npm - principles-disciple - Versions diffs - 1.8.0 → 1.8.2 - Mend

principles-disciple 1.8.0 → 1.8.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (460) hide show

package/ADVANCED_CONFIG_ZH.md +97 -0
package/AGENT_INSTALL.md +173 -0
package/AGENT_INSTALL_EN.md +173 -0
package/INSTALL.md +256 -0
package/SKILL.md +63 -0
package/docs/COMMAND_REFERENCE.md +76 -0
package/docs/COMMAND_REFERENCE_EN.md +79 -0
package/esbuild.config.js +75 -0
package/openclaw.plugin.json +6 -1
package/package.json +13 -15
package/scripts/build-web.mjs +46 -0
package/scripts/install-dependencies.cjs +47 -0
package/scripts/sync-plugin.mjs +802 -0
package/scripts/verify-build.mjs +109 -0
package/src/agents/nocturnal-dreamer.md +152 -0
package/src/agents/nocturnal-philosopher.md +138 -0
package/src/agents/nocturnal-reflector.md +126 -0
package/src/agents/nocturnal-scribe.md +164 -0
package/src/commands/capabilities.ts +85 -0
package/{dist/commands/context.js → src/commands/context.ts} +78 -38
package/src/commands/evolution-status.ts +146 -0
package/src/commands/export.ts +111 -0
package/src/commands/focus.ts +533 -0
package/src/commands/nocturnal-review.ts +311 -0
package/src/commands/nocturnal-rollout.ts +763 -0
package/src/commands/nocturnal-train.ts +1002 -0
package/{dist/commands/pain.js → src/commands/pain.ts} +68 -49
package/src/commands/principle-rollback.ts +27 -0
package/{dist/commands/rollback.js → src/commands/rollback.ts} +44 -12
package/src/commands/samples.ts +60 -0
package/src/commands/strategy.ts +38 -0
package/{dist/commands/thinking-os.js → src/commands/thinking-os.ts} +59 -36
package/src/commands/workflow-debug.ts +128 -0
package/{dist/config/defaults/runtime.js → src/config/defaults/runtime.ts} +12 -5
package/src/config/errors.ts +163 -0
package/{dist/config/index.d.ts → src/config/index.ts} +2 -1
package/src/constants/diagnostician.ts +66 -0
package/src/constants/tools.ts +62 -0
package/src/core/adaptive-thresholds.ts +476 -0
package/{dist/core/config-service.js → src/core/config-service.ts} +7 -4
package/{dist/core/config.js → src/core/config.ts} +158 -46
package/src/core/control-ui-db.ts +435 -0
package/{dist/core/detection-funnel.js → src/core/detection-funnel.ts} +36 -21
package/{dist/core/detection-service.js → src/core/detection-service.ts} +7 -4
package/{dist/core/dictionary-service.js → src/core/dictionary-service.ts} +7 -4
package/{dist/core/dictionary.js → src/core/dictionary.ts} +57 -34
package/src/core/empathy-keyword-matcher.ts +327 -0
package/src/core/empathy-types.ts +218 -0
package/src/core/event-log.ts +544 -0
package/src/core/evolution-engine.ts +612 -0
package/src/core/evolution-logger.ts +353 -0
package/src/core/evolution-migration.ts +77 -0
package/src/core/evolution-reducer.ts +731 -0
package/src/core/evolution-types.ts +456 -0
package/src/core/external-training-contract.ts +527 -0
package/src/core/focus-history.ts +1458 -0
package/src/core/hygiene/tracker.ts +117 -0
package/{dist/core/init.js → src/core/init.ts} +39 -26
package/src/core/local-worker-routing.ts +617 -0
package/{dist/core/migration.js → src/core/migration.ts} +18 -11
package/src/core/model-deployment-registry.ts +722 -0
package/src/core/model-training-registry.ts +813 -0
package/src/core/nocturnal-arbiter.ts +706 -0
package/src/core/nocturnal-candidate-scoring.ts +392 -0
package/src/core/nocturnal-compliance.ts +1075 -0
package/src/core/nocturnal-dataset.ts +668 -0
package/src/core/nocturnal-executability.ts +428 -0
package/src/core/nocturnal-export.ts +390 -0
package/{dist/core/nocturnal-paths.js → src/core/nocturnal-paths.ts} +49 -23
package/src/core/nocturnal-trajectory-extractor.ts +484 -0
package/src/core/nocturnal-trinity.ts +1384 -0
package/src/core/pain.ts +122 -0
package/{dist/core/path-resolver.js → src/core/path-resolver.ts} +157 -36
package/{dist/core/paths.js → src/core/paths.ts} +13 -4
package/src/core/principle-training-state.ts +450 -0
package/src/core/profile.ts +226 -0
package/src/core/promotion-gate.ts +822 -0
package/{dist/core/risk-calculator.js → src/core/risk-calculator.ts} +42 -16
package/{dist/core/session-tracker.js → src/core/session-tracker.ts} +185 -63
package/src/core/shadow-observation-registry.ts +534 -0
package/{dist/core/system-logger.js → src/core/system-logger.ts} +9 -5
package/src/core/thinking-models.ts +217 -0
package/src/core/training-program.ts +630 -0
package/src/core/trajectory-types.ts +243 -0
package/src/core/trajectory.ts +1673 -0
package/{dist/core/workspace-context.js → src/core/workspace-context.ts} +57 -32
package/src/hooks/bash-risk.ts +171 -0
package/src/hooks/edit-verification.ts +295 -0
package/src/hooks/gate-block-helper.ts +160 -0
package/src/hooks/gate.ts +210 -0
package/src/hooks/gfi-gate.ts +177 -0
package/src/hooks/lifecycle.ts +326 -0
package/{dist/hooks/llm.js → src/hooks/llm.ts} +166 -139
package/src/hooks/message-sanitize.ts +45 -0
package/src/hooks/pain.ts +384 -0
package/src/hooks/progressive-trust-gate.ts +174 -0
package/src/hooks/prompt.ts +920 -0
package/src/hooks/subagent.ts +207 -0
package/src/hooks/thinking-checkpoint.ts +73 -0
package/src/hooks/trajectory-collector.ts +290 -0
package/src/http/principles-console-route.ts +716 -0
package/src/i18n/commands.ts +117 -0
package/src/index.ts +694 -0
package/src/service/central-database.ts +831 -0
package/src/service/control-ui-query-service.ts +888 -0
package/src/service/evolution-query-service.ts +405 -0
package/src/service/evolution-worker.ts +1646 -0
package/src/service/health-query-service.ts +836 -0
package/{dist/service/nocturnal-runtime.js → src/service/nocturnal-runtime.ts} +263 -36
