pentesting 0.47.3 → 0.48.0

package/dist/main.js

@@ -331,7 +331,7 @@ var ORPHAN_PROCESS_NAMES = [
 
 // src/shared/constants/agent.ts
 var APP_NAME = "Pentest AI";
-var APP_VERSION = "0.47.3";
+var APP_VERSION = "0.48.0";
 var APP_DESCRIPTION = "Autonomous Penetration Testing AI Agent";
 var LLM_ROLES = {
   SYSTEM: "system",
@@ -698,6 +698,12 @@ var ATTACK_TACTICS = {
   C2: "command_and_control",
   IMPACT: "impact"
 };
+var ATTACK_VALUE_RANK = {
+  HIGH: 3,
+  MED: 2,
+  LOW: 1,
+  NONE: 0
+};
 var APPROVAL_STATUSES = {
   AUTO: "auto",
   USER_CONFIRMED: "user_confirmed",
@@ -816,10 +822,6 @@ var SECONDS_PER_HOUR = 3600;
 
 // src/shared/constants/paths.ts
 import path from "path";
-import { fileURLToPath } from "url";
-var __filename = fileURLToPath(import.meta.url);
-var __dirname = path.dirname(__filename);
-var PROJECT_ROOT = path.resolve(__dirname, "../../../");
 var PENTESTING_ROOT = ".pentesting";
 var WORK_DIR = `${PENTESTING_ROOT}/tmp`;
 var MEMORY_DIR = `${PENTESTING_ROOT}/memory`;
@@ -828,6 +830,8 @@ var SESSIONS_DIR = `${PENTESTING_ROOT}/sessions`;
 var LOOT_DIR = `${PENTESTING_ROOT}/loot`;
 var OUTPUTS_DIR = `${PENTESTING_ROOT}/outputs`;
 var DEBUG_DIR = `${PENTESTING_ROOT}/debug`;
+var JOURNAL_DIR = `${PENTESTING_ROOT}/journal`;
+var TURNS_DIR = `${PENTESTING_ROOT}/memory/turns`;
 var WORKSPACE = {
   /** Root directory */
   get ROOT() {
@@ -860,6 +864,14 @@ var WORKSPACE = {
   /** Debug logs */
   get DEBUG() {
     return path.resolve(DEBUG_DIR);
+  },
+  /** Persistent per-turn journal (§13 memo system) */
+  get JOURNAL() {
+    return path.resolve(JOURNAL_DIR);
+  },
+  /** Turn record files */
+  get TURNS() {
+    return path.resolve(TURNS_DIR);
   }
 };
 
@@ -2687,13 +2699,13 @@ var AttackGraph = class {
    * Record a credential discovery and create spray edges.
    */
   addCredential(username, password, source) {
-    const credId = this.addNode("credential", `${username}:***`, {
+    const credId = this.addNode(NODE_TYPE.CREDENTIAL, `${username}:***`, {
       username,
       password,
       source
     });
     for (const [id, node] of this.nodes) {
-      if (node.type === "service") {
+      if (node.type === NODE_TYPE.SERVICE) {
         const svc = String(node.data.service || "");
         if (["ssh", "ftp", "rdp", "smb", "http", "mysql", "postgresql", "mssql", "winrm", "vnc", "telnet"].some((s) => svc.includes(s))) {
           this.addEdge(credId, id, "can_try_on", 0.6);
@@ -2706,7 +2718,7 @@ var AttackGraph = class {
    * Record a vulnerability finding.
    */
   addVulnerability(title, target, severity, hasExploit = false) {
-    const vulnId = this.addNode("vulnerability", title, {
+    const vulnId = this.addNode(NODE_TYPE.VULNERABILITY, title, {
       target,
       severity,
       hasExploit
@@ -2717,7 +2729,7 @@ var AttackGraph = class {
       }
     }
     if (hasExploit) {
-      const accessId = this.addNode("access", `shell via ${title}`, {
+      const accessId = this.addNode(NODE_TYPE.ACCESS, `shell via ${title}`, {
         via: title,
         status: GRAPH_STATUS.POTENTIAL
       });
@@ -2729,14 +2741,14 @@ var AttackGraph = class {
    * Record gained access.
    */
   addAccess(host, level, via) {
-    const accessId = this.addNode("access", `${level}@${host}`, {
+    const accessId = this.addNode(NODE_TYPE.ACCESS, `${level}@${host}`, {
       host,
       level,
       via
     });
     this.markSucceeded(accessId);
     if (["root", "admin", "SYSTEM", "Administrator"].includes(level)) {
-      const lootId = this.addNode("loot", `flags on ${host}`, {
+      const lootId = this.addNode(NODE_TYPE.LOOT, `flags on ${host}`, {
         host,
         status: GRAPH_STATUS.NEEDS_SEARCH
       });
@@ -2748,7 +2760,7 @@ var AttackGraph = class {
    * Record OSINT discovery (Docker image, GitHub repo, company info, etc.)
    */
   addOSINT(category, detail, data = {}) {
-    const osintId = this.addNode("osint", `${category}: ${detail}`, {
+    const osintId = this.addNode(NODE_TYPE.OSINT, `${category}: ${detail}`, {
       category,
       detail,
       ...data
@@ -3981,20 +3993,6 @@ var ScopeGuard = class {
 };
 
 // src/engine/approval.ts
-var CATEGORY_APPROVAL = {
-  [SERVICE_CATEGORIES.NETWORK]: APPROVAL_LEVELS.CONFIRM,
-  [SERVICE_CATEGORIES.WEB]: APPROVAL_LEVELS.CONFIRM,
-  [SERVICE_CATEGORIES.DATABASE]: APPROVAL_LEVELS.REVIEW,
-  [SERVICE_CATEGORIES.AD]: APPROVAL_LEVELS.REVIEW,
-  [SERVICE_CATEGORIES.EMAIL]: APPROVAL_LEVELS.CONFIRM,
-  [SERVICE_CATEGORIES.REMOTE_ACCESS]: APPROVAL_LEVELS.REVIEW,
-  [SERVICE_CATEGORIES.FILE_SHARING]: APPROVAL_LEVELS.CONFIRM,
-  [SERVICE_CATEGORIES.CLOUD]: APPROVAL_LEVELS.REVIEW,
-  [SERVICE_CATEGORIES.CONTAINER]: APPROVAL_LEVELS.REVIEW,
-  [SERVICE_CATEGORIES.API]: APPROVAL_LEVELS.CONFIRM,
-  [SERVICE_CATEGORIES.WIRELESS]: APPROVAL_LEVELS.REVIEW,
-  [SERVICE_CATEGORIES.ICS]: APPROVAL_LEVELS.BLOCK
-};
 var ApprovalGate = class {
   constructor(shouldAutoApprove = false) {
     this.shouldAutoApprove = shouldAutoApprove;
@@ -4298,7 +4296,7 @@ function autoExtractStructured(toolName, output) {
     data.vulnerabilities = vulns;
     hasData = true;
   }
-  if (toolName === "parse_nmap" || /nmap scan report/i.test(output)) {
+  if (toolName === TOOL_NAMES.PARSE_NMAP || /nmap scan report/i.test(output)) {
     const nmap = extractNmapStructured(output);
     if (nmap.structured.openPorts && nmap.structured.openPorts.length > 0) {
       data.openPorts = nmap.structured.openPorts;
@@ -4703,7 +4701,8 @@ Used ports: ${usedPorts.join(", ")}
 [!] STRATEGY ADAPTATION REQUIRED:
 1. Try the next available port (e.g., ${nextPort} or 4445, 9001)
 2. If this is for a listener, update your Mission/Checklist with the NEW port so other agents know.
-3. Check bg_process({ action: "list" }) to see if you can stop the conflicting process.`
+3. Check bg_process({ action: "list" }) to see if you can stop the conflicting process.`,
+              error: `Port ${requestedPort} already in use`
             };
           }
         }
@@ -4850,7 +4849,7 @@ ${output.stderr.slice(-SYSTEM_LIMITS.MAX_STDERR_SLICE) || "(empty)"}` + connecti
           if (!cmd) return { success: false, output: "", error: "Missing command for interact. Provide the command to execute on the target." };
           const waitMs = Math.min(params.wait_ms || SYSTEM_LIMITS.DEFAULT_WAIT_MS_INTERACT, SYSTEM_LIMITS.MAX_WAIT_MS_INTERACT);
           const result2 = await sendToProcess(processId, cmd, waitMs);
-          if (!result2.success) return { success: false, output: result2.output };
+          if (!result2.success) return { success: false, output: result2.output, error: result2.output };
           return {
             success: true,
             output: `Command sent: ${cmd}
@@ -4866,7 +4865,7 @@ ${result2.output}`
           if (!processId) return { success: false, output: "", error: "Missing process_id for promote" };
           const desc = params.description;
           const success = promoteToShell(processId, desc);
-          if (!success) return { success: false, output: `Process ${processId} not found` };
+          if (!success) return { success: false, output: `Process ${processId} not found`, error: `Process ${processId} not found` };
           return {
             success: true,
             output: `[OK] Process ${processId} promoted to ACTIVE SHELL.
@@ -5016,7 +5015,8 @@ Examples:
       if (!validPhases.includes(newPhase)) {
         return {
           success: false,
-          output: `Invalid phase. Valid phases: ${validPhases.join(", ")}`
+          output: `Invalid phase. Valid phases: ${validPhases.join(", ")}`,
+          error: `Invalid phase: ${newPhase}`
         };
       }
       state.setPhase(newPhase);
@@ -5732,50 +5732,60 @@ var DEFAULT_BROWSER_OPTIONS = {
 
 // src/engine/tools/web-browser.ts
 async function browseUrl(url, options = {}) {
-  const browserOptions = { ...DEFAULT_BROWSER_OPTIONS, ...options };
-  const { installed, browserInstalled } = await checkPlaywright();
-  if (!installed || !browserInstalled) {
-    const installResult = await installPlaywright();
-    if (!installResult.success) {
+  try {
+    const browserOptions = { ...DEFAULT_BROWSER_OPTIONS, ...options };
+    const { installed, browserInstalled } = await checkPlaywright();
+    if (!installed || !browserInstalled) {
+      const installResult = await installPlaywright();
+      if (!installResult.success) {
+        return {
+          success: false,
+          output: "",
+          error: `Playwright not available and auto-install failed: ${installResult.output}`
+        };
+      }
+    }
+    const screenshotPath = browserOptions.screenshot ? join6(join6(tmpdir3(), BROWSER_PATHS.TEMP_DIR_NAME), `screenshot-${Date.now()}.png`) : void 0;
+    const script = buildBrowseScript(url, browserOptions, screenshotPath);
+    const result2 = await runPlaywrightScript(script, browserOptions.timeout, "browse");
+    if (!result2.success) {
       return {
         success: false,
-        output: "",
-        error: `Playwright not available and auto-install failed: ${installResult.output}`
+        output: result2.output,
+        error: result2.error
+      };
+    }
+    if (result2.parsedData) {
+      return {
+        success: true,
+        output: formatBrowserOutput(result2.parsedData, browserOptions),
+        screenshots: screenshotPath ? [screenshotPath] : void 0,
+        extractedData: result2.parsedData
       };
     }
-  }
-  const screenshotPath = browserOptions.screenshot ? join6(join6(tmpdir3(), BROWSER_PATHS.TEMP_DIR_NAME), `screenshot-${Date.now()}.png`) : void 0;
-  const script = buildBrowseScript(url, browserOptions, screenshotPath);
-  const result2 = await runPlaywrightScript(script, browserOptions.timeout, "browse");
-  if (!result2.success) {
     return {
-      success: false,
-      output: result2.output,
-      error: result2.error
+      success: true,
+      output: result2.output || "Navigation completed",
+      screenshots: screenshotPath ? [screenshotPath] : void 0
     };
-  }
-  if (result2.parsedData) {
+  } catch (error) {
+    const msg = error instanceof Error ? error.message : String(error);
     return {
-      success: true,
-      output: formatBrowserOutput(result2.parsedData, browserOptions),
-      screenshots: screenshotPath ? [screenshotPath] : void 0,
-      extractedData: result2.parsedData
+      success: false,
+      output: "",
+      error: `Browser error: ${msg}`
     };
   }
-  return {
-    success: true,
-    output: result2.output || "Navigation completed",
-    screenshots: screenshotPath ? [screenshotPath] : void 0
-  };
 }
 async function fillAndSubmitForm(url, formData, options = {}) {
-  const browserOptions = { ...DEFAULT_BROWSER_OPTIONS, ...options };
-  const safeUrl = safeJsString(url);
-  const safeFormData = JSON.stringify(formData);
-  const playwrightPath = getPlaywrightPath();
-  const safePlaywrightPath = safeJsString(playwrightPath);
-  const headlessMode = process.env.HEADLESS !== "false";
-  const script = `
+  try {
+    const browserOptions = { ...DEFAULT_BROWSER_OPTIONS, ...options };
+    const safeUrl = safeJsString(url);
+    const safeFormData = JSON.stringify(formData);
+    const playwrightPath = getPlaywrightPath();
+    const safePlaywrightPath = safeJsString(playwrightPath);
+    const headlessMode = process.env.HEADLESS !== "false";
+    const script = `
 const { chromium } = require(${safePlaywrightPath});
 
 (async () => {
@@ -5815,27 +5825,35 @@ const { chromium } = require(${safePlaywrightPath});
     }
 })();
 `;
-  const result2 = await runPlaywrightScript(script, browserOptions.timeout, "form");
-  if (!result2.success) {
+    const result2 = await runPlaywrightScript(script, browserOptions.timeout, "form");
+    if (!result2.success) {
+      return {
+        success: false,
+        output: result2.output,
+        error: result2.error
+      };
+    }
+    if (result2.parsedData) {
+      const data = result2.parsedData;
+      return {
+        success: true,
+        output: `Form submitted. Current URL: ${data.url}
+Title: ${data.title}`,
+        extractedData: result2.parsedData
+      };
+    }
     return {
-      success: false,
-      output: result2.output,
-      error: result2.error
+      success: true,
+      output: result2.output || "Form submitted"
     };
-  }
-  if (result2.parsedData) {
-    const data = result2.parsedData;
+  } catch (error) {
+    const msg = error instanceof Error ? error.message : String(error);
     return {
-      success: true,
-      output: `Form submitted. Current URL: ${data.url}
-Title: ${data.title}`,
-      extractedData: result2.parsedData
+      success: false,
+      output: "",
+      error: `Form submission error: ${msg}`
     };
   }
-  return {
-    success: true,
-    output: result2.output || "Form submitted"
-  };
 }
 async function webSearchWithBrowser(query, engine = "google") {
   const searchUrls = {
@@ -5852,6 +5870,10 @@ async function webSearchWithBrowser(query, engine = "google") {
 }
 
