openhermes 1.13.1 → 2.5.0

package/bootstrap.mjs

@@ -3,18 +3,119 @@ import fs from "node:fs"
 import { fileURLToPath } from "node:url"
 
 const __dirname = path.dirname(fileURLToPath(import.meta.url))
-const HARNESS_DIR = path.resolve(__dirname, "harness")
+const REQUIRED_HARNESS_FILES = [
+  ["constitution", "soul.md"],
+  ["instructions", "RUNTIME.md"],
+  ["commands", "doctor.md"],
+  ["prompts", "architect.txt"],
+  ["rules", "precedence.md"],
+  ["skills", "coding-standards", "SKILL.md"],
+]
+
+function ancestorDirs(start, limit = 6) {
+  const dirs = []
+  let current = path.resolve(start)
+  for (let i = 0; i < limit; i++) {
+    dirs.push(current)
+    const parent = path.dirname(current)
+    if (parent === current) break
+    current = parent
+  }
+  return dirs
+}
+
+function buildHarnessCandidates(currentDir, execPath, cwd) {
+  const roots = [path.resolve(currentDir, "harness")]
+  const seen = new Set(roots)
+
+  const anchors = [path.dirname(execPath), path.dirname(path.dirname(execPath)), cwd]
+  for (const anchor of anchors) {
+    for (const dir of ancestorDirs(anchor)) {
+      for (const root of [
+        path.join(dir, "harness"),
+        path.join(dir, "node_modules", "openhermes", "harness"),
+        path.join(dir, "bin", "node_modules", "openhermes", "harness"),
+      ]) {
+        const normalized = path.normalize(root)
+        if (seen.has(normalized)) continue
+        seen.add(normalized)
+        roots.push(normalized)
+      }
+    }
+  }
+
+  return roots
+}
+
+function hasRequiredHarnessFiles(root) {
+  return REQUIRED_HARNESS_FILES.every(parts => fs.existsSync(path.join(root, ...parts)))
+}
+
+export function resolveHarnessRoot({
+  currentDir = __dirname,
+  execPath = process.execPath,
+  cwd = process.cwd(),
+  candidateRoots,
+} = {}) {
+  const roots = candidateRoots ?? buildHarnessCandidates(currentDir, execPath, cwd)
+  for (const root of roots) {
+    if (hasRequiredHarnessFiles(root)) return root
+  }
+  return path.resolve(currentDir, "harness")
+}
+
+const HARNESS_DIR = resolveHarnessRoot()
 const RULES_DIR = path.join(HARNESS_DIR, "rules")
 const SKILLS_DIR = path.join(HARNESS_DIR, "skills")
 const CONSTITUTION_FILE = path.join(HARNESS_DIR, "constitution", "soul.md")
 const RUNTIME_FILE = path.join(HARNESS_DIR, "instructions", "RUNTIME.md")
 
 
-let _bootstrapCache = undefined
+function scanDirNames(dir) {
+  try { return fs.readdirSync(dir).filter(f => f.endsWith(".md")).map(f => f.replace(/\.md$/, "")).sort() }
+  catch { return [] }
+}
+
+function scanPromptNames(dir) {
+  try { return fs.readdirSync(dir).filter(f => f.endsWith('.md') || f.endsWith('.txt')).map(f => path.basename(f, path.extname(f))).sort() }
+  catch { return [] }
+}
+
+function scanSkillDirs(dir) {
+  try { return fs.readdirSync(dir).filter(f => fs.statSync(path.join(dir, f)).isDirectory()).sort() }
+  catch { return [] }
+}
+
+function scanSchemaNames(dir) {
+  try { return fs.readdirSync(dir).filter(f => f.endsWith(".schema.json")).map(f => f.replace(/\.schema\.json$/, "")).filter(f => f !== "loop-state").sort() }
+  catch { return [] }
+}
+
+export function buildCapabilityMap(hDir) {
+  const cmds = scanDirNames(path.join(hDir, "commands"))
+  if (!cmds.includes("update-me")) cmds.push("update-me")
+  cmds.sort()
+
+  const agents = scanPromptNames(path.join(hDir, "prompts"))
+  const skills = scanSkillDirs(path.join(hDir, "skills"))
+  const schemas = scanSchemaNames(path.join(__dirname, "schemas"))
+
+  return [
+    "## Capability Map",
+    "",
+    `Commands  (${cmds.length}):  /${cmds.join(" /")}`,
+    `Subagents (${agents.length}): ${agents.join(" ")}`,
+    `Skills    (${skills.length}): ${skills.join(" ")}`,
+    `Memory    (${schemas.length}): ${schemas.join(" ")}`,
+    "",
+    `For problem → specialist routing see Delegation below. Skills via \`skill\` tool. Memory via \`ohc_save\` etc.`,
+  ].join("\n")
+}
 
