sentinel-agentos 0.3.7 → 0.3.9

package/dist/types/index.d.ts

@@ -1,228 +0,0 @@
-export interface SchemaCheck {
-    pass: boolean;
-    errors?: SchemaError[];
-}
-export interface SchemaError {
-    field: string;
-    actual: unknown;
-    expected: string;
-    message: string;
-}
-export type RiskAction = 'auto' | 'notify' | 'confirm' | 'deny';
-export interface RiskScore {
-    score: number;
-    action: RiskAction;
-    dimensions: {
-        impact: number;
-        reversibility: number;
-        sensitivity: number;
-        errorRate: number;
-    };
-}
-export interface GuardConfig {
-    schema?: {
-        rules: SchemaRule[];
-    };
-    riskGate?: {
-        autoApprove: number;
-        notify: number;
-        confirm: number;
-        deny: number;
-    };
-}
-export interface SchemaRule {
-    tool: string;
-    required: string[];
-    forbidden?: string[];
-}
-export interface WorkingMemory {
-    sessionId: string;
-    recentMessages: Message[];
-    currentTask?: Task;
-    recentToolResults: Map<string, ToolResult>;
-    openFiles: string[];
-    budget: TokenBudget;
-}
-export interface Message {
-    role: 'user' | 'agent' | 'tool';
-    content: string;
-    timestamp: number;
-}
-export interface Task {
-    description: string;
-    steps: Array<{
-        step: string;
-        status: 'pending' | 'in_progress' | 'done';
-    }>;
-}
-export interface ToolResult {
-    toolName: string;
-    result: unknown;
-    timestamp: number;
-}
-export interface TokenBudget {
-    used: number;
-    limit: number;
-}
-export type EventType = 'tool_call' | 'tool_failure' | 'decision' | 'correction' | 'publish' | 'error' | 'milestone' | 'note' | 'user_feedback';
-export type CompressionLevel = 'full' | 'summary' | 'one-liner' | 'forgotten';
-export interface EpisodicEvent {
-    id: string;
-    timestamp: number;
-    type: EventType;
-    importance: number;
-    compression: CompressionLevel;
-    content: string;
-    tags: string[];
-    relatedEntities: string[];
-}
-export interface UserFact {
-    fact: string;
-    timestamp: number;
-    lastReferenced: number;
-}
-export interface SemanticMemory {
-    userPreferences: Record<string, unknown>;
-    userFacts: UserFact[];
-    projectContext: Record<string, Partial<{
-        description: string;
-        techStack: string[];
-        conventions: string[];
-        architecture: string;
-        knownIssues: string[];
-    }> & Record<string, unknown>>;
-    learnedRules: LearnedRule[];
-    glossary: Record<string, string>;
-}
-export interface LearnedRule {
-    rule: string;
-    confidence: number;
-    source: string[];
-    lastReferenced: number;
-}
-export type SignalType = 'user_deleted_code' | 'user_interrupted' | 'user_provided_correction' | 'user_modified_output' | 'user_repeated_instruction' | 'user_ignored_result' | 'user_silence_then_praise' | 'user_immediate_continue' | 'agent_self_corrected' | 'user_explicit_approval' | 'user_used_result' | 'user_shared_output';
-export interface ImplicitFeedback {