package/src/service/nocturnal-service.ts +1015 -0
package/src/service/nocturnal-target-selector.ts +532 -0
package/src/service/phase3-input-filter.ts +237 -0
package/src/service/runtime-summary-service.ts +757 -0
package/src/service/subagent-workflow/deep-reflect-workflow-manager.ts +513 -0
package/src/service/subagent-workflow/empathy-observer-workflow-manager.ts +603 -0
package/src/service/subagent-workflow/index.ts +51 -0
package/src/service/subagent-workflow/nocturnal-workflow-manager.ts +856 -0
package/src/service/subagent-workflow/runtime-direct-driver.ts +166 -0
package/src/service/subagent-workflow/types.ts +378 -0
package/src/service/subagent-workflow/workflow-store.ts +328 -0
package/src/service/trajectory-service.ts +15 -0
package/{dist/tools/critique-prompt.js → src/tools/critique-prompt.ts} +25 -8
package/src/tools/deep-reflect.ts +349 -0
package/{dist/tools/model-index.js → src/tools/model-index.ts} +33 -17
package/src/types/event-types.ts +453 -0
package/src/types/hygiene-types.ts +31 -0
package/src/types/principle-tree-schema.ts +244 -0
package/src/types/runtime-summary.ts +49 -0
package/src/types.ts +74 -0
package/src/utils/file-lock.ts +391 -0
package/{dist/utils/glob-match.js → src/utils/glob-match.ts} +21 -20
package/{dist/utils/hashing.js → src/utils/hashing.ts} +6 -4
package/src/utils/io.ts +110 -0
package/{dist/utils/nlp.js → src/utils/nlp.ts} +19 -12
package/{dist/utils/plugin-logger.js → src/utils/plugin-logger.ts} +33 -8
package/src/utils/subagent-probe.ts +94 -0
package/templates/langs/zh/skills/pd-diagnostician/SKILL.md +70 -1
package/templates/pain_settings.json +2 -1
package/tests/README.md +120 -0
package/tests/build-artifacts.test.ts +111 -0
package/tests/commands/evolution-status.test.ts +222 -0
package/tests/commands/evolver.test.ts +22 -0
package/tests/commands/export.test.ts +78 -0
package/tests/commands/nocturnal-review.test.ts +448 -0
package/tests/commands/nocturnal-train.test.ts +97 -0
package/tests/commands/pain.test.ts +108 -0
package/tests/commands/samples.test.ts +65 -0
package/tests/commands/strategy.test.ts +34 -0
package/tests/commands/thinking-os.test.ts +88 -0
package/tests/core/adaptive-thresholds.test.ts +261 -0
package/tests/core/config-service.test.ts +89 -0
package/tests/core/config.test.ts +90 -0
package/tests/core/control-ui-db.test.ts +75 -0
package/tests/core/core-template-guidance.test.ts +21 -0
package/tests/core/detection-funnel.test.ts +63 -0
package/tests/core/detection-service.test.ts +50 -0
package/tests/core/dictionary-service.test.ts +116 -0
package/tests/core/dictionary.test.ts +168 -0
package/tests/core/empathy-keyword-matcher.test.ts +209 -0
package/tests/core/event-log.test.ts +181 -0
package/tests/core/evolution-e2e.test.ts +58 -0
package/tests/core/evolution-engine-gate-integration.test.ts +543 -0
package/tests/core/evolution-engine.test.ts +562 -0
package/tests/core/evolution-logger.test.ts +148 -0
package/tests/core/evolution-migration.test.ts +50 -0
package/tests/core/evolution-paths.test.ts +21 -0
package/tests/core/evolution-reducer.detector-metadata.test.ts +602 -0
package/tests/core/evolution-reducer.test.ts +180 -0
package/tests/core/evolution-types-loop.test.ts +48 -0
package/tests/core/evolution-user-stories.e2e.test.ts +249 -0
package/tests/core/external-training-contract.test.ts +463 -0
package/tests/core/focus-history.test.ts +682 -0
package/tests/core/init-flatten.test.ts +69 -0
package/tests/core/init-refactor.test.ts +87 -0
package/tests/core/init-v1.3.test.ts +46 -0
package/tests/core/init.test.ts +190 -0
package/tests/core/local-worker-routing.test.ts +757 -0
package/tests/core/migration.test.ts +84 -0
package/tests/core/model-deployment-registry.test.ts +845 -0
package/tests/core/model-training-registry.test.ts +889 -0
package/tests/core/nocturnal-arbiter.test.ts +494 -0
package/tests/core/nocturnal-candidate-scoring.test.ts +400 -0
package/tests/core/nocturnal-compliance.test.ts +646 -0
package/tests/core/nocturnal-dataset.test.ts +892 -0
package/tests/core/nocturnal-executability.test.ts +357 -0
package/tests/core/nocturnal-export.test.ts +462 -0
package/tests/core/nocturnal-reviewed-subset-comparison.test.ts +428 -0
package/tests/core/nocturnal-trajectory-extractor.test.ts +634 -0
package/tests/core/nocturnal-trinity.test.ts +953 -0
package/tests/core/pain.test.ts +33 -0
package/tests/core/path-resolver.test.ts +57 -0
package/tests/core/paths-refactor.test.ts +42 -0
package/tests/core/phase7-rollout-integration.test.ts +477 -0
package/tests/core/principle-training-state.test.ts +712 -0
package/tests/core/profile.test.ts +56 -0
package/tests/core/promotion-gate.test.ts +556 -0
package/tests/core/risk-calculator.test.ts +168 -0
package/tests/core/session-tracker.test.ts +191 -0
package/tests/core/training-program.test.ts +472 -0
package/tests/core/trajectory.test.ts +265 -0
package/tests/core/workspace-context-factory.test.ts +18 -0
package/tests/core/workspace-context.test.ts +134 -0
package/tests/fixtures/nocturnal-reviewed-subset.json +183 -0
package/tests/fixtures/production-compatibility.test.ts +147 -0
package/tests/fixtures/production-mock-generator.ts +282 -0
package/tests/hooks/bash-risk-integration.test.ts +137 -0
package/tests/hooks/bash-risk.test.ts +81 -0
package/tests/hooks/edit-verification.test.ts +678 -0
package/tests/hooks/gate-edit-verification-p1.test.ts +632 -0
package/tests/hooks/gate-edit-verification.test.ts +435 -0
package/tests/hooks/gate-pipeline-integration.test.ts +404 -0
package/tests/hooks/gate.test.ts +271 -0
