skyloom 1.5.3 → 1.6.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/core/agent.d.ts +2 -0
- package/dist/core/agent.d.ts.map +1 -1
- package/dist/core/agent.js +24 -5
- package/dist/core/agent.js.map +1 -1
- package/dist/core/learn.d.ts +30 -0
- package/dist/core/learn.d.ts.map +1 -0
- package/dist/core/learn.js +156 -0
- package/dist/core/learn.js.map +1 -0
- package/dist/core/security.d.ts +73 -0
- package/dist/core/security.d.ts.map +1 -0
- package/dist/core/security.js +220 -0
- package/dist/core/security.js.map +1 -0
- package/package.json +1 -1
- package/src/core/agent.ts +15 -5
- package/src/core/learn.ts +146 -0
- package/src/core/security.ts +243 -0
|
@@ -0,0 +1,73 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* 安全与对齐模块 — Security & Alignment
|
|
3
|
+
*
|
|
4
|
+
* Danger level grading, red-line enforcement, audit trail, human-in-the-loop.
|
|
5
|
+
* All security decisions flow through this module before tool execution.
|
|
6
|
+
*/
|
|
7
|
+
export declare enum DangerLevel {
|
|
8
|
+
/** Read-only, no side effects — auto-approved */
|
|
9
|
+
SAFE = 0,
|
|
10
|
+
/** Minor side effects (write single file, git status) — logged */
|
|
11
|
+
LOW = 1,
|
|
12
|
+
/** Significant side effects (overwrite, delete, git push) — notify */
|
|
13
|
+
MEDIUM = 2,
|
|
14
|
+
/** Dangerous (sudo, remote deploy, mass delete) — confirm */
|
|
15
|
+
HIGH = 3,
|
|
16
|
+
/** Red-line — NEVER execute without human-in-the-loop */
|
|
17
|
+
CRITICAL = 4
|
|
18
|
+
}
|
|
19
|
+
declare const REDLINE_PATTERNS: RegExp[];
|
|
20
|
+
declare const REDLINE_COMMANDS: string[];
|
|
21
|
+
export interface AuditEntry {
|
|
22
|
+
ts: string;
|
|
23
|
+
agent: string;
|
|
24
|
+
tool: string;
|
|
25
|
+
args: Record<string, any>;
|
|
26
|
+
dangerLevel: DangerLevel;
|
|
27
|
+
approved: boolean;
|
|
28
|
+
result: string;
|
|
29
|
+
durationMs: number;
|
|
30
|
+
traceId: string;
|
|
31
|
+
}
|
|
32
|
+
export declare class SecurityContext {
|
|
33
|
+
auditLog: AuditEntry[];
|
|
34
|
+
deniedCount: number;
|
|
35
|
+
autoApprovedCount: number;
|
|
36
|
+
manualApprovedCount: number;
|
|
37
|
+
approvalMode: "auto" | "interactive" | "strict";
|
|
38
|
+
private approvalCallback;
|
|
39
|
+
constructor(opts?: {
|
|
40
|
+
mode?: "auto" | "interactive" | "strict";
|
|
41
|
+
onApprove?: (tool: string, args: Record<string, any>, level: DangerLevel) => Promise<boolean>;
|
|
42
|
+
});
|
|
43
|
+
/** Get the danger level for a tool. Defaults to SAFE for unknown tools. */
|
|
44
|
+
getDangerLevel(toolName: string): DangerLevel;
|
|
45
|
+
/** Check if arguments contain red-line patterns (critical danger). */
|
|
46
|
+
checkRedline(toolName: string, args: Record<string, any>): string | null;
|
|
47
|
+
/** Determine whether a tool call is permitted. Returns [approved, reason]. */
|
|
48
|
+
checkApproval(toolName: string, args: Record<string, any>, agentName: string): Promise<[boolean, string]>;
|
|
49
|
+
/** Record an audit entry. */
|
|
50
|
+
recordAudit(tool: string, agent: string, args: Record<string, any>, dangerLevel: DangerLevel, approved: boolean, resultPreview: string, durationMs: number, traceId: string): void;
|
|
51
|
+
/** Get summary statistics. */
|
|
52
|
+
getStats(): {
|
|
53
|
+
total: number;
|
|
54
|
+
denied: number;
|
|
55
|
+
autoApproved: number;
|
|
56
|
+
manualApproved: number;
|
|
57
|
+
byLevel: {
|
|
58
|
+
safe: number;
|
|
59
|
+
low: number;
|
|
60
|
+
medium: number;
|
|
61
|
+
high: number;
|
|
62
|
+
critical: number;
|
|
63
|
+
};
|
|
64
|
+
lastDenied: string[];
|
|
65
|
+
};
|
|
66
|
+
/** Install approval callback for interactive mode. */
|
|
67
|
+
setApprovalCallback(fn: (tool: string, args: Record<string, any>, level: DangerLevel) => Promise<boolean>): void;
|
|
68
|
+
}
|
|
69
|
+
export declare function getSecurity(): SecurityContext;
|
|
70
|
+
export declare function resetSecurity(): void;
|
|
71
|
+
/** Red-line patterns for reference (used by tools to self-check). */