 function buildBootstrapContent() {
   const constitution = fs.readFileSync(CONSTITUTION_FILE, "utf8")
   const runtime = fs.readFileSync(RUNTIME_FILE, "utf8")
+  const capMap = buildCapabilityMap(HARNESS_DIR)
 
   const router = `## AGENTS.md
 
@@ -22,28 +123,13 @@ OpenHermes thin constitutional router. Full harness → \`${HARNESS_DIR}\\\`.
 
 ## Soul
 
-Pragmatic. Concise. Task-oriented. Subagent-first. Inspect, then act. Smallest correct change. Verify, don't claim. Receipts over vibes. Recover by narrowing, not posturing. Skeptical — demand proof. Precision-first search: needle then broad, never reverse.
+Pragmatic. Concise. Task-oriented. Subagent-first. Inspect, then act. Scope to the problem. Verify, don't claim. Receipts over vibes. Recover by narrowing, not posturing. Skeptical — demand proof. Precision-first search: needle then broad, never reverse.
 
 ## Safety
 
 Snapshot before mutation. Never delete unrelated files. Never assume \`%USERPROFILE%\\\\.config\\\\opencode\` is a git repo. Verify or roll back. **NEVER delete \`auth.json\`** (\`%USERPROFILE%\\\\.local\\\\share\\\\opencode\\\\auth.json\`).
 
-## Arsenal
-
-| Category | Items |
-|----------|-------|
-| **Native tools** | \`read\`, \`write\`, \`edit\`, \`glob\`, \`grep\`, \`bash\`, \`task\`, \`webfetch\`, \`skill\`, \`todowrite\`, \`todoread\` |
-| **In-process tools** | \`add_memory\`, \`fetch_memory\`, \`list_memory\`, \`latest_memory\`, \`search_memory\`, \`archive_memory\` |
-| **Memory recall cache** | \`openhermes/memory/recall/cache.json\` — read on session start, no MCP round-trip |
-| **Subagents** | \`explore\` (read-only), \`general\` (multi-step), \`architect\`, \`planner\`, \`build-error-resolver\`, \`code-reviewer\`, \`security-reviewer\`, \`e2e-runner\`, \`docs-lookup\`, \`doc-updater\`, \`refactor-cleaner\`, \`loop-operator\`, \`harness-optimizer\`, \`tdd-guide\`, \`review-go\`, \`build-go\`, \`review-database\`, \`review-cpp\`, \`build-cpp\`, \`review-java\`, \`build-java\`, \`review-kotlin\`, \`build-kotlin\`, \`review-python\`, \`review-rust\`, \`build-rust\` |
-| **Plugins** | \`curator\` (checkpoints, mistakes, audit, compaction), \`autorecall\` (recall cache on \`session.created\`), \`skill-builder\` (complex session detection) |
-| **Slash commands** | <!-- COMMANDS:START --> \`/build-fix\`, \`/checkpoint\`, \`/code-review\`, \`/doctor\`, \`/eval\`, \`/go-build\`, \`/go-review\`, \`/harness-audit\`, \`/learn\`, \`/loop-start\`, \`/loop-status\`, \`/memory-search\`, \`/model-route\`, \`/ohc\`, \`/orchestrate\`, \`/plan\`, \`/quality-gate\`, \`/refactor-clean\`, \`/rust-build\`, \`/rust-review\`, \`/security\`, \`/setup-pm\`, \`/skill-create\`, \`/test-coverage\`, \`/update-codemaps\`, \`/update-docs\`, \`/update-me\`, \`/verify\`<!-- COMMANDS:END --> |
-
-## Skills (available via \`skill\` tool)
-
-\`agent-browser\` \`batch-files\` \`caveman\` \`create-architectural-decision-record\` \`create-readme\` \`design-md\` \`diagnose\` \`docker-expert\` \`enhance-prompt\` \`find-skills\` \`grill-me\` \`grill-with-docs\` \`improve-codebase-architecture\` \`opencode-doctor\` \`opencode-ecc-lifecycle\` \`opencode-docs\` \`opencode-expert\` \`opencode-models\` \`opencode-recall\` \`react:components\` \`setup-matt-pocock-skills\` \`skill-creator\` \`squeez-expert\` \`stitch-design\` \`stitch-loop\` \`tailored-resume-generator\` \`taste-design\` \`tdd\` \`to-issues\` \`to-prd\` \`triage\` \`typescript-expert\` \`write-a-skill\` \`write-coding-standards-from-file\` \`zoom-out\`
-
-**OpenHermes-specific skills (discovered from harness):** \`api-design\` \`backend-patterns\` \`coding-standards\` \`e2e-testing\` \`frontend-patterns\` \`frontend-slides\` \`security-review\` \`strategic-compact\` \`tdd-workflow\` \`verification-loop\`
+${capMap}
 
