principles-disciple 1.7.6 → 1.7.8

package/dist/hooks/gfi-gate.js

@@ -4,7 +4,7 @@
  * Handles Fatigue Index (GFI) based tool blocking with TIER 0-3 classification.
  *
  * **Responsibilities:**
- * - Calculate dynamic GFI thresholds based on trust stage and line changes
+ * - Calculate dynamic GFI thresholds based on EP tier and line changes
  * - Apply tier-based tool blocking:
  *   - TIER 0: Read-only tools (never blocked)
  *   - TIER 1: Low-risk writes (blocked when GFI >= low_risk_block threshold)
@@ -14,7 +14,7 @@
  *
  * **Configuration:**
  * - GFI thresholds from config.gfi_gate
- * - Trust stage multipliers for dynamic threshold calculation
+ * - EP tier multipliers for dynamic threshold calculation
  * - Large change adjustments
  *
  * **Block Persistence:**
@@ -27,6 +27,7 @@ import { analyzeBashCommand, calculateDynamicThreshold } from './bash-risk.js';
 import { BASH_TOOLS_SET, HIGH_RISK_TOOLS, LOW_RISK_WRITE_TOOLS, AGENT_TOOLS } from '../constants/tools.js';
 import { AGENT_SPAWN_GFI_THRESHOLD } from '../config/index.js';
 import { recordGateBlockAndReturn } from './gate-block-helper.js';
+import { getEvolutionEngine } from '../core/evolution-engine.js';
 /**
  * Internal helper to call the shared block helper with gfi-gate source tag.
  */
@@ -45,6 +46,9 @@ export function checkGfiGate(event, wctx, sessionId, config, logger) {
     }
     const session = getSession(sessionId);
     const currentGfi = session?.currentGfi || 0;
+    const getEpTier = () => {
+        return getEvolutionEngine(wctx.workspaceDir).getTier();
+    };
     // TIER 3: Bash commands
     if (BASH_TOOLS_SET.has(event.toolName)) {
         const command = String(event.params.command || event.params.args || '');
@@ -57,12 +61,11 @@ export function checkGfiGate(event, wctx, sessionId, config, logger) {
             return undefined;
         }
         // normal bash - check GFI threshold
-        const trustEngine = wctx.trust;
-        const stage = trustEngine.getStage();
+        const tier = getEpTier();
         const baseThreshold = config.thresholds?.low_risk_block || 70;
-        const dynamicThreshold = calculateDynamicThreshold(baseThreshold, stage, 0, {
+        const dynamicThreshold = calculateDynamicThreshold(baseThreshold, tier, 0, {
             large_change_lines: config.large_change_lines || 50,
-            trust_stage_multipliers: config.trust_stage_multipliers || { '1': 0.5, '2': 0.75, '3': 1.0, '4': 1.5 },
+            ep_tier_multipliers: config.ep_tier_multipliers || { '1': 0.5, '2': 0.75, '3': 1.0, '4': 1.5, '5': 2.0 },
         });
         if (currentGfi >= dynamicThreshold) {
             logger?.warn?.(`[PD:GFI_GATE] Bash blocked by GFI: ${currentGfi} >= ${dynamicThreshold}`);
@@ -72,12 +75,11 @@ export function checkGfiGate(event, wctx, sessionId, config, logger) {
     }
     // TIER 2: High-risk tools
     if (HIGH_RISK_TOOLS.has(event.toolName)) {
-        const trustEngine = wctx.trust;
-        const stage = trustEngine.getStage();
+        const tier = getEpTier();
         const baseThreshold = config.thresholds?.high_risk_block || 40;
-        const dynamicThreshold = calculateDynamicThreshold(baseThreshold, stage, 0, {
+        const dynamicThreshold = calculateDynamicThreshold(baseThreshold, tier, 0, {
             large_change_lines: config.large_change_lines || 50,
-            trust_stage_multipliers: config.trust_stage_multipliers || { '1': 0.5, '2': 0.75, '3': 1.0, '4': 1.5 },
+            ep_tier_multipliers: config.ep_tier_multipliers || { '1': 0.5, '2': 0.75, '3': 1.0, '4': 1.5, '5': 2.0 },
         });
         if (currentGfi >= dynamicThreshold) {
             const filePath = event.params.file_path || event.params.path || event.params.file || event.params.target || 'unknown';
