runtrim 0.1.3 → 0.1.5

package/README.md

@@ -90,8 +90,8 @@ npm run runtrim -- start
 - blocks unsafe mega-runs and suggests split-safe follow-ups
 - generates guarded prompts with explicit stop rules
 - monitors changed files during execution
-- checks output quality and missing proof after edits
-- stores local run memory in `.runtrim/`
+- reviews changed files, risk flags, verification debt, and next safe action after edits
+- shows current project memory, latest run state, and continuation guidance in `.runtrim/`
 
 ## Core commands
 

package/dist-cli/runtrim.js

@@ -32,7 +32,7 @@ import { execa as execa3 } from "execa";
 // package.json
 var package_default = {
   name: "runtrim",
-  version: "0.1.2",
+  version: "0.1.4",
   description: "CLI guard layer that scopes AI coding runs before they waste tokens.",
   license: "MIT",
   author: "RunTrim",
@@ -3420,6 +3420,77 @@ function parseMemorySection2(memory, title) {
 function dedupeFiles(files) {
   return [...new Set(files.filter(Boolean).map((f) => f.replace(/\\/g, "/")))];
 }
+var HIGH_RISK_PATH_KEYWORDS = [
+  "auth",
+  "login",
+  "signup",
+  "session",
+  "jwt",
+  "middleware",
+  "proxy",
+  "billing",
+  "payment",
+  "stripe",
+  "dodo",
+  "checkout",
+  "webhook",
+  "database",
+  "schema",
+  "migration",
+  "supabase",
+  "env",
+  "secret",
+  "token",
+  "admin",
+  "permission",
+  "security",
+  "package.json",
+  "package-lock.json",
+  "pnpm-lock.yaml",
+  "yarn.lock"
+];
+function inferMaxFilesFromScope(scope, fallback) {
+  var _a2, _b;
+  const text = scope.join(" ").toLowerCase();
+  const n = Number.parseInt((_b = (_a2 = text.match(/maximum\s+(\d+)\s+files/)) == null ? void 0 : _a2[1]) != null ? _b : "", 10);
+  if (Number.isFinite(n) && n > 0) return n;
+  return Math.max(1, fallback || 5);
+}
+function collectProtectedSystems(run, config, audit) {
+  var _a2, _b, _c, _d, _e, _f;
+  const values = /* @__PURE__ */ new Set();
+  const add = (v) => {
+    const x = v.trim().toLowerCase();
+    if (!x) return;
+    values.add(x);
+  };
+  for (const a of (_a2 = config.sensitiveAreas) != null ? _a2 : []) add(a);
+  for (const a of (_b = audit == null ? void 0 : audit.protectedAreas) != null ? _b : []) add(a);
+  for (const s of (_d = (_c = run == null ? void 0 : run.contract.contract) == null ? void 0 : _c.sensitiveScope) != null ? _d : []) add(s);
+  for (const s of (_f = (_e = run == null ? void 0 : run.contract.contract) == null ? void 0 : _e.forbiddenScope) != null ? _f : []) add(s);
+  const mapped = /* @__PURE__ */ new Set();
+  for (const raw of values) {
+    if (raw.includes("auth")) mapped.add("auth");
+    if (raw.includes("middleware") || raw.includes("proxy")) mapped.add("middleware");
+    if (raw.includes("database") || raw.includes("schema") || raw.includes("migration")) mapped.add("database");
+    if (raw.includes("env") || raw.includes("secret")) mapped.add("env/secrets");
+    if (raw.includes("billing")) mapped.add("billing");
+    if (raw.includes("payment") || raw.includes("stripe") || raw.includes("dodo")) mapped.add("payments");
+    if (raw.includes("webhook")) mapped.add("webhooks");
+    if (raw.includes("package") || raw.includes("lock")) mapped.add("package/config changes");
+  }
+  const ordered = [
+    "auth",
+    "middleware",
+    "database",
+    "env/secrets",
+    "billing",
+    "payments",
+    "webhooks",
+    "package/config changes"
+  ];
+  return ordered.filter((x) => mapped.has(x));
+}
 var CONTINUATION_REASONS = [
   "usage_limit",
   "credits_exhausted",
@@ -4649,95 +4720,32 @@ program.command("go <task>").description("Daily shortcut: initialize if needed,
   console.log(chalk.white("Run `runtrim --help` for panel, check, memory and continuation commands."));
   console.log("");
 });
-program.command("check").description("Check the latest run and evaluate agent output").action(async () => {