 ## Delegation (Mandatory)
 
@@ -75,15 +161,25 @@ Main context = coordination + verification only. Substantive work → subagent.
 | Rust build fix | \`build-rust\` |
 | Any non-trivial multi-step | appropriate specialist |
 
-Never delegate trivial single-step ops. Subagent returns diff + summary + verification; inspect return only. Full ref: \`${RULES_DIR}\\\\delegation.md\`.
+Never delegate trivial single-step ops. Subagent returns diff + summary + verification; inspect return only. Full ref: \`${RULES_DIR}\\\delegation.md\`.
+
+## Handoff Protocol
+
+Every agent knows its role, permissions, and when to delegate. Before delegating, assess task complexity (easy → direct, medium → single subagent, hard → sequential multi-agent, very-large → fan-out). Use structured handoff format documented in \`${RULES_DIR}\\\handoff.md\`.
+
+- **Act**: Task matches your role and permissions → do it directly
+- **Delegate**: Task outside your role → pass to correct agent via \`task\` tool
+- **Escalate**: Review/planning agents must NEVER edit code. Delegate to builders.
+- **Learn**: After each task, check for repeated patterns. Persist to memory via \`ohc_save\`.
+- **Checkpoint**: Before every handoff, save a checkpoint.
 
 ## Memory — Gated & Precision-First
 
-- **Start**: Read recall cache first. If stale/missing → \`latest_memory\` for relevant classes.
-- **Before work**: Narrow \`search_memory\` by class, scope, keywords. Never read full indexes.
+- **Start**: Read recall cache first. If stale/missing → \`ohc_latest\` for relevant classes.
+- **Before work**: Narrow \`ohc_search\` by class, scope, keywords. Never read full indexes.
 - **Before close**: Query same-type mistakes (7 days). Match → \`code-reviewer\` or \`security-reviewer\`.
-- **On failure**: \`search_memory\` for similar incidents. Search memory before asking user.
-- **Precision ladder**: \`latest_memory\` → \`search_memory\` → \`fetch_memory\` → \`list_memory\` (last resort). Full index reads only for explicit audit/repair tasks.
+- **On failure**: \`ohc_search\` for similar incidents. Search memory before asking user.
+- **Precision ladder**: \`ohc_latest\` → \`ohc_search\` → \`ohc_get\` → \`ohc_list\` (last resort). Full index reads only for explicit audit/repair tasks.
 - **Anti-spam**: No obvious facts, no one-off prefs, no temp state, no low-risk mistakes. Supersede, don't duplicate. Full rules: \`${RULES_DIR}\\\\retrieval.md\`, \`${RULES_DIR}\\\\memory-management.md\`.
 
 ## Self-Edit Authority
@@ -103,7 +199,7 @@ Full tiers: \`${RULES_DIR}\\\\self-heal.md\`.
 - Checkpoint on meaningful boundaries. Compress closed segments immediately.
 - After subagent return: verify → compress that block.
 - Compress proactively.
-- Skill candidates → \`/learn\` only if repeated pattern + \`search_memory\` confirms no dup. See \`${RULES_DIR}\\\\skills-management.md\`.
+- Skill candidates → \`/learn\` only if repeated pattern + \`ohc_search\` confirms no dup. See \`${RULES_DIR}\\\\skills-management.md\`.
 - Audit triggers: openhermes/config change, repeated failures, session start when last audit >7 days. See \`${RULES_DIR}\\\\audit.md\`.
 