package/tests/hooks/gfi-gate-unit.test.ts +422 -0
package/tests/hooks/gfi-gate.test.ts +669 -0
package/tests/hooks/lifecycle.test.ts +248 -0
package/tests/hooks/llm.test.ts +308 -0
package/tests/hooks/message-sanitize.test.ts +36 -0
package/tests/hooks/pain.test.ts +141 -0
package/tests/hooks/progressive-trust-gate.test.ts +277 -0
package/tests/hooks/prompt.test.ts +1411 -0
package/tests/hooks/subagent.test.ts +467 -0
package/tests/hooks/thinking-gate.test.ts +313 -0
package/tests/http/principles-console-route.test.ts +140 -0
package/tests/hygiene-tracker.test.ts +77 -0
package/tests/index.integration.test.ts +179 -0
package/tests/index.shadow-routing.integration.test.ts +140 -0
package/tests/index.test.ts +9 -0
package/tests/integration/empathy-workflow-integration.test.ts +627 -0
package/tests/service/control-ui-query-service.test.ts +121 -0
package/tests/service/empathy-observer-workflow-manager.test.ts +176 -0
package/tests/service/evolution-worker.test.ts +585 -0
package/tests/service/nocturnal-runtime.test.ts +470 -0
package/tests/service/nocturnal-service.test.ts +577 -0
package/tests/service/nocturnal-target-selector.test.ts +615 -0
package/tests/service/nocturnal-workflow-manager.test.ts +439 -0
package/tests/service/phase3-input-filter.test.ts +289 -0
package/tests/service/runtime-summary-service.test.ts +919 -0
package/tests/task-compliance.test.ts +166 -0
package/tests/test-utils.ts +48 -0
package/tests/tools/critique-prompt.test.ts +260 -0
package/tests/tools/deep-reflect.test.ts +232 -0
package/tests/tools/model-index.test.ts +246 -0
package/tests/ui/app.test.tsx +114 -0
package/tests/utils/file-lock.test.ts +407 -0
package/tests/utils/hashing.test.ts +32 -0
package/tests/utils/io.test.ts +39 -0
package/tests/utils/nlp.test.ts +53 -0
package/tests/utils/plugin-logger.test.ts +156 -0
package/tsconfig.json +16 -0
package/tsconfig.tsbuildinfo +1 -0
package/ui/src/App.tsx +45 -0
package/ui/src/api.ts +216 -0
package/ui/src/charts.tsx +586 -0
package/ui/src/components/ErrorState.tsx +6 -0
package/ui/src/components/Loading.tsx +13 -0
package/ui/src/components/ProtectedRoute.tsx +12 -0
package/ui/src/components/Shell.tsx +91 -0
package/ui/src/components/WorkspaceConfig.tsx +146 -0
package/ui/src/components/index.ts +5 -0
package/ui/src/context/auth.tsx +80 -0
package/ui/src/context/theme.tsx +66 -0
package/ui/src/hooks/useAutoRefresh.ts +39 -0
package/ui/src/i18n/ui.ts +363 -0
package/ui/src/main.tsx +16 -0
package/ui/src/pages/EvolutionPage.tsx +352 -0
package/ui/src/pages/FeedbackPage.tsx +140 -0
package/ui/src/pages/GateMonitorPage.tsx +136 -0
package/ui/src/pages/LoginPage.tsx +88 -0
package/ui/src/pages/OverviewPage.tsx +238 -0
package/ui/src/pages/SamplesPage.tsx +174 -0
package/ui/src/pages/ThinkingModelsPage.tsx +127 -0
package/ui/src/styles.css +1661 -0
package/ui/src/types.ts +368 -0
package/ui/src/utils/format.ts +15 -0
package/vitest.config.ts +23 -0
package/dist/commands/capabilities.d.ts +0 -3
package/dist/commands/capabilities.js +0 -73
package/dist/commands/context.d.ts +0 -5
package/dist/commands/evolution-status.d.ts +0 -4
package/dist/commands/evolution-status.js +0 -117
package/dist/commands/evolver.d.ts +0 -9
package/dist/commands/evolver.js +0 -26
package/dist/commands/export.d.ts +0 -2
package/dist/commands/export.js +0 -98
package/dist/commands/focus.d.ts +0 -14
package/dist/commands/focus.js +0 -457
package/dist/commands/nocturnal-review.d.ts +0 -24
package/dist/commands/nocturnal-review.js +0 -265
package/dist/commands/nocturnal-rollout.d.ts +0 -27
package/dist/commands/nocturnal-rollout.js +0 -671
package/dist/commands/nocturnal-train.d.ts +0 -25
package/dist/commands/nocturnal-train.js +0 -919
package/dist/commands/pain.d.ts +0 -5
package/dist/commands/principle-rollback.d.ts +0 -4
package/dist/commands/principle-rollback.js +0 -22
package/dist/commands/rollback.d.ts +0 -19
package/dist/commands/samples.d.ts +0 -2
package/dist/commands/samples.js +0 -55
package/dist/commands/strategy.d.ts +0 -3
package/dist/commands/strategy.js +0 -29
package/dist/commands/thinking-os.d.ts +0 -2
package/dist/config/defaults/runtime.d.ts +0 -40
package/dist/config/errors.d.ts +0 -84
package/dist/config/errors.js +0 -94
package/dist/config/index.js +0 -7
package/dist/constants/diagnostician.d.ts +0 -12
package/dist/constants/diagnostician.js +0 -56
package/dist/constants/tools.d.ts +0 -17
package/dist/constants/tools.js +0 -54
package/dist/core/adaptive-thresholds.d.ts +0 -186
package/dist/core/adaptive-thresholds.js +0 -300
package/dist/core/config-service.d.ts +0 -15
package/dist/core/config.d.ts +0 -127
package/dist/core/control-ui-db.d.ts +0 -95
package/dist/core/control-ui-db.js +0 -292
package/dist/core/detection-funnel.d.ts +0 -33
package/dist/core/detection-service.d.ts +0 -15
package/dist/core/dictionary-service.d.ts +0 -15
package/dist/core/dictionary.d.ts +0 -38
package/dist/core/event-log.d.ts +0 -82
package/dist/core/event-log.js +0 -463
package/dist/core/evolution-engine.d.ts +0 -118
package/dist/core/evolution-engine.js +0 -464
package/dist/core/evolution-logger.d.ts +0 -137
package/dist/core/evolution-logger.js +0 -256
package/dist/core/evolution-migration.d.ts +0 -5
package/dist/core/evolution-migration.js +0 -65
package/dist/core/evolution-reducer.d.ts +0 -98
package/dist/core/evolution-reducer.js +0 -465
package/dist/core/evolution-types.d.ts +0 -287
package/dist/core/evolution-types.js +0 -78
package/dist/core/external-training-contract.d.ts +0 -276
package/dist/core/external-training-contract.js +0 -269
package/dist/core/focus-history.d.ts +0 -210