-  var _a2, _b, _c, _d, _e, _f, _g, _h, _i, _j, _k, _l, _m, _n;
+program.command("check").description("Check the latest run and evaluate agent output").option("--json", "Print machine-readable check summary").action(async (options) => {
+  var _a2, _b, _c, _d, _e, _f, _g, _h, _i, _j, _k;
   const cwd = process.cwd();
   console.log("");
   console.log(BOLD("RunTrim") + DIM("  check"));
   console.log("");
   const run = loadLatestRun(cwd);
   if (!run) {
-    console.log(chalk.yellow('  No runs found. Run: runtrim guard "your task"'));
+    console.log(chalk.yellow('  No runs found. Start with: runtrim go "your task"'));
     console.log("");
     return;
   }
-  if (run.evaluation) {
-    const { recheck } = await prompts({
-      type: "confirm",
-      name: "recheck",
-      message: "Latest run already has an evaluation. Re-check now?",
-      initial: false
-    });
-    if (!recheck) {
-      console.log(DIM("  Skipped. Existing evaluation retained."));
-      console.log("");
-      return;
-    }
-  }
-  console.log(DIM("  Latest run:  ") + chalk.white(truncate(run.task, 55)));
-  console.log(DIM("  Guarded at:  ") + chalk.white(formatDate(run.createdAt)));
-  console.log("");
-  if (run.status === "blocked" || run.status === "split_required") {
-    const evaluationBase2 = evaluateAgentOutput(null, [], {
-      task: run.task,
-      relevantScope: (_b = (_a2 = run.contract.contract) == null ? void 0 : _a2.relevantScope) != null ? _b : [],
-      sensitiveScope: (_d = (_c = run.contract.contract) == null ? void 0 : _c.sensitiveScope) != null ? _d : [],
-      forbiddenScope: (_f = (_e = run.contract.contract) == null ? void 0 : _e.forbiddenScope) != null ? _f : [],
-      runStatus: run.status
-    });
-    const evaluation2 = __spreadProps(__spreadValues({}, evaluationBase2), {
-      nextPrompt: evaluationBase2.nextGuardedPrompt,
-      nextSafePrompt: evaluationBase2.nextGuardedPrompt,
-      nextSafeAction: evaluationBase2.nextSafeAction,
-      memorySummary: evaluationBase2.memorySummary,
-      evaluatedAt: evaluationBase2.evaluatedAt
-    });
-    updateRun(run.id, { evaluation: evaluation2, status: "checked" }, cwd);
-    const latestAfterUpdate2 = loadLatestRun(cwd);
-    if (latestAfterUpdate2) {
-      writeMemoryFromRuns(latestAfterUpdate2, loadAllRuns(cwd), loadConfig(cwd), cwd);
-    }
-    await copyToClipboardSafe(evaluation2.nextPrompt);
-    console.log(chalk.yellow("  Latest run was blocked. Start with the recommended split audit task."));
-    console.log("");
-    console.log(DIM("  Next safe prompt:"));
-    for (const line of evaluation2.nextPrompt.split("\n")) console.log(DIM("    " + line));
-    console.log("");
-    console.log(ACCENT.bold("  Next prompt copied to clipboard."));
-    console.log("");
-    return;
-  }
-  const diffSpinner = oraFactory({ text: "Reading git diff...", color: "yellow" }).start();
-  const changedFiles = await getGitDiff(cwd);
-  diffSpinner.stop();
-  if (changedFiles.length > 0) {
-    console.log(DIM("  Changed files (" + changedFiles.length + "):"));
-    for (const f of changedFiles) console.log(DIM("    " + f));
-    console.log("");
-  } else {
-    console.log(DIM("  No git changes detected since last commit."));
-    console.log("");
-  }
-  const { pasteOutput } = await prompts({
-    type: "confirm",
-    name: "pasteOutput",
-    message: "Evaluate agent output? (paste output or skip)",
-    initial: true
+  const config = configExists(cwd) ? loadConfig(cwd) : DEFAULT_CONFIG;
+  const changedFiles = dedupeFiles(await getGitDiff(cwd));
+  const maxFiles = inferMaxFilesFromScope((_b = (_a2 = run.contract.contract) == null ? void 0 : _a2.relevantScope) != null ? _b : [], config.maxFilesPerRun);
+  const scope = evaluateWatchState({
+    changedFiles,