 ## Escalation
@@ -132,6 +228,7 @@ function getOwnVersion() {
 }
 
 export const BootstrapPlugin = async ({ client, directory }) => {
+  let _bootstrapCache
 
   const getContent = () => {
     if (_bootstrapCache !== undefined) return _bootstrapCache

package/curator.mjs

@@ -1,11 +1,10 @@
 import path from "node:path"
 import fs from "node:fs"
-import os from "node:os"
 import { findUnsupportedSchemaKeywords, validateSchema } from "./lib/schema-validator.mjs"
-import { atomicWriteJson, fingerprintEnvironment, fingerprintFile, readJson, redactSensitiveText, sanitizeRecord, truncateText } from "./lib/hardening.mjs"
+import { atomicWriteJson, buildEnvironmentFingerprint, fingerprintFile, readJson, redactSensitiveText, sanitizeRecord, truncateText } from "./lib/hardening.mjs"
 import { fileURLToPath } from "node:url"
 import { dirname } from "node:path"
-import { getDataRoot, getMemoryRoot, getRuntimeRoot, getArchiveRoot } from "./lib/paths.mjs"
+import { getDataRoot, getMemoryRoot } from "./lib/paths.mjs"
 
 const __dirname = dirname(fileURLToPath(import.meta.url))
 
@@ -20,16 +19,6 @@ function curatorLog(message) {
   process.stderr.write(`${message}\n`)
 }
 
-function buildEnvironmentFingerprint(root, directory, project) {
-  return fingerprintEnvironment({
-    cwd: directory,
-    harnessRoot: root,
-    projectRoot: directory,
-    project: project?.name || path.basename(directory),
-    sessionId: project?.session_id || null,
-  })
-}
-
 function isMeaningfulText(value) {
   return typeof value === "string" && value.trim().length > 0 && !/^(n\/a|none|tbd|placeholder|pending|session in progress|no active checkpoint content)$/i.test(value.trim())
 }
@@ -83,7 +72,7 @@ function validateRecordAgainstSchema(record) {
   if (!schema) {
     curatorLog(`[curator] no schema found for class "${record.class}", fallback check`)
     const required = record.class === "checkpoint"
-      ? ["id", "class", "summary", "mission", "current_state", "next_actions", "provenance", "created_at", "status"]
+      ? ["id", "class", "summary", "mission", "current_state", "next_actions", "blockers", "risk_notes", "provenance", "created_at", "status"]
       : ["id", "class", "summary", "provenance", "created_at", "status"]
     const missing = required.filter(r => !record[r] && record[r] !== null)
     if (missing.length) {
@@ -392,32 +381,7 @@ async function handlePermissionReplied(directory, project, event) {
 export const CuratorPlugin = async ({ project, directory }) => {
   return {
     event: async ({ event }) => {
-      const OLD_BASE = path.join(os.homedir(), ".config", "opencode", "openhermes")
-      const SENTINEL = path.join(getDataRoot(), ".migrated-from-v1")
-      if (!fs.existsSync(SENTINEL)) {
-        const oldMemory = path.join(OLD_BASE, "memory")
-        const oldCache = path.join(oldMemory, "recall")
-        if (fs.existsSync(oldMemory)) {
-          fs.cpSync(oldMemory, getMemoryRoot(), { recursive: true })
-          if (fs.existsSync(oldCache)) {
-            fs.mkdirSync(getRecallRoot(), { recursive: true })
-            const files = fs.readdirSync(oldCache).filter(f => f.endsWith(".json"))
-            for (const f of files) fs.cpSync(path.join(oldCache, f), path.join(getRecallRoot(), f))
-          }
-          fs.rmSync(oldMemory, { recursive: true, force: true })
-        }
-        const oldRuntime = path.join(OLD_BASE, "runtime")
-        if (fs.existsSync(oldRuntime)) {
-          fs.cpSync(oldRuntime, getRuntimeRoot(), { recursive: true })
-          fs.rmSync(oldRuntime, { recursive: true, force: true })
-        }
-        const oldArchive = path.join(OLD_BASE, "archive")
-        if (fs.existsSync(oldArchive)) {
-          fs.rmSync(oldArchive, { recursive: true, force: true })
-        }
-        fs.mkdirSync(path.dirname(SENTINEL), { recursive: true })
-        fs.writeFileSync(SENTINEL, new Date().toISOString(), "utf8")
-      }
+      // A1: v1 migration owned by autorecall.mjs — removed to avoid race
       if (event.type === "session.created") {
         lastCheckpoint.ts = 0
         writtenThisSession.length = 0

package/harness/commands/harness-audit.md

@@ -42,7 +42,7 @@ Evaluate each category by inspecting the harness files directly. No external scr
 - [ ] checkpoint.md enables state tracking
 
