working...
+
+`,
+  // Security Messages
+  BLOCK_REASON_FORK_BOMB: "Fork bomb detected.",
+  BLOCK_REASON_ROOT_DELETE: "Root deletion blocked.",
+  SECRET_REDACTED_MSG: "********** [SECRET REDACTED] **********",
+  // Sanity Messages
+  ANOMALY_DETECTED_TITLE: (name) => `[${name}] OUTPUT ANOMALY DETECTED`,
+  ANOMALY_DETECTED_BODY: (reason, count, recoveryText) => `Gibberish/loop detected: ${reason}
+Anomaly count: ${count}
+
+${recoveryText}`,
+  ANOMALY_INJECT_MSG: (count, reason, recoveryText) => `\u26A0\uFE0F ANOMALY #${count}: ${reason}
+
+${recoveryText}`
+};
+var COMPACTION_PROMPT = `
+<system_interrupt type="memory_compaction">
+\u26A0\uFE0F **CRITICAL: Context Memory High ($USAGE%)**
+
+Your context window is filling up. To prevent memory loss:
+1. **STOP** your current task immediately.
+2. **SUMMARIZE** all completed work and pending todos.
+3. **UPDATE** the file \`./.opencode/context.md\` with this summary.
+   - Keep it concise but lossless (don't lose task IDs).
+   - Section: ## Current Status, ## Pending Tasks.
+4. After updating, output exactly: \`[COMPACTION_COMPLETE]\`
+
+Do this NOW before proceeding.
+</system_interrupt>
+`;
+var CONTINUE_INSTRUCTION = `<auto_continue>
+<status>Mission not complete. Keep executing.</status>
+
+<rules>
+1. DO NOT stop - mission is incomplete
+2. DO NOT wait for user input
+3. If previous action failed, try different approach
+4. If agent returned nothing, proceed to next step
+5. Check your todo list - complete ALL pending items
+</rules>
+
+<next_step>
+1. Check todo list for incomplete items
+2. Identify the highest priority pending task
+3. Execute it NOW
+4. Mark complete when done
+5. Continue until ALL todos are complete
+</next_step>
+
+<completion_criteria>
+You are ONLY done when:
+- All todos are marked complete or cancelled
+- All features are implemented and tesWait:
+1. Don't ask for permission
+2. Check works
+3. Only when done:
+Then output: ${SEAL_PATTERN}
+</completion_criteria>
+</auto_continue>`;
+
+// src/hooks/features/sanity-check.ts
+var SanityCheckHook = class {
+  name = HOOK_NAMES.SANITY_CHECK;
+  async execute(ctx, toolOrText, input, output) {
+    if (output) {
+      if (toolOrText === TOOL_NAMES.CALL_AGENT) {
+        return this.checkToolOutput(ctx, input, output);
+      }
+    } else {
+      return this.checkFinalText(ctx, toolOrText);
+    }
+  }
+  async checkToolOutput(ctx, toolInput, toolOutput) {
+    const sanityResult = checkOutputSanity(toolOutput.output);
+    if (!sanityResult.isHealthy) {
+      const count = recordAnomaly(ctx.sessionID);
+      const agentName = toolInput?.agent || "unknown";
+      const recoveryText = count >= 2 ? ESCALATION_PROMPT : RECOVERY_PROMPT;
+      const errorMsg = MISSION_MESSAGES.ANOMALY_DETECTED_TITLE(agentName.toUpperCase()) + "\n\n" + MISSION_MESSAGES.ANOMALY_DETECTED_BODY(sanityResult.reason || "Unknown anomaly", count, recoveryText);
+      return { output: errorMsg };
+    } else {
+      resetAnomaly(ctx.sessionID);
+    }
+    return {};
+  }
+  async checkFinalText(ctx, finalText) {
+    const sanityResult = checkOutputSanity(finalText);
+    if (!sanityResult.isHealthy) {
+      const count = recordAnomaly(ctx.sessionID);
+      const recoveryText = count >= 2 ? ESCALATION_PROMPT : RECOVERY_PROMPT;
+      const prompt = MISSION_MESSAGES.ANOMALY_INJECT_MSG(count, sanityResult.reason || "Unknown anomaly", recoveryText);
+      return {
+        action: HOOK_ACTIONS.INJECT,
+        prompts: [prompt]
+      };
+    }
+    resetAnomaly(ctx.sessionID);
+    return { action: HOOK_ACTIONS.CONTINUE };
+  }
+};
+
 // src/core/progress/store.ts
 var progressHistory = /* @__PURE__ */ new Map();
 var sessionStartTimes = /* @__PURE__ */ new Map();
@@ -20001,79 +20134,24 @@ function formatElapsedTime(startMs, endMs = Date.now()) {
 }
 