+    run,
+    maxFilesPerRun: maxFiles,
+    strict: false
   });
-  let agentOutput = null;
-  if (pasteOutput) {
-    const { output } = await prompts({
-      type: "text",
-      name: "output",
-      message: "Paste agent output:"
-    });
-    agentOutput = output != null ? output : null;
-  }
-  const evaluationBase = evaluateAgentOutput(agentOutput, changedFiles, {
+  const evaluationBase = evaluateAgentOutput(null, changedFiles, {
     task: run.task,
-    relevantScope: (_h = (_g = run.contract.contract) == null ? void 0 : _g.relevantScope) != null ? _h : [],
-    sensitiveScope: (_j = (_i = run.contract.contract) == null ? void 0 : _i.sensitiveScope) != null ? _j : [],
-    forbiddenScope: (_l = (_k = run.contract.contract) == null ? void 0 : _k.forbiddenScope) != null ? _l : [],
+    relevantScope: (_d = (_c = run.contract.contract) == null ? void 0 : _c.relevantScope) != null ? _d : [],
+    sensitiveScope: (_f = (_e = run.contract.contract) == null ? void 0 : _e.sensitiveScope) != null ? _f : [],
+    forbiddenScope: (_h = (_g = run.contract.contract) == null ? void 0 : _g.forbiddenScope) != null ? _h : [],
     runStatus: run.status
   });
   const evaluation = __spreadProps(__spreadValues({}, evaluationBase), {
@@ -4747,66 +4755,133 @@ program.command("check").description("Check the latest run and evaluate agent ou
     memorySummary: evaluationBase.memorySummary,
     evaluatedAt: evaluationBase.evaluatedAt
   });
-  updateRun(run.id, { evaluation, status: "checked" }, cwd);
-  const latestAfterUpdate = loadLatestRun(cwd);
-  if (latestAfterUpdate) {
-    writeMemoryFromRuns(latestAfterUpdate, loadAllRuns(cwd), loadConfig(cwd), cwd);
+  const lowerChanged = changedFiles.map((f) => f.toLowerCase());
+  const riskFlags = /* @__PURE__ */ new Set();
+  for (const file of lowerChanged) {
+    for (const kw of HIGH_RISK_PATH_KEYWORDS) {
+      if (file.includes(kw)) {
+        riskFlags.add(`High-risk path touched: ${kw}`);
+        break;
+      }
+    }
   }
-  const statusColors2 = {
-    passed: chalk.green,
-    partial: chalk.yellow,
-    needs_verification: chalk.hex("#FF8C00"),
-    no_changes_detected: chalk.hex("#FF8C00"),
-    drift_detected: chalk.red,
-    blocked: chalk.red
-  };
-  const driftColors = {
-    none: chalk.green,
-    low: chalk.yellow,
-    medium: chalk.hex("#FF8C00"),
-    high: chalk.red
+  if (scope.forbiddenFiles.length > 0) riskFlags.add("Forbidden scope changed");
+  if (scope.sensitiveFiles.length > 0) riskFlags.add("Sensitive scope changed");
+  if (scope.outOfScopeFiles.length > 0) riskFlags.add("Potential outside-scope changes detected");
+  if (changedFiles.length > maxFiles) riskFlags.add(`File count exceeded scope limit (${maxFiles})`);
+  const verificationDebt = /* @__PURE__ */ new Set();
+  if (changedFiles.length > 0) {
+    if (run.status === "guarded") verificationDebt.add("Run is still guarded and not checked.");
+    if (!run.evaluation) verificationDebt.add("Changed files exist but no post-run check was recorded.");
+    if (scope.sensitiveFiles.length > 0) verificationDebt.add("Sensitive files changed. Review and verify before continuing.");
+    if (scope.forbiddenFiles.length > 0) verificationDebt.add("Forbidden files changed. Manual containment required.");
+    if (changedFiles.length > maxFiles) verificationDebt.add("Too many files changed for one scoped run. Split the task.");
+    if (lowerChanged.some((f) => /(^|\/)(package-lock\.json|pnpm-lock\.yaml|yarn\.lock)$/.test(f))) {
+      verificationDebt.add("Lockfile changed. Confirm dependency intent.");
+    }
+    if (lowerChanged.some((f) => /(migration|migrations|schema|database)/.test(f))) {
+      verificationDebt.add("Database or migration-related changes need explicit verification.");
+    }