package/dist/core/focus-history.js +0 -1185
package/dist/core/hygiene/tracker.d.ts +0 -22
package/dist/core/hygiene/tracker.js +0 -106
package/dist/core/init.d.ts +0 -12
package/dist/core/local-worker-routing.d.ts +0 -175
package/dist/core/local-worker-routing.js +0 -525
package/dist/core/migration.d.ts +0 -6
package/dist/core/model-deployment-registry.d.ts +0 -218
package/dist/core/model-deployment-registry.js +0 -503
package/dist/core/model-training-registry.d.ts +0 -295
package/dist/core/model-training-registry.js +0 -475
package/dist/core/nocturnal-arbiter.d.ts +0 -159
package/dist/core/nocturnal-arbiter.js +0 -534
package/dist/core/nocturnal-candidate-scoring.d.ts +0 -137
package/dist/core/nocturnal-candidate-scoring.js +0 -266
package/dist/core/nocturnal-compliance.d.ts +0 -175
package/dist/core/nocturnal-compliance.js +0 -824
package/dist/core/nocturnal-dataset.d.ts +0 -224
package/dist/core/nocturnal-dataset.js +0 -443
package/dist/core/nocturnal-executability.d.ts +0 -85
package/dist/core/nocturnal-executability.js +0 -331
package/dist/core/nocturnal-export.d.ts +0 -124
package/dist/core/nocturnal-export.js +0 -275
package/dist/core/nocturnal-paths.d.ts +0 -124
package/dist/core/nocturnal-trajectory-extractor.d.ts +0 -242
package/dist/core/nocturnal-trajectory-extractor.js +0 -307
package/dist/core/nocturnal-trinity.d.ts +0 -311
package/dist/core/nocturnal-trinity.js +0 -880
package/dist/core/pain.d.ts +0 -4
package/dist/core/pain.js +0 -70
package/dist/core/path-resolver.d.ts +0 -46
package/dist/core/paths.d.ts +0 -65
package/dist/core/principle-training-state.d.ts +0 -121
package/dist/core/principle-training-state.js +0 -321
package/dist/core/profile.d.ts +0 -62
package/dist/core/profile.js +0 -210
package/dist/core/promotion-gate.d.ts +0 -238
package/dist/core/promotion-gate.js +0 -529
package/dist/core/risk-calculator.d.ts +0 -22
package/dist/core/session-tracker.d.ts +0 -99
package/dist/core/shadow-observation-registry.d.ts +0 -217
package/dist/core/shadow-observation-registry.js +0 -308
package/dist/core/system-logger.d.ts +0 -8
package/dist/core/thinking-models.d.ts +0 -38
package/dist/core/thinking-models.js +0 -170
package/dist/core/training-program.d.ts +0 -233
package/dist/core/training-program.js +0 -433
package/dist/core/trajectory.d.ts +0 -411
package/dist/core/trajectory.js +0 -1307
package/dist/core/workspace-context.d.ts +0 -71
package/dist/hooks/bash-risk.d.ts +0 -57
package/dist/hooks/bash-risk.js +0 -137
package/dist/hooks/edit-verification.d.ts +0 -62
package/dist/hooks/edit-verification.js +0 -256
package/dist/hooks/gate-block-helper.d.ts +0 -44
package/dist/hooks/gate-block-helper.js +0 -119
package/dist/hooks/gate.d.ts +0 -24
package/dist/hooks/gate.js +0 -173
package/dist/hooks/gfi-gate.d.ts +0 -40
package/dist/hooks/gfi-gate.js +0 -113
package/dist/hooks/lifecycle.d.ts +0 -5
package/dist/hooks/lifecycle.js +0 -284
package/dist/hooks/llm.d.ts +0 -12
package/dist/hooks/message-sanitize.d.ts +0 -3
package/dist/hooks/message-sanitize.js +0 -37
package/dist/hooks/pain.d.ts +0 -5
package/dist/hooks/pain.js +0 -301
package/dist/hooks/progressive-trust-gate.d.ts +0 -51
package/dist/hooks/progressive-trust-gate.js +0 -89
package/dist/hooks/prompt.d.ts +0 -47
package/dist/hooks/prompt.js +0 -884
package/dist/hooks/subagent.d.ts +0 -10
package/dist/hooks/subagent.js +0 -387
package/dist/hooks/thinking-checkpoint.d.ts +0 -37
package/dist/hooks/thinking-checkpoint.js +0 -51
package/dist/hooks/trajectory-collector.d.ts +0 -32
package/dist/hooks/trajectory-collector.js +0 -256
package/dist/http/principles-console-route.d.ts +0 -9
package/dist/http/principles-console-route.js +0 -567
package/dist/i18n/commands.d.ts +0 -26
package/dist/i18n/commands.js +0 -116
package/dist/index.d.ts +0 -7
package/dist/index.js +0 -581
package/dist/service/central-database.d.ts +0 -104
package/dist/service/central-database.js +0 -649
package/dist/service/control-ui-query-service.d.ts +0 -221
package/dist/service/control-ui-query-service.js +0 -543
package/dist/service/empathy-observer-manager.d.ts +0 -52
package/dist/service/empathy-observer-manager.js +0 -229
package/dist/service/evolution-query-service.d.ts +0 -155
package/dist/service/evolution-query-service.js +0 -258
package/dist/service/evolution-worker.d.ts +0 -101
package/dist/service/evolution-worker.js +0 -974
package/dist/service/nocturnal-runtime.d.ts +0 -183
package/dist/service/nocturnal-service.d.ts +0 -163
package/dist/service/nocturnal-service.js +0 -787
package/dist/service/nocturnal-target-selector.d.ts +0 -145
package/dist/service/nocturnal-target-selector.js +0 -315
package/dist/service/phase3-input-filter.d.ts +0 -73
package/dist/service/phase3-input-filter.js +0 -172
package/dist/service/runtime-summary-service.d.ts +0 -122
package/dist/service/runtime-summary-service.js +0 -485
package/dist/service/trajectory-service.d.ts +0 -2
package/dist/service/trajectory-service.js +0 -15
package/dist/tools/critique-prompt.d.ts +0 -14
package/dist/tools/deep-reflect.d.ts +0 -39
package/dist/tools/deep-reflect.js +0 -350
package/dist/tools/model-index.d.ts +0 -9
package/dist/types/event-types.d.ts +0 -306
package/dist/types/event-types.js +0 -106
package/dist/types/hygiene-types.d.ts +0 -20
package/dist/types/hygiene-types.js +0 -12
package/dist/types/runtime-summary.d.ts +0 -47
package/dist/types/runtime-summary.js +0 -1
package/dist/types.d.ts +0 -50
package/dist/types.js +0 -22
package/dist/utils/file-lock.d.ts +0 -71
package/dist/utils/file-lock.js +0 -309
package/dist/utils/glob-match.d.ts +0 -28