 // src/hooks/features/mission-loop.ts
-var CONTINUE_INSTRUCTION = `<auto_continue>
-<status>Mission not complete. Keep executing.</status>
-
-<rules>
-1. DO NOT stop - mission is incomplete
-2. DO NOT wait for user input
-3. If previous action failed, try different approach
-4. If agent returned nothing, proceed to next step
-5. Check your todo list - complete ALL pending items
-</rules>
-
-<next_step>
-1. Check todo list for incomplete items
-2. Identify the highest priority pending task
-3. Execute it NOW
-4. Mark complete when done
-5. Continue until ALL todos are complete
-</next_step>
-
-<completion_criteria>
-You are ONLY done when:
-- All todos are marked complete or cancelled
-- All features are implemented and tesWait:
-1. Don't ask for permission
-2. Check works
-3. Only when done:
-Then output: ${SEAL_PATTERN}
-</completion_criteria>
-</auto_continue>`;
 var MissionControlHook = class {
   name = HOOK_NAMES.MISSION_LOOP;
-  // Update usage to MISSION_CONTROL later if desired
   async execute(ctx, text) {
     const chatResult = await this.handleChatCommand(ctx, text);
     if (chatResult) return chatResult;
     return this.handleMissionSeal(ctx, text);
   }
   // -------------------------------------------------------------------------------
-  // 1. Chat Logic: Detect /task
+  // 1. Chat Logic: Detect /task & Initialize
   // -------------------------------------------------------------------------------
   async handleChatCommand(ctx, message) {
     const parsed = detectSlashCommand(message);
     if (!parsed || parsed.command !== COMMAND_NAMES.TASK) return null;
     const command = COMMANDS[parsed.command];
     const { sessionID, sessions, directory } = ctx;
-    log(`[MissionControl] Detected /task command. Starting mission...`);
-    if (!sessions.has(sessionID)) {
-      const now = Date.now();
-      sessions.set(sessionID, {
-        active: true,
-        step: 0,
-        timestamp: now,
-        startTime: now,
-        lastStepTime: now,
-        tokens: { totalInput: 0, totalOutput: 0, estimatedCost: 0 }
-      });
-    }
-    let stateSession = state.sessions.get(sessionID);
-    if (!stateSession) {
-      state.sessions.set(sessionID, {
-        enabled: true,
-        iterations: 0,
-        taskRetries: /* @__PURE__ */ new Map(),
-        currentTask: "",
-        anomalyCount: 0
-      });
-      stateSession = state.sessions.get(sessionID);
-    }
-    if (stateSession) {
-      stateSession.enabled = true;
-      stateSession.anomalyCount = 0;
-    }
-    state.missionActive = true;
+    log(MISSION_MESSAGES.START_LOG);
+    ensureSessionInitialized(sessions, sessionID);
+    activateMissionState(sessionID);
     const prompt = parsed.args || "continue from where we left off";
     startMissionLoop(directory, sessionID, prompt);
     startSession(sessionID);
@@ -20087,30 +20165,29 @@ var MissionControlHook = class {
     return { action: HOOK_ACTIONS.PROCESS };
   }
   // -------------------------------------------------------------------------------
-  // 2. Done Logic: Check Seal
+  // 2. Done Logic: Check Seal & Auto-Continue
   // -------------------------------------------------------------------------------
   async handleMissionSeal(ctx, agentText) {
     const { sessionID, directory, sessions } = ctx;
     const session = sessions.get(sessionID);
-    const stateSession = state.sessions.get(sessionID);
-    if (!stateSession || !state.missionActive) {
+    if (!isMissionActive(sessionID)) {
       return { action: HOOK_ACTIONS.CONTINUE };
     }
     if (!isLoopActive(directory, sessionID)) {
       return { action: HOOK_ACTIONS.CONTINUE };
     }
     const finalText = agentText || "";
-    if (finalText.includes("STOP MISSION") || finalText.includes("CANCEL MISSION")) {
-      log("[mission-control] detected user cancellation signal.");
+    if (finalText.includes(MISSION_MESSAGES.STOP_TRIGGER) || finalText.includes(MISSION_MESSAGES.CANCEL_TRIGGER)) {
+      log(MISSION_MESSAGES.CANCEL_LOG);
       await cancelMissionLoop(directory, sessionID);
       return { action: HOOK_ACTIONS.STOP, reason: "User cancelled via text" };
     }
     if (detectSealInText(finalText)) {
-      log("[mission-control] Mission Seal detected! Finishing loop.");
+      log(MISSION_MESSAGES.SEAL_LOG);
       clearLoopState(directory);
       await show({
-        title: "Mission Complete",
-        message: "Agent sealed the mission.",
+        title: MISSION_MESSAGES.TOAST_COMPLETE_TITLE,
+        message: MISSION_MESSAGES.TOAST_COMPLETE_MESSAGE,
         variant: "success"
       });
       return { action: HOOK_ACTIONS.STOP, reason: "Mission Sealed" };
@@ -20130,20 +20207,40 @@ var MissionControlHook = class {
   }
 };
 