|
|
72
|
+
export { REDLINE_PATTERNS, REDLINE_COMMANDS };
|
|
73
|
+
//# sourceMappingURL=security.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"security.d.ts","sourceRoot":"","sources":["../../src/core/security.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAOH,oBAAY,WAAW;IACrB,iDAAiD;IACjD,IAAI,IAAI;IACR,kEAAkE;IAClE,GAAG,IAAI;IACP,sEAAsE;IACtE,MAAM,IAAI;IACV,6DAA6D;IAC7D,IAAI,IAAI;IACR,yDAAyD;IACzD,QAAQ,IAAI;CACb;AAKD,QAAA,MAAM,gBAAgB,UAMrB,CAAC;AAEF,QAAA,MAAM,gBAAgB,UAGrB,CAAC;AAyDF,MAAM,WAAW,UAAU;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IAC1B,WAAW,EAAE,WAAW,CAAC;IACzB,QAAQ,EAAE,OAAO,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;CACjB;AAKD,qBAAa,eAAe;IACnB,QAAQ,EAAE,UAAU,EAAE,CAAM;IAC5B,WAAW,SAAK;IAChB,iBAAiB,SAAK;IACtB,mBAAmB,SAAK;IACxB,YAAY,EAAE,MAAM,GAAG,aAAa,GAAG,QAAQ,CAAU;IAEhE,OAAO,CAAC,gBAAgB,CAAoG;gBAEhH,IAAI,CAAC,EAAE;QAAE,IAAI,CAAC,EAAE,MAAM,GAAG,aAAa,GAAG,QAAQ,CAAC;QAAC,SAAS,CAAC,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE,KAAK,EAAE,WAAW,KAAK,OAAO,CAAC,OAAO,CAAC,CAAA;KAAE;IAK9J,2EAA2E;IAC3E,cAAc,CAAC,QAAQ,EAAE,MAAM,GAAG,WAAW;IAI7C,sEAAsE;IACtE,YAAY,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,MAAM,GAAG,IAAI;IAYxE,8EAA8E;IACxE,aAAa,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAsC/G,6BAA6B;IAC7B,WAAW,CAAC,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE,WAAW,EAAE,WAAW,EAAE,QAAQ,EAAE,OAAO,EAAE,aAAa,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,IAAI;IAsBlL,8BAA8B;IAC9B,QAAQ;;;;;;;;;;;;;;IAiBR,sDAAsD;IACtD,mBAAmB,CAAC,EAAE,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE,KAAK,EAAE,WAAW,KAAK,OAAO,CAAC,OAAO,CAAC;CAG1G;AAKD,wBAAgB,WAAW,IAAI,eAAe,CAG7C;AAED,wBAAgB,aAAa,IAAI,IAAI,CAEpC;AAED,qEAAqE;AACrE,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,CAAC"}
|
|
@@ -0,0 +1,220 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
/**
|
|
3
|
+
* 安全与对齐模块 — Security & Alignment
|
|
4
|
+
*
|
|
5
|
+
* Danger level grading, red-line enforcement, audit trail, human-in-the-loop.
|
|
6
|
+
* All security decisions flow through this module before tool execution.
|
|
7
|
+
*/
|
|
8
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
9
|
+
exports.REDLINE_COMMANDS = exports.REDLINE_PATTERNS = exports.SecurityContext = exports.DangerLevel = void 0;
|
|
10
|
+
exports.getSecurity = getSecurity;
|
|
11
|
+
exports.resetSecurity = resetSecurity;
|
|
12
|
+
const logger_1 = require("./logger");
|
|
13
|
+
const log = (0, logger_1.getLogger)("security");
|
|
14
|
+
/* ── Danger levels ── */
|
|
15
|
+
var DangerLevel;
|
|
16
|
+
(function (DangerLevel) {
|
|
17
|
+
/** Read-only, no side effects — auto-approved */
|
|
18
|
+
DangerLevel[DangerLevel["SAFE"] = 0] = "SAFE";
|
|
19
|
+
/** Minor side effects (write single file, git status) — logged */
|
|
20
|
+
DangerLevel[DangerLevel["LOW"] = 1] = "LOW";
|
|
21
|
+
/** Significant side effects (overwrite, delete, git push) — notify */
|
|
22
|
+
DangerLevel[DangerLevel["MEDIUM"] = 2] = "MEDIUM";
|
|
23
|
+
/** Dangerous (sudo, remote deploy, mass delete) — confirm */
|
|
24
|
+
DangerLevel[DangerLevel["HIGH"] = 3] = "HIGH";
|
|
25
|
+
/** Red-line — NEVER execute without human-in-the-loop */
|
|
26
|
+
DangerLevel[DangerLevel["CRITICAL"] = 4] = "CRITICAL";
|
|
27
|
+
})(DangerLevel || (exports.DangerLevel = DangerLevel = {}));
|
|
28
|
+
/* ═══════════════════════════════════════
|
|
29
|
+
Red-line list: operations that are NEVER auto-approved
|
|
30
|
+
═══════════════════════════════════════ */
|
|
31
|
+
const REDLINE_PATTERNS = [
|
|
32
|
+
/rm\s+-rf/, /format\s+\w:/, /dd\s+if=/,
|
|
33
|
+
/>\s*\/dev\/sd/, /mkfs\./, /:(){ :\|:& };:/,
|
|
34
|
+
/sudo\s+rm/, /chmod\s+777\s+\//, /wget.*\|.*sh/,
|
|
35
|
+
/curl.*\|.*bash/, /eval\s+\$/, /exec\s+\$/,
|
|
36
|
+
/subprocess\.call.*rm/, /os\.system.*rm/,
|
|
37
|
+
];
|
|
38
|
+
exports.REDLINE_PATTERNS = REDLINE_PATTERNS;
|
|
39
|
+
const REDLINE_COMMANDS = [
|
|
40
|
+
"shutdown", "reboot", "init 0", "init 6",
|
|
41