-    id: string;
-    timestamp: number;
-    signal: SignalType;
-    strength: number;
-    confidence: number;
-    sessionId: string;
-    operationId?: string;
-    source: string;
-}
-export interface PreExecMetrics {
-    timestamp: number;
-    toolName: string;
-    schemaCheck: SchemaCheck;
-    riskScore: RiskScore;
-    paramQuality: {
-        score: number;
-        observations: string[];
-    };
-    contextUtilization: {
-        score: number;
-        patterns: string[];
-    };
-}
-export interface RuntimeMetrics {
-    retryCount: number;
-    selfCorrected: boolean;
-    hadTimeout: boolean;
-    toolSuccess: boolean;
-    toolSelectionMatch?: boolean;
-    adaptiveScore: number;
-    durationMs: number;
-}
-export interface PostExecMetrics {
-    timestamp?: number;
-    verifyPassed: boolean;
-    verifyScore: number;
-    userAccepted: boolean;
-    userEditRate: number;
-    resultUtilized: boolean;
-    outcomeScore: number;
-    healthy: boolean;
-    diffLinesChanged?: number;
-}
-export interface Snapshot {
-    id: string;
-    toolCallId: string;
-    timestamp: number;
-    scope: 'file' | 'workspace' | 'full';
-    fileHashes: Record<string, string>;
-    envVars: Record<string, string>;
-    gitHead: string;
-    gitDirty: boolean;
-}
-export type VerifyStatus = 'PASS' | 'WARN' | 'FAIL';
-export interface VerifyCheck {
-    name: string;
-    status: VerifyStatus;
-    detail?: string;
-}
-export interface AuditEntry {
-    id: string;
-    sessionId: string;
-    agentId: string;
-    startedAt: number;
-    completedAt: number;
-    durationMs: number;
-    toolName: string;
-    toolParameters: Record<string, unknown>;
-    toolResult: unknown;
-    schemaGate: SchemaCheck;
-    riskGate: {
-        score: number;
-        action: RiskAction;
-    };
-    snapshot: Snapshot | null;
-    verifyGate: {
-        status: VerifyStatus;
-        checks: VerifyCheck[];
-    };
-    diff: DiffInfo | null;
-    rollback?: RollbackInfo;
-}
-export interface DiffInfo {
-    filesChanged: string[];
-    linesAdded: number;
-    linesRemoved: number;
-    hashBefore: Record<string, string>;
-    hashAfter: Record<string, string>;
-}
-export interface RollbackInfo {
-    rolledBack: boolean;
-    rollbackSnapshotId: string;
-    success: boolean;
-}
-export interface AgentOSConfig {
-    workspaceRoot?: string;
-    maxWorkingTokens?: number;
-    maxEpisodicSizeKb?: number;
-    guardConfig?: GuardConfig;
-    evaluatorConfig?: {
-        implicitFeedbackEnabled?: boolean;
-    };
-}
-export declare enum ErrorCode {
-    /** Schema validation failure */
-    E_SCHEMA = "E_SCHEMA",
-    /** Risk gate blocked */
-    E_RISK = "E_RISK",
-    /** Snapshot failed (IO/permissions) */
-    E_SNAPSHOT = "E_SNAPSHOT",
-    /** Verify gate failed */
-    E_VERIFY = "E_VERIFY",
-    /** Audit log write failed */
-    E_AUDIT_IO = "E_AUDIT_IO",
-    /** Tool execution error */
-    E_EXEC = "E_EXEC",
-    /** Unknown/internal error */
-    E_INTERNAL = "E_INTERNAL"
-}