+    if (lowerChanged.some((f) => /(middleware|auth|login|session|jwt|payment|billing|stripe|webhook)/.test(f))) {
+      verificationDebt.add("Auth, middleware, payment, or webhook surface changed. Run focused verification.");
+    }
+    if (scope.outOfScopeFiles.length > 0) {
+      verificationDebt.add("Some changed files appear outside declared relevant scope.");
+    }
+    for (const item of (_j = (_i = run.evaluation) == null ? void 0 : _i.missingProofItems) != null ? _j : []) verificationDebt.add(item);
+  }
+  let nextSafeAction = "Run is ready to continue.";
+  if (scope.forbiddenFiles.length > 0) {
+    nextSafeAction = "Stop and inspect forbidden files before continuing.";
+  } else if (scope.sensitiveFiles.length > 0) {
+    nextSafeAction = "Review sensitive changes, then run tests before continuing.";
+  } else if (changedFiles.length > maxFiles) {
+    nextSafeAction = "Stop scope drift and split the task.";
+  } else if (changedFiles.length === 0) {
+    nextSafeAction = "No local changes detected. Continue or prepare the next run.";
+  } else if (verificationDebt.size > 0) {
+    nextSafeAction = "Resolve verification debt, then run runtrim check again.";
+  }
+  evaluation.nextSafeAction = nextSafeAction;
+  evaluation.nextPrompt = evaluation.nextGuardedPrompt;
+  evaluation.nextSafePrompt = evaluation.nextGuardedPrompt;
+  const checkSummary = {
+    checkedAt: (/* @__PURE__ */ new Date()).toISOString(),
+    changedFilesCount: changedFiles.length,
+    allowedCount: scope.relevantFiles.length,
+    sensitiveCount: scope.sensitiveFiles.length,
+    forbiddenCount: scope.forbiddenFiles.length,
+    outsideScopeCount: scope.outOfScopeFiles.length,
+    verificationDebt: [...verificationDebt],
+    riskFlags: [...riskFlags],
+    nextSafeAction
   };
-  const statusColor = (_m = statusColors2[evaluation.status]) != null ? _m : chalk.white;
-  const driftColor = (_n = driftColors[evaluation.scopeDriftRisk]) != null ? _n : chalk.white;
-  console.log("");
-  console.log(DIM("  " + SECTION));
-  console.log(DIM("  EVALUATION"));
-  console.log(DIM("  " + SECTION));
-  console.log("");
-  console.log(DIM("  Status         ") + statusColor(formatStatus(evaluation.status).toUpperCase()));
-  console.log(DIM("  Contract score ") + chalk.white(formatScore(evaluation.contractScore)));
-  console.log(DIM("  Scope drift    ") + driftColor(evaluation.scopeDriftRisk.toUpperCase()));
-  console.log(DIM("  Next action    ") + chalk.white(evaluation.nextSafeAction));
-  console.log("");
-  if (evaluation.driftedFiles.length > 0) {
-    console.log(chalk.red("  Drifted files:"));
-    for (const f of evaluation.driftedFiles) console.log(chalk.red("    x " + f));
-    console.log("");
+  updateRun(run.id, { evaluation, checkSummary, status: "checked" }, cwd);
+  const latestAfterUpdate = loadLatestRun(cwd);
+  if (latestAfterUpdate && configExists(cwd)) {
+    writeMemoryFromRuns(latestAfterUpdate, loadAllRuns(cwd), loadConfig(cwd), cwd);
   }
-  if (evaluation.outOfScopeFiles.length > 0) {
-    console.log(chalk.yellow("  Out-of-scope files:"));
-    for (const f of evaluation.outOfScopeFiles) console.log(DIM("    - " + f));
+  if (options.json) {
+    console.log(
+      JSON.stringify(
+        {
+          runId: run.id,
+          task: run.task,
+          scopeResult: {
+            allowedChanges: checkSummary.allowedCount,
+            sensitiveChanges: checkSummary.sensitiveCount,
+            forbiddenChanges: checkSummary.forbiddenCount,
+            outsideScope: checkSummary.outsideScopeCount
+          },
+          verificationDebt: checkSummary.verificationDebt,
+          riskFlags: checkSummary.riskFlags,
+          changedFiles,
+          nextSafeAction: checkSummary.nextSafeAction,
+          checkedAt: checkSummary.checkedAt
+        },
+        null,
+        2
+      )
+    );
     console.log("");