|
+
"del /f /s /q C:\\*", "rd /s /q C:\\",
|
|
42
|
+
];
|
|
43
|
+
exports.REDLINE_COMMANDS = REDLINE_COMMANDS;
|
|
44
|
+
/* ═══════════════════════════════════════
|
|
45
|
+
Per-tool danger level mapping
|
|
46
|
+
═══════════════════════════════════════ */
|
|
47
|
+
const TOOL_DANGER_MAP = {
|
|
48
|
+
read_file: DangerLevel.SAFE,
|
|
49
|
+
list_directory: DangerLevel.SAFE,
|
|
50
|
+
tree: DangerLevel.SAFE,
|
|
51
|
+
file_search: DangerLevel.SAFE,
|
|
52
|
+
code_search: DangerLevel.SAFE,
|
|
53
|
+
grep: DangerLevel.SAFE,
|
|
54
|
+
git_status: DangerLevel.SAFE,
|
|
55
|
+
git_diff: DangerLevel.SAFE,
|
|
56
|
+
git_log: DangerLevel.SAFE,
|
|
57
|
+
system_info: DangerLevel.SAFE,
|
|
58
|
+
system_diagnose: DangerLevel.SAFE,
|
|
59
|
+
list_processes: DangerLevel.SAFE,
|
|
60
|
+
list_installed_apps: DangerLevel.SAFE,
|
|
61
|
+
list_skills: DangerLevel.SAFE,
|
|
62
|
+
recall_facts: DangerLevel.SAFE,
|
|
63
|
+
mcp_list_servers: DangerLevel.SAFE,
|
|
64
|
+
write_file: DangerLevel.LOW,
|
|
65
|
+
edit_file: DangerLevel.LOW,
|
|
66
|
+
copy_file: DangerLevel.LOW,
|
|
67
|
+
move_file: DangerLevel.LOW,
|
|
68
|
+
http_get: DangerLevel.LOW,
|
|
69
|
+
fetch_page: DangerLevel.LOW,
|
|
70
|
+
web_search: DangerLevel.LOW,
|
|
71
|
+
remember_fact: DangerLevel.LOW,
|
|
72
|
+
use_skill: DangerLevel.LOW,
|
|
73
|
+
task_done: DangerLevel.LOW,
|
|
74
|
+
delete_file: DangerLevel.MEDIUM,
|
|
75
|
+
git_add: DangerLevel.MEDIUM,
|
|
76
|
+
git_commit: DangerLevel.MEDIUM,
|
|
77
|
+
git_checkout: DangerLevel.MEDIUM,
|
|
78
|
+
http_post: DangerLevel.MEDIUM,
|
|
79
|
+
mcp_add_server: DangerLevel.MEDIUM,
|
|
80
|
+
mcp_remove_server: DangerLevel.MEDIUM,
|
|
81
|
+
launch_app: DangerLevel.MEDIUM,
|
|
82
|
+
open_path: DangerLevel.MEDIUM,
|
|
83
|
+
browser_open: DangerLevel.MEDIUM,
|
|
84
|
+
run_bash: DangerLevel.HIGH,
|
|
85
|
+
shell_exec: DangerLevel.HIGH,
|
|
86
|
+
kill_process: DangerLevel.HIGH,
|
|
87
|
+
package_manager: DangerLevel.HIGH,
|
|
88
|
+
service_control: DangerLevel.HIGH,
|
|
89
|
+
delegate_to: DangerLevel.HIGH,
|
|
90
|
+
mcp_scaffold_server: DangerLevel.HIGH,
|
|
91
|
+
};
|
|
92
|
+
/* ═══════════════════════════════════════
|
|
93
|
+
Security context — per-session security state
|
|
94
|
+
═══════════════════════════════════════ */
|
|
95
|
+
class SecurityContext {
|
|
96
|
+
constructor(opts) {
|
|
97
|
+
this.auditLog = [];
|
|
98
|
+
this.deniedCount = 0;
|
|
99
|
+
this.autoApprovedCount = 0;
|
|
100
|
+
this.manualApprovedCount = 0;
|
|
101
|
+
this.approvalMode = "auto";
|
|
102
|
+
this.approvalCallback = null;
|
|
103
|
+
if (opts?.mode)
|
|
104
|
+
this.approvalMode = opts.mode;
|
|
105
|
+
if (opts?.onApprove)
|
|
106
|
+
this.approvalCallback = opts.onApprove;
|
|
107
|
+
}
|
|
108
|
+
/** Get the danger level for a tool. Defaults to SAFE for unknown tools. */
|
|
109
|
+
getDangerLevel(toolName) {
|
|
110
|
+
return TOOL_DANGER_MAP[toolName] ?? DangerLevel.SAFE;
|
|
111
|
+
}
|
|
112
|
+
/** Check if arguments contain red-line patterns (critical danger). */
|
|
113
|
+
checkRedline(toolName, args) {
|
|
114
|
+
if (toolName !== "run_bash" && toolName !== "shell_exec")
|
|
115
|
+
return null;
|
|
116
|
+
const cmd = String(args.command || args.cmd || "").toLowerCase();
|
|
117
|
+
for (const pattern of REDLINE_PATTERNS) {
|
|
118
|
+
if (pattern.test(cmd))
|
|
119
|
+
return `Red-line pattern detected: ${pattern.source.slice(0, 40)}`;
|
|
120
|
+
}
|
|
121
|
+
for (const forbidden of REDLINE_COMMANDS) {
|
|
122
|
+
if (cmd.includes(forbidden))
|
|
123
|
+
return `Red-line command: ${forbidden}`;
|
|
124
|
+
}
|
|
125
|
+
return null;
|
|
126
|
+
}
|
|
127
|
+
/** Determine whether a tool call is permitted. Returns [approved, reason]. */
|
|
128
|
+
async checkApproval(toolName, args, agentName) {
|
|
129
|
+
const level = this.getDangerLevel(toolName);
|
|
130
|
+
// Red-line check
|
|
131
|
+
const redline = this.checkRedline(toolName, args);
|
|
132
|
+
if (redline) {