-export interface SentinelError extends Error {
-    code: ErrorCode;
-    details?: unknown;
-}
-//# sourceMappingURL=index.d.ts.map

package/dist/types/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,OAAO,CAAC;IACd,MAAM,CAAC,EAAE,WAAW,EAAE,CAAC;CACxB;AAED,MAAM,WAAW,WAAW;IAC1B,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,OAAO,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,MAAM,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,SAAS,GAAG,MAAM,CAAC;AAEhE,MAAM,WAAW,SAAS;IACxB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,UAAU,CAAC;IACnB,UAAU,EAAE;QACV,MAAM,EAAE,MAAM,CAAC;QACf,aAAa,EAAE,MAAM,CAAC;QACtB,WAAW,EAAE,MAAM,CAAC;QACpB,SAAS,EAAE,MAAM,CAAC;KACnB,CAAC;CACH;AAED,MAAM,WAAW,WAAW;IAC1B,MAAM,CAAC,EAAE;QAAE,KAAK,EAAE,UAAU,EAAE,CAAA;KAAE,CAAC;IACjC,QAAQ,CAAC,EAAE;QACT,WAAW,EAAE,MAAM,CAAC;QACpB,MAAM,EAAE,MAAM,CAAC;QACf,OAAO,EAAE,MAAM,CAAC;QAChB,IAAI,EAAE,MAAM,CAAC;KACd,CAAC;CACH;AAED,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;CACtB;AAID,MAAM,WAAW,aAAa;IAC5B,SAAS,EAAE,MAAM,CAAC;IAClB,cAAc,EAAE,OAAO,EAAE,CAAC;IAC1B,WAAW,CAAC,EAAE,IAAI,CAAC;IACnB,iBAAiB,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IAC3C,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,MAAM,EAAE,WAAW,CAAC;CACrB;AAED,MAAM,WAAW,OAAO;IACtB,IAAI,EAAE,MAAM,GAAG,OAAO,GAAG,MAAM,CAAC;IAChC,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,IAAI;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,KAAK,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,SAAS,GAAG,aAAa,GAAG,MAAM,CAAA;KAAE,CAAC,CAAC;CAC5E;AAED,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,OAAO,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,MAAM,SAAS,GACjB,WAAW,GACX,cAAc,GACd,UAAU,GACV,YAAY,GACZ,SAAS,GACT,OAAO,GACP,WAAW,GACX,MAAM,GACN,eAAe,CAAC;AAEpB,MAAM,MAAM,gBAAgB,GAAG,MAAM,GAAG,SAAS,GAAG,WAAW,GAAG,WAAW,CAAC;AAE9E,MAAM,WAAW,aAAa;IAC5B,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,SAAS,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,gBAAgB,CAAC;IAC9B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,eAAe,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED,MAAM,WAAW,QAAQ;IACvB,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,MAAM,CAAC;IAClB,cAAc,EAAE,MAAM,CAAC;CACxB;AAED,MAAM,WAAW,cAAc;IAC7B,eAAe,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACzC,SAAS,EAAE,QAAQ,EAAE,CAAC;IACtB,cAAc,EAAE,MAAM,CACpB,MAAM,EACN,OAAO,CAAC;QACN,WAAW,EAAE,MAAM,CAAC;QACpB,SAAS,EAAE,MAAM,EAAE,CAAC;QACpB,WAAW,EAAE,MAAM,EAAE,CAAC;QACtB,YAAY,EAAE,MAAM,CAAC;QACrB,WAAW,EAAE,MAAM,EAAE,CAAC;KACvB,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAC7B,CAAC;IACF,YAAY,EAAE,WAAW,EAAE,CAAC;IAC5B,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAClC;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,cAAc,EAAE,MAAM,CAAC;CACxB;AAID,MAAM,MAAM,UAAU,GAClB,mBAAmB,GACnB,kBAAkB,GAClB,0BAA0B,GAC1B,sBAAsB,GACtB,2BAA2B,GAC3B,qBAAqB,GACrB,0BAA0B,GAC1B,yBAAyB,GACzB,sBAAsB,GACtB,wBAAwB,GACxB,kBAAkB,GAClB,oBAAoB,CAAC;AAEzB,MAAM,WAAW,gBAAgB;IAC/B,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,UAAU,