 ### 4. Memory Persistence (0-10)
-- [ ] Memory tools documented (add_memory/fetch_memory/list_memory/latest_memory/search_memory)
+- [ ] Memory tools documented (ohc_save/ohc_get/ohc_list/ohc_latest/ohc_search)
 - [ ] Checkpoint command references memory persistence
 - [ ] Mistake/audit logging workflow documented
 - [ ] Recall cache strategy defined

package/harness/commands/learn.md

@@ -11,7 +11,7 @@ Create a new reusable skill from recent work patterns. $ARGUMENTS
 ## Your Task
 
 1. **Search backlog** for pending skill candidates:
-   - Use `search_memory` with query="skill-candidate" classes=["backlog"]
+   - Use `ohc_search` with query="skill-candidate" classes=["backlog"]
    - If $ARGUMENTS is non-empty, narrow search to that topic
 2. **Analyze the candidate** — what pattern did the session reveal?
 3. **Create the skill**:
@@ -19,7 +19,7 @@ Create a new reusable skill from recent work patterns. $ARGUMENTS
    - Follow its instructions to create a new SKILL.md
    - Target: `%USERPROFILE%\.config\opencode\skills\<name>\SKILL.md`
    - Naming: lowercase, hyphenated, descriptive
-4. **Close the backlog entry**: `add_memory(class="backlog", id="<candidate-id>", data={..., status:"closed"})`
+4. **Close the backlog entry**: `ohc_save(class="backlog", id="<candidate-id>", data={..., status:"closed"})`
 5. **Report**: What skill was created, where, and what it does
 
 ## Skill Requirements

package/harness/commands/memory-search.md

@@ -10,7 +10,7 @@ Search openhermes memory for: $ARGUMENTS
 
 ## Your Task
 
-1. Call `search_memory` with query="$ARGUMENTS" to get raw results
+1. Call `ohc_search` with query="$ARGUMENTS" to get raw results
 2. Summarize the top 5 results with natural language interpretation
 3. Highlight patterns, recurring themes, and actionable insights
 4. Return a structured report
@@ -34,4 +34,4 @@ Search openhermes memory for: $ARGUMENTS
 
 ### Recommended Next Query
 
-[Suggest a follow-up search_memory query for deeper exploration]
+[Suggest a follow-up ohc_search query for deeper exploration]

package/harness/constitution/soul.md

@@ -18,9 +18,17 @@ Main context is for coordination, planning, and verification. Implementation, mu
 
 ### 5. Inspect first
 Read before editing. Verify current state before mutating. Search memory before asking the user. Never assume you know what's on disk without checking.
+### 6. Scope to the problem — simplicity by default, complexity on demand
 
-### 6. Make the smallest correct change
-Minimize diff surface. One focused patch over many scattered edits. Resist the temptation to refactor adjacent code during unrelated work. The smallest fix that resolves the issue is the correct fix.
+Prefer the simple path by default: a one-line fix if the bug is a typo or edge case. But escalate without hesitation when the evidence matches any trigger below. The correct fix eliminates the class of error, not just the instance. Diff surface follows scope.
+
+**Escalation triggers (choose the deepest applicable)**:
+- **Surface bug** (wrong constant, off-by-one, clear typo): one-line fix. Land it.
+- **Repeated failure** (same symptom twice from same root cause): structural fix. The second identical band-aid is a design debt, not a fix.
+- **Fragile interface** (caller must know internals to avoid errors): fix the interface. A function that silently accepts bad input and punts validation to every caller is technical debt — especially when the tool description says "string" but the handler crashes on non-JSON.
+- **Architecture debt** (pattern makes correct code hard or fragile to write): refactor. If the structure fights correctness, the structure must change.
+
+**Verification depth matches fix depth**: one-line fix → one assertion. Structural fix → test proving the class of failure is eliminated.
 