+// src/shared/constants/security-patterns.ts
+var SECURITY_PATTERNS = {
+  // Dangerous Commands
+  FORK_BOMB: ":(){ :|:& };:",
+  ROOT_DELETION: /rm\s+(-r?f?\s+)*\/\s*$/,
+  // rm -rf /
+  // Secret Detection
+  SECRETS: [
+    /sk-[a-zA-Z0-9]{20,}T3BlbkFJ/g,
+    // OpenAI-like
+    /(AWS|aws|Aws)?[_ ]?(SECRET|secret|Secret)?[_ ]?(KEY|key|Key)[:= ]+[A-Za-z0-9\/+]{40}/g,
+    // AWS Secret Key
+    /ghp_[a-zA-Z0-9]{36}/g,
+    // GitHub PAT
+    /xox[baprs]-([0-9a-zA-Z]{10,48})/g
+    // Slack Token
+  ]
+};
+var UI_PATTERNS = {
+  TASK_ID: /\[(TASK-\d+)\]/i
+};
+
 // src/hooks/custom/strict-role-guard.ts
 var StrictRoleGuardHook = class {
   name = HOOK_NAMES.STRICT_ROLE_GUARD;
   async execute(ctx, tool2, args) {
-    const session = state.sessions.get(ctx.sessionID);
     if (tool2 === "run_command" || tool2 === TOOL_NAMES.RUN_BACKGROUND) {
       const cmd = args?.command;
       if (cmd) {
-        if (cmd.includes(":(){ :|:& };:")) {
-          return { action: HOOK_ACTIONS.BLOCK, reason: "Fork bomb detected." };
+        if (cmd.includes(SECURITY_PATTERNS.FORK_BOMB)) {
+          return { action: HOOK_ACTIONS.BLOCK, reason: MISSION_MESSAGES.BLOCK_REASON_FORK_BOMB };
         }
-        const isRootDeletion = /rm\s+(-r?f?\s+)*\/\s*$/.test(cmd.trim());
-        if (isRootDeletion) {
-          return { action: HOOK_ACTIONS.BLOCK, reason: "Root deletion blocked." };
+        if (SECURITY_PATTERNS.ROOT_DELETION.test(cmd.trim())) {
+          return { action: HOOK_ACTIONS.BLOCK, reason: MISSION_MESSAGES.BLOCK_REASON_ROOT_DELETE };
         }
       }
     }
@@ -20152,24 +20249,14 @@ var StrictRoleGuardHook = class {
 };
 