 // src/engine/web-search-providers.ts
+var SEARCH_TIMEOUT_MS = 15e3;
+function getErrorMessage(error) {
+  return error instanceof Error ? error.message : String(error);
+}
 async function searchWithGLM(query, apiKey, apiUrl) {
   debugLog("search", "GLM request START", { apiUrl, query });
   const requestBody = {
@@ -5860,21 +5882,39 @@ async function searchWithGLM(query, apiKey, apiUrl) {
     stream: false
   };
   debugLog("search", "GLM request body", requestBody);
-  const response = await fetch(apiUrl, {
-    method: "POST",
-    headers: {
-      [SEARCH_HEADER.CONTENT_TYPE]: "application/json",
-      [SEARCH_HEADER.AUTHORIZATION]: `Bearer ${apiKey}`
-    },
-    body: JSON.stringify(requestBody)
-  });
+  let response;
+  try {
+    response = await fetch(apiUrl, {
+      method: "POST",
+      headers: {
+        [SEARCH_HEADER.CONTENT_TYPE]: "application/json",
+        [SEARCH_HEADER.AUTHORIZATION]: `Bearer ${apiKey}`
+      },
+      body: JSON.stringify(requestBody),
+      signal: AbortSignal.timeout(SEARCH_TIMEOUT_MS)
+    });
+  } catch (err) {
+    const msg = getErrorMessage(err);
+    debugLog("search", "GLM fetch FAILED (network)", { error: msg });
+    return { success: false, output: "", error: `GLM search network error: ${msg}. Check internet connection or API endpoint.` };
+  }
   debugLog("search", "GLM response status", { status: response.status, ok: response.ok });
   if (!response.ok) {
-    const errorText = await response.text();
+    let errorText = "";
+    try {
+      errorText = await response.text();
+    } catch {
+    }
     debugLog("search", "GLM response ERROR", { status: response.status, error: errorText });
-    throw new Error(`GLM Search API error: ${response.status} - ${errorText}`);
+    return { success: false, output: "", error: `GLM Search API error ${response.status}: ${errorText.slice(0, 500)}` };
+  }
+  let data;
+  try {
+    data = await response.json();
+  } catch (err) {
+    debugLog("search", "GLM JSON parse FAILED", { error: getErrorMessage(err) });
+    return { success: false, output: "", error: `GLM search returned invalid JSON: ${getErrorMessage(err)}` };
   }
-  const data = await response.json();
   debugLog("search", "GLM response data", { hasChoices: !!data.choices, choicesCount: data.choices?.length });
   let results = "";
   if (data.choices?.[0]?.message?.content) {
@@ -5902,19 +5942,37 @@ async function searchWithBrave(query, apiKey, apiUrl) {
   debugLog("search", "Brave request START", { apiUrl, query });
   const url = `${apiUrl}?q=${encodeURIComponent(query)}&count=${SEARCH_LIMIT.DEFAULT_RESULT_COUNT}`;
   debugLog("search", "Brave request URL", { url });
-  const response = await fetch(url, {
-    headers: {
-      [SEARCH_HEADER.ACCEPT]: "application/json",
-      [SEARCH_HEADER.X_SUBSCRIPTION_TOKEN]: apiKey
-    }
-  });
+  let response;
+  try {
+    response = await fetch(url, {
+      headers: {
+        [SEARCH_HEADER.ACCEPT]: "application/json",
+        [SEARCH_HEADER.X_SUBSCRIPTION_TOKEN]: apiKey
+      },
+      signal: AbortSignal.timeout(SEARCH_TIMEOUT_MS)
+    });
+  } catch (err) {
+    const msg = getErrorMessage(err);
+    debugLog("search", "Brave fetch FAILED (network)", { error: msg });
+    return { success: false, output: "", error: `Brave search network error: ${msg}. Check internet connection.` };
+  }
   debugLog("search", "Brave response status", { status: response.status, ok: response.ok });
   if (!response.ok) {
-    const errorText = await response.text();
+    let errorText = "";
+    try {
+      errorText = await response.text();
+    } catch {
+    }
     debugLog("search", "Brave response ERROR", { status: response.status, error: errorText });
-    throw new Error(`Brave API error: ${response.status}`);
+    return { success: false, output: "", error: `Brave API error ${response.status}: ${errorText.slice(0, 500)}` };
+  }
+  let data;
+  try {
+    data = await response.json();
+  } catch (err) {
+    debugLog("search", "Brave JSON parse FAILED", { error: getErrorMessage(err) });
+    return { success: false, output: "", error: `Brave search returned invalid JSON: ${getErrorMessage(err)}` };
   }
-  const data = await response.json();
   const results = data.web?.results || [];
   debugLog("search", "Brave results count", { count: results.length });
   if (results.length === 0) {
@@ -5930,21 +5988,39 @@ async function searchWithBrave(query, apiKey, apiUrl) {
 }
 async function searchWithSerper(query, apiKey, apiUrl) {
   debugLog("search", "Serper request START", { apiUrl, query });
-  const response = await fetch(apiUrl, {
-    method: "POST",
-    headers: {
-      [SEARCH_HEADER.CONTENT_TYPE]: "application/json",
-      [SEARCH_HEADER.X_API_KEY]: apiKey
-    },
-    body: JSON.stringify({ q: query })
-  });
+  let response;
+  try {
+    response = await fetch(apiUrl, {
+      method: "POST",
+      headers: {
+        [SEARCH_HEADER.CONTENT_TYPE]: "application/json",
+        [SEARCH_HEADER.X_API_KEY]: apiKey
+      },
+      body: JSON.stringify({ q: query }),
+      signal: AbortSignal.timeout(SEARCH_TIMEOUT_MS)
+    });
+  } catch (err) {
+    const msg = getErrorMessage(err);
+    debugLog("search", "Serper fetch FAILED (network)", { error: msg });
+    return { success: false, output: "", error: `Serper search network error: ${msg}. Check internet connection.` };
+  }
   debugLog("search", "Serper response status", { status: response.status, ok: response.ok });
   if (!response.ok) {
-    const errorText = await response.text();
+    let errorText = "";
+    try {
+      errorText = await response.text();
+    } catch {
+    }
     debugLog("search", "Serper response ERROR", { status: response.status, error: errorText });
-    throw new Error(`Serper API error: ${response.status}`);
+    return { success: false, output: "", error: `Serper API error ${response.status}: ${errorText.slice(0, 500)}` };
+  }
+  let data;
+  try {
+    data = await response.json();
+  } catch (err) {
+    debugLog("search", "Serper JSON parse FAILED", { error: getErrorMessage(err) });
+    return { success: false, output: "", error: `Serper search returned invalid JSON: ${getErrorMessage(err)}` };
   }
-  const data = await response.json();
   const results = data.organic || [];
   debugLog("search", "Serper results count", { count: results.length });
   if (results.length === 0) {
@@ -5959,20 +6035,36 @@ async function searchWithSerper(query, apiKey, apiUrl) {
   return { success: true, output: formatted };
 }
 async function searchWithGenericApi(query, apiKey, apiUrl) {
-  const response = await fetch(apiUrl, {
-    method: "POST",
-    headers: {
-      [SEARCH_HEADER.CONTENT_TYPE]: "application/json",
-      [SEARCH_HEADER.AUTHORIZATION]: `Bearer ${apiKey}`,
-      [SEARCH_HEADER.X_API_KEY]: apiKey
-    },
-    body: JSON.stringify({ query, q: query })
-  });
+  let response;
+  try {
+    response = await fetch(apiUrl, {
+      method: "POST",
+      headers: {
+        [SEARCH_HEADER.CONTENT_TYPE]: "application/json",
+        [SEARCH_HEADER.AUTHORIZATION]: `Bearer ${apiKey}`,
+        [SEARCH_HEADER.X_API_KEY]: apiKey
+      },
+      body: JSON.stringify({ query, q: query }),
+      signal: AbortSignal.timeout(SEARCH_TIMEOUT_MS)
+    });
+  } catch (err) {
+    const msg = getErrorMessage(err);
+    return { success: false, output: "", error: `Search API network error: ${msg}. Check internet connection or API endpoint.` };
+  }
   if (!response.ok) {
-    const errorText = await response.text();
-    throw new Error(`Search API error: ${response.status} - ${errorText}`);
+    let errorText = "";
+    try {
+      errorText = await response.text();
+    } catch {
+    }
+    return { success: false, output: "", error: `Search API error ${response.status}: ${errorText.slice(0, 500)}` };
+  }
+  let data;
+  try {
+    data = await response.json();
+  } catch (err) {
+    return { success: false, output: "", error: `Search API returned invalid JSON: ${getErrorMessage(err)}` };
   }
-  const data = await response.json();
   return { success: true, output: JSON.stringify(data, null, 2) };
 }
 
@@ -5982,7 +6074,7 @@ var PORT_STATE2 = {
   CLOSED: "closed",
   FILTERED: "filtered"
 };
-function getErrorMessage(error) {
+function getErrorMessage2(error) {
   return error instanceof Error ? error.message : String(error);
 }
 async function parseNmap(xmlPath) {
@@ -6033,7 +6125,7 @@ async function parseNmap(xmlPath) {
     return {
       success: false,
       output: "",
-      error: getErrorMessage(error)
+      error: getErrorMessage2(error)
     };
   }
 }
@@ -6044,7 +6136,7 @@ async function searchCVE(service, version) {
     return {
       success: false,
       output: "",
-      error: getErrorMessage(error)
+      error: getErrorMessage2(error)
     };
   }
 }
@@ -6081,7 +6173,7 @@ async function searchExploitDB(service, version) {
     return {
       success: false,
       output: "",
-      error: getErrorMessage(error)
+      error: getErrorMessage2(error)
     };
   }
 }
@@ -6128,11 +6220,11 @@ async function webSearch(query, _engine) {
       return await searchWithGenericApi(query, apiKey, apiUrl);
     }
   } catch (error) {
-    debugLog("search", "webSearch ERROR", { error: getErrorMessage(error) });
+    debugLog("search", "webSearch ERROR", { error: getErrorMessage2(error) });
     return {
       success: false,
       output: "",
-      error: getErrorMessage(error)
+      error: getErrorMessage2(error)
     };
   }
 }
@@ -6509,7 +6601,8 @@ ${results.join("\n\n")}`
         }
         return {
           success: false,
-          output: `Category ${category} not found in any edition.`
+          output: `Category ${category} not found in any edition.`,
+          error: `Category ${category} not found`
         };
       }
       if (edition === "all") {
@@ -6520,7 +6613,7 @@ ${results.join("\n\n")}`
       }
       const data = OWASP_FULL_HISTORY[edition];
       if (!data) {
-        return { success: false, output: `Year ${edition} not found in database. Reference 2017-2025.` };
+        return { success: false, output: `Year ${edition} not found in database. Reference 2017-2025.`, error: `Edition ${edition} not found` };
       }
       return {
         success: true,
@@ -7065,8 +7158,8 @@ Returns: All available wordlists with their paths, sizes, and categories.`,
       }
     },
     execute: async (p) => {
-      const { existsSync: existsSync10, statSync: statSync2, readdirSync: readdirSync3 } = await import("fs");
-      const { join: join12 } = await import("path");
+      const { existsSync: existsSync12, statSync: statSync3, readdirSync: readdirSync4 } = await import("fs");
+      const { join: join14 } = await import("path");
       const category = p.category || "";
       const search = p.search || "";
       const minSize = p.min_size || 0;
@@ -7102,7 +7195,7 @@ Returns: All available wordlists with their paths, sizes, and categories.`,
       const processFile = (fullPath, fileName) => {
         const ext = fileName.split(".").pop()?.toLowerCase();
         if (!WORDLIST_EXTENSIONS.has(ext || "")) return;
-        const stats = statSync2(fullPath);
+        const stats = statSync3(fullPath);
         if (stats.size < minSize) return;
         if (!matchesCategory(fullPath)) return;
         if (!matchesSearch(fullPath, fileName)) return;
@@ -7112,16 +7205,16 @@ Returns: All available wordlists with their paths, sizes, and categories.`,
         results.push("");
       };
       const scanDir = (dirPath, maxDepth = 3, depth = 0) => {
-        if (depth > maxDepth || !existsSync10(dirPath)) return;
+        if (depth > maxDepth || !existsSync12(dirPath)) return;
         let entries;
         try {
-          entries = readdirSync3(dirPath, { withFileTypes: true });
+          entries = readdirSync4(dirPath, { withFileTypes: true });
         } catch {
           return;
         }
         for (const entry of entries) {
           if (entry.name.startsWith(".") || SKIP_DIRS.has(entry.name)) continue;
-          const fullPath = join12(dirPath, entry.name);
+          const fullPath = join14(dirPath, entry.name);
           if (entry.isDirectory()) {
             scanDir(fullPath, maxDepth, depth + 1);
             continue;
@@ -7498,8 +7591,8 @@ Requires root/sudo privileges.`,
       const iface = p.interface || "";
       const duration = p.duration || NETWORK_CONFIG.DEFAULT_SPOOF_DURATION;
       const hostsFile = createTempFile(FILE_EXTENSIONS.HOSTS);
-      const { writeFileSync: writeFileSync8 } = await import("fs");
-      writeFileSync8(hostsFile, `${spoofIp}	${domain}
+      const { writeFileSync: writeFileSync10 } = await import("fs");
+      writeFileSync10(hostsFile, `${spoofIp}	${domain}
 ${spoofIp}	*.${domain}
 `);
       const ifaceFlag = iface ? `-i ${iface}` : "";
@@ -8006,6 +8099,86 @@ Returns recommendations on process status, port conflicts, long-running tasks, e
   }
 ];
 
+// src/shared/constants/service-ports.ts
+var SERVICE_PORTS = {
+  SSH: 22,
+  FTP: 21,
+  TELNET: 23,
+  SMTP: 25,
+  DNS: 53,
+  HTTP: 80,
+  POP3: 110,
+  IMAP: 143,
+  SMB_NETBIOS: 139,
+  KERBEROS: 88,
+  LDAP: 389,
+  SMB: 445,
+  HTTPS: 443,
+  SMTPS: 465,
+  SMTP_TLS: 587,
+  MODBUS: 502,
+  IMAPS: 993,
+  POP3S: 995,
+  MSSQL: 1433,
+  MYSQL: 3306,
+  RDP: 3389,
+  POSTGRESQL: 5432,
+  VNC: 5900,
+  REDIS: 6379,
+  DOCKER_HTTP: 2375,
+  DOCKER_HTTPS: 2376,
+  KUBERNETES_API: 6443,
+  HTTP_ALT: 8080,
+  HTTPS_ALT: 8443,
+  NFS: 2049,
+  DNP3: 2e4,
+  MONGODB: 27017,
+  ELASTICSEARCH: 9200,
+  MEMCACHED: 11211,
+  NODE_DEFAULT: 3e3,
+  FLASK_DEFAULT: 5e3,
+  DJANGO_DEFAULT: 8e3
+};
+var CRITICAL_SERVICE_PORTS = [
+  SERVICE_PORTS.SSH,
+  SERVICE_PORTS.RDP,
+  SERVICE_PORTS.MYSQL,
+  SERVICE_PORTS.POSTGRESQL,
+  SERVICE_PORTS.REDIS,
+  SERVICE_PORTS.MONGODB
+];
+var NO_AUTH_CRITICAL_PORTS = [
+  SERVICE_PORTS.REDIS,
+  SERVICE_PORTS.MONGODB,
+  SERVICE_PORTS.ELASTICSEARCH,
+  SERVICE_PORTS.MEMCACHED
+];
+var WEB_SERVICE_PORTS = [
+  SERVICE_PORTS.HTTP,
+  SERVICE_PORTS.HTTPS,
+  SERVICE_PORTS.HTTP_ALT,
+  SERVICE_PORTS.HTTPS_ALT,
+  SERVICE_PORTS.NODE_DEFAULT,
+  SERVICE_PORTS.FLASK_DEFAULT,
+  SERVICE_PORTS.DJANGO_DEFAULT
+];
+var PLAINTEXT_HTTP_PORTS = [
+  SERVICE_PORTS.HTTP,
+  SERVICE_PORTS.HTTP_ALT,
+  SERVICE_PORTS.NODE_DEFAULT
+];
+var DATABASE_PORTS = [
+  SERVICE_PORTS.MYSQL,
+  SERVICE_PORTS.POSTGRESQL,
+  SERVICE_PORTS.MSSQL,
+  SERVICE_PORTS.MONGODB,
+  SERVICE_PORTS.REDIS
+];
+var SMB_PORTS = [
+  SERVICE_PORTS.SMB,
+  SERVICE_PORTS.SMB_NETBIOS
+];
+
 // src/domains/network/tools.ts
 var NETWORK_TOOLS = [
   {
@@ -8051,7 +8224,7 @@ var NETWORK_CONFIG2 = {
   tools: NETWORK_TOOLS,
   dangerLevel: DANGER_LEVELS.ACTIVE,
   defaultApproval: APPROVAL_LEVELS.CONFIRM,
-  commonPorts: [21, 22, 80, 443, 445, 3389, 8080],
+  commonPorts: [SERVICE_PORTS.FTP, SERVICE_PORTS.SSH, SERVICE_PORTS.HTTP, SERVICE_PORTS.HTTPS, SERVICE_PORTS.SMB, SERVICE_PORTS.RDP, SERVICE_PORTS.HTTP_ALT],
   commonServices: [SERVICES.FTP, SERVICES.SSH, SERVICES.HTTP, SERVICES.HTTPS, SERVICES.SMB]
 };
 
@@ -8114,7 +8287,7 @@ var WEB_CONFIG = {
   tools: WEB_TOOLS,
   dangerLevel: DANGER_LEVELS.ACTIVE,
   defaultApproval: APPROVAL_LEVELS.CONFIRM,
-  commonPorts: [80, 443, 8080],
+  commonPorts: [SERVICE_PORTS.HTTP, SERVICE_PORTS.HTTPS, SERVICE_PORTS.HTTP_ALT],
   commonServices: [SERVICES.HTTP, SERVICES.HTTPS]
 };
 
@@ -8149,12 +8322,12 @@ var DATABASE_TOOLS = [
     description: "MySQL enumeration - version, users, databases",
     parameters: {
       target: { type: "string", description: "Target IP/hostname" },
-      port: { type: "string", description: "Port (default 3306)" }
+      port: { type: "string", description: `Port (default ${SERVICE_PORTS.MYSQL})` }
     },
     required: ["target"],
     execute: async (params) => {
       const target = params.target;
-      const port = params.port || "3306";
+      const port = params.port || String(SERVICE_PORTS.MYSQL);
       return await runCommand("mysql", ["-h", target, "-P", port, "-e", "SELECT VERSION(), USER(), DATABASE();"]);
     }
   },
@@ -8175,12 +8348,12 @@ var DATABASE_TOOLS = [
     description: "Redis enumeration",
     parameters: {
       target: { type: "string", description: "Target IP" },
-      port: { type: "string", description: "Port (default 6379)" }
+      port: { type: "string", description: `Port (default ${SERVICE_PORTS.REDIS})` }
     },
     required: ["target"],
     execute: async (params) => {
       const target = params.target;
-      const port = params.port || "6379";
+      const port = params.port || String(SERVICE_PORTS.REDIS);
       return await runCommand("redis-cli", ["-h", target, "-p", port, "INFO"]);
     }
   },
@@ -8212,7 +8385,7 @@ var DATABASE_CONFIG = {
   tools: DATABASE_TOOLS,
   dangerLevel: DANGER_LEVELS.EXPLOIT,
   defaultApproval: APPROVAL_LEVELS.REVIEW,
-  commonPorts: [1433, 3306, 5432, 6379, 27017],
+  commonPorts: [SERVICE_PORTS.MSSQL, SERVICE_PORTS.MYSQL, SERVICE_PORTS.POSTGRESQL, SERVICE_PORTS.REDIS, SERVICE_PORTS.MONGODB],
   commonServices: [SERVICES.MYSQL, SERVICES.POSTGRES, SERVICES.REDIS, SERVICES.MONGODB]
 };
 