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,cAAc;IAC7B,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,WAAW,CAAC;IACzB,SAAS,EAAE,SAAS,CAAC;IACrB,YAAY,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,YAAY,EAAE,MAAM,EAAE,CAAA;KAAE,CAAC;IACxD,kBAAkB,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,EAAE,CAAA;KAAE,CAAC;CAC3D;AAED,MAAM,WAAW,cAAc;IAC7B,UAAU,EAAE,MAAM,CAAC;IACnB,aAAa,EAAE,OAAO,CAAC;IACvB,UAAU,EAAE,OAAO,CAAC;IACpB,WAAW,EAAE,OAAO,CAAC;IACrB,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,eAAe;IAC9B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,OAAO,CAAC;IACtB,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,OAAO,CAAC;IACtB,YAAY,EAAE,MAAM,CAAC;IACrB,cAAc,EAAE,OAAO,CAAC;IACxB,YAAY,EAAE,MAAM,CAAC;IACrB,OAAO,EAAE,OAAO,CAAC;IACjB,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B;AAID,MAAM,WAAW,QAAQ;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,GAAG,WAAW,GAAG,MAAM,CAAC;IACrC,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACnC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChC,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,OAAO,CAAC;CACnB;AAED,MAAM,MAAM,YAAY,GAAG,MAAM,GAAG,MAAM,GAAG,MAAM,CAAC;AAEpD,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,YAAY,CAAC;IACrB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,UAAU;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;IACjB,cAAc,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACxC,UAAU,EAAE,OAAO,CAAC;IACpB,UAAU,EAAE,WAAW,CAAC;IACxB,QAAQ,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,UAAU,CAAA;KAAE,CAAC;IAChD,QAAQ,EAAE,QAAQ,GAAG,IAAI,CAAC;IAC1B,UAAU,EAAE;QAAE,MAAM,EAAE,YAAY,CAAC;QAAC,MAAM,EAAE,WAAW,EAAE,CAAA;KAAE,CAAC;IAC5D,IAAI,EAAE,QAAQ,GAAG,IAAI,CAAC;IACtB,QAAQ,CAAC,EAAE,YAAY,CAAC;CACzB;AAED,MAAM,WAAW,QAAQ;IACvB,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACnC,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CACnC;AAED,MAAM,WAAW,YAAY;IAC3B,UAAU,EAAE,OAAO,CAAC;IACpB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,OAAO,EAAE,OAAO,CAAC;CAClB;AAID,MAAM,WAAW,aAAa;IAC5B,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,WAAW,CAAC,EAAE,WAAW,CAAC;IAC1B,eAAe,CAAC,EAAE;QAChB,uBAAuB,CAAC,EAAE,OAAO,CAAC;KACnC,CAAC;CACH;AAID,oBAAY,SAAS;IACnB,gCAAgC;IAChC,QAAQ,aAAa;IACrB,wBAAwB;IACxB,MAAM,WAAW;IACjB,uCAAuC;IACvC,UAAU,eAAe;IACzB,yBAAyB;IACzB,QAAQ,aAAa;IACrB,6BAA6B;IAC7B,UAAU,eAAe;IACzB,2BAA2B;IAC3B,MAAM,WAAW;IACjB,6BAA6B;IAC7B,UAAU,eAAe;CAC1B;AAED,MAAM,WAAW,aAAc,SAAQ,KAAK;IAC1C,IAAI,EAAE,SAAS,CAAC;IAChB,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB"}

package/dist/types/index.js

@@ -1,23 +0,0 @@
-"use strict";
-// === Guard Layer Types ===
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ErrorCode = void 0;
-// === Error Codes ===
-var ErrorCode;
-(function (ErrorCode) {
-    /** Schema validation failure */
-    ErrorCode["E_SCHEMA"] = "E_SCHEMA";
-    /** Risk gate blocked */
-    ErrorCode["E_RISK"] = "E_RISK";
-    /** Snapshot failed (IO/permissions) */
-    ErrorCode["E_SNAPSHOT"] = "E_SNAPSHOT";
-    /** Verify gate failed */