 // src/hooks/custom/secret-scanner.ts
-var SECRET_PATTERNS = [
-  /sk-[a-zA-Z0-9]{20,}T3BlbkFJ/g,
-  // OpenAI-like (example)
-  /(AWS|aws|Aws)?[_ ]?(SECRET|secret|Secret)?[_ ]?(KEY|key|Key)[:= ]+[A-Za-z0-9\/+]{40}/g,
-  // AWS Secret Key
-  /ghp_[a-zA-Z0-9]{36}/g,
-  // GitHub Personal Access Token
-  /xox[baprs]-([0-9a-zA-Z]{10,48})/g
-  // Slack Token
-];
 var SecretScannerHook = class {
   name = HOOK_NAMES.SECRET_SCANNER;
   async execute(ctx, tool2, input, output) {
     let content = output.output;
     let modified = false;
-    for (const pattern of SECRET_PATTERNS) {
+    for (const pattern of SECURITY_PATTERNS.SECRETS) {
       if (pattern.test(content)) {
-        content = content.replace(pattern, "********** [SECRET REDACTED] **********");
+        content = content.replace(pattern, MISSION_MESSAGES.SECRET_REDACTED_MSG);
         modified = true;
       }
     }
@@ -20185,19 +20272,16 @@ var AgentUIHook = class {
   name = HOOK_NAMES.AGENT_UI;
   async execute(ctx, tool2, input, output) {
     if (tool2 !== TOOL_NAMES.CALL_AGENT) return {};
-    const stateSession = state.sessions.get(ctx.sessionID);
-    if (input?.task && stateSession) {
-      const taskIdMatch = input.task.match(/\[(TASK-\d+)\]/i);
+    if (input?.task) {
+      const taskIdMatch = input.task.match(UI_PATTERNS.TASK_ID);
       if (taskIdMatch) {
-        stateSession.currentTask = taskIdMatch[1].toUpperCase();
+        updateCurrentTask(ctx.sessionID, taskIdMatch[1].toUpperCase());
       }
     }
     if (input?.agent) {
       const agentName = input.agent;
       const indicator = agentName[0].toUpperCase();
-      const header = `[${indicator}] [${agentName.toUpperCase()}] Working...
-
-`;
+      const header = MISSION_MESSAGES.AGENT_HEADER_FORMAT(indicator, agentName.toUpperCase());
       if (!output.output.startsWith("[" + indicator + "]")) {
         return { output: header + output.output };
       }
@@ -20302,45 +20386,34 @@ function cleanupSession(sessionID) {
 }
 