@@ -8265,7 +8438,7 @@ var AD_CONFIG = {
   tools: AD_TOOLS,
   dangerLevel: DANGER_LEVELS.EXPLOIT,
   defaultApproval: APPROVAL_LEVELS.REVIEW,
-  commonPorts: [88, 389, 445],
+  commonPorts: [SERVICE_PORTS.KERBEROS, SERVICE_PORTS.LDAP, SERVICE_PORTS.SMB],
   commonServices: [SERVICES.AD, SERVICES.SMB]
 };
 
@@ -8289,7 +8462,7 @@ var EMAIL_CONFIG = {
   tools: EMAIL_TOOLS,
   dangerLevel: DANGER_LEVELS.ACTIVE,
   defaultApproval: APPROVAL_LEVELS.CONFIRM,
-  commonPorts: [25, 110, 143, 465, 587, 993, 995],
+  commonPorts: [SERVICE_PORTS.SMTP, SERVICE_PORTS.POP3, SERVICE_PORTS.IMAP, SERVICE_PORTS.SMTPS, SERVICE_PORTS.SMTP_TLS, SERVICE_PORTS.IMAPS, SERVICE_PORTS.POP3S],
   commonServices: [SERVICES.SMTP, SERVICES.POP3, SERVICES.IMAP]
 };
 
@@ -8314,7 +8487,7 @@ var REMOTE_ACCESS_TOOLS = [
     },
     required: ["target"],
     execute: async (params) => {
-      return await runCommand("nmap", ["-p", "3389", "--script", "rdp-enum-encryption,rdp-ntlm-info", params.target]);
+      return await runCommand("nmap", ["-p", String(SERVICE_PORTS.RDP), "--script", "rdp-enum-encryption,rdp-ntlm-info", params.target]);
     }
   }
 ];
@@ -8324,7 +8497,7 @@ var REMOTE_ACCESS_CONFIG = {
   tools: REMOTE_ACCESS_TOOLS,
   dangerLevel: DANGER_LEVELS.ACTIVE,
   defaultApproval: APPROVAL_LEVELS.REVIEW,
-  commonPorts: [22, 3389, 5900],
+  commonPorts: [SERVICE_PORTS.SSH, SERVICE_PORTS.RDP, SERVICE_PORTS.VNC],
   commonServices: [SERVICES.SSH, SERVICES.RDP, SERVICES.VNC]
 };
 
@@ -8338,7 +8511,7 @@ var FILE_SHARING_TOOLS = [
     },
     required: ["target"],
     execute: async (params) => {
-      return await runCommand("nmap", ["-p", "21", "--script", "ftp-anon,ftp-syst", params.target]);
+      return await runCommand("nmap", ["-p", String(SERVICE_PORTS.FTP), "--script", "ftp-anon,ftp-syst", params.target]);
     }
   },
   {
@@ -8359,7 +8532,7 @@ var FILE_SHARING_CONFIG = {
   tools: FILE_SHARING_TOOLS,
   dangerLevel: DANGER_LEVELS.ACTIVE,
   defaultApproval: APPROVAL_LEVELS.CONFIRM,
-  commonPorts: [21, 139, 445, 2049],
+  commonPorts: [SERVICE_PORTS.FTP, SERVICE_PORTS.SMB_NETBIOS, SERVICE_PORTS.SMB, SERVICE_PORTS.NFS],
   commonServices: [SERVICES.FTP, SERVICES.SMB, SERVICES.NFS]
 };
 
@@ -8403,7 +8576,7 @@ var CLOUD_CONFIG = {
   tools: CLOUD_TOOLS,
   dangerLevel: DANGER_LEVELS.EXPLOIT,
   defaultApproval: APPROVAL_LEVELS.REVIEW,
-  commonPorts: [443],
+  commonPorts: [SERVICE_PORTS.HTTPS],
   commonServices: [SERVICES.HTTP, SERVICES.HTTPS]
 };
 
@@ -8438,7 +8611,7 @@ var CONTAINER_CONFIG = {
   tools: CONTAINER_TOOLS,
   dangerLevel: DANGER_LEVELS.EXPLOIT,
   defaultApproval: APPROVAL_LEVELS.REVIEW,
-  commonPorts: [2375, 2376, 5e3, 6443],
+  commonPorts: [SERVICE_PORTS.DOCKER_HTTP, SERVICE_PORTS.DOCKER_HTTPS, SERVICE_PORTS.FLASK_DEFAULT, SERVICE_PORTS.KUBERNETES_API],
   commonServices: [SERVICES.DOCKER, SERVICES.KUBERNETES]
 };
 
@@ -8501,7 +8674,7 @@ var API_CONFIG = {
   tools: API_TOOLS,
   dangerLevel: DANGER_LEVELS.ACTIVE,
   defaultApproval: APPROVAL_LEVELS.CONFIRM,
-  commonPorts: [3e3, 5e3, 8e3, 8080],
+  commonPorts: [SERVICE_PORTS.NODE_DEFAULT, SERVICE_PORTS.FLASK_DEFAULT, SERVICE_PORTS.DJANGO_DEFAULT, SERVICE_PORTS.HTTP_ALT],
   commonServices: [SERVICES.HTTP, SERVICES.HTTPS]
 };
 
@@ -8539,7 +8712,7 @@ var ICS_TOOLS = [
     },
     required: ["target"],
     execute: async (params) => {
-      return await runCommand("nmap", ["-p", "502", "--script", "modbus-discover", params.target]);
+      return await runCommand("nmap", ["-p", String(SERVICE_PORTS.MODBUS), "--script", "modbus-discover", params.target]);
     }
   }
 ];
@@ -8549,7 +8722,7 @@ var ICS_CONFIG = {
   tools: ICS_TOOLS,
   dangerLevel: DANGER_LEVELS.ACTIVE,
   defaultApproval: APPROVAL_LEVELS.BLOCK,
-  commonPorts: [502, 2e4],
+  commonPorts: [SERVICE_PORTS.MODBUS, SERVICE_PORTS.DNP3],
   commonServices: [SERVICES.MODBUS, SERVICES.DNP3]
 };
 
@@ -8611,8 +8784,18 @@ var ToolRegistry = class {
       this.logDeniedAction(toolCall, approval.reason || "Execution denied");
       return { success: false, output: "", error: approval.reason || "Denied by policy" };
     }
-    const result2 = await tool.execute(toolCall.input);
-    const command = String(toolCall.input.command || toolCall.input.url || toolCall.input.query || "");
+    let result2;
+    try {
+      result2 = await tool.execute(toolCall.input);
+    } catch (execError) {
+      const errMsg = execError instanceof Error ? execError.message : String(execError);
+      result2 = {
+        success: false,
+        output: "",
+        error: `Tool execution error: ${errMsg}`
+      };
+    }
+    const command = String(toolCall.input.command || toolCall.input.url || toolCall.input.query || JSON.stringify(toolCall.input));
     if (result2.success) {
       this.state.workingMemory.recordSuccess(toolCall.name, command, result2.output || "");
     } else {
@@ -8715,7 +8898,7 @@ var SERVICE_CATEGORY_MAP = {
   "docker": SERVICE_CATEGORIES.CONTAINER,
   "modbus": SERVICE_CATEGORIES.ICS
 };
-var CATEGORY_APPROVAL2 = {
+var CATEGORY_APPROVAL = {
   [SERVICE_CATEGORIES.NETWORK]: APPROVAL_LEVELS.CONFIRM,
   [SERVICE_CATEGORIES.WEB]: APPROVAL_LEVELS.CONFIRM,
   [SERVICE_CATEGORIES.DATABASE]: APPROVAL_LEVELS.REVIEW,
@@ -8786,80 +8969,80 @@ var ServiceParser = class {
 
 // src/domains/registry.ts
 import { join as join7, dirname as dirname3 } from "path";
-import { fileURLToPath as fileURLToPath2 } from "url";
-var __dirname2 = dirname3(fileURLToPath2(import.meta.url));
+import { fileURLToPath } from "url";
+var __dirname = dirname3(fileURLToPath(import.meta.url));
 var DOMAINS = {
   [SERVICE_CATEGORIES.NETWORK]: {
     id: SERVICE_CATEGORIES.NETWORK,
     name: "Network Infrastructure",
     description: "Vulnerability scanning, port mapping, and network service exploitation.",
-    promptPath: join7(__dirname2, "network/prompt.md")
+    promptPath: join7(__dirname, "network/prompt.md")
   },
   [SERVICE_CATEGORIES.WEB]: {
     id: SERVICE_CATEGORIES.WEB,
     name: "Web Application",
     description: "Web app security testing, injection attacks, and auth bypass.",
-    promptPath: join7(__dirname2, "web/prompt.md")
+    promptPath: join7(__dirname, "web/prompt.md")
   },
   [SERVICE_CATEGORIES.DATABASE]: {
     id: SERVICE_CATEGORIES.DATABASE,
     name: "Database Security",
     description: "SQL injection, database enumeration, and data extraction.",
-    promptPath: join7(__dirname2, "database/prompt.md")
+    promptPath: join7(__dirname, "database/prompt.md")
   },
   [SERVICE_CATEGORIES.AD]: {
     id: SERVICE_CATEGORIES.AD,
     name: "Active Directory",
     description: "Kerberos, LDAP, and Windows domain privilege escalation.",
-    promptPath: join7(__dirname2, "ad/prompt.md")
+    promptPath: join7(__dirname, "ad/prompt.md")
   },
   [SERVICE_CATEGORIES.EMAIL]: {
     id: SERVICE_CATEGORIES.EMAIL,
     name: "Email Services",
     description: "SMTP, IMAP, POP3 security and user enumeration.",
-    promptPath: join7(__dirname2, "email/prompt.md")
+    promptPath: join7(__dirname, "email/prompt.md")
   },
   [SERVICE_CATEGORIES.REMOTE_ACCESS]: {
     id: SERVICE_CATEGORIES.REMOTE_ACCESS,
     name: "Remote Access",
     description: "SSH, RDP, VNC and other remote control protocols.",
-    promptPath: join7(__dirname2, "remote-access/prompt.md")
+    promptPath: join7(__dirname, "remote-access/prompt.md")
   },
   [SERVICE_CATEGORIES.FILE_SHARING]: {
     id: SERVICE_CATEGORIES.FILE_SHARING,
     name: "File Sharing",
     description: "SMB, NFS, FTP and shared resource security.",
-    promptPath: join7(__dirname2, "file-sharing/prompt.md")
+    promptPath: join7(__dirname, "file-sharing/prompt.md")
   },
   [SERVICE_CATEGORIES.CLOUD]: {
     id: SERVICE_CATEGORIES.CLOUD,
     name: "Cloud Infrastructure",
     description: "AWS, Azure, and GCP security and misconfiguration.",
-    promptPath: join7(__dirname2, "cloud/prompt.md")
+    promptPath: join7(__dirname, "cloud/prompt.md")
   },
   [SERVICE_CATEGORIES.CONTAINER]: {
     id: SERVICE_CATEGORIES.CONTAINER,
     name: "Container Systems",
     description: "Docker and Kubernetes security testing.",
-    promptPath: join7(__dirname2, "container/prompt.md")
+    promptPath: join7(__dirname, "container/prompt.md")
   },
   [SERVICE_CATEGORIES.API]: {
     id: SERVICE_CATEGORIES.API,
     name: "API Security",
     description: "REST, GraphQL, and SOAP API security testing.",
-    promptPath: join7(__dirname2, "api/prompt.md")
+    promptPath: join7(__dirname, "api/prompt.md")
   },
   [SERVICE_CATEGORIES.WIRELESS]: {
     id: SERVICE_CATEGORIES.WIRELESS,
     name: "Wireless Networks",
     description: "WiFi and Bluetooth security testing.",
-    promptPath: join7(__dirname2, "wireless/prompt.md")
+    promptPath: join7(__dirname, "wireless/prompt.md")
   },
   [SERVICE_CATEGORIES.ICS]: {
     id: SERVICE_CATEGORIES.ICS,
     name: "Industrial Systems",
     description: "Critical infrastructure - Modbus, DNP3, ENIP.",
-    promptPath: join7(__dirname2, "ics/prompt.md")
+    promptPath: join7(__dirname, "ics/prompt.md")
   }
 };
 
@@ -8905,7 +9088,7 @@ var CategorizedToolRegistry = class extends ToolRegistry {
         description: DOMAINS[id]?.description || "",
         tools: [...coreTools],
         dangerLevel: this.calculateDanger(id),
-        defaultApproval: CATEGORY_APPROVAL2[id] || "confirm"
+        defaultApproval: CATEGORY_APPROVAL[id] || "confirm"
       });
     });
   }
@@ -8971,7 +9154,7 @@ var CategorizedToolRegistry = class extends ToolRegistry {
     return Array.from(this.categories.values());
   }
   getApprovalForCategory(cat) {
-    return CATEGORY_APPROVAL2[cat] || "confirm";
+    return CATEGORY_APPROVAL[cat] || "confirm";
   }
 };
 
@@ -9056,14 +9239,28 @@ var LLM_ERROR_TYPES = {
 var HTTP_STATUS = { BAD_REQUEST: 400, UNAUTHORIZED: 401, FORBIDDEN: 403, RATE_LIMIT: 429 };
 var NETWORK_ERROR_CODES = {
   ECONNRESET: "ECONNRESET",
+  ECONNREFUSED: "ECONNREFUSED",
   ETIMEDOUT: "ETIMEDOUT",
   ENOTFOUND: "ENOTFOUND",
-  CONNECT_TIMEOUT: "UND_ERR_CONNECT_TIMEOUT"
+  CONNECT_TIMEOUT: "UND_ERR_CONNECT_TIMEOUT",
+  SOCKET_TIMEOUT: "UND_ERR_SOCKET"
 };
 var TRANSIENT_NETWORK_ERRORS = [
   NETWORK_ERROR_CODES.ECONNRESET,
+  NETWORK_ERROR_CODES.ECONNREFUSED,
   NETWORK_ERROR_CODES.ETIMEDOUT,
-  NETWORK_ERROR_CODES.ENOTFOUND
+  NETWORK_ERROR_CODES.ENOTFOUND,
+  NETWORK_ERROR_CODES.SOCKET_TIMEOUT
+];
+var NETWORK_ERROR_PATTERNS = [
+  "fetch failed",
+  "network error",
+  "econnrefused",
+  "econnreset",
+  "enotfound",
+  "etimedout",
+  "socket hang up",
+  "dns lookup failed"
 ];
 var LLMError = class extends Error {
   /** Structured error information */
@@ -9090,12 +9287,17 @@ function classifyError(error) {
   if (statusCode === HTTP_STATUS.BAD_REQUEST) {
     return { type: LLM_ERROR_TYPES.INVALID_REQUEST, message: errorMessage, statusCode, isRetryable: false, suggestedAction: "Modify request" };
   }
-  if (e.code && TRANSIENT_NETWORK_ERRORS.includes(e.code)) {
+  const errorCode = e.code || e.cause?.code;
+  if (errorCode && TRANSIENT_NETWORK_ERRORS.includes(errorCode)) {
     return { type: LLM_ERROR_TYPES.NETWORK_ERROR, message: errorMessage, isRetryable: true, suggestedAction: "Check network" };
   }
-  if (errorMessage.toLowerCase().includes("timeout") || e.code === NETWORK_ERROR_CODES.CONNECT_TIMEOUT) {
+  if (errorMessage.toLowerCase().includes("timeout") || errorCode === NETWORK_ERROR_CODES.CONNECT_TIMEOUT) {
     return { type: LLM_ERROR_TYPES.TIMEOUT, message: errorMessage, isRetryable: true, suggestedAction: "Retry" };
   }
+  const lowerMsg = errorMessage.toLowerCase();
+  if (NETWORK_ERROR_PATTERNS.some((pattern) => lowerMsg.includes(pattern))) {
+    return { type: LLM_ERROR_TYPES.NETWORK_ERROR, message: errorMessage, isRetryable: true, suggestedAction: "Check network" };
+  }
   return { type: LLM_ERROR_TYPES.UNKNOWN, message: errorMessage, statusCode, isRetryable: false, suggestedAction: "Analyze error" };
 }
 
@@ -9174,7 +9376,11 @@ var LLMClient = class {
       signal
     });
     if (!response.ok) {
-      const errorBody = await response.text();
+      let errorBody = `HTTP ${response.status}`;
+      try {
+        errorBody = await response.text();
+      } catch {
+      }
       const error = new Error(errorBody);
       error.status = response.status;
       throw error;
@@ -9476,10 +9682,10 @@ function logLLM(message, data) {
 }
 
 // src/engine/orchestrator/orchestrator.ts
-import { fileURLToPath as fileURLToPath3 } from "url";
+import { fileURLToPath as fileURLToPath2 } from "url";
 import { dirname as dirname4, join as join8 } from "path";
-var __filename2 = fileURLToPath3(import.meta.url);
-var __dirname3 = dirname4(__filename2);
+var __filename = fileURLToPath2(import.meta.url);
+var __dirname2 = dirname4(__filename);
 