-    ErrorCode["E_VERIFY"] = "E_VERIFY";
-    /** Audit log write failed */
-    ErrorCode["E_AUDIT_IO"] = "E_AUDIT_IO";
-    /** Tool execution error */
-    ErrorCode["E_EXEC"] = "E_EXEC";
-    /** Unknown/internal error */
-    ErrorCode["E_INTERNAL"] = "E_INTERNAL";
-})(ErrorCode || (exports.ErrorCode = ErrorCode = {}));
-//# sourceMappingURL=index.js.map

package/dist/types/index.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":";AAAA,4BAA4B;;;AA6P5B,sBAAsB;AAEtB,IAAY,SAeX;AAfD,WAAY,SAAS;IACnB,gCAAgC;IAChC,kCAAqB,CAAA;IACrB,wBAAwB;IACxB,8BAAiB,CAAA;IACjB,uCAAuC;IACvC,sCAAyB,CAAA;IACzB,yBAAyB;IACzB,kCAAqB,CAAA;IACrB,6BAA6B;IAC7B,sCAAyB,CAAA;IACzB,2BAA2B;IAC3B,8BAAiB,CAAA;IACjB,6BAA6B;IAC7B,sCAAyB,CAAA;AAC3B,CAAC,EAfW,SAAS,yBAAT,SAAS,QAepB"}

package/scripts/sentinel-light.js

@@ -1,234 +0,0 @@
-/**
- * Sentinel AgentOS Full Guard — 全功能版
- *
- * preCheck: 轻量拦截（4.4μs）
- * postCheck: 完整审计 + 三层记忆 + 三阶段评估 + 隐性反馈
- *
- * 模块初始化时自动注入语义记忆上下文到 session。
- */
-
-const { AgentOS } = require('sentinel-agentos');
-const fs = require('fs');
-const path = require('path');
-
-const AUDIT_DIR = path.join(__dirname, '..', '.sentinel-audit');
-
-// 全局单例
-if (!global.__sentinel_aos) {
-  const aos = new AgentOS({
-    workspaceRoot: process.cwd(),
-    maxWorkingTokens: 50000,
-    maxEpisodicSizeKb: 500,
-  });
-
-  // 注册全套 Schema 规则
-  aos.guard.schema.registerRules([
-    { tool: 'exec', required: ['command'] },
-    {
-      tool: 'write', required: ['path', 'content'],
-      pathDeny: { path: ['.env', '*.key', '*.pem', '.git/**', '**/credentials/**'] },
-      maxSize: { content: 1048576 }, secrets: ['content'],
-    },
-    { tool: 'read', required: ['path'], pathDeny: { path: ['.env', '*.key'] } },
-    { tool: 'edit', required: ['path'], pathDeny: { path: ['.env', '*.key', '.git/**'] } },
-    {
-      tool: 'delete', required: ['path'],
-      pathDeny: { path: ['.env', '*.key', '*.pem', '.git/**', 'node_modules/**', 'package.json'] },
-    },
-  ]);
-
-  // 从磁盘恢复审计
-  const auditFile = path.join(AUDIT_DIR, 'audit.jsonl');
-  if (fs.existsSync(auditFile)) {
-    try {
-      fs.readFileSync(auditFile, 'utf-8').trim().split('\n').filter(Boolean).forEach(line => {
-        aos.guard.audit.entries.push(JSON.parse(line));
-      });
-    } catch {}
-  }
-
-  // 注入默认语义记忆
-  aos.memory.semantic.setPreference('user-name', '老板');
-  aos.memory.semantic.setPreference('language', 'zh-CN');
-  aos.memory.semantic.setPreference('direct-communication', true);
-  aos.memory.semantic.addFact('老板是中国用户，偏好直接、不说废话');
-  aos.memory.semantic.addFact('项目 coderev 是 AI 代码审查 CLI 工具');
-  aos.memory.semantic.addFact('项目 sentinel-agentos 是 AI Agent 操作系统');
-  aos.memory.semantic.learnRule('高风险操作前必须 preCheck', 'sentinel_init');
-  aos.memory.semantic.learnRule('操作完成后必须 postCheck 审计', 'sentinel_init');
-  aos.memory.semantic.learnRule('npm publish 前必须确认版本号', 'sentinel_init');
-
-  // 记录首次启动事件
-  aos.memory.episodic.record('milestone',
-    'Sentinel AgentOS 全功能启用：Guard + Memory + Evaluator',
-    ['init', 'milestone'], ['sentinel-agentos']);