@@ -87,13 +89,12 @@ export function checkGfiGate(event, wctx, sessionId, config, logger) {
     }
     // TIER 1: Low-risk write tools
     if (LOW_RISK_WRITE_TOOLS.has(event.toolName)) {
-        const trustEngine = wctx.trust;
-        const stage = trustEngine.getStage();
+        const tier = getEpTier();
         const lineChanges = estimateLineChanges({ toolName: event.toolName, params: event.params });
         const baseThreshold = config.thresholds?.low_risk_block || 70;
-        const dynamicThreshold = calculateDynamicThreshold(baseThreshold, stage, lineChanges, {
+        const dynamicThreshold = calculateDynamicThreshold(baseThreshold, tier, lineChanges, {
             large_change_lines: config.large_change_lines || 50,
-            trust_stage_multipliers: config.trust_stage_multipliers || { '1': 0.5, '2': 0.75, '3': 1.0, '4': 1.5 },
+            ep_tier_multipliers: config.ep_tier_multipliers || { '1': 0.5, '2': 0.75, '3': 1.0, '4': 1.5, '5': 2.0 },
         });
         if (currentGfi >= dynamicThreshold) {
             const filePath = event.params.file_path || event.params.path || event.params.file || event.params.target || 'unknown';

package/dist/hooks/pain.js

@@ -7,6 +7,7 @@ import { denoiseError, computeHash } from '../utils/hashing.js';
 import { SystemLogger } from '../core/system-logger.js';
 import { WorkspaceContext } from '../core/workspace-context.js';
 import { getEvolutionLogger, createTraceId } from '../core/evolution-logger.js';
+import { recordEvolutionSuccess, recordEvolutionFailure } from '../core/evolution-engine.js';
 const WRITE_TOOLS = ['write', 'edit', 'apply_patch', 'write_file', 'edit_file', 'replace'];
 function shouldAttributePrincipleToTool(principle, toolName) {
     return principle.contextTags.includes(toolName) || principle.trigger.includes(toolName);
@@ -30,7 +31,6 @@ export function handleAfterToolCall(event, ctx, api) {
     const wctx = WorkspaceContext.fromHookContext({ ...ctx, workspaceDir: effectiveWorkspaceDir });
     const config = wctx.config;
     const eventLog = wctx.eventLog;
-    const trust = wctx.trust;
     const sessionId = ctx.sessionId || 'unknown';
     const sessionState = ctx.sessionId ? getSession(ctx.sessionId) : undefined;
     const gfiBefore = sessionState?.currentGfi ?? 0;
@@ -106,11 +106,10 @@ export function handleAfterToolCall(event, ctx, api) {
             }
         }
         const isRisk = isRisky(relPath, profile.risk_paths);
-        trust.recordFailure(isRisk ? 'risky' : 'tool', {
+        recordEvolutionFailure(effectiveWorkspaceDir, event.toolName, {
+            filePath: relPath,
+            reason: isRisk ? 'risky' : 'tool',
             sessionId,
-            api,
-            toolName: event.toolName,
-            error: event.error // Pass error for timeout detection
         });
         // Record tool call failure event
         eventLog.recordToolCall(sessionId, {
@@ -147,11 +146,9 @@ export function handleAfterToolCall(event, ctx, api) {
     else {
         // ── SUCCESS BRANCH ──
         const resetState = resetFriction(sessionId, effectiveWorkspaceDir);
-        // 👈 Record success to reset failure streak and earn minor trust (if constructive)
-        trust.recordSuccess('tool_success', {
+        recordEvolutionSuccess(effectiveWorkspaceDir, event.toolName, {
             sessionId,
-            api,
-            toolName: event.toolName // 👈 NEW: Pass toolName for classification
+            reason: 'tool_success',
         });
         const injectedProbationIds = getInjectedProbationIds(sessionId, effectiveWorkspaceDir);
         for (const id of injectedProbationIds) {

package/dist/hooks/progressive-trust-gate.d.ts

@@ -1,66 +1,42 @@
 /**
- * Progressive Trust Gate Module
+ * Progressive Gate Module (EP-Only Version)
  *
- * Handles progressive access control based on trust stages (1-4).