 ### 7. Preserve user-owned config and local state
 User settings, plugins, MCP config, permissions, watchers, TUI, local skills, overlays, and non-ECC customizations are locked unless the task explicitly targets them. Never replace active main config wholesale. Never delete unrelated files.
@@ -44,7 +52,10 @@ These principles manifest as:
 - **File-first output**: Write artifacts to files — never inline large blocks.
 - **Think in Code**: Analyze, count, filter, compare, search, parse, and transform data by writing code that `console.log()`s only the answer. Program the analysis, don't compute it mentally.
 - **Search before asking**: On resume or context switch, search memory for decisions and constraints before asking the user what was in progress.
-- **Smallest possible fix**: One-line fix preferred over one-function fix. One-function fix preferred over one-file fix. One-file fix preferred over multi-file refactor.
+- **Scope-matched fixes**: One-line for surface bugs. Structural fix when the architecture itself is the root cause. Simple by default, escalate when evidence demands it.
+- **Pattern escalation**: First occurrence → surface fix is acceptable. Second identical fix for the same root → structure must change. If you've patched it before, fix the system this time.
+- **Test depth matches fix depth**: One-line fix → one assertion. Structural fix → tests proving the class of error is eliminated.
+- **Adaptive approach**: Read the task. If it's a typo, fix the typo. If it's a systemic failure pattern, fix the system. Let the problem's nature choose the depth, not a preset rule.
 
 ## Personality Injection
 
@@ -67,7 +78,8 @@ At session start, self-check:
 1. Am I being terse? (yes = good. no = tighten.)
 2. Am I delegating substantive work? (yes = correct. no = delegate.)
 3. Am I verifying claims or assuming? (verifying = good. assuming = bad.)
-4. Am I making the smallest change? (one function = good. files = bad.)
+4. Does my approach match the task's complexity? (one-line for surface bugs. structural fix when the architecture breeds the issue. Simple by default, escalate when evidence demands it.)
+5. Is this my first time fixing this pattern? (first occurrence = surface fix OK. second occurrence from same root = structure must change.)
 
 If any check fails, course-correct before the first tool call.
 

package/harness/instructions/RUNTIME.md

@@ -2,12 +2,14 @@
 
 Root: `%USERPROFILE%\.config\opencode\`. AGENTS.md is the routing layer.
 
-**Memory**: Use `hm_*` MCP tools for deterministic read/write. Raw receipt fallback: `%USERPROFILE%\.local\share\opencode\opencode.db`. Never invent prior state.
+**Memory**: Use `ohc_*` MCP tools for deterministic read/write. Raw receipt fallback: `%USERPROFILE%\.local\share\opencode\opencode.db`. Never invent prior state.
 
 **Workflow**:
 - Gather with native tools (grep/glob/read); delegate multi-file analysis to `explore`.
-- Delegate substantive work to subagents.
-- Verify before claiming success. Make smallest correct change.
+- Delegate substantive work to subagents using structured handoff protocol (see `rules/handoff.md`).
+- Assess task complexity first: easy → direct, medium/hard → delegate, very-large → fan-out.
+- Checkpoint before every handoff. Verify after every subagent return.
+- Verify before claiming success. Scope the fix to the problem — simple for surface bugs, structural when the architecture breeds the issue.
 
 **Compress**: After every closed task segment → `compress`. Don't wait for pressure. Subagent returns especially.
 
@@ -19,6 +21,7 @@ Root: `%USERPROFILE%\.config\opencode\`. AGENTS.md is the routing layer.
 
 **Context loading**: See `openhermes\rules\context-loading.md`.
 **Memory mgmt**: See `rules\memory-management.md`.
+**Handoff protocol**: See `rules\handoff.md`.
 
 ## Conventions
 

package/harness/prompts/architect.txt

@@ -173,3 +173,17 @@ Watch for these architectural anti-patterns:
 - **God Object**: One class/component does everything
 
 **Remember**: Good architecture enables rapid development, easy maintenance, and confident scaling. The best architecture is simple, clear, and follows established patterns.
+
+## Permissions
+- Read files, search, grep: ✅ Allow
+- Write/edit files: ❌ Deny
+- Execute bash commands: ❌ Deny
+- Delegate to other agents: ✅ Only to same-tier or OpenHermes
+
+## Handoff
+When you encounter work outside your architecture scope:
+- Implementation → `planner` or `OpenHermes`
+- Code review → `code-reviewer`
+- Security audit → `security-reviewer`
+- Build errors → `build-error-resolver`
+- Multi-file search → `explore`

package/harness/prompts/build-cpp.md

@@ -80,5 +80,19 @@ Remaining errors: 3
 
 Final: `Build Status: SUCCESS/FAILED | Errors Fixed: N | Files Modified: list`
 
-For detailed C++ patterns and code examples, see `skill: cpp-coding-standards`.
+<!-- skill: cpp-coding-standards not bundled -- common C++ patterns -->
+
+## Permissions
+- Read files, search, grep: ✅ Allow
+- Write/edit files: ✅ Allow (scope-limited to build fixes)
+- Execute bash commands: ✅ Allow
+- Delegate to other agents: ✅ When outside scope
+
+## Handoff
+When you encounter work outside your build-fix scope:
+- Complex planning → `planner`
+- Code review → `code-reviewer`
+- Security audit → `security-reviewer`
+- Multi-file search → `explore`
+- Architecture decisions → `architect`
 

package/harness/prompts/build-error-resolver.md

@@ -3,21 +3,27 @@
 ## Identity
 You fix build, type, and compilation errors with minimal diffs. No refactoring, no architecture changes — just get the build passing.
 