-
-  global.__sentinel_aos = aos;
-  global.__sentinel_session_id = 1;
-}
-
-const aos = global.__sentinel_aos;
-let opCounter = 0;
-
-// ── 确定性规则（零 LLM）──
-const DANGEROUS = [
-  [/rm\s+-rf\s+\//, 'rm -rf / — 删除整个系统'],
-  [/rm\s+-rf\s+~/, 'rm -rf ~ — 删除用户目录'],
-  [/sudo\s+rm/, 'sudo rm — 超级用户删除'],
-  [/mkfs\./, 'mkfs — 格式化磁盘'],
-  [/dd\s+if=/, 'dd — 可能覆盖分区'],
-  [/fork\s*bomb|:\(\)/, 'fork bomb — 系统崩溃'],
-  [/chmod\s+777\s+-R\s*\//, 'chmod 777 -R / — 权限全开'],
-  [/del\s+\/F\s+\/S\s+[A-Z]:\\/, 'del /F /S — 全盘删除'],
-  [/>\s*\/dev\/sd[a-z]/, '写入磁盘设备'],
-];
-const WARNING = [
-  [/git\s+push\s+--force/, 'git push --force — 强制覆盖'],
-  [/git\s+reset\s+--hard/, 'git reset --hard — 不可逆'],
-  [/npm\s+publish\b/, 'npm publish — 发布公共包'],
-  [/npm\s+unpublish\b/, 'npm unpublish — 从 npm 删除'],
-  [/DROP\s+(TABLE|DATABASE)/i, 'DROP — 删除数据库'],
-  [/TRUNCATE\s+(TABLE\s+)?/i, 'TRUNCATE — 清空表'],
-];
-const SENSITIVE = [
-  '.env', '.env.*', '*.key', '*.pem', '*.p12', '*.pfx', '*.jks', '*.keystore',
-  '.git/**', '**/credentials/**', '**/secrets/**', '**/SECRETS/**',
-  'package.json', 'package-lock.json', 'yarn.lock', 'pnpm-lock.yaml', 'Cargo.lock',
-];
-const PROTECTED = [
-  'package.json', 'package-lock.json', 'yarn.lock', 'pnpm-lock.yaml',
-  '.gitignore', '.gitattributes', 'Cargo.toml', 'Cargo.lock', 'tsconfig.json',
-  'AGENTS.md', 'SOUL.md', 'MEMORY.md', 'USER.md',
-];
-
-function globMatch(pattern, p) {
-  p = (p || '').replace(/\\/g, '/');
-  if (!pattern.includes('*')) return p === pattern || p.endsWith('/' + pattern);
-  const re = '^' + pattern.replace(/[.+^${}()|[\]\\]/g, '\\$&').replace(/\*\*\//g, '(.*/)?').replace(/\*/g, '[^/]*') + '$';
-  return new RegExp(re).test(p);
-}
-
-module.exports = {
-  // ── 执行前拦截 ──
-  preCheck(toolName, params) {
-    if (toolName === 'exec' && params.command) {
-      const cmd = String(params.command);
-      for (const [re, desc] of DANGEROUS) {
-        if (re.test(cmd)) return { passed: false, block: true, risk: 'DENY', reason: `🚫 危险命令: ${desc}` };
-      }
-      for (const [re, desc] of WARNING) {
-        if (re.test(cmd)) return { passed: false, block: true, risk: 'CONFIRM', reason: `⚠️ 需要确认: ${desc}`, needsConfirmation: true };
-      }
-    }
-    const p = params.path || params.file;
-    if (p && ['write', 'edit', 'delete', 'read'].includes(toolName)) {
-      for (const ptn of SENSITIVE) {
-        if (globMatch(ptn, p)) return { passed: false, block: true, risk: 'DENY', reason: `🚫 敏感文件: "${p}" → "${ptn}"` };
-      }
-    }
-    if (toolName === 'delete' && p) {
-      for (const pf of PROTECTED) {
-        if (String(p) === pf || String(p).endsWith('/' + pf) || String(p).endsWith('\\' + pf))
-          return { passed: false, block: true, risk: 'DENY', reason: `🚫 保护文件: "${pf}"` };
-      }
-    }
-    return { passed: true, risk: 'auto' };
-  },
-
-  // ── 执行后审计（异步 AgentOS，不阻塞回复）──
-  postCheck(toolName, params, result) {
-    // 轻量审计（纯内存 + 5ms I/O，不调 git）
-    const entry = {
-      id: `${++opCounter}`,
-      ts: new Date().toISOString(),