|
|
133
|
+
log.warn("redline_blocked", { agent: agentName, tool: toolName, reason: redline });
|
|
134
|
+
return [false, redline];
|
|
135
|
+
}
|
|
136
|
+
// Safe — always allow
|
|
137
|
+
if (level === DangerLevel.SAFE)
|
|
138
|
+
return [true, "safe"];
|
|
139
|
+
// Strict mode — deny all non-safe
|
|
140
|
+
if (this.approvalMode === "strict") {
|
|
141
|
+
return [false, `Strict mode: tool '${toolName}' (level ${level}) requires manual approval`];
|
|
142
|
+
}
|
|
143
|
+
// Auto mode — allow LOW, prompt for MEDIUM+, deny CRITICAL
|
|
144
|
+
if (this.approvalMode === "auto") {
|
|
145
|
+
if (level <= DangerLevel.LOW)
|
|
146
|
+
return [true, "auto-low"];
|
|
147
|
+
if (level === DangerLevel.CRITICAL)
|
|
148
|
+
return [false, `CRITICAL tool '${toolName}' requires explicit human approval`];
|
|
149
|
+
// MEDIUM/HIGH with auto mode => need callback
|
|
150
|
+
if (this.approvalCallback) {
|
|
151
|
+
const approved = await this.approvalCallback(toolName, args, level);
|
|
152
|
+
return [approved, approved ? "user-approved" : "user-denied"];
|
|
153
|
+
}
|
|
154
|
+
return [true, "auto-med"]; // no callback → auto-allow but log
|
|
155
|
+
}
|
|
156
|
+
// Interactive mode — prompt for LOW+
|
|
157
|
+
if (this.approvalCallback) {
|
|
158
|
+
const approved = await this.approvalCallback(toolName, args, level);
|
|
159
|
+
return [approved, approved ? "user-approved" : "user-denied"];
|
|
160
|
+
}
|
|
161
|
+
return [true, "no-callback"];
|
|
162
|
+
}
|
|
163
|
+
/** Record an audit entry. */
|
|
164
|
+
recordAudit(tool, agent, args, dangerLevel, approved, resultPreview, durationMs, traceId) {
|
|
165
|
+
const entry = {
|
|
166
|
+
ts: new Date().toISOString(),
|
|
167
|
+
agent, tool, args, dangerLevel, approved,
|
|
168
|
+
result: resultPreview.slice(0, 500),
|
|
169
|
+
durationMs, traceId,
|
|
170
|
+
};
|
|
171
|
+
this.auditLog.push(entry);
|
|
172
|
+
if (this.auditLog.length > 5000)
|
|
173
|
+
this.auditLog.shift();
|
|
174
|
+
if (approved) {
|
|
175
|
+
if (dangerLevel >= DangerLevel.HIGH)
|
|
176
|
+
this.manualApprovedCount++;
|
|
177
|
+
else
|
|
178
|
+
this.autoApprovedCount++;
|
|
179
|
+
}
|
|
180
|
+
else {
|
|
181
|
+
this.deniedCount++;
|
|
182
|
+
}
|
|
183
|
+
log.info(dangerLevel >= DangerLevel.HIGH ? "dangerous_tool_executed" : "tool_executed", {
|
|
184
|
+
tool, agent, level: dangerLevel, approved,
|
|
185
|
+
});
|
|
186
|
+
}
|
|
187
|
+
/** Get summary statistics. */
|
|
188
|
+
getStats() {
|
|
189
|
+
return {
|
|
190
|
+
total: this.auditLog.length,
|
|
191
|
+
denied: this.deniedCount,
|
|
192
|
+
autoApproved: this.autoApprovedCount,
|
|
193
|
+
manualApproved: this.manualApprovedCount,
|
|
194
|
+
byLevel: {
|
|
195
|
+
safe: this.auditLog.filter(e => e.dangerLevel === DangerLevel.SAFE).length,
|
|
196
|
+
low: this.auditLog.filter(e => e.dangerLevel === DangerLevel.LOW).length,
|
|
197
|
+
medium: this.auditLog.filter(e => e.dangerLevel === DangerLevel.MEDIUM).length,
|
|
198
|
+
high: this.auditLog.filter(e => e.dangerLevel === DangerLevel.HIGH).length,
|
|
199
|
+
critical: this.auditLog.filter(e => e.dangerLevel === DangerLevel.CRITICAL).length,
|
|
200
|
+
},
|
|
201
|
+
lastDenied: this.auditLog.filter(e => !e.approved).slice(-5).map(e => `${e.tool}: ${e.result}`),
|
|
202
|
+
};
|
|
203
|
+
}
|
|
204
|
+
/** Install approval callback for interactive mode. */
|
|
205
|
+
setApprovalCallback(fn) {
|
|
206
|
+
this.approvalCallback = fn;
|
|
207
|
+
}
|
|
208
|
+
}
|
|
209
|
+
exports.SecurityContext = SecurityContext;
|
|
210
|
+
/* ── Global security context ── */
|
|
211
|
+
let globalSecurity = null;
|
|
212
|
+
function getSecurity() {
|
|
213
|
+
if (!globalSecurity)
|
|
214
|
+
globalSecurity = new SecurityContext();
|
|
215
|
+
return globalSecurity;
|
|
216
|
+
}
|
|
217
|
+
function resetSecurity() {
|
|
218
|
+
globalSecurity = null;
|
|
219
|
+
}
|
|
220
|
+