 // src/engine/state-persistence.ts
 import { writeFileSync as writeFileSync6, readFileSync as readFileSync4, existsSync as existsSync6, readdirSync, statSync, unlinkSync as unlinkSync4, rmSync } from "fs";
@@ -9547,7 +9753,10 @@ function loadState(state) {
       state.addLoot(loot);
     }
     for (const item of snapshot.todo) {
-      state.addTodo(item.content, item.priority);
+      const id = state.addTodo(item.content, item.priority);
+      if (item.status && item.status !== "pending") {
+        state.updateTodo(id, { status: item.status });
+      }
     }
     const validPhases = new Set(Object.values(PHASES));
     const restoredPhase = validPhases.has(snapshot.currentPhase) ? snapshot.currentPhase : PHASES.RECON;
@@ -9557,6 +9766,20 @@ function loadState(state) {
     }
     if (snapshot.missionChecklist?.length > 0) {
       state.addMissionChecklistItems(snapshot.missionChecklist.map((c) => c.text));
+      const restoredChecklist = state.getMissionChecklist();
+      const baseIndex = restoredChecklist.length - snapshot.missionChecklist.length;
+      const completedUpdates = [];
+      for (let i = 0; i < snapshot.missionChecklist.length; i++) {
+        if (snapshot.missionChecklist[i].isCompleted && restoredChecklist[baseIndex + i]) {
+          completedUpdates.push({
+            id: restoredChecklist[baseIndex + i].id,
+            isCompleted: true
+          });
+        }
+      }
+      if (completedUpdates.length > 0) {
+        state.updateMissionChecklist(completedUpdates);
+      }
     }
     return true;
   } catch (err) {
@@ -9570,8 +9793,9 @@ function clearWorkspace() {
   const dirsToClean = [
     { path: WORKSPACE.SESSIONS, label: "sessions" },
     { path: WORKSPACE.DEBUG, label: "debug logs" },
-    { path: WORKSPACE.TEMP, label: "temp files" },
-    { path: WORKSPACE.OUTPUTS, label: "outputs" }
+    { path: WORKSPACE.TMP, label: "temp files" },
+    { path: WORKSPACE.OUTPUTS, label: "outputs" },
+    { path: WORKSPACE.JOURNAL, label: "journal" }
   ];
   for (const dir of dirsToClean) {
     try {
@@ -9664,306 +9888,66 @@ function appendBlockedCommandHints(lines, errorLower) {
   }
 }
 
-// src/shared/utils/output-compressor.ts
-var MIN_COMPRESS_LENGTH = 3e3;
-var SUMMARY_HEADER = "\u2550\u2550\u2550 INTELLIGENCE SUMMARY (auto-extracted) \u2550\u2550\u2550";
-var SUMMARY_FOOTER = "\u2550\u2550\u2550 END SUMMARY \u2014 Full output follows \u2550\u2550\u2550";
-var EXTRACT_LIMITS = {
-  NMAP_PORTS: 30,
-  NMAP_VULNS: 10,
-  LINPEAS_SUDO: 500,
-  LINPEAS_WRITABLE: 300,
-  LINPEAS_CRON: 5,
-  LINPEAS_PASSWORDS: 5,
-  ENUM4LINUX_SHARES: 10,
-  DIRBUST_PATHS: 20,
-  SQLMAP_INJECTIONS: 5,
-  HASH_NTLM: 5,
-  HASH_PREVIEW_LEN: 100,
-  GENERIC_CREDS: 5,
-  GENERIC_PATHS: 10
-};
-var TOOL_SIGNATURES = [
-  {
-    name: "nmap",
-    signatures: [/Nmap scan report/i, /PORT\s+STATE\s+SERVICE/i, /Nmap done:/i],
-    extract: extractNmapIntel
-  },
-  {
-    name: "linpeas",
-    signatures: [/linpeas/i, /╔══.*╗/, /Linux Privilege Escalation/i],
-    extract: extractLinpeasIntel
-  },
-  {
-    name: "enum4linux",
-    signatures: [/enum4linux/i, /Starting enum4linux/i, /\|\s+Target\s+Information/i],
-    extract: extractEnum4linuxIntel
-  },
-  {
-    name: "gobuster/ffuf/feroxbuster",
-    signatures: [/Gobuster/i, /FFUF/i, /feroxbuster/i, /Status:\s*\d{3}/],
-    extract: extractDirBustIntel
-  },
-  {
-    name: "sqlmap",
-    signatures: [/sqlmap/i, /\[INFO\]\s+testing/i, /Parameter:\s+/i],
-    extract: extractSqlmapIntel
-  },
-  {
-    name: "hash_dump",
-    signatures: [/\$[0-9]\$/, /\$2[aby]\$/, /:[0-9]+:[a-f0-9]{32}:/i],
-    extract: extractHashIntel
-  }
-];
-function compressToolOutput(output, toolName) {
-  if (!output || output.length < MIN_COMPRESS_LENGTH) {
-    return output;
-  }
-  let intel = [];
-  let detectedTool = "";
-  for (const sig of TOOL_SIGNATURES) {
-    const matched = sig.signatures.some((s) => s.test(output));
-    if (matched) {
-      detectedTool = sig.name;
-      intel = sig.extract(output);
-      break;
-    }
+// src/shared/utils/context-digest.ts
+import { writeFileSync as writeFileSync7, mkdirSync as mkdirSync3, existsSync as existsSync7 } from "fs";
+var PASSTHROUGH_THRESHOLD = 500;
+var PREPROCESS_THRESHOLD = 3e3;
+var MAX_PREPROCESSED_LINES = 800;
+var getOutputDir = () => WORKSPACE.OUTPUTS;
+var MAX_DUPLICATE_DISPLAY = 3;
+var ANALYST_MAX_INPUT_CHARS = 8e4;
+var FALLBACK_MAX_CHARS = 3e4;
+async function digestToolOutput(output, toolName, toolInput, analystFn) {
+  const originalLength = output.length;
+  if (originalLength < PASSTHROUGH_THRESHOLD) {
+    return {
+      digestedOutput: output,
+      fullOutputPath: null,
+      analystUsed: false,
+      memo: null,
+      originalLength,
+      digestedLength: originalLength,
+      compressionRatio: 1
+    };
   }
-  if (intel.length === 0) {
-    intel = extractGenericIntel(output);
-    detectedTool = toolName || "unknown";
+  const savedOutputPath = saveFullOutput(output, toolName);
+  let preprocessed = output;
+  if (originalLength > PREPROCESS_THRESHOLD) {
+    preprocessed = structuralPreprocess(output);
   }
-  if (intel.length === 0) {
-    return output;
+  if (analystFn) {
+    try {
+      const context = `Tool: ${toolName}${toolInput ? ` | Input: ${toolInput}` : ""}`;
+      const rawAnalystResponse = await analystFn(preprocessed, context);
+      const memo6 = parseAnalystMemo(rawAnalystResponse);
+      const formatted = formatAnalystDigest(rawAnalystResponse, savedOutputPath, originalLength);
+      return {
+        digestedOutput: formatted,
+        fullOutputPath: savedOutputPath,
+        analystUsed: true,
+        memo: memo6,
+        originalLength,
+        digestedLength: formatted.length,
+        compressionRatio: formatted.length / originalLength
+      };
+    } catch (err) {
+      debugLog("general", "Analyst LLM failed, falling back to truncation", {
+        toolName,
+        error: String(err)
+      });
+    }
   }
-  const summary = [
-    SUMMARY_HEADER,
-    `Tool: ${detectedTool} | Output length: ${output.length} chars`,
-    "",
-    ...intel,
-    "",
-    SUMMARY_FOOTER,
-    ""
-  ].join("\n");
-  return summary + output;
-}
-function extractNmapIntel(output) {
-  const intel = [];
-  const lines = output.split("\n");
-  const hostMatches = output.match(/Nmap scan report for\s+(\S+)/gi);
-  const openPorts = output.match(/^\d+\/\w+\s+open\s+/gm);
-  if (hostMatches) intel.push(`Hosts scanned: ${hostMatches.length}`);
-  if (openPorts) intel.push(`Open ports found: ${openPorts.length}`);
-  const portLines = lines.filter((l) => /^\d+\/\w+\s+open\s+/.test(l.trim()));
-  if (portLines.length > 0) {
-    intel.push("Open ports:");
-    for (const pl of portLines.slice(0, EXTRACT_LIMITS.NMAP_PORTS)) {
-      intel.push(`  ${pl.trim()}`);
-    }
-  }
-  const vulnLines = lines.filter(
-    (l) => /VULNERABLE|CVE-\d{4}-\d+|exploit|CRITICAL/i.test(l)
-  );
-  if (vulnLines.length > 0) {
-    intel.push("\u26A0\uFE0F  Vulnerability indicators:");
-    for (const vl of vulnLines.slice(0, EXTRACT_LIMITS.NMAP_VULNS)) {
-      intel.push(`  ${vl.trim()}`);
-    }
-  }
-  const osMatch = output.match(/OS details:\s*(.+)/i) || output.match(/Running:\s*(.+)/i);
-  if (osMatch) intel.push(`OS: ${osMatch[1].trim()}`);
-  return intel;
-}
-function extractLinpeasIntel(output) {
-  const intel = [];
-  const suidSection = output.match(/SUID[\s\S]*?(?=\n[═╔╗━]+|\n\n\n)/i);
-  if (suidSection) {
-    const suidBins = suidSection[0].match(/\/\S+/g);
-    if (suidBins) {
-      const interestingSuid = suidBins.filter(
-        (b) => /python|perl|ruby|node|bash|vim|less|more|nano|find|nmap|awk|env|php|gcc|gdb|docker|strace|ltrace/i.test(b)
-      );
-      if (interestingSuid.length > 0) {
-        intel.push(`\u{1F534} Exploitable SUID binaries: ${interestingSuid.join(", ")}`);
-      }
-    }
-  }
-  const sudoMatch = output.match(/User \S+ may run[\s\S]*?(?=\n\n|\n[═╔╗━])/i);
-  if (sudoMatch) {
-    intel.push(`\u{1F534} sudo -l: ${sudoMatch[0].trim().slice(0, EXTRACT_LIMITS.LINPEAS_SUDO)}`);
-  }
-  const writableMatch = output.match(/Interesting writable[\s\S]*?(?=\n\n|\n[═╔╗━])/i);
-  if (writableMatch) {
-    intel.push(`\u{1F4DD} Writable: ${writableMatch[0].trim().slice(0, EXTRACT_LIMITS.LINPEAS_WRITABLE)}`);
-  }
-  const cronMatch = output.match(/Cron[\s\S]*?(?=\n\n|\n[═╔╗━])/i);
-  if (cronMatch) {
-    const cronLines = cronMatch[0].split("\n").filter((l) => l.includes("*") || /\/(root|cron)/i.test(l));
-    if (cronLines.length > 0) {
-      intel.push("\u23F0 Cron entries:");
-      cronLines.slice(0, EXTRACT_LIMITS.LINPEAS_CRON).forEach((c) => intel.push(`  ${c.trim()}`));
-    }
-  }
-  const kernelMatch = output.match(/Linux version\s+(\S+)/i) || output.match(/Kernel:\s*(\S+)/i);
-  if (kernelMatch) intel.push(`\u{1F427} Kernel: ${kernelMatch[1]}`);
-  const passLines = output.split("\n").filter(
-    (l) => /password\s*[=:]\s*\S+/i.test(l) && !/\*\*\*|example|sample/i.test(l)
-  );
-  if (passLines.length > 0) {
-    intel.push("\u{1F511} Potential credentials found:");
-    passLines.slice(0, EXTRACT_LIMITS.LINPEAS_PASSWORDS).forEach((p) => intel.push(`  ${p.trim()}`));
-  }
-  const cveMatches = output.match(/CVE-\d{4}-\d+/gi);
-  if (cveMatches) {
-    const uniqueCves = [...new Set(cveMatches)];
-    intel.push(`\u26A0\uFE0F  CVEs mentioned: ${uniqueCves.join(", ")}`);
-  }
-  return intel;
-}
-function extractEnum4linuxIntel(output) {
-  const intel = [];
-  const userMatches = output.match(/user:\[(\S+?)\]/gi);
-  if (userMatches) {
-    const users = userMatches.map((u) => u.replace(/user:\[|\]/gi, ""));
-    intel.push(`\u{1F464} Users found: ${users.join(", ")}`);
-  }
-  const shareMatches = output.match(/Mapping: (\S+),\s*Listing: (\S+)/gi) || output.match(/\\\\\S+\\\\\S+/g);
-  if (shareMatches) {
-    intel.push(`\u{1F4C2} Shares: ${shareMatches.slice(0, EXTRACT_LIMITS.ENUM4LINUX_SHARES).join(", ")}`);
-  }
-  const domainMatch = output.match(/Domain:\s*\[(\S+?)\]/i) || output.match(/Workgroup:\s*\[(\S+?)\]/i);
-  if (domainMatch) intel.push(`\u{1F3E2} Domain: ${domainMatch[1]}`);
-  const policyMatch = output.match(/Password Complexity|Account Lockout/i);
-  if (policyMatch) intel.push("\u{1F510} Password policy information found");
-  return intel;
-}
-function extractDirBustIntel(output) {
-  const intel = [];
-  const lines = output.split("\n");
-  const interestingPaths = [];
-  for (const line of lines) {
-    const match = line.match(/(?:Status:\s*(\d{3})|(\d{3})\s+\d+\s+\d+).*?(\/\S+)/);
-    if (match) {
-      const status = match[1] || match[2];
-      const path2 = match[3];
-      if (["200", "301", "302", "403"].includes(status)) {
-        interestingPaths.push(`[${status}] ${path2}`);
-      }
-    }
-    const ffufMatch = line.match(/(\S+)\s+\[Status:\s*(\d+),?\s*Size:\s*(\d+)/);
-    if (ffufMatch && ["200", "301", "302", "403"].includes(ffufMatch[2])) {
-      interestingPaths.push(`[${ffufMatch[2]}] ${ffufMatch[1]} (${ffufMatch[3]}b)`);
-    }
-  }
-  if (interestingPaths.length > 0) {
-    intel.push(`\u{1F4C1} Discovered paths (${interestingPaths.length}):`);
-    interestingPaths.slice(0, EXTRACT_LIMITS.DIRBUST_PATHS).forEach((p) => intel.push(`  ${p}`));
-    if (interestingPaths.length > EXTRACT_LIMITS.DIRBUST_PATHS) {
-      intel.push(`  ... and ${interestingPaths.length - EXTRACT_LIMITS.DIRBUST_PATHS} more`);
-    }
-  }
-  return intel;
-}
-function extractSqlmapIntel(output) {
-  const intel = [];
-  const injectionTypes = output.match(/Type:\s*(\S.*?)(?:\n|$)/gi);
-  if (injectionTypes) {
-    intel.push("\u{1F489} SQL injection found:");
-    injectionTypes.slice(0, EXTRACT_LIMITS.SQLMAP_INJECTIONS).forEach((t) => intel.push(`  ${t.trim()}`));
-  }
-  const dbMatch = output.match(/back-end DBMS:\s*(.+)/i);
-  if (dbMatch) intel.push(`\u{1F5C4}\uFE0F DBMS: ${dbMatch[1].trim()}`);
-  const dbListMatch = output.match(/available databases.*?:\s*([\s\S]*?)(?=\n\[|\n$)/i);
-  if (dbListMatch) {
-    intel.push(`\u{1F4CA} Databases: ${dbListMatch[1].trim().replace(/\n/g, ", ")}`);
-  }
-  const tableMatches = output.match(/Database:\s*\S+\s+Table:\s*\S+/gi);
-  if (tableMatches) {
-    intel.push(`\u{1F4CB} Tables dumped: ${tableMatches.length}`);
-  }
-  return intel;
-}
-function extractHashIntel(output) {
-  const intel = [];
-  const lines = output.split("\n");
-  const md5Hashes = lines.filter((l) => /\b[a-f0-9]{32}\b/i.test(l) && !l.includes("{"));
-  const sha256Hashes = lines.filter((l) => /\b[a-f0-9]{64}\b/i.test(l));
-  const unixHashes = lines.filter((l) => /\$[0-9]\$|\$2[aby]\$|\$6\$|\$5\$/i.test(l));
-  const ntlmHashes = lines.filter((l) => /:[0-9]+:[a-f0-9]{32}:[a-f0-9]{32}:::/i.test(l));
-  if (md5Hashes.length > 0) intel.push(`#\uFE0F\u20E3 MD5 hashes: ${md5Hashes.length}`);
-  if (sha256Hashes.length > 0) intel.push(`#\uFE0F\u20E3 SHA256 hashes: ${sha256Hashes.length}`);
-  if (unixHashes.length > 0) intel.push(`#\uFE0F\u20E3 Unix crypt hashes: ${unixHashes.length}`);
-  if (ntlmHashes.length > 0) {
-    intel.push(`#\uFE0F\u20E3 NTLM hashes: ${ntlmHashes.length}`);
-    ntlmHashes.slice(0, EXTRACT_LIMITS.HASH_NTLM).forEach((h) => intel.push(`  ${h.trim().slice(0, EXTRACT_LIMITS.HASH_PREVIEW_LEN)}`));
-  }
-  return intel;
-}
-function extractGenericIntel(output) {
-  const intel = [];
-  const credPatterns = output.match(/(?:password|passwd|pwd|credentials?)\s*[=:]\s*\S+/gi);
-  if (credPatterns) {
-    intel.push("\u{1F511} Potential credentials detected:");
-    credPatterns.slice(0, EXTRACT_LIMITS.GENERIC_CREDS).forEach((c) => intel.push(`  ${c.trim()}`));
-  }
-  const cves = output.match(/CVE-\d{4}-\d+/gi);
-  if (cves) {
-    const unique = [...new Set(cves)];
-    intel.push(`\u26A0\uFE0F  CVEs mentioned: ${unique.join(", ")}`);
-  }
-  const ips = output.match(/\b(?:(?:25[0-5]|2[0-4]\d|1\d{2}|[1-9]?\d)\.){3}(?:25[0-5]|2[0-4]\d|1\d{2}|[1-9]?\d)\b/g);
-  if (ips) {
-    const uniqueIps = [...new Set(ips)].filter(
-      (ip) => !ip.startsWith("0.") && !ip.startsWith("255.") && ip !== "127.0.0.1"
-    );
-    if (uniqueIps.length > 0 && uniqueIps.length <= 20) {
-      intel.push(`\u{1F310} IP addresses found: ${uniqueIps.join(", ")}`);
-    }
-  }
-  const paths = output.match(/\/(?:etc\/(?:shadow|passwd|sudoers)|root\/|home\/\S+|var\/www\/\S+|opt\/\S+)\S*/g);
-  if (paths) {
-    const uniquePaths = [...new Set(paths)].slice(0, EXTRACT_LIMITS.GENERIC_PATHS);
-    intel.push(`\u{1F4C2} Interesting paths: ${uniquePaths.join(", ")}`);
-  }
-  const flagPatterns = output.match(/(?:flag|secret|key|token)\{[^}]+\}/gi);
-  if (flagPatterns) {
-    intel.push("\u{1F3F4} FLAG/SECRET patterns detected:");
-    flagPatterns.forEach((f) => intel.push(`  ${f}`));
-  }
-  return intel;
+  const fallback = formatFallbackDigest(preprocessed, savedOutputPath, originalLength);
+  return {
+    digestedOutput: fallback,
+    fullOutputPath: savedOutputPath,
+    analystUsed: false,
+    memo: null,
+    originalLength,
+    digestedLength: fallback.length,
+    compressionRatio: fallback.length / originalLength
+  };
 }
-
-// src/shared/utils/context-digest.ts
-import { writeFileSync as writeFileSync7, mkdirSync as mkdirSync3, existsSync as existsSync7 } from "fs";
-var PASSTHROUGH_THRESHOLD = 3e3;
-var LAYER2_THRESHOLD = 8e3;
-var LAYER3_THRESHOLD = 5e4;
-var MAX_REDUCED_LINES = 500;
-var getOutputDir = () => WORKSPACE.OUTPUTS;
-var MAX_DUPLICATE_DISPLAY = 3;
-var LAYER3_MAX_INPUT_CHARS = 8e4;
-var FALLBACK_MAX_CHARS = 3e4;
-var SIGNAL_PATTERNS = [
-  /error|fail|denied|refused|timeout|exception/i,
-  /warning|warn|deprecated|insecure/i,
-  /success|found|detected|discovered|vulnerable|VULNERABLE/i,
-  /password|passwd|credential|secret|key|token|hash/i,
-  /CVE-\d{4}-\d+/i,
-  /\d+\/\w+\s+open\s+/,
-  // nmap open port
-  /flag\{|ctf\{|HTB\{|THM\{/i,
-  // CTF flags
-  /root:|admin:|www-data:|nobody:/,
-  // /etc/passwd entries
-  /\$[0-9]\$|\$2[aby]\$/,
-  // password hashes
-  /\b(?:192\.168|10\.|172\.(?:1[6-9]|2\d|3[01]))\.\d+\.\d+\b/,
-  // internal IPs
-  /BEGIN\s+(?:RSA|DSA|EC|OPENSSH)\s+PRIVATE\s+KEY/i,
-  // private keys
-  /Authorization:|Bearer\s+|Basic\s+/i
-  // auth tokens
-];
 var NOISE_PATTERNS = [
   /^\s*$/,
   // blank lines
@@ -9971,67 +9955,40 @@ var NOISE_PATTERNS = [
   // timestamp-only lines
   /^#+\s*$/,
   // separator lines
-  /^\s*Progress:\s*\[?[#=\-\s>]+\]?\s*\d+/i,
+  /^\s*Progress:\s*\[?[#=\-\s>]+\]?\s*\d/i,
   // progress bars
   /\d+\s+requests?\s+(?:sent|made)/i,
   // request counters
   /^\s*(?:\.{3,}|={5,}|-{5,})\s*$/
   // decoration lines
 ];
-async function digestToolOutput(output, toolName, toolInput, llmDigestFn) {
-  const originalLength = output.length;
-  if (originalLength < PASSTHROUGH_THRESHOLD) {
-    return {
-      digestedOutput: output,
-      fullOutputPath: null,
-      layersApplied: [],
-      originalLength,
-      digestedLength: originalLength,
-      compressionRatio: 1
-    };
+function structuralPreprocess(output) {
+  let cleaned = stripAnsi(output);
+  const filteredLines = filterAndDedup(cleaned.split("\n"));
+  if (filteredLines.length > MAX_PREPROCESSED_LINES) {
+    const headSize = Math.floor(MAX_PREPROCESSED_LINES * 0.5);
+    const tailSize = Math.floor(MAX_PREPROCESSED_LINES * 0.3);
+    const head = filteredLines.slice(0, headSize);
+    const tail = filteredLines.slice(-tailSize);
+    const skipped = filteredLines.length - headSize - tailSize;
+    cleaned = [
+      ...head,
+      "",
+      `... [${skipped} lines skipped for Analyst LLM context \u2014 full output saved to file] ...`,
+      "",
+      ...tail
+    ].join("\n");
+  } else {
+    cleaned = filteredLines.join("\n");
   }
-  const layersApplied = [];
-  let processed = output;
-  let savedOutputPath = null;
-  processed = compressToolOutput(processed, toolName);
-  layersApplied.push(1);
-  if (processed.length > LAYER2_THRESHOLD) {
-    processed = structuralReduce(processed);
-    layersApplied.push(2);
-  }
-  if (processed.length > LAYER3_THRESHOLD) {
-    savedOutputPath = saveFullOutput(output, toolName);
-    if (llmDigestFn) {
-      try {
-        const context = `Tool: ${toolName}${toolInput ? ` | Input: ${toolInput}` : ""}`;
-        const digest = await llmDigestFn(processed, context);
-        processed = formatLLMDigest(digest, savedOutputPath, originalLength);
-        layersApplied.push(3);
-      } catch (err) {
-        debugLog("general", "Context Digest Layer 3 failed, falling back", { toolName, error: String(err) });
-        processed = formatFallbackDigest(processed, savedOutputPath, originalLength);
-        layersApplied.push(3);
-      }
-    } else {
-      processed = formatFallbackDigest(processed, savedOutputPath, originalLength);
-    }
-  } else if (layersApplied.includes(2)) {
-    savedOutputPath = saveFullOutput(output, toolName);
+  if (cleaned.length > ANALYST_MAX_INPUT_CHARS) {
+    cleaned = cleaned.slice(0, ANALYST_MAX_INPUT_CHARS) + `
+... [truncated at ${ANALYST_MAX_INPUT_CHARS} chars for Analyst LLM \u2014 full output saved to file]`;
   }
-  return {
-    digestedOutput: processed,
-    fullOutputPath: savedOutputPath,
-    layersApplied,
-    originalLength,
-    digestedLength: processed.length,
-    compressionRatio: processed.length / originalLength
-  };
+  return cleaned;
 }
-function structuralReduce(output) {
-  let cleaned = stripAnsi(output);
-  const lines = cleaned.split("\n");
+function filterAndDedup(lines) {
   const result2 = [];
-  const duplicateCounts = /* @__PURE__ */ new Map();
   let lastLine = "";
   let consecutiveDupes = 0;
   for (const line of lines) {
@@ -10039,11 +9996,9 @@ function structuralReduce(output) {
     if (NOISE_PATTERNS.some((p) => p.test(trimmed))) {
       continue;
     }
-    const isSignal = SIGNAL_PATTERNS.some((p) => p.test(trimmed));
     const normalized = normalizeLine(trimmed);
-    if (normalized === normalizeLine(lastLine) && !isSignal) {
+    if (normalized === normalizeLine(lastLine)) {
       consecutiveDupes++;
-      duplicateCounts.set(normalized, (duplicateCounts.get(normalized) || 1) + 1);
       continue;
     }
     if (consecutiveDupes > 0) {
@@ -10066,57 +10021,104 @@ function structuralReduce(output) {
       result2.push(lastLine);
     }
   }
-  if (result2.length > MAX_REDUCED_LINES) {
-    const headSize = Math.floor(MAX_REDUCED_LINES * 0.4);
-    const tailSize = Math.floor(MAX_REDUCED_LINES * 0.3);
-    const signalBudget = MAX_REDUCED_LINES - headSize - tailSize;
-    const head = result2.slice(0, headSize);
-    const tail = result2.slice(-tailSize);
-    const middle = result2.slice(headSize, -tailSize);
-    const middleSignals = middle.filter((line) => SIGNAL_PATTERNS.some((p) => p.test(line))).slice(0, signalBudget);
-    const skipped = middle.length - middleSignals.length;
-    cleaned = [
-      ...head,
-      "",
-      `... [${skipped} routine lines skipped \u2014 ${middleSignals.length} important lines preserved] ...`,
-      "",
-      ...middleSignals,
-      "",
-      `... [resuming last ${tailSize} lines] ...`,
-      "",
-      ...tail
-    ].join("\n");
-  } else {
-    cleaned = result2.join("\n");
-  }
-  return cleaned;
+  return result2;
 }
-var DIGEST_SYSTEM_PROMPT = `You are a pentesting output analyst. Given raw tool output, extract ONLY actionable intelligence. Be terse and structured.
+var ANALYST_SYSTEM_PROMPT = `You are an independent pentesting output analyst. You receive raw tool output and must extract ONLY actionable intelligence for the main attack agent.
 