+ * EP (Evolution Points) 是唯一的门控机制。
  *
- * **Responsibilities:**
- * - Enforce trust stage-based permissions:
- *   - Stage 1 (Bankruptcy): Block ALL writes to risk paths, medium+ changes
- *   - Stage 2 (Editor): Block risk paths, large changes
- *   - Stage 3 (Developer): Require READY plan for risk paths, normal limits
- *   - Stage 4 (Architect): Full bypass with audit logging
- * - Apply percentage-based line change limits for large files
- * - Handle plan approval whitelist for Stage 1
- * - Record EP simulation for comparison analysis
+ * **EP 门控逻辑:**
+ * - Seed (0分): 只读 + 基础文档
+ * - Sprout (50分): 单文件编辑
+ * - Sapling (200分): 多文件 + 测试 + 子智能体
+ * - Tree (500分): 重构 + 风险路径
+ * - Forest (1000分): 完全自主
  *
- * **Configuration:**
- * - Progressive gate settings from profile.progressive_gate
- * - Trust limits from config.trust
- * - Plan approval patterns and operations
+ * **风险路径控制:**
+ * - 低等级不能修改风险路径
+ * - 高等级解锁风险路径权限
  *
- * **Block Persistence:**
- * - Uses shared `recordGateBlockAndReturn` from gate-block-helper.ts
- * - Ensures single authoritative block persistence path
+ * **不再有:**
+ * - Trust Score (30-100) 系统
+ * - Stage 1-4 分级
+ * - Plan Approval 白名单机制
+ * - 基于行数的限制
  */
 import type { PluginHookBeforeToolCallEvent, PluginHookBeforeToolCallResult } from '../openclaw-sdk.js';
 import type { WorkspaceContext } from '../core/workspace-context.js';
 /**
- * Configuration for progressive gate behavior
+ * Build EP gate rejection reason
  */
-export interface ProgressiveGateConfig {
-    enabled?: boolean;
-    plan_approvals?: {
-        enabled?: boolean;
-        max_lines_override?: number;
-        allowed_patterns?: string[];
-        allowed_operations?: string[];
-    };
-}
+export declare function buildEvolutionGateReason(tier: number, tierName: string, reason: string): string;
 /**
- * Trust stage limits configuration
- */
-export interface TrustLimits {
-    stage_2_max_lines?: number;
-    stage_3_max_lines?: number;
-    stage_2_max_percentage?: number;
-    stage_3_max_percentage?: number;
-    min_lines_fallback?: number;
-}
-/**
- * Build line limit rejection reason
- */
-export declare function buildLineLimitReason(lineChanges: number, effectiveLimit: number, limitType: 'percentage' | 'fixed', targetLineCount: number | null, actualPercentage: number | null, stage: number): string;
-/**
- * Check progressive trust gate based on trust stage and operation context
+ * Check EP-based gate
  *
  * @param event - The tool call event
  * @param wctx - Workspace context
  * @param relPath - Relative path to target file
  * @param risky - Whether the path is a risk path
- * @param lineChanges - Estimated line changes
+ * @param lineChanges - Estimated line changes (kept for interface compatibility, not used for gating)
  * @param logger - Logger instance
  * @param ctx - Hook context
- * @param profile - Gate profile containing risk_paths and progressive_gate config
+ * @param profile - Gate profile containing risk_paths config
  * @returns PluginHookBeforeToolCallResult to block, or undefined to allow
  */
 export declare function checkProgressiveTrustGate(event: PluginHookBeforeToolCallEvent, wctx: WorkspaceContext, relPath: string, risky: boolean, lineChanges: number, logger: {
@@ -72,8 +48,4 @@ export declare function checkProgressiveTrustGate(event: PluginHookBeforeToolCal
     sessionId?: string;
 }, profile?: {
     risk_paths: string[];
-    progressive_gate?: {
-        enabled?: boolean;
-        plan_approvals?: any;
-    };
 }): PluginHookBeforeToolCallResult | void;

package/dist/hooks/progressive-trust-gate.js

@@ -1,49 +1,32 @@
 /**
- * Progressive Trust Gate Module
+ * Progressive Gate Module (EP-Only Version)
  *
- * Handles progressive access control based on trust stages (1-4).