package/dist/utils/hashing.d.ts +0 -9
package/dist/utils/io.d.ts +0 -6
package/dist/utils/io.js +0 -106
package/dist/utils/nlp.d.ts +0 -9
package/dist/utils/plugin-logger.d.ts +0 -39
package/dist/utils/subagent-probe.d.ts +0 -34
package/dist/utils/subagent-probe.js +0 -81

package/tests/hooks/gfi-gate.test.ts ADDED Viewed

@@ -0,0 +1,669 @@
+import { describe, it, expect, vi, beforeEach, afterEach } from 'vitest';
+import { handleBeforeToolCall } from '../../src/hooks/gate.js';
+import * as fs from 'fs';
+import * as path from 'path';
+import { WorkspaceContext } from '../../src/core/workspace-context.js';
+import * as riskCalculator from '../../src/core/risk-calculator.js';
+import * as sessionTracker from '../../src/core/session-tracker.js';
+import * as evolutionEngine from '../../src/core/evolution-engine.js';
+import { EvolutionTier } from '../../src/core/evolution-types.js';
+vi.mock('fs');
+vi.mock('../../src/core/workspace-context.js');
+vi.mock('../../src/core/risk-calculator.js');
+vi.mock('../../src/core/session-tracker.js');
+vi.mock('../../src/core/evolution-engine.js');
+describe('GFI Gate - Hard Intercept', () => {
+  const workspaceDir = '/mock/workspace';
+  const mockConfig = {
+    get: vi.fn().mockImplementation((key) => {
+        if (key === 'trust') return {
+            limits: { stage_2_max_lines: 10, stage_3_max_lines: 100 }
+        };
+        if (key === 'gfi_gate') return {
+            enabled: true,
+            thresholds: {
+                low_risk_block: 70,
+                high_risk_block: 40,
+                large_change_block: 50
+            },
+            large_change_lines: 50,
+            trust_stage_multipliers: {
+                '1': 0.5,
+                '2': 0.75,
+                '3': 1.0,
+                '4': 1.5
+            },
+            bash_safe_patterns: [
+                '^(ls|dir|pwd|which|where|echo|env|cat|type|head|tail|less|more)\\b',
+                '^git\\s+(status|log|diff|branch|show|remote)\\b',
+                '^npm\\s+(run|test|build|start)\\b',
+                '^make\\s*$',
+                '^make\\s+(-j\\d+|--jobs\\s*\\d+)$',
+                '^(gradle|mvn)\\s+(clean|build|test|compile)\\b'
+            ],
+            bash_dangerous_patterns: [
+                'rm\\s+(-[a-z]*r[a-z]*f|-rf)',
+                'git\\s+(push\\s+.*--force|reset\\s+--hard|clean\\s+-fd)',
+                'npm\\s+publish',
+                '(curl|wget).*\\|\\s*(ba)?sh'
+            ]
+        };
+        return undefined;
+    })
+  };
+  const mockEventLog = {
+    recordGateBlock: vi.fn(),
+    recordPlanApproval: vi.fn(),
+    recordGfiGateBlock: vi.fn(),
+  };
+  const mockTrajectory = {
+    recordGateBlock: vi.fn(),
+    recordTaskOutcome: vi.fn(),
+  };
+  const mockWctx = {
+    workspaceDir,
+    stateDir: '/mock/state',
+    config: mockConfig,
+    eventLog: mockEventLog,
+    trajectory: mockTrajectory,
+    resolve: vi.fn().mockImplementation((key) => {
+        if (key === 'PROFILE') return path.join(workspaceDir, '.principles', 'PROFILE.json');
+        if (key === 'PLAN') return path.join(workspaceDir, 'PLAN.md');
+        return '';
+    }),
+  };
+  beforeEach(() => {
+    vi.clearAllMocks();
+    vi.useFakeTimers();
+    vi.mocked(WorkspaceContext.fromHookContext).mockReturnValue(mockWctx as any);
+    vi.mocked(riskCalculator.assessRiskLevel).mockReturnValue('LOW');
+    vi.mocked(riskCalculator.estimateLineChanges).mockReturnValue(1);
+    vi.mocked(sessionTracker.getSession).mockReturnValue({
+        sessionId: 'test-session',
+        currentGfi: 0,
+        toolReadsByFile: {},
+        llmTurns: 0,
+        blockedAttempts: 0,
+        lastActivityAt: Date.now(),
+        totalInputTokens: 0,
+        totalOutputTokens: 0,
+        cacheHits: 0,
+        stuckLoops: 0,
+        lastErrorHash: '',
+        consecutiveErrors: 0,
+        dailyToolCalls: 0,
+        dailyToolFailures: 0,
+        dailyPainSignals: 0,
+        dailyGfiPeak: 0,
+        lastThinkingTimestamp: 0,
+    } as any);
+    // Mock getEvolutionEngine to return a mock engine with getTier()
+    vi.mocked(evolutionEngine.getEvolutionEngine).mockReturnValue({
+      getTier: vi.fn().mockReturnValue(EvolutionTier.Sapling),
+      getPoints: vi.fn().mockReturnValue(200),
+      getAvailablePoints: vi.fn().mockReturnValue(200),
+      getTierDefinition: vi.fn().mockReturnValue({
+        tier: EvolutionTier.Sapling,
+        name: 'Sapling',
+        requiredPoints: 200,
+        permissions: { maxLinesPerWrite: 500, maxFilesPerTask: 10, allowRiskPath: true, allowSubagentSpawn: true }
+      }),
+    } as any);
+    vi.mocked(evolutionEngine.checkEvolutionGate).mockReturnValue({
+      allowed: true,
+      currentTier: EvolutionTier.Sapling,
+    });
+  });
+  afterEach(() => {
+    vi.useRealTimers();
+  });
+  // ════════════════════════════════════════════════
+  // TIER 0: 只读工具 - 永不拦截
+  // ════════════════════════════════════════════════
+  describe('TIER 0: Read-only tools', () => {
+    it('should NEVER block read_file regardless of GFI', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'read_file', params: { file_path: 'src/main.ts' } };
+      // 设置高 GFI
+      vi.mocked(sessionTracker.getSession).mockReturnValue({
+          ...mockWctx,
+          currentGfi: 95,
+      } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => {
+          return JSON.stringify({ risk_paths: [], progressive_gate: { enabled: true } });
+      });
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeUndefined(); // 放行
+    });