-      sessionId: `s${global.__sentinel_session_id}`,
-      tool: toolName,
-      params: typeof params === 'string' ? params.slice(0, 200) : JSON.stringify(params || {}).slice(0, 200),
-      result: String(result || '').slice(0, 100),
-    };
-    aos.memory.working.addMessage('tool', `${toolName}: ${entry.params}`);
-    try {
-      if (!fs.existsSync(AUDIT_DIR)) fs.mkdirSync(AUDIT_DIR, { recursive: true });
-      fs.appendFileSync(path.join(AUDIT_DIR, 'audit.jsonl'), JSON.stringify(entry) + '\n');
-    } catch {}
-
-    // AgentOS 完整审计放到 next tick，不阻塞回复
-    setImmediate(() => {
-      try {
-        const sid = `s${global.__sentinel_session_id}_op${opCounter}`;
-        const { preExec, snapshot } = aos.executePipeline({
-          sessionId: sid, agentId: 'openclaw', toolName, parameters: params || {},
-        });
-
-        // 根据工具类型推断 claimedResult，让 Verify Gate 正常工作
-        const claimed = {};
-        if (['write', 'edit', 'delete'].includes(toolName) && params?.path) {
-          claimed.files = [String(params.path)];
-        }
-        if (result) claimed.result = result;
-
-        aos.completeExecution({
-          sessionId: sid, agentId: 'openclaw', toolName,
-          toolParameters: params || {}, toolResult: result ?? null,
-          snapshot, startTime: Date.now() - 500, endTime: Date.now(),
-          retryCount: 0, wasSelfCorrected: false, hadTimeout: false,
-          userAccepted: true, userProvidedEdit: false, resultWasUsed: true,
-        });
-
-        // 记录反馈：结果被使用 = 正面信号
-        aos.recordFeedback('user_used_result', `s${global.__sentinel_session_id}`);
-
-        if (toolName === 'exec' && params?.command) {
-          aos.memory.episodic.record('tool_call', String(params.command), ['exec'], []);
-        }
-      } catch {}
-    });
-
-    return { auditId: entry.id, verify: 'QUEUED' };
-  },
-
-  // ── 查看审计 ──
-  audit(limit = 10) {
-    return aos.guard.audit.query({ limit });
-  },
-
-  // ── 完整状态报告 ──
-  status() {
-    return aos.statusReport();
-  },
-
-  // ── 注入 Memory 上下文（session 启动时调用）─
-  injectContext() {
-    return aos.injectContext();
-  },
-
-  // ── 记录反馈 ──
-  feedback(signal) {
-    aos.recordFeedback(signal, `s${global.__sentinel_session_id}`);
-  },
-
-  // ── 结束 Session ──
-  endSession() {
-    const sid = `s${global.__sentinel_session_id}`;
-    aos.endSession(sid);
-    global.__sentinel_session_id++;
-  },
-
-  // ── 获取完整状态快照 ──
-  fullStatus() {
-    return {
-      sessionId: `s${global.__sentinel_session_id}`,
-      opCount: opCounter,
-      audit: aos.guard.audit.stats(),
-      profile: aos.getProfile(),
-      satisfaction: aos.evaluator.feedback.getSatisfactionScore(),
-      workingMemory: {
-        messages: aos.memory.working.recentMessages.length,
-        budget: aos.memory.working.budget,
-      },
-      episodicEvents: aos.memory.episodic.count,
-      semanticRules: aos.memory.semantic.getAllRules().length,
-      preferences: aos.memory.semantic.getPreference('language'),
-    };
-  },
-};