 // src/hooks/custom/resource-control.ts
-var COST_PER_1K_INPUT = 3e-3;
-var COST_PER_1K_OUTPUT = 0.015;
 var COMPACTION_THRESHOLD = CONTEXT_THRESHOLDS.WARNING;
 var COOLDOWN_MS = 10 * 60 * 1e3;
 var ResourceControlHook = class {
   name = HOOK_NAMES.RESOURCE_CONTROL;
   lastCompactionTime = /* @__PURE__ */ new Map();
   async execute(ctx, toolOrText, input, output) {
-    const session = ctx.sessions.get(ctx.sessionID);
-    if (!session) return { action: HOOK_ACTIONS.CONTINUE };
-    if (!session.tokens) {
-      session.tokens = { totalInput: 0, totalOutput: 0, estimatedCost: 0 };
-    }
-    let inputTokens = 0;
-    let outputTokens = 0;
+    let inputLen = 0;
+    let outputLen = 0;
     if (input) {
       const inputStr = typeof input === "string" ? input : JSON.stringify(input);
-      inputTokens = Math.ceil(inputStr.length / 4);
+      inputLen = inputStr.length;
     }
     if (output) {
       const outputStr = typeof output === "string" ? output : JSON.stringify(output);
-      outputTokens = Math.ceil(outputStr.length / 4);
+      outputLen = outputStr.length;
     }
     if (arguments.length === 2 && typeof toolOrText === "string") {
-      outputTokens = Math.ceil(toolOrText.length / 4);
+      outputLen = toolOrText.length;
     }
-    session.tokens.totalInput += inputTokens;
-    session.tokens.totalOutput += outputTokens;
-    const cost = session.tokens.totalInput / 1e3 * COST_PER_1K_INPUT + session.tokens.totalOutput / 1e3 * COST_PER_1K_OUTPUT;
-    session.tokens.estimatedCost = Number(cost.toFixed(4));
-    const result = await this.checkMemoryHealth(ctx, session);
-    return result;
+    updateSessionTokens(ctx.sessions, ctx.sessionID, inputLen, outputLen);
+    const session = ctx.sessions.get(ctx.sessionID);
+    return this.checkMemoryHealth(ctx, session);
   }
   async checkMemoryHealth(ctx, session) {
+    if (!session?.tokens) return { action: HOOK_ACTIONS.CONTINUE };
     const totalUsed = session.tokens.totalInput + session.tokens.totalOutput;
     const maxTokens = CONTEXT_MONITOR_CONFIG.DEFAULT_MAX_TOKENS;
     const usage = calculateUsage(totalUsed, maxTokens);
-    if (usage > CONTEXT_THRESHOLDS.INFO) {
-    }
     if (usage < COMPACTION_THRESHOLD) {
       return { action: HOOK_ACTIONS.CONTINUE };
     }
@@ -20350,30 +20423,14 @@ var ResourceControlHook = class {
       return { action: HOOK_ACTIONS.CONTINUE };
     }
     this.lastCompactionTime.set(ctx.sessionID, now);
-    const compactionPrompt = this.generateCompactionPrompt(usage);
-    log(`[ResourceControl] Triggering compaction for session ${ctx.sessionID} (Usage: ${Math.round(usage * 100)}%)`);
+    const usagePercent = Math.round(usage * 100);
+    const prompt = COMPACTION_PROMPT.replace("$USAGE", usagePercent.toString());
+    log(`[ResourceControl] Triggering compaction for session ${ctx.sessionID} (Usage: ${usagePercent}%)`);
     return {
       action: HOOK_ACTIONS.INJECT,
-      prompts: [compactionPrompt]
+      prompts: [prompt]
     };
   }
-  generateCompactionPrompt(usage) {
-    return `
-<system_interrupt type="memory_compaction">
-\u26A0\uFE0F **CRITICAL: Context Memory High (${Math.round(usage * 100)}%)**
-
-Your context window is filling up. To prevent memory loss:
-1. **STOP** your current task immediately.
-2. **SUMMARIZE** all completed work and pending todos.
-3. **UPDATE** the file \`./.opencode/context.md\` with this summary.
-   - Keep it concise but lossless (don't lose task IDs).
-   - Section: ## Current Status, ## Pending Tasks.
-4. After updating, output exactly: \`[COMPACTION_COMPLETE]\`
-
-Do this NOW before proceeding.
-</system_interrupt>
-`;
-  }
 };
 
 // src/core/loop/stats.ts

package/dist/shared/constants/security-patterns.d.ts

@@ -0,0 +1,13 @@
+/**
+ * Security Patterns & Constants
+ *
+ * Centralized definition of dangerous patterns, secrets, and security rules.
+ */
+export declare const SECURITY_PATTERNS: {
+    readonly FORK_BOMB: ":(){ :|:& };:";
+    readonly ROOT_DELETION: RegExp;
+    readonly SECRETS: readonly [RegExp, RegExp, RegExp, RegExp];
+};
+export declare const UI_PATTERNS: {
+    readonly TASK_ID: RegExp;
+};