+ * EP (Evolution Points) 是唯一的门控机制。
  *
- * **Responsibilities:**
- * - Enforce trust stage-based permissions:
- *   - Stage 1 (Bankruptcy): Block ALL writes to risk paths, medium+ changes
- *   - Stage 2 (Editor): Block risk paths, large changes
- *   - Stage 3 (Developer): Require READY plan for risk paths, normal limits
- *   - Stage 4 (Architect): Full bypass with audit logging
- * - Apply percentage-based line change limits for large files
- * - Handle plan approval whitelist for Stage 1
- * - Record EP simulation for comparison analysis
+ * **EP 门控逻辑:**
+ * - Seed (0分): 只读 + 基础文档
+ * - Sprout (50分): 单文件编辑
+ * - Sapling (200分): 多文件 + 测试 + 子智能体
+ * - Tree (500分): 重构 + 风险路径
+ * - Forest (1000分): 完全自主
  *
- * **Configuration:**
- * - Progressive gate settings from profile.progressive_gate
- * - Trust limits from config.trust
- * - Plan approval patterns and operations
+ * **风险路径控制:**
+ * - 低等级不能修改风险路径
+ * - 高等级解锁风险路径权限
  *
- * **Block Persistence:**
- * - Uses shared `recordGateBlockAndReturn` from gate-block-helper.ts
- * - Ensures single authoritative block persistence path
+ * **不再有:**
+ * - Trust Score (30-100) 系统
+ * - Stage 1-4 分级
+ * - Plan Approval 白名单机制
+ * - 基于行数的限制
  */
-import * as fs from 'fs';
-import * as path from 'path';
-import { planStatus as getPlanStatus } from '../utils/io.js';
-import { matchesAnyPattern } from '../utils/glob-match.js';
-import { assessRiskLevel, getTargetFileLineCount, calculatePercentageThreshold } from '../core/risk-calculator.js';
 import { checkEvolutionGate } from '../core/evolution-engine.js';
-import { EventLogService } from '../core/event-log.js';
 import { recordGateBlockAndReturn } from './gate-block-helper.js';
 /**
- * Build line limit rejection reason
+ * Build EP gate rejection reason
  */
-export function buildLineLimitReason(lineChanges, effectiveLimit, limitType, targetLineCount, actualPercentage, stage) {
-    if (limitType === 'percentage' && targetLineCount !== null && actualPercentage !== null) {
-        return `Modification too large: ${lineChanges} lines (${actualPercentage}% of ${targetLineCount} lines). ` +
-            `Stage ${stage} limit is ${effectiveLimit} lines (${limitType}). ` +
-            `Threshold calculation: min(${targetLineCount} × ${actualPercentage}%, ${effectiveLimit} lines).`;
-    }
-    else {
-        return `Modification too large: ${lineChanges} lines. ` +
-            `Stage ${stage} limit is ${effectiveLimit} lines (fixed threshold). ` +
-            `Note: Could not read target file to calculate percentage-based limit. Check file permissions and encoding.`;
-    }
+export function buildEvolutionGateReason(tier, tierName, reason) {
+    return `[EP Gate] Tier ${tier} (${tierName}): ${reason}`;
 }
 /**
  * Internal helper to call the shared block helper with progressive-trust-gate source tag.