//# sourceMappingURL=security.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"security.js","sourceRoot":"","sources":["../../src/core/security.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;AAmOH,kCAGC;AAED,sCAEC;AAxOD,qCAAqC;AAErC,MAAM,GAAG,GAAG,IAAA,kBAAS,EAAC,UAAU,CAAC,CAAC;AAElC,yBAAyB;AACzB,IAAY,WAWX;AAXD,WAAY,WAAW;IACrB,iDAAiD;IACjD,6CAAQ,CAAA;IACR,kEAAkE;IAClE,2CAAO,CAAA;IACP,sEAAsE;IACtE,iDAAU,CAAA;IACV,6DAA6D;IAC7D,6CAAQ,CAAA;IACR,yDAAyD;IACzD,qDAAY,CAAA;AACd,CAAC,EAXW,WAAW,2BAAX,WAAW,QAWtB;AAED;;6CAE6C;AAC7C,MAAM,gBAAgB,GAAG;IACvB,UAAU,EAAY,cAAc,EAAU,UAAU;IACxD,eAAe,EAAO,QAAQ,EAAgB,gBAAgB;IAC9D,WAAW,EAAW,kBAAkB,EAAM,cAAc;IAC5D,gBAAgB,EAAM,WAAW,EAAa,WAAW;IACzD,sBAAsB,EAAE,gBAAgB;CACzC,CAAC;AAgNO,4CAAgB;AA9MzB,MAAM,gBAAgB,GAAG;IACvB,UAAU,EAAE,QAAQ,EAAE,QAAQ,EAAE,QAAQ;IACxC,oBAAoB,EAAE,eAAe;CACtC,CAAC;AA2MyB,4CAAgB;AAzM3C;;6CAE6C;AAC7C,MAAM,eAAe,GAAgC;IACnD,SAAS,EAAE,WAAW,CAAC,IAAI;IAC3B,cAAc,EAAE,WAAW,CAAC,IAAI;IAChC,IAAI,EAAE,WAAW,CAAC,IAAI;IACtB,WAAW,EAAE,WAAW,CAAC,IAAI;IAC7B,WAAW,EAAE,WAAW,CAAC,IAAI;IAC7B,IAAI,EAAE,WAAW,CAAC,IAAI;IACtB,UAAU,EAAE,WAAW,CAAC,IAAI;IAC5B,QAAQ,EAAE,WAAW,CAAC,IAAI;IAC1B,OAAO,EAAE,WAAW,CAAC,IAAI;IACzB,WAAW,EAAE,WAAW,CAAC,IAAI;IAC7B,eAAe,EAAE,WAAW,CAAC,IAAI;IACjC,cAAc,EAAE,WAAW,CAAC,IAAI;IAChC,mBAAmB,EAAE,WAAW,CAAC,IAAI;IACrC,WAAW,EAAE,WAAW,CAAC,IAAI;IAC7B,YAAY,EAAE,WAAW,CAAC,IAAI;IAC9B,gBAAgB,EAAE,WAAW,CAAC,IAAI;IAElC,UAAU,EAAE,WAAW,CAAC,GAAG;IAC3B,SAAS,EAAE,WAAW,CAAC,GAAG;IAC1B,SAAS,EAAE,WAAW,CAAC,GAAG;IAC1B,SAAS,EAAE,WAAW,CAAC,GAAG;IAC1B,QAAQ,EAAE,WAAW,CAAC,GAAG;IACzB,UAAU,EAAE,WAAW,CAAC,GAAG;IAC3B,UAAU,EAAE,WAAW,CAAC,GAAG;IAC3B,aAAa,EAAE,WAAW,CAAC,GAAG;IAC9B,SAAS,EAAE,WAAW,CAAC,GAAG;IAC1B,SAAS,EAAE,WAAW,CAAC,GAAG;IAE1B,WAAW,EAAE,WAAW,CAAC,MAAM;IAC/B,OAAO,EAAE,WAAW,CAAC,MAAM;IAC3B,UAAU,EAAE,WAAW,CAAC,MAAM;IAC9B,YAAY,EAAE,WAAW,CAAC,MAAM;IAChC,SAAS,EAAE,WAAW,CAAC,MAAM;IAC7B,cAAc,EAAE,WAAW,CAAC,MAAM;IAClC,iBAAiB,EAAE,WAAW,CAAC,MAAM;IACrC,UAAU,EAAE,WAAW,CAAC,MAAM;IAC9B,SAAS,EAAE,WAAW,CAAC,MAAM;IAC7B,YAAY,EAAE,WAAW,CAAC,MAAM;IAEhC,QAAQ,EAAE,WAAW,CAAC,IAAI;IAC1B,UAAU,EAAE,WAAW,CAAC,IAAI;IAC5B,YAAY,EAAE,WAAW,CAAC,IAAI;IAC9B,eAAe,EAAE,WAAW,CAAC,IAAI;IACjC,eAAe,EAAE,WAAW,CAAC,IAAI;IACjC,WAAW,EAAE,WAAW,CAAC,IAAI;IAC7B,mBAAmB,EAAE,WAAW,CAAC,IAAI;CACtC,CAAC;AAiBF;;6CAE6C;AAC7C,MAAa,eAAe;IAS1B,YAAY,IAAkJ;QARvJ,aAAQ,GAAiB,EAAE,CAAC;QAC5B,gBAAW,GAAG,CAAC,CAAC;QAChB,sBAAiB,GAAG,CAAC,CAAC;QACtB,wBAAmB,GAAG,CAAC,CAAC;QACxB,iBAAY,GAAsC,MAAM,CAAC;QAExD,qBAAgB,GAA+F,IAAI,CAAC;QAG1H,IAAI,IAAI,EAAE,IAAI;YAAE,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC,IAAI,CAAC;QAC9C,IAAI,IAAI,EAAE,SAAS;YAAE,IAAI,CAAC,gBAAgB,GAAG,IAAI,CAAC,SAAS,CAAC;IAC9D,CAAC;IAED,2EAA2E;IAC3E,cAAc,CAAC,QAAgB;QAC7B,OAAO,eAAe,CAAC,QAAQ,CAAC,IAAI,WAAW,CAAC,IAAI,CAAC;IACvD,CAAC;IAED,sEAAsE;IACtE,YAAY,CAAC,QAAgB,EAAE,IAAyB;QACtD,IAAI,QAAQ,KAAK,UAAU,IAAI,QAAQ,KAAK,YAAY;YAAE,OAAO,IAAI,CAAC;QACtE,MAAM,GAAG,GAAG,MAAM,CAAC,IAAI,CAAC,OAAO,IAAI,IAAI,CAAC,GAAG,IAAI,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC;QACjE,KAAK,MAAM,OAAO,IAAI,gBAAgB,EAAE,CAAC;YACvC,IAAI,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC;gBAAE,OAAO,8BAA8B,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;QAC5F,CAAC;QACD,KAAK,MAAM,SAAS,IAAI,gBAAgB,EAAE,CAAC;YACzC,IAAI,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC;gBAAE,OAAO,qBAAqB,SAAS,EAAE,CAAC;QACvE,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,8EAA8E;IAC9E,KAAK,CAAC,aAAa,CAAC,QAAgB,EAAE,IAAyB,EAAE,SAAiB;QAChF,MAAM,KAAK,GAAG,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;QAE5C,iBAAiB;QACjB,MAAM,OAAO,GAAG,IAAI,CAAC,YAAY,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;QAClD,IAAI,OAAO,EAAE,CAAC;YACZ,GAAG,CAAC,IAAI,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,CAAC;YACnF,OAAO,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;QAC1B,CAAC;QAED,sBAAsB;QACtB,IAAI,KAAK,KAAK,WAAW,CAAC,IAAI;YAAE,OAAO,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAEtD,kCAAkC;QAClC,IAAI,IAAI,CAAC,YAAY,KAAK,QAAQ,EAAE,CAAC;YACnC,OAAO,CAAC,KAAK,EAAE,sBAAsB,QAAQ,YAAY,KAAK,4BAA4B,CAAC,CAAC;QAC9F,CAAC;QAED,2DAA2D;QAC3D,IAAI,