+    return;
   }
-  if (evaluation.missingProofItems.length > 0) {
-    console.log(chalk.yellow("  Missing:"));
-    for (const item of evaluation.missingProofItems) console.log(DIM("    - " + item));
-    console.log("");
+  const changedPreview = changedFiles.slice(0, 8);
+  const extraCount = Math.max(0, changedFiles.length - changedPreview.length);
+  console.log(BOLD("Run"));
+  console.log(chalk.white(((_k = run.task) == null ? void 0 : _k.trim()) ? truncate(run.task, 68) : "Latest run"));
+  console.log("");
+  console.log(BOLD("Scope result"));
+  console.log(chalk.white(`- Allowed changes: ${checkSummary.allowedCount}`));
+  console.log(chalk.white(`- Sensitive changes: ${checkSummary.sensitiveCount}`));
+  console.log(chalk.white(`- Forbidden changes: ${checkSummary.forbiddenCount}`));
+  console.log(chalk.white(`- Outside scope: ${checkSummary.outsideScopeCount}`));
+  console.log("");
+  console.log(BOLD("Verification debt"));
+  if (checkSummary.verificationDebt.length === 0) {
+    console.log(chalk.white("No verification debt recorded."));
+  } else {
+    for (const item of checkSummary.verificationDebt) console.log(chalk.white(`- ${item}`));
   }
-  console.log(DIM("  " + SECTION));
-  console.log(DIM("  NEXT GUARDED PROMPT"));
-  console.log(DIM("  " + SECTION));
   console.log("");
-  for (const line of evaluation.nextPrompt.split("\n")) {
-    console.log(DIM("  " + line));
+  console.log(BOLD("Risk flags"));
+  if (checkSummary.riskFlags.length === 0) {
+    console.log(chalk.white("No high-risk flags detected."));
+  } else {
+    for (const flag of checkSummary.riskFlags) console.log(chalk.white(`- ${flag}`));
   }
   console.log("");
-  try {
-    await clipboard.write(evaluation.nextPrompt);
-    console.log(ACCENT.bold("  Next prompt copied to clipboard."));
-  } catch (e) {
+  console.log(BOLD("Changed files"));
+  if (changedFiles.length === 0) {
+    console.log(chalk.white("No local changed files detected."));
+  } else {
+    for (const file of changedPreview) console.log(chalk.white(`- ${file}`));
+    if (extraCount > 0) console.log(chalk.white(`+${extraCount} more`));
   }
   console.log("");
+  console.log(BOLD("Next safe action"));
+  console.log(chalk.white(checkSummary.nextSafeAction));
+  console.log("");
 });
 program.command("sync").description("Sync local RunTrim metadata to dashboard").action(async () => {
   var _a2, _b;
@@ -5029,23 +5104,25 @@ program.command("panel").description("Open local RunTrim browser panel").option(
     cwd
   });
 });
-program.command("memory").description("Show project memory and latest next safe prompt").option("--prompt", "Print only latest next safe prompt").action(async (options) => {
-  var _a2, _b, _c, _d, _e, _f, _g;
+program.command("memory").description("Show project memory and latest next safe prompt").option("--prompt", "Print only latest next safe prompt").option("--full", "Print full memory markdown").action(async (options) => {
+  var _a2, _b, _c, _d, _e, _f, _g, _h, _i, _j, _k, _l, _m, _n, _o, _p, _q, _r;
   const cwd = process.cwd();
   console.log("");
   console.log(BOLD("RunTrim") + DIM("  memory"));
   console.log("");
+  const config = configExists(cwd) ? loadConfig(cwd) : DEFAULT_CONFIG;
+  const audit = (_a2 = loadProjectAudit(cwd)) != null ? _a2 : performBaselineProjectAudit(cwd, null);
+  const memoryPath = path9.join(getConfigDir(cwd), "memory.md");
   const latestRun = loadLatestRun(cwd);
   if (!latestRun) {
-    const config = configExists(cwd) ? loadConfig(cwd) : DEFAULT_CONFIG;
-    const audit = (_a2 = loadProjectAudit(cwd)) != null ? _a2 : performBaselineProjectAudit(cwd, null);
-    const memoryPath = path9.join(getConfigDir(cwd), "memory.md");
     let memory2 = readMemory(cwd);
     if (!memory2) {
+      const memoryDir = path9.dirname(memoryPath);