@@ -58,185 +41,49 @@ function block(filePath, reason, wctx, toolName, logger, sessionId) {
     }, logger);
 }
 /**
- * Check progressive trust gate based on trust stage and operation context
+ * Check EP-based gate
  *
  * @param event - The tool call event
  * @param wctx - Workspace context
  * @param relPath - Relative path to target file
  * @param risky - Whether the path is a risk path
- * @param lineChanges - Estimated line changes
+ * @param lineChanges - Estimated line changes (kept for interface compatibility, not used for gating)
  * @param logger - Logger instance
  * @param ctx - Hook context
- * @param profile - Gate profile containing risk_paths and progressive_gate config
+ * @param profile - Gate profile containing risk_paths config
  * @returns PluginHookBeforeToolCallResult to block, or undefined to allow
  */
 export function checkProgressiveTrustGate(event, wctx, relPath, risky, lineChanges, logger, ctx, profile) {
-    // Check if progressive gate is disabled
-    if (profile?.progressive_gate?.enabled === false) {
+    // EP is the only gate now - use actual gate decision
+    if (!ctx.workspaceDir) {
+        logger.warn?.('[PD_GATE] No workspaceDir, skipping EP gate check');
         return;
     }
-    const trustEngine = wctx.trust;
-    const trustScore = trustEngine.getScore();
-    const stage = trustEngine.getStage();
-    const trustSettings = wctx.config.get('trust') || {
-        limits: {
-            stage_2_max_lines: 50,
-            stage_3_max_lines: 300,
-            stage_2_max_percentage: 10,
-            stage_3_max_percentage: 15,
-            min_lines_fallback: 20,
-        }
-    };
-    const riskLevel = assessRiskLevel(relPath, { toolName: event.toolName, params: event.params }, profile?.risk_paths || []);
-    const planApprovals = profile?.progressive_gate?.plan_approvals;
-    const canUsePlanApproval = Boolean(stage === 1 &&
-        planApprovals?.enabled &&
-        getPlanStatus(ctx.workspaceDir || '') === 'READY' &&
-        planApprovals.allowed_operations?.includes(event.toolName) &&
-        matchesAnyPattern(relPath, planApprovals.allowed_patterns || []) &&
-        ((planApprovals.max_lines_override ?? -1) === -1 || lineChanges <= (planApprovals.max_lines_override ?? -1)));
-    logger.info?.(`[PD_GATE] Trust: ${trustScore} (Stage ${stage}), Risk: ${riskLevel}, Path: ${relPath}`);
-    // ── EP SIMULATION MODE (M6验证) ──
-    // 记录EP系统的模拟决策，但不生效（仅用于对比分析）
-    // BUGFIX #90: 移到所有Stage检查之前，确保所有Stage都触发EP simulation记录
-    try {
-        const epDecision = checkEvolutionGate(ctx.workspaceDir, {
-            toolName: event.toolName,
-            content: event.params?.content,
-            lineCount: lineChanges,
-            isRiskPath: risky,
-        });
-        const epLogEntry = {
-            timestamp: new Date().toISOString(),
-            toolName: event.toolName,
-            filePath: relPath,
-            trustEngine: { score: trustScore, stage, decision: 'allow' },
-            epSystem: { tier: epDecision.currentTier ?? 'UNKNOWN', allowed: epDecision.allowed, reason: epDecision.reason },
-            conflict: epDecision.allowed === false, // Trust允许但EP拒绝（任何阶段）
-        };
-        const epLogPath = path.join(ctx.workspaceDir, '.state', 'ep_simulation.jsonl');
-        // 安全创建目录（如果失败则跳过日志写入，但不影响 Trust Engine 决策）
-        let canWriteEpLog = true;
-        try {
-            fs.mkdirSync(path.dirname(epLogPath), { recursive: true });
-        }
-        catch (mkdirErr) {