IAAI,CAAC,YAAY,KAAK,MAAM,EAAE,CAAC;YACjC,IAAI,KAAK,IAAI,WAAW,CAAC,GAAG;gBAAE,OAAO,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;YACxD,IAAI,KAAK,KAAK,WAAW,CAAC,QAAQ;gBAAE,OAAO,CAAC,KAAK,EAAE,kBAAkB,QAAQ,oCAAoC,CAAC,CAAC;YACnH,8CAA8C;YAC9C,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;gBAC1B,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,QAAQ,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC;gBACpE,OAAO,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC;YAChE,CAAC;YACD,OAAO,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC,CAAC,mCAAmC;QAChE,CAAC;QAED,qCAAqC;QACrC,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;YAC1B,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,QAAQ,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC;YACpE,OAAO,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC;QAChE,CAAC;QACD,OAAO,CAAC,IAAI,EAAE,aAAa,CAAC,CAAC;IAC/B,CAAC;IAED,6BAA6B;IAC7B,WAAW,CAAC,IAAY,EAAE,KAAa,EAAE,IAAyB,EAAE,WAAwB,EAAE,QAAiB,EAAE,aAAqB,EAAE,UAAkB,EAAE,OAAe;QACzK,MAAM,KAAK,GAAe;YACxB,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YAC5B,KAAK,EAAE,IAAI,EAAE,IAAI,EAAE,WAAW,EAAE,QAAQ;YACxC,MAAM,EAAE,aAAa,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;YACnC,UAAU,EAAE,OAAO;SACpB,CAAC;QACF,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAC1B,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,GAAG,IAAI;YAAE,IAAI,CAAC,QAAQ,CAAC,KAAK,EAAE,CAAC;QAEvD,IAAI,QAAQ,EAAE,CAAC;YACb,IAAI,WAAW,IAAI,WAAW,CAAC,IAAI;gBAAE,IAAI,CAAC,mBAAmB,EAAE,CAAC;;gBAC3D,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAChC,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,WAAW,EAAE,CAAC;QACrB,CAAC;QAED,GAAG,CAAC,IAAI,CAAC,WAAW,IAAI,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,yBAAyB,CAAC,CAAC,CAAC,eAAe,EAAE;YACtF,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,WAAW,EAAE,QAAQ;SAC1C,CAAC,CAAC;IACL,CAAC;IAED,8BAA8B;IAC9B,QAAQ;QACN,OAAO;YACL,KAAK,EAAE,IAAI,CAAC,QAAQ,CAAC,MAAM;YAC3B,MAAM,EAAE,IAAI,CAAC,WAAW;YACxB,YAAY,EAAE,IAAI,CAAC,iBAAiB;YACpC,cAAc,EAAE,IAAI,CAAC,mBAAmB;YACxC,OAAO,EAAE;gBACP,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,KAAK,WAAW,CAAC,IAAI,CAAC,CAAC,MAAM;gBAC1E,GAAG,EAAE,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,KAAK,WAAW,CAAC,GAAG,CAAC,CAAC,MAAM;gBACxE,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,KAAK,WAAW,CAAC,MAAM,CAAC,CAAC,MAAM;gBAC9E,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,KAAK,WAAW,CAAC,IAAI,CAAC,CAAC,MAAM;gBAC1E,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,KAAK,WAAW,CAAC,QAAQ,CAAC,CAAC,MAAM;aACnF;YACD,UAAU,EAAE,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,MAAM,EAAE,CAAC;SAChG,CAAC;IACJ,CAAC;IAED,sDAAsD;IACtD,mBAAmB,CAAC,EAAqF;QACvG,IAAI,CAAC,gBAAgB,GAAG,EAAE,CAAC;IAC7B,CAAC;CACF;AApHD,0CAoHC;AAED,mCAAmC;AACnC,IAAI,cAAc,GAA2B,IAAI,CAAC;AAElD,SAAgB,WAAW;IACzB,IAAI,CAAC,cAAc;QAAE,cAAc,GAAG,IAAI,eAAe,EAAE,CAAC;IAC5D,OAAO,cAAc,CAAC;AACxB,CAAC;AAED,SAAgB,aAAa;IAC3B,cAAc,GAAG,IAAI,CAAC;AACxB,CAAC"}
|
package/package.json
CHANGED
package/src/core/agent.ts
CHANGED
|
@@ -222,9 +222,11 @@ export class BaseAgent {
|
|
|
222
222
|
protected injectBehaviorRules(prompt: string): string {
|
|
223
223
|
const lang = (this.config as any).llm?.language || 'zh';
|
|
224
224
|
if (lang === 'en') {
|
|
225
|
-
return prompt +
|
|
225
|
+
return prompt +
|
|
226
|
+
`\n\n## Thinking Protocol\nBefore acting, briefly weigh: (1) **What** is the actual need? (2) **How** sure am I? If <80%, flag with [uncertain] and ask.\nIf stuck, admit it — propose a partial answer or ask the user. Never fabricate.\n\n## Behavior\n- Act, don't narrate. No "I will..." before tool calls.\n- Stay in scope. Do what's asked, then stop.\n- Batch independent tool calls in one response.\n- Verify writes: read back, report verified state.\n- Call list_skills when the task needs specialized capabilities.`;
|
|
226
227
|
}
|
|
227
|
-
return prompt +
|
|
228
|
+
return prompt +
|
|
229
|
+