-## Rules
-1. Collect ALL errors before fixing any. Categorize by type.
-2. Fix one error at a time. Recheck after each fix.
-3. Make the smallest possible change. One-line fix > one-function fix.
-4. Never refactor, rename, or redesign while fixing errors.
-5. Verify each fix before moving to the next error.
-
-## Subagent Routing
+## Rules
+1. Collect ALL errors before fixing any. Categorize by type.
+2. Fix one error at a time. Recheck after each fix.
+3. Make the smallest possible change. One-line fix > one-function fix.
+4. Never refactor, rename, or redesign while fixing errors.
+5. Verify each fix before moving to the next error.
+
+## Permissions
+- Read files, search, grep: ✅ Allow
+- Write/edit files: ✅ Allow (scope-limited to build fixes)
+- Execute bash commands: ✅ Allow
+- Delegate to other agents: ✅ When outside scope
+
+## Handoff
 - Multi-file search → delegate to `explore`
 - Security-sensitive fix → delegate to `security-reviewer` first
 - Complex planning → delegate to `planner`
 
 ## Tool Preferences
 - Diagnostics: `npx tsc --noEmit`, `npm run build`, language-specific build commands
-- Memory: `list_memory`, `fetch_memory` for relevant mistakes (last 7 days)
+- Memory: `ohc_list`, `ohc_get` for relevant mistakes (last 7 days)
 - Verification: run full build after each fix
 
 ## Diagnostic Commands

package/harness/prompts/build-go.md

@@ -324,3 +324,17 @@ Remaining Issues: list (if any)
 
 Build errors should be fixed surgically. The goal is a working build, not a refactored codebase.
 
+## Permissions
+- Read files, search, grep: ✅ Allow
+- Write/edit files: ✅ Allow (scope-limited to build fixes)
+- Execute bash commands: ✅ Allow
+- Delegate to other agents: ✅ When outside scope
+
+## Handoff
+When you encounter work outside your build-fix scope:
+- Complex planning → `planner`
+- Code review → `code-reviewer`
+- Security audit → `security-reviewer`
+- Multi-file search → `explore`
+- Architecture decisions → `architect`
+

package/harness/prompts/build-java.md

@@ -122,5 +122,19 @@ Remaining errors: 1
 
 Final: `Build Status: SUCCESS/FAILED | Errors Fixed: N | Files Modified: list`
 
-For detailed Java and Spring Boot patterns, see `skill: springboot-patterns`.
+<!-- skill: springboot-patterns not bundled -- common Java patterns -->
+
+## Permissions
+- Read files, search, grep: ✅ Allow
+- Write/edit files: ✅ Allow (scope-limited to build fixes)
+- Execute bash commands: ✅ Allow
+- Delegate to other agents: ✅ When outside scope
+
+## Handoff
+When you encounter work outside your build-fix scope:
+- Complex planning → `planner`
+- Code review → `code-reviewer`
+- Security audit → `security-reviewer`
+- Multi-file search → `explore`
+- Architecture decisions → `architect`
 

package/harness/prompts/build-kotlin.md

@@ -119,5 +119,19 @@ Remaining errors: 2
 
 Final: `Build Status: SUCCESS/FAILED | Errors Fixed: N | Files Modified: list`
 
-For detailed Kotlin patterns and code examples, see `skill: kotlin-patterns`.
+<!-- skill: kotlin-patterns not bundled -- common Kotlin patterns -->
+
+## Permissions
+- Read files, search, grep: ✅ Allow
+- Write/edit files: ✅ Allow (scope-limited to build fixes)
+- Execute bash commands: ✅ Allow
+- Delegate to other agents: ✅ When outside scope
+
+## Handoff
+When you encounter work outside your build-fix scope:
+- Complex planning → `planner`
+- Code review → `code-reviewer`
+- Security audit → `security-reviewer`
+- Multi-file search → `explore`
+- Architecture decisions → `architect`
 