 FORMAT YOUR RESPONSE EXACTLY LIKE THIS:
+
 ## Key Findings
-- [finding 1]
+- [finding 1 with exact values: ports, versions, paths]
 - [finding 2]
 
 ## Credentials/Secrets
-- [any discovered credentials, hashes, tokens, keys]
+- [any discovered credentials, hashes, tokens, keys, certificates]
+- (write "None found" if none)
 
 ## Attack Vectors
-- [exploitable services, vulnerabilities, misconfigurations]
+- [exploitable services, vulnerabilities, misconfigurations, CVEs]
+- (write "None identified" if none)
+
+## Failures/Errors
+- [what was attempted and FAILED \u2014 include the FULL command, wordlist, target, and the reason WHY it failed]
+- [e.g.: "SSH brute force: hydra -l admin -P /usr/share/wordlists/rockyou.txt ssh://10.0.0.1 \u2014 connection refused (port filtered)"]
+- [e.g.: "SQLi on /login with sqlmap --tamper=space2comment \u2014 input sanitized, WAF detected (ModSecurity)"]
+- (write "No failures" if everything succeeded)
+
+## Suspicious Signals
+- [anomalies that are NOT confirmed vulnerabilities but suggest exploitable surface]
+- [e.g.: "Response time 3x slower on /admin path \u2014 possible auth check or backend processing"]
+- [e.g.: "X-Debug-Token header present \u2014 debug mode may be enabled"]
+- [e.g.: "Verbose error message reveals stack trace / internal path / DB schema"]
+- [e.g.: "Unexpected 302 redirect with session param leaked in URL"]
+- (write "No suspicious signals" if nothing anomalous)
+
+## Attack Value
+- [ONE word: HIGH / MED / LOW / NONE]
+- Reasoning: [1 sentence why \u2014 what makes this worth pursuing or abandoning]
 
 ## Next Steps
 - [recommended immediate actions based on findings]
 
 RULES:
-- Be EXTREMELY concise \u2014 max 30 lines total
-- Only include ACTIONABLE findings \u2014 skip routine/expected results
+- Include EXACT values: port numbers, versions, usernames, file paths, IPs, full commands used
+- For failures: include the COMPLETE command with all flags, wordlists, and targets \u2014 "brute force failed" alone is USELESS
+- Look for the UNEXPECTED \u2014 non-standard ports, unusual banners, timing anomalies, error leaks
+- Credentials include: passwords, hashes, API keys, tokens, private keys, cookies, session IDs
+- Flag any information disclosure: server versions, internal paths, stack traces, debug output
 - If nothing interesting found, say "No actionable findings in this output"
-- Include exact values: port numbers, versions, usernames, file paths
-- Never include decorative output, banners, or progress information`;
-function formatLLMDigest(digest, filePath, originalChars) {
+- Never include decorative output, banners, or progress information
+- Do NOT miss subtle signals: unusual HTTP headers, non-standard responses, timing differences
+- Write as much detail as needed \u2014 do NOT artificially shorten. Every detail matters for strategy.
+
+## Reflection
+- What this output tells us: [1-line assessment]
+- Recommended next action: [1-2 specific follow-up actions]`;
+function parseAnalystMemo(response) {
+  const sections = {};
+  let currentSection = "";
+  let reflectionLines = [];
+  let attackValueLine = "NONE";
+  let attackValueReasoning = "";
+  for (const line of response.split("\n")) {
+    if (line.startsWith("## ")) {
+      currentSection = line.replace("## ", "").trim().toLowerCase();
+      sections[currentSection] = [];
+    } else if (currentSection === "reflection") {
+      if (line.trim()) reflectionLines.push(line.trim());
+    } else if (currentSection === "attack value") {
+      const match = line.match(/\b(HIGH|MED|LOW|NONE)\b/);
+      if (match) attackValueLine = match[1];
+      const reasonMatch = line.match(/[Rr]easoning:\s*(.+)/);
+      if (reasonMatch) attackValueReasoning = reasonMatch[1].trim();
+    } else if (currentSection) {
+      const trimmed = line.trim();
+      if (!trimmed) continue;
+      const content = trimmed.replace(/^(?:-|\*|\d+[.)]\s*)\s*/, "").trim();
+      if (content) sections[currentSection].push(content);
+    }
+  }
+  const filterNone = (items) => items.filter((i) => !/(^none|^no )/i.test(i.trim()));
+  const rawValue = attackValueLine.toUpperCase();
+  const attackValue = ["HIGH", "MED", "LOW", "NONE"].includes(rawValue) ? rawValue : "LOW";
+  return {
+    keyFindings: filterNone(sections["key findings"] || []),
+    credentials: filterNone(sections["credentials/secrets"] || []),
+    attackVectors: filterNone(sections["attack vectors"] || []),
+    failures: filterNone(sections["failures/errors"] || []),
+    suspicions: filterNone(sections["suspicious signals"] || []),
+    attackValue,
+    nextSteps: filterNone(sections["next steps"] || []),
+    reflection: [
+      attackValueReasoning ? `[${attackValue}] ${attackValueReasoning}` : "",
+      ...reflectionLines
+    ].filter(Boolean).join(" | ")
+  };
+}
+function formatAnalystDigest(digest, filePath, originalChars) {
   return [
     "\u2554\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2557",
-    "\u2551  CONTEXT DIGEST (LLM-summarized)                        \u2551",
+    "\u2551  ANALYST DIGEST (Independent LLM analysis)              \u2551",
     "\u255A\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u255D",
     "",
     digest,
@@ -10126,29 +10128,26 @@ function formatLLMDigest(digest, filePath, originalChars) {
   ].join("\n");
 }
 function formatFallbackDigest(processed, filePath, originalChars) {
-  const lines = processed.split("\n");
-  const summaryEndIdx = lines.findIndex((l) => l.includes("END SUMMARY"));
-  const summaryBlock = summaryEndIdx > 0 ? lines.slice(0, summaryEndIdx + 1).join("\n") : "";
-  const remaining = summaryEndIdx > 0 ? lines.slice(summaryEndIdx + 1).join("\n") : processed;
   const maxChars = FALLBACK_MAX_CHARS;
-  let truncatedRemaining = remaining;
-  if (remaining.length > maxChars) {
+  let truncated = processed;
+  if (processed.length > maxChars) {
     const headChars = Math.floor(maxChars * 0.6);
     const tailChars = Math.floor(maxChars * 0.4);
-    const skipped = remaining.length - headChars - tailChars;
-    truncatedRemaining = remaining.slice(0, headChars) + `
+    const skipped = processed.length - headChars - tailChars;
+    truncated = processed.slice(0, headChars) + `
 
-... [${skipped} chars omitted \u2014 read full output from file] ...
+... [${skipped} chars omitted \u2014 Analyst LLM unavailable, read full output from file] ...
 