-            if (!mkdirErr || mkdirErr.code !== 'EEXIST') {
-                logger.warn?.(`[PD_EP_SIM] Failed to create log dir: ${mkdirErr?.message ?? String(mkdirErr)}, skipping log`);
-                canWriteEpLog = false;
-            }
-        }
-        if (canWriteEpLog) {
-            fs.appendFileSync(epLogPath, JSON.stringify(epLogEntry) + '\n');
-        }
-        logger.info?.(`[PD_EP_SIM] Tier: ${epDecision.currentTier}, Allowed: ${epDecision.allowed}, Trust: ${trustScore} (Stage ${stage})`);
-    }
-    catch (err) {
-        // EP 模拟失败不应该影响 Trust Engine 决策
-        const errMsg = err instanceof Error ? err.message : String(err);
-        logger.warn?.(`[PD_EP_SIM] Simulation failed: ${errMsg}, continuing with Trust Engine`);
-    }
-    // Stage 1 (Bankruptcy): Block ALL writes to risk paths, and all medium+ writes
-    if (stage === 1) {
-        if (canUsePlanApproval) {
-            const planStatus = 'READY';
-            wctx.eventLog.recordPlanApproval(ctx.sessionId, {
-                toolName: event.toolName,
-                filePath: relPath,
-                pattern: relPath,
-                planStatus
-            });
-            wctx.trajectory?.recordGateBlock?.({
-                sessionId: ctx.sessionId,
-                toolName: event.toolName,
-                filePath: relPath,
-                reason: 'plan_approval',
-                planStatus,
-            });
-            logger.info?.(`[PD_GATE] Stage 1 PLAN approval: ${relPath}`);
-            return;
-        }
-        if (risky || riskLevel !== 'LOW') {
-            // Block if not approved by whitelist
-            return block(relPath, `Trust score too low (${trustScore}). Stage 1 agents cannot modify risk paths or perform non-trivial edits.`, wctx, event.toolName, logger, ctx.sessionId);
-        }
-    }
-    // Stage 2 (Editor): Block writes to risk paths. Block large changes.
-    if (stage === 2) {
-        if (risky) {
-            return block(relPath, `Stage 2 agents are not authorized to modify risk paths.`, wctx, event.toolName, logger, ctx.sessionId);
-        }
-        // Percentage-based threshold calculation
-        const targetAbsolutePath = typeof event.params.file_path === 'string' && ctx.workspaceDir ? path.join(ctx.workspaceDir, event.params.file_path) : null;
-        const targetLineCount = targetAbsolutePath ? getTargetFileLineCount(targetAbsolutePath) : null;
-        const minLinesFallback = trustSettings.limits?.min_lines_fallback ?? 20;
-        const stage2MaxPercentage = trustSettings.limits?.stage_2_max_percentage ?? 10;
-        const stage2FixedLimit = trustSettings.limits?.stage_2_max_lines ?? 50;
-        let effectiveLimit;
-        let limitType;
-        let actualPercentage = null;
-        if (targetLineCount !== null && targetLineCount > 0) {
-            effectiveLimit = calculatePercentageThreshold(targetLineCount, stage2MaxPercentage, minLinesFallback);
-            actualPercentage = Math.round((lineChanges / targetLineCount) * 100);
-            limitType = 'percentage';
-        }
-        else {
-            effectiveLimit = stage2FixedLimit;
-            limitType = 'fixed';
-        }
-        if (lineChanges > effectiveLimit) {
-            return block(relPath, buildLineLimitReason(lineChanges, effectiveLimit, limitType, targetLineCount, actualPercentage, 2), wctx, event.toolName, logger, ctx.sessionId);
-        }
-    }
-    // Stage 3 (Developer): Allow normal writes. Require READY plan for risk paths.