`\n\n## 思考协议\n行动前快速判断:(1) 用户真实需求是什么?(2) 我有多大把握?低于80%标注 [不确定] 并主动询问。\n卡住时承认,给出部分答案或请求用户指导。绝不编造。\n\n## 行为守则\n- 直接行动,不预告。不说「我将要...」,直接调用工具\n- 不擅自扩大范围。用户要什么做什么,核心完成即止\n- 独立的工具调用一次发出,并行执行\n- 写入后回读验证,汇报已验证状态而非仅尝试\n- 任务涉及专业能力时(PPT/Excel/PDF/网页设计/代码审查等),先调 list_skills 查看可用技能,再用 use_skill 激活`;
|
|
228
230
|
}
|
|
229
231
|
|
|
230
232
|
protected injectProgrammingWisdom(prompt: string): string {
|
|
@@ -1401,12 +1403,20 @@ export class BaseAgent {
|
|
|
1401
1403
|
}
|
|
1402
1404
|
}
|
|
1403
1405
|
|
|
1406
|
+
private _security: any = null;
|
|
1407
|
+
get security(): any { if (!this._security) { try { const { getSecurity } = require('./security'); this._security = getSecurity(); } catch { this._security = {}; } } return this._security; }
|
|
1408
|
+
|
|
1404
1409
|
protected async checkToolApproval(toolName: string, toolArgs: Record<string, any>): Promise<boolean> {
|
|
1410
|
+
try {
|
|
1411
|
+
const sec = this.security;
|
|
1412
|
+
if (sec?.checkApproval) {
|
|
1413
|
+
const [approved, reason] = await sec.checkApproval(toolName, toolArgs, this.name);
|
|
1414
|
+
if (!approved) log.warn('tool_blocked', { tool: toolName, agent: this.name, reason });
|
|
1415
|
+
return approved;
|
|
1416
|
+
}
|
|
1417
|
+
} catch { /* fall through */ }
|
|
1405
1418
|
const mode = (this.config as any).cli?.approvalMode || 'auto';
|
|
1406
1419
|
if (mode === 'strict') return false;
|
|
1407
|
-
if (mode === 'interactive' && this.approvalCallback) {
|
|
1408
|
-
return this.approvalCallback(toolName, toolArgs);
|
|
1409
|
-
}
|
|
1410
1420
|
return true;
|
|
1411
1421
|
}
|
|
1412
1422
|
|
|
@@ -0,0 +1,146 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* 持续学习模块 — post-task review + experience recording.
|
|
3
|
+
*
|
|
4
|
+
* After each task, the agent writes a structured review.
|
|
5
|
+
* Failed attempts are indexed for similarity search to avoid repetition.
|
|
6
|
+
*/
|
|
7
|
+
|
|
8
|
+
import * as fs from "fs";
|
|
9
|
+
import * as path from "path";
|
|
10
|
+
import { USER_CONFIG_DIR } from "./config";
|
|
11
|
+
import { getLogger } from "./logger";
|
|
12
|
+
|
|
13
|
+
const log = getLogger("learn");
|
|
14
|
+
|
|
15
|
+
/* ── Data types ── */
|
|
16
|
+
export interface TaskReview {
|
|
17
|
+
ts: string;
|
|
18
|
+
agent: string;
|
|
19
|
+
goal: string;
|
|
20
|
+
success: boolean;
|
|
21
|
+
durationMs: number;
|
|
22
|
+
toolCalls: string[];
|
|
23
|
+
errorMsg?: string;
|
|
24
|
+
rootCause?: string;
|
|
25
|
+
improvement?: string;
|
|
26
|
+
}
|
|
27
|
+
|
|
28
|
+
export interface ExperienceEntry {
|
|
29
|
+
id: string;
|
|
30
|
+
pattern: string; // What went wrong (key for similarity search)
|
|
31
|
+
solution: string; // What fixed it
|
|
32
|
+
frequency: number; // How often this pattern repeats
|
|
33
|
+
lastSeen: string;
|
|
34
|
+
}
|
|
35
|
+
|
|
36
|
+
/* ── Persistence ── */
|
|
37
|
+
const reviewDir = path.join(USER_CONFIG_DIR, "reviews");
|
|
38
|
+
const expFile = path.join(USER_CONFIG_DIR, "experiences.json");
|
|
39
|
+
const reviewDir_ = reviewDir; // for closure
|
|
40
|
+
|
|
41
|
+
function ensureDir() { if (!fs.existsSync(reviewDir_)) fs.mkdirSync(reviewDir_, { recursive: true }); }
|
|
42
|
+
|
|
43
|
+
/* ═══════════════════════════════════════
|
|
44
|
+
Task Review Recording
|
|
45
|
+
═══════════════════════════════════════ */
|
|
46
|
+
export function recordReview(review: TaskReview): void {
|
|
47
|
+
ensureDir();
|
|
48
|
+
const file = path.join(reviewDir_, `${review.ts.slice(0, 10)}_${review.agent}.jsonl`);
|
|
49
|
+
const line = JSON.stringify(review);
|
|
50
|
+
fs.appendFileSync(file, line + "\n");
|
|
51
|
+
log.debug("review_recorded", { agent: review.agent, success: review.success });
|
|
52
|
+
|
|
53
|
+
// If failed, also record as experience
|
|
54
|
+
if (!review.success && review.errorMsg) {
|
|
55
|
+
recordExperience(review.errorMsg, review.rootCause || "unknown", review.improvement || "no improvement noted");
|
|
56
|
+
}
|
|
57
|
+
}
|
|
58
|
+
|
|
59
|
+