-` + remaining.slice(-tailChars);
+` + processed.slice(-tailChars);
   }
   return [
-    summaryBlock,
-    truncatedRemaining,
+    "\u26A0\uFE0F ANALYST UNAVAILABLE \u2014 showing truncated raw output:",
+    "",
+    truncated,
     "",
     `\u{1F4C2} Full output saved: ${filePath} (${originalChars} chars)`,
     `\u{1F4A1} Use read_file("${filePath}") to see the complete raw output.`
-  ].filter(Boolean).join("\n");
+  ].join("\n");
 }
 function stripAnsi(text) {
   return text.replace(/\x1B\[[0-9;]*[a-zA-Z]/g, "").replace(/\x1B\[[\d;]*m/g, "");
@@ -10174,20 +10173,21 @@ function saveFullOutput(output, toolName) {
 }
 function createLLMDigestFn(llmClient) {
   return async (text, context) => {
-    const truncatedText = text.length > LAYER3_MAX_INPUT_CHARS ? text.slice(0, LAYER3_MAX_INPUT_CHARS) + `
-... [truncated for summarization, ${text.length - LAYER3_MAX_INPUT_CHARS} chars omitted]` : text;
-    const messages = [{ role: LLM_ROLES.USER, content: `Analyze this pentesting tool output and extract actionable intelligence.
+    const messages = [{
+      role: LLM_ROLES.USER,
+      content: `Analyze this pentesting tool output and extract actionable intelligence.
 
 Context: ${context}
 
 --- OUTPUT START ---
-${truncatedText}
---- OUTPUT END ---` }];
+${text}
+--- OUTPUT END ---`
+    }];
     const response = await llmClient.generateResponse(
       messages,
       void 0,
-      // no tools — summarization only
-      DIGEST_SYSTEM_PROMPT
+      // no tools — analysis only
+      ANALYST_SYSTEM_PROMPT
     );
     return response.content || "No actionable findings extracted.";
   };
@@ -10202,6 +10202,16 @@ var CoreAgent = class _CoreAgent {
   agentType;
   maxIterations;
   abortController = null;
+  /**
+   * Collected tool execution records for the current turn.
+   * MainAgent reads this after each step to write journal entries.
+   * Cleared at the start of each step.
+   */
+  turnToolJournal = [];
+  /** Aggregated memo from all tools in the current turn */
+  turnMemo = { keyFindings: [], credentials: [], attackVectors: [], failures: [], suspicions: [], attackValue: "LOW", nextSteps: [] };
+  /** Analyst reflections collected during this turn (1-line assessments) */
+  turnReflections = [];
   constructor(agentType, state, events, toolRegistry, maxIterations) {
     this.agentType = agentType;
     this.state = state;
@@ -10260,38 +10270,7 @@ var CoreAgent = class _CoreAgent {
         }
         if (progress.consecutiveIdleIterations >= AGENT_LIMITS.MAX_CONSECUTIVE_IDLE) {
           progress.consecutiveIdleIterations = 0;
-          const phase = this.state.getPhase();
-          const targets = this.state.getTargets().size;
-          const findings = this.state.getFindings().length;
-          const phaseDirection = {
-            [PHASES.RECON]: `RECON: Scan targets. Enumerate services and versions.`,
-            [PHASES.VULN_ANALYSIS]: `VULN ANALYSIS: ${targets} target(s) discovered. Search for CVEs and known exploits.`,
-            [PHASES.EXPLOIT]: `EXPLOIT: ${findings} finding(s) available. Attack the highest-severity one.`,
-            [PHASES.POST_EXPLOIT]: `POST-EXPLOIT: Escalate privileges. Search for escalation paths.`,
-            [PHASES.PRIV_ESC]: `PRIVESC: Find and exploit privilege escalation vectors.`,
-            [PHASES.LATERAL]: `LATERAL: Reuse discovered credentials on other hosts.`,
-            [PHASES.WEB]: `WEB: Enumerate the attack surface. Test every input for injection.`
-          };
-          const direction = phaseDirection[phase] || phaseDirection[PHASES.RECON];
-          messages.push({
-            role: LLM_ROLES.USER,
-            content: `\u26A1 DEADLOCK: ${AGENT_LIMITS.MAX_CONSECUTIVE_IDLE} turns with ZERO tool calls.
-Phase: ${phase} | Targets: ${targets} | Findings: ${findings} | Tools executed: ${progress.totalToolsExecuted} (${progress.toolSuccesses}\u2713 ${progress.toolErrors}\u2717)
-
-${direction}
-
-ESCALATION CHAIN \u2014 follow this order:
-1. web_search: Search for techniques, bypasses, default creds, CVEs, HackTricks
-2. BYPASS: Try alternative approaches \u2014 different protocols, ports, encodings, methods
-3. ZERO-DAY EXPLORATION: Probe for unknown vulns \u2014 fuzz parameters, test edge cases, analyze error responses for leaks
-4. BRUTE-FORCE: Wordlists, credential stuffing, common passwords, custom password lists from context
-5. ask_user: ONLY as last resort \u2014 ask the user for hints, wordlists, or guidance
-
-RULES:
-- Every turn MUST have tool calls
-- NEVER silently give up \u2014 exhaust ALL 5 steps above first
-- ACT NOW \u2014 do not plan, do not explain, do not summarize. EXECUTE.`
-          });
+          messages.push({ role: LLM_ROLES.USER, content: this.buildDeadlockNudge(progress) });
         }
       } catch (error) {
         if (this.isAbortError(error)) {
@@ -10329,7 +10308,22 @@ RULES:
           });
           continue;
         }
-        throw error;
+        const unexpectedMsg = error instanceof Error ? error.message : String(error);
+        this.events.emit({
+          type: EVENT_TYPES.ERROR,
+          timestamp: Date.now(),
+          data: {
+            message: `Unexpected error: ${unexpectedMsg}`,
+            phase: this.state.getPhase(),
+            isRecoverable: true
+          }
+        });
+        messages.push({
+          role: LLM_ROLES.USER,
+          content: `\u26A0\uFE0F UNEXPECTED ERROR: ${unexpectedMsg}
+This may be a transient issue. Continue your task \u2014 retry the last action or try an alternative approach.`
+        });
+        continue;
       }
     }
     const summary = `Max iterations (${this.maxIterations}) reached. Progress: ${progress.totalToolsExecuted} tools executed (${progress.toolSuccesses} succeeded, ${progress.toolErrors} failed). Current phase: ${this.state.getPhase()}. Findings: ${this.state.getFindings?.()?.length ?? "unknown"}.`;
@@ -10461,6 +10455,48 @@ ${firstLine}`, phase }
     return callbacks;
   }
   // ─────────────────────────────────────────────────────────────────
+  // SUBSECTION: Deadlock Nudge Builder
+  // ─────────────────────────────────────────────────────────────────
+  /**
+   * Build a deadlock nudge message for the agent.
+   *
+   * WHY separated: The nudge template is ~30 lines of prompt engineering.
+   * Keeping it in run() obscures the iteration control logic.
+   * Philosophy §12: Nudge is a safety net, not a driver —
+   * it reminds the agent to ACT, but never prescribes HOW.
+   */
+  buildDeadlockNudge(progress) {
+    const phase = this.state.getPhase();
+    const targets = this.state.getTargets().size;
+    const findings = this.state.getFindings().length;
+    const phaseDirection = {
+      [PHASES.RECON]: `RECON: Scan targets. Enumerate services and versions.`,
+      [PHASES.VULN_ANALYSIS]: `VULN ANALYSIS: ${targets} target(s) discovered. Search for CVEs and known exploits.`,
+      [PHASES.EXPLOIT]: `EXPLOIT: ${findings} finding(s) available. Attack the highest-severity one.`,
+      [PHASES.POST_EXPLOIT]: `POST-EXPLOIT: Escalate privileges. Search for escalation paths.`,
+      [PHASES.PRIV_ESC]: `PRIVESC: Find and exploit privilege escalation vectors.`,
+      [PHASES.LATERAL]: `LATERAL: Reuse discovered credentials on other hosts.`,
+      [PHASES.WEB]: `WEB: Enumerate the attack surface. Test every input for injection.`
+    };
+    const direction = phaseDirection[phase] || phaseDirection[PHASES.RECON];
+    return `\u26A1 DEADLOCK: ${AGENT_LIMITS.MAX_CONSECUTIVE_IDLE} turns with ZERO tool calls.
+Phase: ${phase} | Targets: ${targets} | Findings: ${findings} | Tools executed: ${progress.totalToolsExecuted} (${progress.toolSuccesses}\u2713 ${progress.toolErrors}\u2717)
+
+${direction}
+
+ESCALATION CHAIN \u2014 follow this order:
+1. web_search: Search for techniques, bypasses, default creds, CVEs, HackTricks
+2. BYPASS: Try alternative approaches \u2014 different protocols, ports, encodings, methods
+3. ZERO-DAY EXPLORATION: Probe for unknown vulns \u2014 fuzz parameters, test edge cases, analyze error responses for leaks
+4. BRUTE-FORCE: Wordlists, credential stuffing, common passwords, custom password lists from context
+5. ask_user: ONLY as last resort \u2014 ask the user for hints, wordlists, or guidance
+
+RULES:
+- Every turn MUST have tool calls
+- NEVER silently give up \u2014 exhaust ALL 5 steps above first
+- ACT NOW \u2014 do not plan, do not explain, do not summarize. EXECUTE.`;
+  }
+  // ─────────────────────────────────────────────────────────────────
   // SUBSECTION: Event Emitters
   // ─────────────────════════════════════════════════════════════
   emitThink(iteration, progress) {
@@ -10625,49 +10661,21 @@ ${firstLine}`, phase }
     const toolStartTime = Date.now();
     logLLM("CoreAgent executing tool", { id: call.id, name: call.name, input: call.input });
     if (!this.toolRegistry) {
-      return {
-        toolCallId: call.id,
-        output: "",
-        error: "Tool registry not initialized. Call setToolRegistry() first."
-      };
+      return { toolCallId: call.id, output: "", error: "Tool registry not initialized. Call setToolRegistry() first." };
     }
     try {
-      const result2 = await this.toolRegistry.execute({
-        name: call.name,
-        input: call.input
-      });
+      const result2 = await this.toolRegistry.execute({ name: call.name, input: call.input });
       let outputText = result2.output ?? "";
       this.scanForFlags(outputText);
-      if (result2.error) {
-        outputText = this.enrichToolError({ toolName: call.name, input: call.input, error: result2.error, originalOutput: outputText, progress });
-        if (progress) progress.toolErrors++;
-      } else {
-        if (progress) {
-          progress.toolSuccesses++;
-          progress.blockedCommandPatterns.clear();
-        }
-      }
-      try {
-        const llmDigestFn = createLLMDigestFn(this.llm);
-        const digestResult = await digestToolOutput(
-          outputText,
-          call.name,
-          JSON.stringify(call.input).slice(0, DISPLAY_LIMITS.OUTPUT_SUMMARY),
-          llmDigestFn
-        );
-        outputText = digestResult.digestedOutput;
-      } catch {
-        if (outputText.length > AGENT_LIMITS.MAX_TOOL_OUTPUT_LENGTH) {
-          const truncated = outputText.slice(0, AGENT_LIMITS.MAX_TOOL_OUTPUT_LENGTH);
-          const remaining = outputText.length - AGENT_LIMITS.MAX_TOOL_OUTPUT_LENGTH;
-          outputText = `${truncated}
-
-... [TRUNCATED ${remaining} characters for context hygiene] ...
-\u{1F4A1} TIP: If you need to see the full output, use a tool to read the file directly or run the command with | head, | tail, or | grep.`;
-        }
-      }
-      this.emitToolResult(call.name, result2.success, outputText, result2.error, Date.now() - toolStartTime);
-      return { toolCallId: call.id, output: outputText, error: result2.error };
+      outputText = this.handleToolResult(result2, call, outputText, progress);
+      const { digestedOutputForLLM, digestResult } = await this.digestAndEmit(
+        call,
+        outputText,
+        result2,
+        toolStartTime
+      );
+      this.recordJournalMemo(call, result2, digestedOutputForLLM, digestResult);
+      return { toolCallId: call.id, output: digestedOutputForLLM, error: result2.error };
     } catch (error) {
       const errorMsg = String(error);
       const enrichedError = this.enrichToolError({ toolName: call.name, input: call.input, error: errorMsg, originalOutput: "", progress });
@@ -10676,6 +10684,90 @@ ${firstLine}`, phase }
       return { toolCallId: call.id, output: enrichedError, error: errorMsg };
     }
   }
+  /**
+   * Handle tool result: enrich errors or track success.
+   * @returns Possibly enriched output text.
+   */
+  handleToolResult(result2, call, outputText, progress) {
+    if (result2.error) {
+      if (progress) progress.toolErrors++;
+      return this.enrichToolError({ toolName: call.name, input: call.input, error: result2.error, originalOutput: outputText, progress });
+    }
+    if (progress) {
+      progress.toolSuccesses++;
+      progress.blockedCommandPatterns.clear();
+    }
+    return outputText;
+  }
+  /**
+   * Digest tool output via Analyst LLM (§13 ③) and emit TUI event.
+   *
+   * WHY separated: Digest + emit is a self-contained pipeline:
+   *   raw output → Analyst → digest + file → TUI event.
+   * Isolating it makes the pipeline testable without running actual tools.
+   */
+  async digestAndEmit(call, outputText, result2, toolStartTime) {
+    const digestFallbackOutput = outputText;
+    let digestedOutputForLLM = outputText;
+    let digestResult = null;
+    try {
+      const llmDigestFn = createLLMDigestFn(this.llm);
+      digestResult = await digestToolOutput(
+        outputText,
+        call.name,
+        JSON.stringify(call.input).slice(0, DISPLAY_LIMITS.OUTPUT_SUMMARY),
+        llmDigestFn
+      );
+      digestedOutputForLLM = digestResult.digestedOutput;
+    } catch {
+      if (digestedOutputForLLM.length > AGENT_LIMITS.MAX_TOOL_OUTPUT_LENGTH) {
+        const truncated = digestedOutputForLLM.slice(0, AGENT_LIMITS.MAX_TOOL_OUTPUT_LENGTH);
+        const remaining = digestedOutputForLLM.length - AGENT_LIMITS.MAX_TOOL_OUTPUT_LENGTH;
+        digestedOutputForLLM = `${truncated}
+
+... [TRUNCATED ${remaining} characters for context hygiene] ...
+\u{1F4A1} TIP: If you need to see the full output, use a tool to read the file directly or run the command with | head, | tail, or | grep.`;
+      }
+    }
+    const outputFilePath = digestResult?.fullOutputPath ?? null;
+    const tuiOutput = digestResult?.digestedOutput ? `${digestResult.digestedOutput}${outputFilePath ? `
+\u{1F4C4} Full output: ${outputFilePath}` : ""}` : digestFallbackOutput.slice(0, DISPLAY_LIMITS.OUTPUT_SUMMARY);
+    this.emitToolResult(call.name, result2.success, tuiOutput, result2.error, Date.now() - toolStartTime);
+    return { digestedOutputForLLM, digestResult };
+  }
+  /**
+   * Record tool execution results to Journal and aggregate memos.
+   *
+   * WHY no truncation on inputSummary: Strategist needs full context —
+   * "hydra -l admin -P rockyou.txt ssh://10.0.0.1" must survive intact.
+   */
+  recordJournalMemo(call, result2, digestedOutputForLLM, digestResult) {
+    this.turnToolJournal.push({
+      name: call.name,
+      inputSummary: JSON.stringify(call.input),
+      success: result2.success,
+      analystSummary: digestResult?.memo ? digestResult.memo.keyFindings.join("; ") || "No key findings" : digestedOutputForLLM,
+      outputFile: digestResult?.fullOutputPath ?? null
+    });
+    if (digestResult?.memo) {
+      const m = digestResult.memo;
+      this.turnMemo.keyFindings.push(...m.keyFindings);
+      this.turnMemo.credentials.push(...m.credentials);
+      this.turnMemo.attackVectors.push(...m.attackVectors);
+      this.turnMemo.failures.push(...m.failures);
+      this.turnMemo.suspicions.push(...m.suspicions);
+      if ((ATTACK_VALUE_RANK[m.attackValue] ?? 0) > (ATTACK_VALUE_RANK[this.turnMemo.attackValue] ?? 0)) {
+        this.turnMemo.attackValue = m.attackValue;
+      }
+      this.turnMemo.nextSteps.push(...m.nextSteps);
+      if (m.reflection) this.turnReflections.push(m.reflection);
+    }
+    if (digestResult?.memo?.credentials.length) {
+      for (const cred of digestResult.memo.credentials) {
+        this.state.addLoot({ type: LOOT_TYPES.CREDENTIAL, host: "auto-extracted", detail: cred, obtainedAt: Date.now() });
+      }
+    }
+  }
   /**
    * Enrich tool error — delegates to extracted module (§3-1)
    */
@@ -10742,9 +10834,9 @@ ${firstLine}`, phase }
 };
 
 // src/agents/prompt-builder.ts
-import { readFileSync as readFileSync5, existsSync as existsSync8, readdirSync as readdirSync2 } from "fs";
-import { join as join10, dirname as dirname5 } from "path";
-import { fileURLToPath as fileURLToPath4 } from "url";
+import { readFileSync as readFileSync6, existsSync as existsSync9, readdirSync as readdirSync3 } from "fs";
+import { join as join11, dirname as dirname5 } from "path";
+import { fileURLToPath as fileURLToPath3 } from "url";
 