-    if (stage === 3) {
-        if (risky) {
-            const planStatus = getPlanStatus(ctx.workspaceDir || '');
-            if (planStatus !== 'READY') {
-                return block(relPath, `No READY plan found. Stage 3 requires a plan for risk path modifications.`, wctx, event.toolName, logger, ctx.sessionId);
-            }
-        }
-        // Percentage-based threshold calculation
-        const targetAbsolutePath = typeof event.params.file_path === 'string' && ctx.workspaceDir ? path.join(ctx.workspaceDir, event.params.file_path) : null;
-        const targetLineCount = targetAbsolutePath ? getTargetFileLineCount(targetAbsolutePath) : null;
-        const minLinesFallback = trustSettings.limits?.min_lines_fallback ?? 20;
-        const stage3MaxPercentage = trustSettings.limits?.stage_3_max_percentage ?? 15;
-        const stage3FixedLimit = trustSettings.limits?.stage_3_max_lines ?? 300;
-        let effectiveLimit;
-        let limitType;
-        let actualPercentage = null;
-        if (targetLineCount !== null && targetLineCount > 0) {
-            effectiveLimit = calculatePercentageThreshold(targetLineCount, stage3MaxPercentage, minLinesFallback);
-            actualPercentage = Math.round((lineChanges / targetLineCount) * 100);
-            limitType = 'percentage';
-        }
-        else {
-            effectiveLimit = stage3FixedLimit;
-            limitType = 'fixed';
-        }
-        if (lineChanges > effectiveLimit) {
-            return block(relPath, buildLineLimitReason(lineChanges, effectiveLimit, limitType, targetLineCount, actualPercentage, 3), wctx, event.toolName, logger, ctx.sessionId);
-        }
-    }
-    // Stage 4 (Architect): Full bypass
-    if (stage === 4) {
-        logger.info?.(`[PD_GATE] Trusted Architect bypass for ${relPath}`);
-        // Audit log for Stage 4 bypass (security traceability)
-        try {
-            const stateDir = wctx.resolve('STATE_DIR');
-            const eventLog = EventLogService.get(stateDir);
-            eventLog.recordGateBypass(ctx.sessionId, {
-                toolName: event.toolName,
-                filePath: relPath,
-                bypassType: 'stage4_architect',
-                trustScore,
-                trustStage: stage,
-            });
-            logger.info?.(`[PD_GATE] Stage 4 Architect bypass recorded for ${relPath}`);
-        }
-        catch (auditErr) {
-            logger.warn?.(`[PD_GATE] Failed to record Stage 4 bypass audit: ${String(auditErr)}`);
-        }
-        return;
+    // Call EP gate - this is the actual gate, not simulation
+    const epDecision = checkEvolutionGate(ctx.workspaceDir, {
+        toolName: event.toolName,
+        isRiskPath: risky,
+    });
+    const currentTier = epDecision.currentTier ?? 1;
+    const tierName = getTierName(currentTier);
+    logger.info?.(`[PD_GATE] EP Gate: Tier ${currentTier} (${tierName}), Tool: ${event.toolName}, Risk: ${risky}, Allowed: ${epDecision.allowed}`);
+    if (!epDecision.allowed) {
+        const reason = buildEvolutionGateReason(currentTier, tierName, epDecision.reason ?? 'Unknown restriction');
+        return block(relPath, reason, wctx, event.toolName, logger, ctx.sessionId);
     }
+    // Gate passed - allow
+    return;
+}
+/**
+ * Get tier name from tier number
+ */
+function getTierName(tier) {
+    const names = {
+        1: 'Seed',
+        2: 'Sprout',
+        3: 'Sapling',
+        4: 'Tree',
+        5: 'Forest',
+    };
+    return names[tier] ?? 'Unknown';
 }

package/dist/hooks/prompt.d.ts

@@ -2,7 +2,7 @@ import type { PluginHookBeforePromptBuildEvent, PluginHookAgentContext, PluginHo
 import { ContextInjectionConfig } from '../types.js';
 import { type EmpathyObserverApi } from '../service/empathy-observer-manager.js';
 /**
- * 濞寸媴绲块幃濠冾渶濡鍚囬梺鏉跨Ф閻?