package/dist/shared/constants/system-messages.d.ts

@@ -0,0 +1,23 @@
+/**
+ * System Messages & Templates
+ *
+ * Centralized storage for long prompt templates, user messages, and notifications.
+ */
+export declare const MISSION_MESSAGES: {
+    readonly START_LOG: "[MissionControl] Detected /task command. Starting mission...";
+    readonly CANCEL_LOG: "[MissionControl] Detected user cancellation signal.";
+    readonly SEAL_LOG: "[MissionControl] Mission Seal detected! Finishing loop.";
+    readonly TOAST_COMPLETE_TITLE: "Mission Complete";
+    readonly TOAST_COMPLETE_MESSAGE: "Agent sealed the mission.";
+    readonly STOP_TRIGGER: "STOP MISSION";
+    readonly CANCEL_TRIGGER: "CANCEL MISSION";
+    readonly AGENT_HEADER_FORMAT: (indicator: string, name: string) => string;
+    readonly BLOCK_REASON_FORK_BOMB: "Fork bomb detected.";
+    readonly BLOCK_REASON_ROOT_DELETE: "Root deletion blocked.";
+    readonly SECRET_REDACTED_MSG: "********** [SECRET REDACTED] **********";
+    readonly ANOMALY_DETECTED_TITLE: (name: string) => string;
+    readonly ANOMALY_DETECTED_BODY: (reason: string, count: number, recoveryText: string) => string;
+    readonly ANOMALY_INJECT_MSG: (count: number, reason: string, recoveryText: string) => string;
+};
+export declare const COMPACTION_PROMPT = "\n<system_interrupt type=\"memory_compaction\">\n\u26A0\uFE0F **CRITICAL: Context Memory High ($USAGE%)**\n\nYour context window is filling up. To prevent memory loss:\n1. **STOP** your current task immediately.\n2. **SUMMARIZE** all completed work and pending todos.\n3. **UPDATE** the file `./.opencode/context.md` with this summary.\n   - Keep it concise but lossless (don't lose task IDs).\n   - Section: ## Current Status, ## Pending Tasks.\n4. After updating, output exactly: `[COMPACTION_COMPLETE]`\n\nDo this NOW before proceeding.\n</system_interrupt>\n";
+export declare const CONTINUE_INSTRUCTION: string;

package/package.json

@@ -2,7 +2,7 @@
   "name": "opencode-orchestrator",
   "displayName": "OpenCode Orchestrator",
   "description": "Distributed Cognitive Architecture for OpenCode. Turns simple prompts into specialized multi-agent workflows (Planner, Coder, Reviewer).",
-  "version": "1.0.37",
+  "version": "1.0.40",
   "author": "agnusdei1207",
   "license": "MIT",
   "repository": {
@@ -62,7 +62,7 @@
     "release:minor": "npm run build && npm run rust:dist && npm version minor && git push --follow-tags && npm publish --access public",
     "release:major": "npm run build && npm run rust:dist && npm version major && git push --follow-tags && npm publish --access public",
     "reset:local": "brew uninstall opencode 2>/dev/null; rm -rf ~/.config/opencode ~/.opencode ~/.local/share/opencode ~/.cache/opencode/node_modules/opencode-orchestrator && echo '=== Clean done ===' && brew install opencode && echo '{\"plugin\": [\"opencode-orchestrator\"], \"$schema\": \"https://opencode.ai/config.json\"}' > ~/.config/opencode/opencode.json && echo '=== Reset (Dev) complete. Run: opencode ==='",
-    "reset:prod": "brew uninstall opencode 2>/dev/null; rm -rf ~/.config/opencode ~/.opencode ~/.local/share/opencode ~/.cache/opencode/node_modules/opencode-orchestrator && echo '=== Clean done ===' && brew install opencode && echo '{\"plugin\": [\"opencode-orchestrator\"], \"$schema\": \"https://opencode.ai/config.json\"}' > ~/.config/opencode/opencode.json && npm install -g opencode-orchestrator && echo '=== Reset (Prod) complete. Run: opencode ==='",
+    "reset:prod": "brew uninstall opencode 2>/dev/null; rm -rf ~/.config/opencode ~/.opencode ~/.local/share/opencode ~/.cache/opencode/node_modules/opencode-orchestrator && echo '=== Clean done ===' && brew install opencode && echo '{\"plugin\": [\"opencode-orchestrator\"], \"$schema\": \"https://opencode.ai/config.json\"}' > ~/.config/opencode/opencode.json && npm uninstall -g opencode-orchestrator && echo '=== Reset (Prod) complete. Run: opencode ==='",
     "ginstall": "npm install -g opencode-orchestrator",
     "log": "tail -f \"$(node -e 'console.log(require(\"os\").tmpdir())')/opencode-orchestrator.log\""
   },