 // src/shared/constants/prompts.ts
 var PROMPT_PATHS = {
@@ -10803,73 +10895,44 @@ var PROMPT_CONFIG = {
 var INITIAL_TASKS = {
   RECON: "Initial reconnaissance and target discovery"
 };
-
-// src/shared/constants/service-ports.ts
-var SERVICE_PORTS = {
-  SSH: 22,
-  FTP: 21,
-  TELNET: 23,
-  SMTP: 25,
-  DNS: 53,
-  HTTP: 80,
-  POP3: 110,
-  IMAP: 143,
-  SMB_NETBIOS: 139,
-  SMB: 445,
-  HTTPS: 443,
-  MSSQL: 1433,
-  MYSQL: 3306,
-  RDP: 3389,
-  POSTGRESQL: 5432,
-  REDIS: 6379,
-  HTTP_ALT: 8080,
-  HTTPS_ALT: 8443,
-  MONGODB: 27017,
-  ELASTICSEARCH: 9200,
-  MEMCACHED: 11211,
-  NODE_DEFAULT: 3e3,
-  FLASK_DEFAULT: 5e3,
-  DJANGO_DEFAULT: 8e3
-};
-var CRITICAL_SERVICE_PORTS = [
-  SERVICE_PORTS.SSH,
-  SERVICE_PORTS.RDP,
-  SERVICE_PORTS.MYSQL,
-  SERVICE_PORTS.POSTGRESQL,
-  SERVICE_PORTS.REDIS,
-  SERVICE_PORTS.MONGODB
-];
-var NO_AUTH_CRITICAL_PORTS = [
-  SERVICE_PORTS.REDIS,
-  SERVICE_PORTS.MONGODB,
-  SERVICE_PORTS.ELASTICSEARCH,
-  SERVICE_PORTS.MEMCACHED
-];
-var WEB_SERVICE_PORTS = [
-  SERVICE_PORTS.HTTP,
-  SERVICE_PORTS.HTTPS,
-  SERVICE_PORTS.HTTP_ALT,
-  SERVICE_PORTS.HTTPS_ALT,
-  SERVICE_PORTS.NODE_DEFAULT,
-  SERVICE_PORTS.FLASK_DEFAULT,
-  SERVICE_PORTS.DJANGO_DEFAULT
-];
-var PLAINTEXT_HTTP_PORTS = [
-  SERVICE_PORTS.HTTP,
-  SERVICE_PORTS.HTTP_ALT,
-  SERVICE_PORTS.NODE_DEFAULT
-];
-var DATABASE_PORTS = [
-  SERVICE_PORTS.MYSQL,
-  SERVICE_PORTS.POSTGRESQL,
-  SERVICE_PORTS.MSSQL,
-  SERVICE_PORTS.MONGODB,
-  SERVICE_PORTS.REDIS
-];
-var SMB_PORTS = [
-  SERVICE_PORTS.SMB,
-  SERVICE_PORTS.SMB_NETBIOS
-];
+var CONTEXT_EXTRACTOR_PROMPT = `You are extracting actionable intelligence from a penetration testing session.
+DO NOT simply summarize or shorten. EXTRACT critical facts:
+
+1. DISCOVERED: Services, versions, paths, parameters (exact IPs, ports, versions)
+2. CONFIRMED: Vulnerabilities or access confirmed
+3. CREDENTIALS: Usernames, passwords, tokens, keys
+4. DEAD ENDS: What failed \u2014 include EXACT command, tool, arguments, wordlist/file used.
+   Distinguish between:
+   - "This approach itself is impossible" (e.g., SSH key-only \u2192 no password brute force works)
+   - "This specific attempt failed" (e.g., sqlmap with default tamper \u2192 try different tamper)
+5. OPEN LEADS: Unexplored paths worth pursuing
+
+Every line must include exact commands/tools/files used.
+The reader must be able to judge whether a retry with different parameters is worthwhile.`;
+var REFLECTION_PROMPT = `You are a tactical reviewer for a penetration testing agent.
+Review ALL actions from this turn \u2014 successes AND failures.
+
+1. ASSESSMENT: What did this turn accomplish? Rate: HIGH / MED / LOW / NONE.
+2. SUCCESSES: What worked? Can this pattern be replicated elsewhere?
+3. FAILURES: What failed? Is this a repeated pattern? If so \u2192 STOP this approach.
+4. BLIND SPOTS: What was missed or overlooked?
+5. NEXT PRIORITY: Single most valuable next action.
+
+3-5 lines. Every word must be actionable.`;
+var SUMMARY_REGENERATOR_PROMPT = `Update this penetration testing session summary with the new turn data.
+
+Must include:
+- All discovered hosts, services, versions (exact IPs, ports, software versions)
+- All confirmed vulnerabilities
+- All obtained credentials
+- Failed attempts with EXACT commands/tools/arguments/files used.
+  For each failure, state:
+  - The root cause (auth method? WAF? patched? wrong params?)
+  - Whether retrying with different parameters could work
+- Top unexplored leads
+
+Remove outdated/superseded info. Keep concise but COMPLETE.
+The reader must be able to decide what to retry and what to never attempt again.`;
 
 // src/shared/constants/scoring.ts
 var ATTACK_SCORING = {
@@ -11031,10 +11094,225 @@ function getAttacksForService(service, port) {
   return attacks;
 }
 
+// src/shared/utils/journal.ts
+import { writeFileSync as writeFileSync8, readFileSync as readFileSync5, existsSync as existsSync8, readdirSync as readdirSync2, statSync as statSync2, unlinkSync as unlinkSync5 } from "fs";
+import { join as join10 } from "path";
+var MAX_JOURNAL_ENTRIES = 50;
+var MAX_OUTPUT_FILES = 30;
+var TURN_PREFIX = "turn-";
+var SUMMARY_FILE = "summary.md";
+function writeJournalEntry(entry) {
+  try {
+    const journalDir = WORKSPACE.JOURNAL;
+    ensureDirExists(journalDir);
+    const padded = String(entry.turn).padStart(4, "0");
+    const filePath = join10(journalDir, `${TURN_PREFIX}${padded}.json`);
+    writeFileSync8(filePath, JSON.stringify(entry, null, 2), "utf-8");
+    return filePath;
+  } catch (err) {
+    debugLog("general", "Failed to write journal entry", { turn: entry.turn, error: String(err) });
+    return null;
+  }
+}
+function readJournalSummary() {
+  try {
+    const summaryPath = join10(WORKSPACE.JOURNAL, SUMMARY_FILE);
+    if (!existsSync8(summaryPath)) return "";
+    return readFileSync5(summaryPath, "utf-8");
+  } catch {
+    return "";
+  }
+}
+function getRecentEntries(count = MAX_JOURNAL_ENTRIES) {
+  try {
+    const journalDir = WORKSPACE.JOURNAL;
+    if (!existsSync8(journalDir)) return [];
+    const files = readdirSync2(journalDir).filter((f) => f.startsWith(TURN_PREFIX) && f.endsWith(".json")).sort().slice(-count);
+    const entries = [];
+    for (const file of files) {
+      try {
+        const raw = readFileSync5(join10(journalDir, file), "utf-8");
+        entries.push(JSON.parse(raw));
+      } catch {
+      }
+    }
+    return entries;
+  } catch {
+    return [];
+  }
+}
+function getNextTurnNumber() {
+  try {
+    const journalDir = WORKSPACE.JOURNAL;
+    if (!existsSync8(journalDir)) return 1;
+    const files = readdirSync2(journalDir).filter((f) => f.startsWith(TURN_PREFIX) && f.endsWith(".json")).sort();
+    if (files.length === 0) return 1;
+    const lastFile = files[files.length - 1];
+    const match = lastFile.match(/turn-(\d+)\.json/);
+    return match ? parseInt(match[1], 10) + 1 : 1;
+  } catch {
+    return 1;
+  }
+}
+function regenerateJournalSummary() {
+  try {
+    const entries = getRecentEntries();
+    if (entries.length === 0) return;
+    const journalDir = WORKSPACE.JOURNAL;
+    ensureDirExists(journalDir);
+    const summary = buildSummaryFromEntries(entries);
+    const summaryPath = join10(journalDir, SUMMARY_FILE);
+    writeFileSync8(summaryPath, summary, "utf-8");
+    debugLog("general", "Journal summary regenerated", {
+      entries: entries.length,
+      summaryLength: summary.length
+    });
+  } catch (err) {
+    debugLog("general", "Failed to regenerate journal summary", { error: String(err) });
+  }
+}
+function buildSummaryFromEntries(entries) {
+  const buckets = collectSummaryBuckets(entries);
+  return formatSummaryMarkdown(buckets, entries);
+}
+function collectSummaryBuckets(entries) {
+  const attempts = [];
+  const findings = [];
+  const credentials = [];
+  const successes = [];
+  const failures = [];
+  const suspicions = [];
+  const nextSteps = [];
+  const reflections = [];
+  const reversed = [...entries].reverse();
+  for (const entry of reversed) {
+    const value = entry.memo.attackValue || "LOW";
+    for (const tool of entry.tools) {
+      attempts.push({ turn: entry.turn, phase: entry.phase, ok: tool.success, name: tool.name, input: tool.inputSummary, value });
+    }
+    for (const finding of entry.memo.keyFindings) {
+      const line = `- [T${entry.turn}|\u26A1${value}] ${finding}`;
+      if (!findings.includes(line)) findings.push(line);
+    }
+    for (const cred of entry.memo.credentials) {
+      const line = `- [T${entry.turn}] ${cred}`;
+      if (!credentials.includes(line)) credentials.push(line);
+    }
+    for (const vector of entry.memo.attackVectors) {
+      const line = `- [T${entry.turn}] ${vector}`;
+      if (!successes.includes(line)) successes.push(line);
+    }
+    for (const fail of entry.memo.failures) {
+      const line = `- [T${entry.turn}] ${fail}`;
+      if (!failures.includes(line)) failures.push(line);
+    }
+    for (const tool of entry.tools) {
+      if (!tool.success) {
+        const detail = `${tool.name}(${tool.inputSummary}): ${tool.analystSummary}`;
+        const line = `- [T${entry.turn}] ${detail}`;
+        if (!failures.includes(line)) failures.push(line);
+      }
+    }
+    for (const s of entry.memo.suspicions || []) {
+      const line = `- [T${entry.turn}] ${s}`;
+      if (!suspicions.includes(line)) suspicions.push(line);
+    }
+    if (nextSteps.length < 5) {
+      for (const step of entry.memo.nextSteps) {
+        if (!nextSteps.includes(`- ${step}`)) nextSteps.push(`- ${step}`);
+      }
+    }
+    if (entry.reflection) {
+      reflections.push(`- [T${entry.turn}|\u26A1${value}] ${entry.reflection}`);
+    }
+  }
+  attempts.sort((a, b) => {
+    const vd = (ATTACK_VALUE_RANK[b.value] ?? 0) - (ATTACK_VALUE_RANK[a.value] ?? 0);
+    return vd !== 0 ? vd : b.turn - a.turn;
+  });
+  return { attempts, findings, credentials, successes, failures, suspicions, nextSteps, reflections };
+}
+function formatSummaryMarkdown(buckets, entries) {
+  const { attempts, findings, credentials, successes, failures, suspicions, nextSteps, reflections } = buckets;
+  const attemptLines = attempts.map(
+    (a) => `- [T${a.turn}|${a.phase}|\u26A1${a.value}] ${a.ok ? "\u2705" : "\u274C"} ${a.name}: ${a.input}`
+  );
+  const lastTurn = entries[entries.length - 1]?.turn || 0;
+  const sections = [
+    `# Session Journal Summary`,
+    `> Turn ${lastTurn} / ${(/* @__PURE__ */ new Date()).toISOString().slice(0, 19)}`,
+    ""
+  ];
+  const addSection = (title, items) => {
+    if (items.length === 0) return;
+    sections.push(`## ${title}`);
+    sections.push(...items);
+    sections.push("");
+  };
+  if (attemptLines.length > 0) {
+    sections.push("## Techniques Tried (by attack value)");
+    sections.push("> \u26A1HIGH=keep drilling \u26A1MED=worth exploring \u26A1LOW=low priority \u26A1NONE=abandon");
+    sections.push(...attemptLines);
+    sections.push("");
+  }
+  addSection("\u{1F9E0} Analyst Analysis (attack value rationale)", reflections);
+  addSection("\u{1F50D} Suspicious Signals (unconfirmed, needs investigation)", suspicions);
+  addSection("\u{1F4CB} Key Findings", findings);
+  addSection("\u{1F511} Credentials Obtained", credentials);
+  addSection("\u2705 Successful Attack Vectors", successes);
+  addSection("\u274C Failure Causes (do not repeat)", failures);
+  addSection("\u27A1\uFE0F Next Recommendations", nextSteps);
+  return sections.join("\n");
+}
+function rotateJournalEntries() {
+  try {
+    const journalDir = WORKSPACE.JOURNAL;
+    if (!existsSync8(journalDir)) return;
+    const files = readdirSync2(journalDir).filter((f) => f.startsWith(TURN_PREFIX) && f.endsWith(".json")).sort();
+    if (files.length <= MAX_JOURNAL_ENTRIES) return;
+    const toDelete = files.slice(0, files.length - MAX_JOURNAL_ENTRIES);
+    for (const file of toDelete) {
+      try {
+        unlinkSync5(join10(journalDir, file));
+      } catch {
+      }
+    }
+    debugLog("general", "Journal entries rotated", {
+      deleted: toDelete.length,
+      remaining: MAX_JOURNAL_ENTRIES
+    });
+  } catch {
+  }
+}
+function rotateOutputFiles() {
+  try {
+    const outputDir = WORKSPACE.OUTPUTS;
+    if (!existsSync8(outputDir)) return;
+    const files = readdirSync2(outputDir).filter((f) => f.endsWith(".txt")).map((f) => ({
+      name: f,
+      path: join10(outputDir, f),
+      mtime: statSync2(join10(outputDir, f)).mtimeMs
+    })).sort((a, b) => b.mtime - a.mtime);
+    if (files.length <= MAX_OUTPUT_FILES) return;
+    const toDelete = files.slice(MAX_OUTPUT_FILES);
+    for (const file of toDelete) {
+      try {
+        unlinkSync5(file.path);
+      } catch {
+      }
+    }
+    debugLog("general", "Output files rotated", {
+      deleted: toDelete.length,
+      remaining: MAX_OUTPUT_FILES
+    });
+  } catch {
+  }
+}
+
 // src/agents/prompt-builder.ts
-var __dirname4 = dirname5(fileURLToPath4(import.meta.url));
-var PROMPTS_DIR = join10(__dirname4, "prompts");
-var TECHNIQUES_DIR = join10(PROMPTS_DIR, PROMPT_PATHS.TECHNIQUES_DIR);
+var __dirname3 = dirname5(fileURLToPath3(import.meta.url));
+var PROMPTS_DIR = join11(__dirname3, "prompts");
+var TECHNIQUES_DIR = join11(PROMPTS_DIR, PROMPT_PATHS.TECHNIQUES_DIR);
 var { AGENT_FILES } = PROMPT_PATHS;
 var PHASE_PROMPT_MAP = {
   // Direct mappings — phase has its own prompt file
@@ -11108,6 +11386,7 @@ var PromptBuilder = class {
    * 13. Learned techniques (#7: dynamic technique library)
    * 14. Persistent memory (#12: cross-session knowledge)
    * ★ 15. STRATEGIC DIRECTIVE — LLM-generated tactical instructions (D-CIPHER)
+   * ★ 15b. SESSION JOURNAL — compressed history of past turns (§13 memo system)
    * 16. User context
    */
   async build(userInput, phase) {
@@ -11133,8 +11412,10 @@ var PromptBuilder = class {
       // #12
       this.getDynamicTechniquesFragment(),
       // #7
-      this.getPersistentMemoryFragment()
+      this.getPersistentMemoryFragment(),
       // #12
+      this.getJournalFragment()
+      // §13 session journal
     ];
     const strategistDirective = await this.getStrategistFragment();
     if (strategistDirective) {
@@ -11158,8 +11439,8 @@ ${content}
    * Load a prompt file from src/agents/prompts/
    */
   loadPromptFile(filename) {
-    const path2 = join10(PROMPTS_DIR, filename);
-    return existsSync8(path2) ? readFileSync5(path2, PROMPT_CONFIG.ENCODING) : "";
+    const path2 = join11(PROMPTS_DIR, filename);
+    return existsSync9(path2) ? readFileSync6(path2, PROMPT_CONFIG.ENCODING) : "";
   }
   /**
    * Load phase-specific prompt.
@@ -11202,18 +11483,18 @@ ${content}
    *    as general reference — NO code change needed to add new techniques.
    *
    * The map is an optimization (priority ordering), not a gate.
-   * "마크다운 파일 하나를 폴더에 넣으면, PromptBuilder가 자동으로 발견하고 로드한다."
+   * "Drop a markdown file in the folder, PromptBuilder auto-discovers and loads it."
    */
   loadPhaseRelevantTechniques(phase) {
-    if (!existsSync8(TECHNIQUES_DIR)) return "";
+    if (!existsSync9(TECHNIQUES_DIR)) return "";
     const priorityTechniques = PHASE_TECHNIQUE_MAP[phase] || [];
     const loadedSet = /* @__PURE__ */ new Set();
     const fragments = [];
     for (const technique of priorityTechniques) {
-      const filePath = join10(TECHNIQUES_DIR, `${technique}.md`);
+      const filePath = join11(TECHNIQUES_DIR, `${technique}.md`);
       try {
-        if (!existsSync8(filePath)) continue;
-        const content = readFileSync5(filePath, PROMPT_CONFIG.ENCODING);
+        if (!existsSync9(filePath)) continue;
+        const content = readFileSync6(filePath, PROMPT_CONFIG.ENCODING);
         if (content) {
           fragments.push(`<technique-reference category="${technique}">
 ${content}
@@ -11224,10 +11505,10 @@ ${content}
       }
     }
     try {
-      const allFiles = readdirSync2(TECHNIQUES_DIR).filter((f) => f.endsWith(".md") && f !== "README.md" && !loadedSet.has(f));
+      const allFiles = readdirSync3(TECHNIQUES_DIR).filter((f) => f.endsWith(".md") && f !== "README.md" && !loadedSet.has(f));
       for (const file of allFiles) {
-        const filePath = join10(TECHNIQUES_DIR, file);
-        const content = readFileSync5(filePath, PROMPT_CONFIG.ENCODING);
+        const filePath = join11(TECHNIQUES_DIR, file);
+        const content = readFileSync6(filePath, PROMPT_CONFIG.ENCODING);
         if (content) {
           const category = file.replace(".md", "");
           fragments.push(`<technique-reference category="${category}">
@@ -11330,6 +11611,31 @@ ${lines.join("\n")}
     }
     return this.state.persistentMemory.toPrompt(services);
   }
+  // --- §13: Session Journal Summary ---
+  /**
+   * Load journal summary — prefers Summary Regenerator (⑥) output,
+   * falls back to deterministic journal summary.
+   */
+  getJournalFragment() {
+    try {
+      const summaryPath = join11(WORKSPACE.TURNS, "summary.md");
+      if (existsSync9(summaryPath)) {
+        const summary2 = readFileSync6(summaryPath, "utf-8");
+        if (summary2.trim()) {
+          return `<session-journal>
+${summary2}
+</session-journal>`;
+        }
+      }
+      const summary = readJournalSummary();
+      if (!summary) return "";
+      return `<session-journal>
+${summary}
+</session-journal>`;
+    } catch {
+      return "";
+    }
+  }
   // --- D-CIPHER: Strategist Meta-Prompting ---
   /**
    * Generate strategic directive via Strategist LLM.
@@ -11342,29 +11648,11 @@ ${lines.join("\n")}
 };
 