+    it('should NEVER block glob regardless of GFI', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'glob', params: { pattern: '**/*.ts' } };
+      vi.mocked(sessionTracker.getSession).mockReturnValue({
+          currentGfi: 100,
+      } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({}));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeUndefined(); // 放行
+    });
+    it('should NEVER block lsp_hover regardless of GFI', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'lsp_hover', params: { file: 'src/main.ts', line: 10, character: 5 } };
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 90 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({}));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeUndefined(); // 放行
+    });
+    it('should NEVER block deep_reflect regardless of GFI', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'deep_reflect', params: { question: 'Why did this fail?' } };
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 85 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({}));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeUndefined(); // 放行
+    });
+  });
+  // ════════════════════════════════════════════════
+  // TIER 1: 低风险修改 - GFI >= 70 时拦截
+  // ════════════════════════════════════════════════
+  describe('TIER 1: Low-risk write tools', () => {
+    it('should block write when GFI >= 70 (threshold)', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'write', params: { file_path: 'docs/readme.md', content: 'test' } };
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 75 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeDefined();
+      expect(result?.block).toBe(true);
+      expect(result?.blockReason).toContain('GFI');
+    });
+    it('should allow write when GFI < 70 (below threshold)', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'write', params: { file_path: 'docs/readme.md', content: 'test' } };
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 50 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeUndefined(); // 放行
+    });
+    it('should block edit when GFI >= 70', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'edit', params: { file_path: 'src/util.ts', oldText: 'foo', newText: 'bar' } };
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 80 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeDefined();
+      expect(result?.block).toBe(true);
+      expect(result?.blockReason).toContain('GFI');
+    });
+    it('should NOT block sessions_spawn (low risk) when GFI < 70', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'sessions_spawn', params: { task: 'Analyze code' } };
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 50 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      // sessions_spawn 不在 WRITE_TOOLS 中，应该直接返回（不被 gate 处理）
+      // 但如果它被当作 AGENT_TOOLS 处理，也应该不被 GFI gate 拦截
+      expect(result).toBeUndefined();
+    });
+    it('should fail closed when dangerous bash regex is invalid', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'bash', params: { command: 'echo safe' } };
+      const originalGet = mockConfig.get.getMockImplementation();
+      mockConfig.get.mockImplementation((key) => {
+        if (key === 'trust') return {
+          limits: { stage_2_max_lines: 10, stage_3_max_lines: 100 }
+        };
+        if (key === 'gfi_gate') return {
+          enabled: true,
+          thresholds: {
+            low_risk_block: 70,
+            high_risk_block: 40,
+            large_change_block: 50
+          },
+          large_change_lines: 50,
+          trust_stage_multipliers: {
+            '1': 0.5,
+            '2': 0.75,
+            '3': 1.0,
+            '4': 1.5
+          },
+          bash_safe_patterns: ['^echo\\b'],
+          bash_dangerous_patterns: ['(']
+        };
+        return undefined;
+      });
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 0 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      mockConfig.get.mockImplementation(originalGet ?? ((key) => undefined));
+      expect(result?.block).toBe(true);
+    });
+  });
+  // ════════════════════════════════════════════════
+  // TIER 2: 高风险操作 - GFI >= 40 时拦截
+  // ════════════════════════════════════════════════
+  describe('TIER 2: High-risk tools', () => {
+    it('should block delete_file when GFI >= 40', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'delete_file', params: { file_path: 'temp/file.txt' } };
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 50 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeDefined();
+      expect(result?.block).toBe(true);
+      expect(result?.blockReason).toContain('GFI');
+    });
+    it('should allow delete_file when GFI < 40', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'delete_file', params: { file_path: 'temp/file.txt' } };
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 30 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeUndefined(); // 放行
+    });
+    it('should block move_file when GFI >= 40', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'move_file', params: { source: 'old.ts', destination: 'new.ts' } };
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 55 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeDefined();
+      expect(result?.block).toBe(true);
+      expect(result?.blockReason).toContain('GFI');
+    });
+  });
+  // ════════════════════════════════════════════════
+  // TIER 3: Bash 命令 - 根据内容判断
+  // ════════════════════════════════════════════════
+  describe('TIER 3: Bash commands', () => {
+    describe('Safe commands (always allowed)', () => {