+      if (!fs9.existsSync(memoryDir)) fs9.mkdirSync(memoryDir, { recursive: true });
       memory2 = buildBaselineMemoryMarkdown(audit);
       fs9.writeFileSync(memoryPath, memory2, "utf-8");
     }
-    const baselinePrompt = 'runtrim prepare "describe your next AI coding task"';
+    const baselinePrompt = 'runtrim go "your task"';
     if (options.prompt) {
       console.log(baselinePrompt);
       await copyToClipboardSafe(baselinePrompt);
@@ -5054,9 +5131,37 @@ program.command("memory").description("Show project memory and latest next safe
       console.log("");
       return;
     }
-    console.log(memory2);
-    await copyToClipboardSafe(baselinePrompt);
-    console.log(ACCENT.bold("  Project memory loaded. Latest next safe prompt copied."));
+    if (options.full) {
+      console.log(memory2);
+      console.log("");
+    }
+    console.log(BOLD("Project"));
+    console.log(chalk.white(audit.projectName || cwd));
+    console.log("");
+    console.log(BOLD("Current state"));
+    console.log(chalk.white("No runs recorded yet."));
+    console.log("");
+    console.log(BOLD("Latest run"));
+    console.log(chalk.white("- Task: none"));
+    console.log(chalk.white("- Status: baseline"));
+    console.log(chalk.white("- Proof: needs check"));
+    console.log(chalk.white(`- Next: ${baselinePrompt}`));
+    console.log("");
+    console.log(BOLD("Protected systems"));
+    const protectedSystems2 = collectProtectedSystems(null, config, audit);
+    console.log(chalk.white((protectedSystems2.length ? protectedSystems2 : ["auth", "middleware", "database", "env/secrets", "billing", "webhooks", "migrations"]).join(", ")));
+    console.log("");
+    console.log(BOLD("Recent context"));
+    console.log(chalk.white("No recent memory items yet."));
+    console.log("");
+    console.log(BOLD("Continuation"));
+    console.log(chalk.white("No continuation prompt yet. Run `runtrim continue --reason usage_limit` when context runs out."));
+    console.log("");
+    console.log(BOLD("Useful commands"));
+    console.log(chalk.white('- runtrim go "your task"'));
+    console.log(chalk.white("- runtrim panel --monitor"));
+    console.log(chalk.white("- runtrim check"));
+    console.log(chalk.white("- runtrim continue --reason usage_limit"));
     console.log("");
     if (config.baselineInitialized !== true) {
       config.baselineInitialized = true;
@@ -5065,7 +5170,8 @@ program.command("memory").description("Show project memory and latest next safe
     }
     return;
   }
-  const memory = writeMemoryFromRuns(latestRun, loadAllRuns(cwd), loadConfig(cwd), cwd);
+  const allRuns = loadAllRuns(cwd);
+  const memory = writeMemoryFromRuns(latestRun, allRuns, config, cwd);
   const latestPrompt = (_g = (_f = (_d = (_b = latestRun == null ? void 0 : latestRun.evaluation) == null ? void 0 : _b.nextPrompt) != null ? _d : (_c = latestRun == null ? void 0 : latestRun.evaluation) == null ? void 0 : _c.nextSafePrompt) != null ? _f : (_e = latestRun == null ? void 0 : latestRun.evaluation) == null ? void 0 : _e.nextGuardedPrompt) != null ? _g : "";
   if (options.prompt) {
     if (!latestPrompt) {
@@ -5080,14 +5186,67 @@ program.command("memory").description("Show project memory and latest next safe
     console.log("");
     return;
   }
-  console.log(memory);
-  if (latestPrompt) {
+  if (options.full) {
+    console.log(memory);
+    console.log("");
+  }
+  const status = (_i = (_h = latestRun.evaluation) == null ? void 0 : _h.status) != null ? _i : latestRun.status;
+  const checkSummary = latestRun.checkSummary;
+  const protectedSystems = collectProtectedSystems(latestRun, config, audit);
+  const recent = allRuns.slice(0, 3).map((r) => {
+    var _a3, _b2;
+    const s = (_b2 = (_a3 = r.evaluation) == null ? void 0 : _a3.status) != null ? _b2 : r.status;
+    return `- ${truncate(r.task, 56)} (${s})`;