+ * Default model configuration for OpenClaw agents
  */
 interface AgentsDefaultsConfig {
     model?: unknown;
@@ -23,22 +23,22 @@ interface PromptHookApi {
     logger: PluginLogger;
 }
 /**
- * 濞?OpenClaw 闂佹澘绉堕悿鍡樼▔椤撯寬鎺楀几閹邦劷渚€宕圭€ｎ喒鍋撴径瀣仴
- * 闁衡偓椤栨稑鐦?string 闁?{ primary, fallbacks } 闁哄秶鍘х槐?
- * @internal 閻庣數鍘ч崵顓熺閸涱剛杩旀繛鏉戭儓閻︻垱鎷呯捄銊︽殢
+ * Resolves model configuration for OpenClaw agents, supporting string and object formats
+ * @param modelConfig - Model config: string (e.g. "provider/model") or { primary, fallbacks } object
+ * @internal Helper for model configuration resolution
  */
 export declare function resolveModelFromConfig(modelConfig: unknown, logger?: PluginLogger): string | null;
 /**
- * 闁告梻濮惧ù鍥ㄧ▔婵犱胶鐟撻柡鍌氭处閺佺偤宕楅妷鈺佸赋缂?
- * 濞?PROFILE.json 閻犲洩顕цぐ?contextInjection 闂佹澘绉堕悿鍡涙晬鐏炵瓔娲ら柡瀣矆缁楀鈧稒锚濠€顏堝礆濞嗘帞绠查柛銉у仱缁垳鎷嬮妶澶婂赋缂?
- * @internal 閻庣數鍘ч崵顓熺瑹濞戞ê寰撳ù鐘崇墬鑶╅柛褎銇炴繛鍥偨?
+ * Loads context injection config from .principles/PROFILE.json
+ * Parses contextInjection configuration from PROFILE.json for context injection
+ * @internal Used by evolution engine for context settings
  */
 export declare function loadContextInjectionConfig(workspaceDir: string): ContextInjectionConfig;
 /**
- * 闁兼儳鍢茶ぐ鍥╂嫚婵犲啯鐒介悗娑欏姈濞呫倝鎳楅幋鎺旂Ъ閹煎瓨鏌ф繛鍥偨閵娧勭暠婵☆垪鈧磭鈧?
- * 濞村吋锚閸樻稓鐥缁辩殜ubagents.model > 濞戞挾绮啯闁?
- * 濠碘€冲€归悘澶愭焾閼恒儳姊鹃柡鍫濐樀閸樸倗绱旈鍡欑闁硅埖绋戦崵顓㈡煥濞嗘帩鍤?
- * @internal 閻庣數鍘ч崵顓熺閸涱剛杩旀繛鏉戭儓閻︻垱鎷呯捄銊︽殢
+ * Gets the diagnostician model - the model used for AI self-diagnosis and reflection
+ * Priority: subagents.model > subagents.model > env.OPENCLAW_MODEL
+ * Falls back to main model if no diagnostician model is configured
+ * @internal Helper for model configuration resolution
  */
 export declare function getDiagnosticianModel(api: PromptHookApi | null, logger?: PluginLogger): string;
 export declare function handleBeforePromptBuild(event: PluginHookBeforePromptBuildEvent, ctx: PluginHookAgentContext & {