/* ═══════════════════════════════════════
|
|
60
|
+
Experience Recording (for failure patterns)
|
|
61
|
+
═══════════════════════════════════════ */
|
|
62
|
+
function loadExperiences(): ExperienceEntry[] {
|
|
63
|
+
try {
|
|
64
|
+
if (fs.existsSync(expFile)) return JSON.parse(fs.readFileSync(expFile, "utf-8"));
|
|
65
|
+
} catch { /* ignore */ }
|
|
66
|
+
return [];
|
|
67
|
+
}
|
|
68
|
+
|
|
69
|
+
function saveExperiences(entries: ExperienceEntry[]): void {
|
|
70
|
+
ensureDir();
|
|
71
|
+
fs.writeFileSync(expFile, JSON.stringify(entries, null, 2), "utf-8");
|
|
72
|
+
}
|
|
73
|
+
|
|
74
|
+
export function recordExperience(errorPattern: string, rootCause: string, solution: string): void {
|
|
75
|
+
const entries = loadExperiences();
|
|
76
|
+
const normalized = errorPattern.toLowerCase().slice(0, 200);
|
|
77
|
+
|
|
78
|
+
// Check for existing similar pattern (simple substring match)
|
|
79
|
+
const existing = entries.find(e => e.pattern.toLowerCase().includes(normalized.slice(0, 50)) || normalized.includes(e.pattern.toLowerCase().slice(0, 50)));
|
|
80
|
+
if (existing) {
|
|
81
|
+
existing.frequency++;
|
|
82
|
+
existing.lastSeen = new Date().toISOString();
|
|
83
|
+
if (solution && solution !== "no improvement noted") existing.solution = solution;
|
|
84
|
+
} else {
|
|
85
|
+
entries.push({
|
|
86
|
+
id: Math.random().toString(36).slice(2, 10),
|
|
87
|
+
pattern: errorPattern.slice(0, 200),
|
|
88
|
+
solution,
|
|
89
|
+
frequency: 1,
|
|
90
|
+
lastSeen: new Date().toISOString(),
|
|
91
|
+
});
|
|
92
|
+
}
|
|
93
|
+
|
|
94
|
+
// Keep top 100 experiences, sorted by frequency
|
|
95
|
+
entries.sort((a, b) => b.frequency - a.frequency);
|
|
96
|
+
if (entries.length > 100) entries.splice(100);
|
|
97
|
+
saveExperiences(entries);
|
|
98
|
+
}
|
|
99
|
+
|
|
100
|
+
/* ═══════════════════════════════════════
|
|
101
|
+
Query experiences
|
|
102
|
+
═══════════════════════════════════════ */
|
|
103
|
+
export function queryExperiences(problem: string, limit: number = 3): ExperienceEntry[] {
|
|
104
|
+
const entries = loadExperiences();
|
|
105
|
+
const lower = problem.toLowerCase();
|
|
106
|
+
return entries
|
|
107
|
+
.filter(e => {
|
|
108
|
+
const plow = e.pattern.toLowerCase();
|
|
109
|
+
// Simple token overlap scoring
|
|
110
|
+
const tokens = lower.split(/\s+/).filter(t => t.length > 2);
|
|
111
|
+
const matches = tokens.filter(t => plow.includes(t));
|
|
112
|
+
return matches.length >= 2;
|
|
113
|
+
})
|
|
114
|
+
.sort((a, b) => b.frequency - a.frequency)
|
|
115
|
+
.slice(0, limit);
|
|
116
|
+
}
|
|
117
|
+
|
|
118
|
+
/* ═══════════════════════════════════════
|
|
119
|
+
Format experiences for system prompt injection
|
|
120
|
+
═══════════════════════════════════════ */
|
|
121
|
+
export function formatExperiencesForPrompt(problem: string): string {
|
|
122
|
+
const exps = queryExperiences(problem);
|
|
123
|
+
if (!exps.length) return "";
|
|
124
|
+
const lines = ["## 历史教训(从经验库检索)", "以下是与当前任务相关的过往失败案例,请避免重复:"];
|
|
125
|
+
for (const e of exps) {
|
|
126
|
+
lines.push(`- **模式**: ${e.pattern.slice(0, 120)}`);
|
|
127
|
+
lines.push(` **解决**: ${e.solution.slice(0, 200)} (出现 ${e.frequency} 次)`);
|
|
128
|
+
}
|
|
129
|
+
return lines.join("\n");
|
|
130
|
+
}
|
|
131
|
+
|
|
132
|
+
/* ═══════════════════════════════════════
|
|
133
|
+
Generate a structured review after task completion
|
|
134
|
+
═══════════════════════════════════════ */
|
|
135
|
+
export function generateReview(
|
|
136
|
+
agent: string, goal: string, success: boolean, durationMs: number,
|
|
137
|
+
toolCalls: string[], errorMsg?: string
|
|
138
|
+
): TaskReview {
|
|
139
|
+
return {
|
|
140
|
+
ts: new Date().toISOString(),
|
|
141
|
+
agent, goal, success, durationMs, toolCalls,
|
|
142
|
+
errorMsg,
|
|
143
|
+
rootCause: errorMsg ? "auto-detected failure" : undefined,
|
|
144
|
+
improvement: errorMsg ? "review error and adjust approach" : undefined,
|
|
145
|
+
};
|
|
146
|
+
}
|