+  });
+  const nextAction = (_l = (_k = checkSummary == null ? void 0 : checkSummary.nextSafeAction) != null ? _k : (_j = latestRun.evaluation) == null ? void 0 : _j.nextSafeAction) != null ? _l : "runtrim check";
+  const proofState = checkSummary ? checkSummary.verificationDebt.length > 0 ? "verification debt" : "checked" : latestRun.evaluation ? latestRun.evaluation.missingProofItems.length > 0 ? "verification debt" : "checked" : "needs check";
+  console.log(BOLD("Project"));
+  console.log(chalk.white(audit.projectName || cwd));
+  console.log("");
+  console.log(BOLD("Current state"));
+  console.log(chalk.white(((_m = latestRun.evaluation) == null ? void 0 : _m.memorySummary) || `Latest run is ${status}.`));
+  console.log("");
+  console.log(BOLD("Latest run"));
+  console.log(chalk.white(`- Task: ${truncate(latestRun.task, 72)}`));
+  console.log(chalk.white(`- Status: ${status}`));
+  console.log(chalk.white(`- Proof: ${proofState}`));
+  console.log(chalk.white(`- Next: ${nextAction}`));
+  console.log("");
+  console.log(BOLD("Protected systems"));
+  console.log(chalk.white((protectedSystems.length ? protectedSystems : ["auth", "middleware", "database", "env/secrets", "billing", "webhooks", "migrations"]).join(", ")));
+  console.log("");
+  console.log(BOLD("Recent context"));
+  if (recent.length > 0) {
+    for (const line of recent) console.log(chalk.white(line));
+  } else {
+    console.log(chalk.white("No recent memory items yet."));
+  }
+  console.log("");
+  console.log(BOLD("Continuation"));
+  const noChangesState = status === "no_changes_detected" || ((_r = (_q = (_n = latestRun.checkSummary) == null ? void 0 : _n.changedFilesCount) != null ? _q : (_p = (_o = latestRun.evaluation) == null ? void 0 : _o.changedFiles) == null ? void 0 : _p.length) != null ? _r : 0) === 0;
+  if (noChangesState) {
+    console.log(chalk.white("No continuation prompt needed yet. Run `runtrim continue --reason usage_limit` when context runs out."));
+  } else if (latestPrompt) {
+    const compact = latestPrompt.replace(/\s+/g, " ").trim();
+    const isDrift = /scope drift detected/i.test(compact);
+    if (isDrift) {
+      console.log(chalk.white("Scope drift detected. Run `runtrim check` before continuing."));
+    } else if (compact.length > 160) {
+      console.log(chalk.white(truncate(compact, 160)));
+    } else {
+      console.log(chalk.white(compact));
+    }
     await copyToClipboardSafe(latestPrompt);
-    console.log(ACCENT.bold("  Project memory loaded. Latest next safe prompt copied."));
   } else {
-    console.log(DIM("  Project memory loaded."));
+    console.log(chalk.white("No continuation prompt yet. Run `runtrim continue --reason usage_limit` when context runs out."));
   }
   console.log("");
+  console.log(BOLD("Useful commands"));
+  console.log(chalk.white('- runtrim go "your task"'));
+  console.log(chalk.white("- runtrim panel --monitor"));
+  console.log(chalk.white("- runtrim check"));
+  console.log(chalk.white("- runtrim continue --reason usage_limit"));
+  console.log("");
 });
 program.command("continue").description("Create a safe continuation prompt from latest RunTrim state").option("--reason <reason>", "Continuation reason").option("--agent <agent>", "Target agent hint").option("--print", "Print the full continuation prompt").option("--open", "Open continuation prompt in editor").option("--editor <editor>", "Editor command (code, cursor, or custom)").action(async (options) => {
   var _a2, _b, _c, _d, _e, _f, _g, _h, _i, _j, _k, _l, _m, _n, _o, _p, _q, _r, _s, _t, _u, _v, _w;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "runtrim",
-  "version": "0.1.3",
+  "version": "0.1.5",
   "description": "CLI guard layer that scopes AI coding runs before they waste tokens.",
   "license": "MIT",
   "author": "RunTrim",