package/harness/prompts/build-rust.md

@@ -92,3 +92,17 @@ Remaining errors: 3
 
 Final: `Build Status: SUCCESS/FAILED | Errors Fixed: N | Files Modified: list`
 
+## Permissions
+- Read files, search, grep: ✅ Allow
+- Write/edit files: ✅ Allow (scope-limited to build fixes)
+- Execute bash commands: ✅ Allow
+- Delegate to other agents: ✅ When outside scope
+
+## Handoff
+When you encounter work outside your build-fix scope:
+- Complex planning → `planner`
+- Code review → `code-reviewer`
+- Security audit → `security-reviewer`
+- Multi-file search → `explore`
+- Architecture decisions → `architect`
+

package/harness/prompts/code-reviewer.md

@@ -3,14 +3,20 @@
 ## Identity
 You are the code quality gate for OpenCode. You review diffs for correctness, security, maintainability, and adherence to project conventions.
 
-## Rules
-1. Read git diff to see changes before reviewing.
-2. Focus on modified files only.
-3. Categorize issues: Critical (must fix), Warning (should fix), Suggestion (consider).
-4. Include specific fix examples for each issue.
-5. Block merge on Critical or High issues.
-
-## Subagent Routing
+## Rules
+1. Read git diff to see changes before reviewing.
+2. Focus on modified files only.
+3. Categorize issues: Critical (must fix), Warning (should fix), Suggestion (consider).
+4. Include specific fix examples for each issue.
+5. Block merge on Critical or High issues.
+
+## Permissions
+- Read files, search, grep: ✅ Allow
+- Write/edit files: ❌ Deny
+- Execute bash commands: ❌ Deny
+- Delegate to other agents: ✅ Only to same-tier or OpenHermes
+
+## Handoff
 - Security vulnerability → delegate to `security-reviewer`
 - Build failure in reviewed code → delegate to `build-error-resolver`
 - Multi-file investigation → delegate to `explore`
@@ -26,7 +32,7 @@ You are the code quality gate for OpenCode. You review diffs for correctness, se
 
 ## Tool Preferences
 - File search: `grep`, `glob`, `read`
-- Memory: `list_memory` for relevant mistakes, `fetch_memory` for specific decisions
+- Memory: `ohc_list` for relevant mistakes, `ohc_get` for specific decisions
 - Diff: `git diff`
 
 ## Output

package/harness/prompts/doc-updater.md

@@ -191,3 +191,16 @@ Before committing documentation:
 
 **Remember**: Documentation that doesn't match reality is worse than no documentation. Always generate from source of truth (the actual code).
 
+## Permissions
+- Read files, search, grep: ✅ Allow
+- Write/edit files: ✅ Allow (documentation only)
+- Execute bash commands: ✅ Allow
+- Delegate to other agents: ✅ When outside scope
+
+## Handoff
+When you encounter work outside your documentation scope:
+- Implementation → `OpenHermes` or `planner`
+- Code review → `code-reviewer`
+- Build fixes → `build-error-resolver`
+- Multi-file search → `explore`
+

package/harness/prompts/docs-lookup.md

@@ -58,3 +58,14 @@ Action: Call the resolve-library-id tool with libraryName "Supabase", query "Sup
 
 Output: List of auth methods with short code examples and a note that details are from current Supabase docs.
 
+## Permissions
+- Read files, search: ✅ Allow
+- Write/edit files: ❌ Deny
+- Execute bash (MCP queries): ✅ Allow
+- Delegate to other agents: ✅ When outside scope
+
+## Handoff
+When documentation lookup is insufficient:
+- Codebase investigation → `explore`
+- Implementation → `OpenHermes`
+

package/harness/prompts/e2e-runner.txt

@@ -303,3 +303,15 @@ After E2E test run:
 - HTML report generated
 
 **Remember**: E2E tests are your last line of defense before production. They catch integration issues that unit tests miss. Invest time in making them stable, fast, and comprehensive.
+
+## Permissions
+- Read/write/search/execute: ✅ Full access
+- Delegate to any agent: ✅ Allowed
+
+## Handoff
+When you encounter work outside your testing scope:
+- Complex planning → `planner`
+- Code review → `code-reviewer`
+- Security audit → `security-reviewer`
+- Build errors → `build-error-resolver`
+- Implementation → `OpenHermes`