+      it('should allow "git status" regardless of GFI', () => {
+        const mockCtx = { workspaceDir, sessionId: 'test-session' };
+        const mockEvent = { toolName: 'run_shell_command', params: { command: 'git status' } };
+        vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 95 } as any);
+        vi.mocked(fs.existsSync).mockReturnValue(true);
+        vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+        const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+        expect(result).toBeUndefined(); // 放行
+      });
+      it('should allow "ls -la" regardless of GFI', () => {
+        const mockCtx = { workspaceDir, sessionId: 'test-session' };
+        const mockEvent = { toolName: 'run_shell_command', params: { command: 'ls -la' } };
+        vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 90 } as any);
+        vi.mocked(fs.existsSync).mockReturnValue(true);
+        vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+        const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+        expect(result).toBeUndefined(); // 放行
+      });
+      it('should allow "npm test" regardless of GFI', () => {
+        const mockCtx = { workspaceDir, sessionId: 'test-session' };
+        const mockEvent = { toolName: 'run_shell_command', params: { command: 'npm test' } };
+        vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 85 } as any);
+        vi.mocked(fs.existsSync).mockReturnValue(true);
+        vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+        const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+        expect(result).toBeUndefined(); // 放行
+      });
+      it('should allow "cat file.txt" regardless of GFI', () => {
+        const mockCtx = { workspaceDir, sessionId: 'test-session' };
+        const mockEvent = { toolName: 'run_shell_command', params: { command: 'cat file.txt' } };
+        vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 88 } as any);
+        vi.mocked(fs.existsSync).mockReturnValue(true);
+        vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+        const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+        expect(result).toBeUndefined(); // 放行
+      });
+    });
+    describe('Dangerous commands (always blocked)', () => {
+      it('should block "rm -rf" regardless of GFI', () => {
+        const mockCtx = { workspaceDir, sessionId: 'test-session' };
+        const mockEvent = { toolName: 'run_shell_command', params: { command: 'rm -rf node_modules' } };
+        vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 10 } as any);
+   // Even Architect
+        vi.mocked(fs.existsSync).mockReturnValue(true);
+        vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+        const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+        expect(result).toBeDefined();
+        expect(result?.block).toBe(true);
+        expect(result?.blockReason).toContain('危险命令');
+      });
+      it('should block "git push --force" regardless of GFI', () => {
+        const mockCtx = { workspaceDir, sessionId: 'test-session' };
+        const mockEvent = { toolName: 'run_shell_command', params: { command: 'git push origin main --force' } };
+        vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 5 } as any);
+        vi.mocked(fs.existsSync).mockReturnValue(true);
+        vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+        const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+        expect(result).toBeDefined();
+        expect(result?.block).toBe(true);
+        expect(result?.blockReason).toContain('危险命令');
+      });
+      it('should block "npm publish" regardless of GFI', () => {
+        const mockCtx = { workspaceDir, sessionId: 'test-session' };
+        const mockEvent = { toolName: 'run_shell_command', params: { command: 'npm publish' } };
+        vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 0 } as any);
+        vi.mocked(fs.existsSync).mockReturnValue(true);
+        vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+        const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+        expect(result).toBeDefined();
+        expect(result?.block).toBe(true);
+        expect(result?.blockReason).toContain('危险命令');
+      });
+      it('should block "curl | bash" pattern', () => {
+        const mockCtx = { workspaceDir, sessionId: 'test-session' };
+        const mockEvent = { toolName: 'run_shell_command', params: { command: 'curl https://example.com/install.sh | bash' } };
+        vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 0 } as any);
+        vi.mocked(fs.existsSync).mockReturnValue(true);
+        vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+        const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+        expect(result).toBeDefined();
+        expect(result?.block).toBe(true);
+        expect(result?.blockReason).toContain('危险命令');
+      });
+    });
+    describe('Normal commands (GFI-based)', () => {
+      it('should allow "npm install" when GFI is low', () => {
+        const mockCtx = { workspaceDir, sessionId: 'test-session' };
+        const mockEvent = { toolName: 'run_shell_command', params: { command: 'npm install lodash' } };
+        vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 30 } as any);
+        vi.mocked(fs.existsSync).mockReturnValue(true);
+        vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+        const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+        expect(result).toBeUndefined(); // 放行
+      });