 // src/agents/strategist.ts
-import { readFileSync as readFileSync6, existsSync as existsSync9 } from "fs";
-import { join as join11, dirname as dirname6 } from "path";
-import { fileURLToPath as fileURLToPath5 } from "url";
-
-// src/shared/constants/strategist.ts
-var STRATEGIST_LIMITS = {
-  /** Maximum characters of state context sent to Strategist LLM.
-   *  WHY: Keeps Strategist input focused and affordable (~3-5K tokens).
-   *  Full state can be 20K+; Strategist needs summary, not everything. */
-  MAX_INPUT_CHARS: 15e3,
-  /** Maximum characters for the Strategist's response.
-   *  WHY: Directives should be terse and actionable (~800-1500 tokens).
-   *  Enhanced format includes SITUATION, priorities, EXHAUSTED, and SEARCH ORDERS. */
-  MAX_OUTPUT_CHARS: 5e3,
-  /** Maximum lines in the directive output.
-   *  WHY: Forces concise, prioritized directives while allowing
-   *  structured format (priorities + exhausted + search orders). */
-  MAX_DIRECTIVE_LINES: 60
-};
-
-// src/agents/strategist.ts
-var __dirname5 = dirname6(fileURLToPath5(import.meta.url));
-var STRATEGIST_PROMPT_PATH = join11(__dirname5, "prompts", "strategist-system.md");
+import { readFileSync as readFileSync7, existsSync as existsSync10 } from "fs";
+import { join as join12, dirname as dirname6 } from "path";
+import { fileURLToPath as fileURLToPath4 } from "url";
+var __dirname4 = dirname6(fileURLToPath4(import.meta.url));
+var STRATEGIST_PROMPT_PATH = join12(__dirname4, "prompts", "strategist-system.md");
 var Strategist = class {
   llm;
   state;
@@ -11415,24 +11703,40 @@ var Strategist = class {
     const sections = [];
     sections.push("## Engagement State");
     sections.push(this.state.toPrompt());
-    const timeline = this.state.episodicMemory.toPrompt();
-    if (timeline) {
-      sections.push("");
-      sections.push("## Recent Actions");
-      sections.push(timeline);
-    }
     const failures = this.state.workingMemory.toPrompt();
     if (failures) {
       sections.push("");
       sections.push("## Failed Attempts (DO NOT REPEAT THESE)");
       sections.push(failures);
     }
+    try {
+      let journalSummary = "";
+      const summaryPath = join12(WORKSPACE.TURNS, "summary.md");
+      if (existsSync10(summaryPath)) {
+        journalSummary = readFileSync7(summaryPath, "utf-8").trim();
+      }
+      if (!journalSummary) {
+        journalSummary = readJournalSummary();
+      }
+      if (journalSummary) {
+        sections.push("");
+        sections.push("## Session Journal (past turns summary)");
+        sections.push(journalSummary);
+      }
+    } catch {
+    }
     const graph = this.state.attackGraph.toPrompt();
     if (graph) {
       sections.push("");
       sections.push("## Attack Graph");
       sections.push(graph);
     }
+    const timeline = this.state.episodicMemory.toPrompt();
+    if (timeline) {
+      sections.push("");
+      sections.push("## Recent Actions");
+      sections.push(timeline);
+    }
     const techniques = this.state.dynamicTechniques.toPrompt();
     if (techniques) {
       sections.push("");
@@ -11448,11 +11752,7 @@ var Strategist = class {
       sections.push(`## Challenge Type: ${analysis.primaryType.toUpperCase()} (${(analysis.confidence * 100).toFixed(0)}%)`);
       sections.push(analysis.strategySuggestion);
     }
-    let input = sections.join("\n");
-    if (input.length > STRATEGIST_LIMITS.MAX_INPUT_CHARS) {
-      input = input.slice(0, STRATEGIST_LIMITS.MAX_INPUT_CHARS) + "\n\n... [state truncated for Strategist context]";
-    }
-    return input;
+    return sections.join("\n");
   }
   // ─── LLM Call ───────────────────────────────────────────────
   async callLLM(input) {
@@ -11469,9 +11769,6 @@ ${input}`
       this.systemPrompt
     );
     let content = response.content || "";
-    if (content.length > STRATEGIST_LIMITS.MAX_OUTPUT_CHARS) {
-      content = content.slice(0, STRATEGIST_LIMITS.MAX_OUTPUT_CHARS) + "\n... [directive truncated]";
-    }
     const cost = response.usage ? response.usage.input_tokens + response.usage.output_tokens : 0;
     this.totalTokenCost += cost;
     return {
@@ -11501,8 +11798,8 @@ NOTE: This directive is from ${age}min ago (Strategist call failed this turn). V
   // ─── System Prompt Loading ──────────────────────────────────
   loadSystemPrompt() {
     try {
-      if (existsSync9(STRATEGIST_PROMPT_PATH)) {
-        return readFileSync6(STRATEGIST_PROMPT_PATH, "utf-8");
+      if (existsSync10(STRATEGIST_PROMPT_PATH)) {
+        return readFileSync7(STRATEGIST_PROMPT_PATH, "utf-8");
       }
     } catch {
     }
@@ -11537,13 +11834,102 @@ Detect stalls (repeated failures, no progress) and force completely different at
 Chain every finding: "If X works \u2192 immediately do Y \u2192 which enables Z."
 Maximum 50 lines. Zero preamble. Direct imperatives only. Never repeat failed approaches.`;
 
+// src/shared/utils/turn-record.ts
+function formatTurnRecord(input) {
+  const { turn, timestamp, phase, tools, memo: memo6, reflection } = input;
+  const time = timestamp.slice(0, 19).replace("T", " ");
+  const sections = [];
+  sections.push(`# Turn ${turn} | ${time} | Phase: ${phase}`);
+  sections.push("");
+  sections.push("## \uC2E4\uD589 \uB3C4\uAD6C");
+  if (tools.length === 0) {
+    sections.push("- (\uB3C4\uAD6C \uC2E4\uD589 \uC5C6\uC74C)");
+  } else {
+    for (const tool of tools) {
+      const status = tool.success ? "\u2705" : "\u274C";
+      const line = `- ${tool.name}(${tool.inputSummary}) \u2192 ${status} ${tool.analystSummary}`;
+      sections.push(line);
+    }
+  }
+  sections.push("");
+  sections.push("## \uD575\uC2EC \uC778\uC0AC\uC774\uD2B8");
+  if (memo6.keyFindings.length > 0) {
+    for (const f of memo6.keyFindings) sections.push(`- DISCOVERED: ${f}`);
+  }
+  if (memo6.credentials.length > 0) {
+    for (const c of memo6.credentials) sections.push(`- CREDENTIAL: ${c}`);
+  }
+  if (memo6.attackVectors.length > 0) {
+    for (const v of memo6.attackVectors) sections.push(`- CONFIRMED: ${v}`);
+  }
+  if (memo6.failures.length > 0) {
+    for (const f of memo6.failures) sections.push(`- DEAD END: ${f}`);
+  }
+  if (memo6.suspicions.length > 0) {
+    for (const s of memo6.suspicions) sections.push(`- SUSPICIOUS: ${s}`);
+  }
+  if (memo6.nextSteps.length > 0) {
+    for (const n of memo6.nextSteps) sections.push(`- NEXT: ${n}`);
+  }
+  if (memo6.keyFindings.length === 0 && memo6.failures.length === 0 && memo6.credentials.length === 0) {
+    sections.push("- (\uD2B9\uC774\uC0AC\uD56D \uC5C6\uC74C)");
+  }
+  sections.push("");
+  sections.push("## \uC790\uAE30\uBC18\uC131");
+  sections.push(reflection || "- (\uBC18\uC131 \uC5C6\uC74C)");
+  sections.push("");
+  return sections.join("\n");
+}
+function formatForExtraction(messages) {
+  const parts = ["\uB2E4\uC74C\uC740 \uD39C\uD14C\uC2A4\uD305 \uC138\uC158\uC758 \uB300\uD654 \uAE30\uB85D\uC785\uB2C8\uB2E4. \uD575\uC2EC \uC778\uC0AC\uC774\uD2B8\uB97C \uCD94\uCD9C\uD558\uC138\uC694:\n"];
+  for (const msg of messages) {
+    const role = msg.role === "assistant" ? "AGENT" : msg.role === "user" ? "RESULT" : msg.role.toUpperCase();
+    const content = typeof msg.content === "string" ? msg.content : JSON.stringify(msg.content);
+    const truncated = content.length > 3e3 ? content.slice(0, 1500) + "\n...(truncated)...\n" + content.slice(-1500) : content;
+    parts.push(`[${role}]
+${truncated}
+`);
+  }
+  return parts.join("\n");
+}
+function formatReflectionInput(input) {
+  const { tools, memo: memo6, phase } = input;
+  const parts = [
+    `\uD604\uC7AC Phase: ${phase}`,
+    "",
+    "\uC774\uBC88 \uD134 \uC2E4\uD589 \uACB0\uACFC:"
+  ];
+  for (const tool of tools) {
+    const status = tool.success ? "\u2705 \uC131\uACF5" : "\u274C \uC2E4\uD328";
+    parts.push(`- ${tool.name}(${tool.inputSummary}) \u2192 ${status}`);
+    if (tool.analystSummary) {
+      parts.push(`  \uC694\uC57D: ${tool.analystSummary}`);
+    }
+  }
+  if (tools.length === 0) {
+    parts.push("- (\uB3C4\uAD6C \uC2E4\uD589 \uC5C6\uC74C)");
+  }
+  parts.push("");
+  parts.push("Analyst \uCD94\uCD9C \uBA54\uBAA8:");
+  if (memo6.keyFindings.length > 0) parts.push(`  \uBC1C\uACAC: ${memo6.keyFindings.join(", ")}`);
+  if (memo6.credentials.length > 0) parts.push(`  \uD06C\uB808\uB374\uC15C: ${memo6.credentials.join(", ")}`);
+  if (memo6.failures.length > 0) parts.push(`  \uC2E4\uD328: ${memo6.failures.join(", ")}`);
+  if (memo6.suspicions.length > 0) parts.push(`  \uC758\uC2EC: ${memo6.suspicions.join(", ")}`);
+  parts.push(`  \uACF5\uACA9 \uAC00\uCE58: ${memo6.attackValue}`);
+  return parts.join("\n");
+}
+
 // src/agents/main-agent.ts
+import { writeFileSync as writeFileSync9, existsSync as existsSync11, readFileSync as readFileSync8 } from "fs";
+import { join as join13 } from "path";
 var MainAgent = class extends CoreAgent {
   promptBuilder;
   strategist;
   approvalGate;
   scopeGuard;
   userInput = "";
+  /** Monotonic turn counter for journal entries */
+  turnCounter = 0;
   constructor(state, events, toolRegistry, approvalGate, scopeGuard) {
     super(AGENT_ROLES.ORCHESTRATOR, state, events, toolRegistry);
     this.approvalGate = approvalGate;
@@ -11581,8 +11967,116 @@ var MainAgent = class extends CoreAgent {
    * The Strategist LLM generates a fresh tactical directive every turn.
    */
   async step(iteration, messages, _unusedPrompt, progress) {
+    if (this.turnCounter === 0) {
+      this.turnCounter = getNextTurnNumber();
+    }
+    this.turnToolJournal = [];
+    this.turnMemo = { keyFindings: [], credentials: [], attackVectors: [], failures: [], suspicions: [], attackValue: "LOW", nextSteps: [] };
+    this.turnReflections = [];
     const dynamicPrompt = await this.getCurrentPrompt();
     const result2 = await super.step(iteration, messages, dynamicPrompt, progress);
+    try {
+      if (messages.length > 2) {
+        const extraction = await this.llm.generateResponse(
+          [{ role: "user", content: formatForExtraction(messages) }],
+          void 0,
+          CONTEXT_EXTRACTOR_PROMPT
+        );
+        if (extraction.content?.trim()) {
+          messages.length = 0;
+          messages.push({
+            role: "user",
+            content: `<session-context>
+${extraction.content.trim()}
+</session-context>`
+          });
+        }
+      }
+    } catch {
+    }
+    try {
+      if (this.turnToolJournal.length > 0) {
+        const reflection = await this.llm.generateResponse(
+          [{
+            role: "user",
+            content: formatReflectionInput({
+              tools: this.turnToolJournal,
+              memo: this.turnMemo,
+              phase: this.state.getPhase()
+            })
+          }],
+          void 0,
+          REFLECTION_PROMPT
+        );
+        if (reflection.content?.trim()) {
+          this.turnReflections.push(reflection.content.trim());
+        }
+      }
+    } catch {
+    }
+    if (this.turnToolJournal.length > 0) {
+      try {
+        const entry = {
+          turn: this.turnCounter,
+          timestamp: (/* @__PURE__ */ new Date()).toISOString(),
+          phase: this.state.getPhase(),
+          tools: this.turnToolJournal,
+          memo: this.turnMemo,
+          reflection: this.turnReflections.length > 0 ? this.turnReflections.join(" | ") : this.turnMemo.nextSteps.join("; ")
+        };
+        writeJournalEntry(entry);
+        try {
+          ensureDirExists(WORKSPACE.TURNS);
+          const ts = (/* @__PURE__ */ new Date()).toISOString().replace(/[:.]/g, "-").slice(0, 19);
+          const turnFileName = `turn-${String(this.turnCounter).padStart(3, "0")}_${ts}.md`;
+          const turnPath = join13(WORKSPACE.TURNS, turnFileName);
+          const turnContent = formatTurnRecord({
+            turn: this.turnCounter,
+            timestamp: (/* @__PURE__ */ new Date()).toISOString(),
+            phase: this.state.getPhase(),
+            tools: this.turnToolJournal,
+            memo: this.turnMemo,
+            reflection: entry.reflection
+          });
+          writeFileSync9(turnPath, turnContent, "utf-8");
+        } catch {
+        }
+        try {
+          const summaryPath = join13(WORKSPACE.TURNS, "summary.md");
+          const existingSummary = existsSync11(summaryPath) ? readFileSync8(summaryPath, "utf-8") : "";
+          const turnData = formatTurnRecord({
+            turn: this.turnCounter,
+            timestamp: (/* @__PURE__ */ new Date()).toISOString(),
+            phase: this.state.getPhase(),
+            tools: this.turnToolJournal,
+            memo: this.turnMemo,
+            reflection: entry.reflection
+          });
+          const summaryResponse = await this.llm.generateResponse(
+            [{
+              role: "user",
+              content: existingSummary ? `\uAE30\uC874 \uC694\uC57D:
+${existingSummary}
+
+\uC774\uBC88 \uD134:
+${turnData}` : `\uCCAB \uD134 \uB370\uC774\uD130:
+${turnData}`
+            }],
+            void 0,
+            SUMMARY_REGENERATOR_PROMPT
+          );
+          if (summaryResponse.content?.trim()) {
+            writeFileSync9(summaryPath, summaryResponse.content.trim(), "utf-8");
+          }
+        } catch {
+          regenerateJournalSummary();
+        }
+        rotateJournalEntries();
+        rotateOutputFiles();
+      } catch {
+      }
+      this.turnCounter++;
+    }
     this.emitStateChange();
     return result2;
   }