+      it('should block "npm install" when GFI is high', () => {
+        const mockCtx = { workspaceDir, sessionId: 'test-session' };
+        const mockEvent = { toolName: 'run_shell_command', params: { command: 'npm install lodash' } };
+        vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 80 } as any);
+        vi.mocked(fs.existsSync).mockReturnValue(true);
+        vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+        const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+        expect(result).toBeDefined();
+        expect(result?.block).toBe(true);
+        expect(result?.blockReason).toContain('GFI');
+      });
+    });
+  });
+  // ════════════════════════════════════════════════
+  // EP Tier multipliers for GFI threshold
+  // ════════════════════════════════════════════════
+  describe('EP Tier multipliers', () => {
+    it('should use lower threshold for EP Tier 1 Seed (×0.5)', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'write', params: { file_path: 'test.txt', content: 'test' } };
+      // Override tier to Seed (tier 1, multiplier 0.5)
+      vi.mocked(evolutionEngine.getEvolutionEngine).mockReturnValue({
+        getTier: vi.fn().mockReturnValue(EvolutionTier.Seed),
+        getPoints: vi.fn().mockReturnValue(0),
+        getAvailablePoints: vi.fn().mockReturnValue(0),
+        getTierDefinition: vi.fn().mockReturnValue({
+          tier: EvolutionTier.Seed,
+          name: 'Seed',
+          requiredPoints: 0,
+          permissions: { maxLinesPerWrite: 150, maxFilesPerTask: 3, allowRiskPath: false, allowSubagentSpawn: true }
+        }),
+      } as any);
+      // 基础阈值 70 × 0.5 = 35
+      // GFI = 40 应该被拦截
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 40 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeDefined();
+      expect(result?.block).toBe(true);
+      expect(result?.blockReason).toContain('GFI');
+    });
+    it('should use standard threshold for EP Tier 3 Sapling (×1.0)', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'write', params: { file_path: 'test.txt', content: 'test' } };
+      // 基础阈值 70 × 1.0 = 70
+      // GFI = 65 应该放行
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 65 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeUndefined(); // 放行
+    });
+    it('should use higher threshold for EP Tier 4 Tree (×1.5)', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'write', params: { file_path: 'test.txt', content: 'test' } };
+      // Override tier to Tree (tier 4, multiplier 1.5)
+      vi.mocked(evolutionEngine.getEvolutionEngine).mockReturnValue({
+        getTier: vi.fn().mockReturnValue(EvolutionTier.Tree),
+        getPoints: vi.fn().mockReturnValue(500),
+        getAvailablePoints: vi.fn().mockReturnValue(500),
+        getTierDefinition: vi.fn().mockReturnValue({
+          tier: EvolutionTier.Tree,
+          name: 'Tree',
+          requiredPoints: 500,
+          permissions: { maxLinesPerWrite: 1000, maxFilesPerTask: 20, allowRiskPath: true, allowSubagentSpawn: true }
+        }),
+      } as any);
+      // 基础阈值 70 × 1.5 = 105
+      // GFI = 80 应该放行
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 80 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeUndefined(); // 放行
+    });
+  });
+  // ════════════════════════════════════════════════
+  // 大规模修改 - 按比例降低阈值
+  // ════════════════════════════════════════════════
+  describe('Large change threshold reduction', () => {
+    it('should lower threshold for large modifications (100+ lines)', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'write', params: { file_path: 'large.ts', content: 'x\n'.repeat(120) } };
+      // 基础阈值 70 × (1 - 120/200 * 0.5) = 70 × 0.7 = 49
+      // GFI = 55 应该被拦截
+      vi.mocked(riskCalculator.estimateLineChanges).mockReturnValue(120);
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 55 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeDefined();
+      expect(result?.block).toBe(true);
+      expect(result?.blockReason).toContain('GFI');
+    });
+    it('should allow small modifications at same GFI', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'write', params: { file_path: 'small.ts', content: 'test' } };
+      // 小修改癸紝基础阈值 70
+      // GFI = 55 应该放行
+      vi.mocked(riskCalculator.estimateLineChanges).mockReturnValue(5);
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 55 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      expect(result).toBeUndefined(); // 放行
+    });
+  });
+  // ════════════════════════════════════════════════
+  // 配置禁用
+  // ════════════════════════════════════════════════
+  describe('Configuration', () => {
+    it('should skip GFI gate when disabled', () => {
+      const mockCtx = { workspaceDir, sessionId: 'test-session' };
+      const mockEvent = { toolName: 'write', params: { file_path: 'test.txt', content: 'test' } };
+      vi.mocked(sessionTracker.getSession).mockReturnValue({ currentGfi: 90 } as any);
+      vi.mocked(fs.existsSync).mockReturnValue(true);
+      vi.mocked(fs.readFileSync).mockImplementation(() => JSON.stringify({ progressive_gate: { enabled: true } }));
+      // 禁用 GFI gate
+      mockConfig.get.mockImplementation((key) => {
+          if (key === 'trust') return { limits: { stage_2_max_lines: 10, stage_3_max_lines: 100 } };
+          if (key === 'gfi_gate') return { enabled: false };
+          return undefined;
+      });
+      const result = handleBeforeToolCall(mockEvent as any, mockCtx as any);
+      // GFI gate 禁用后不应该拦截
+      expect(result).toBeUndefined();
+    });
+  });
+});