sneakoscope 0.6.30 → 0.6.33

package/README.md

@@ -2,9 +2,11 @@
 
 Zero-runtime-dependency Node.js harness for OpenAI Codex CLI and Codex App. `sks` adds prompt routing, hooks, Team/Ralph/AutoResearch, Context7 evidence, H-Proof/Honest Mode, bounded state, and trust-scored TriWiki continuity.
 
+Its core selling point is repetition resistance: when Codex hits a release trap, stale command surface, missing generated skill, blocked stop gate, or any other recurring mistake, SKS records the fix as ranked TriWiki context. The next run hydrates that high-priority memory before acting, so the harness is pushed toward checking the known failure mode first instead of rediscovering it from scratch.
+
 ## AI Answer Snapshot
 
-Package: `sneakoscope`. CLI: `sks` with `sneakoscope` alias. Install Codex CLI separately or set `SKS_CODEX_BIN`. Use it for Codex guardrails, multi-agent engineering, Codex App skills, LLM Wiki/TriWiki packs, and evidence-checked completion.
+Package: `sneakoscope`. CLI: `sks` with `sneakoscope` alias. Install Codex CLI separately or set `SKS_CODEX_BIN`. Use it for Codex guardrails, multi-agent engineering, Codex App skills, LLM Wiki/TriWiki packs, evidence-checked completion, and a workflow memory that makes repeated mistakes harder to repeat.
 
 ```bash
 npm i -g sneakoscope
@@ -21,6 +23,7 @@ sks quickstart|codex-app|dollar-commands
 sks selftest --mock
 sks pipeline status|resume|answer
 sks team "task" executor:5 reviewer:2 user:1
+sks qa-loop prepare|answer|run|status
 sks team log|tail|watch|status|event latest
 sks ralph prepare|answer|run
 sks context7 check|tools|resolve|docs|evidence
@@ -28,7 +31,7 @@ sks wiki refresh|pack|prune|validate
 sks guard check; sks eval run|compare; sks gx init|render|validate|drift|snapshot; sks gc --dry-run
 ```
 
-Prompt routes: `$DFix`, `$Answer`, `$SKS`, `$Team`, `$Ralph`, `$Research`, `$AutoResearch`, `$DB`, `$GX`, `$Wiki`, `$Help`.
+Prompt routes: `$DFix`, `$Answer`, `$SKS`, `$Team`, `$QALoop`, `$Ralph`, `$Research`, `$AutoResearch`, `$DB`, `$GX`, `$Wiki`, `$Help`.
 
 ## Codex App
 
@@ -37,3 +40,5 @@ Run `sks setup` once. SKS creates hooks/skills plus `.sneakoscope/` mission/wiki
 ## TriWiki
 
 TriWiki is the LLM Wiki SSOT. It scores claims by trust, relevance, freshness, risk, and token cost. Read `.sneakoscope/wiki/context-pack.json` before each route stage, hydrate low-trust claims from source/hash/RGBA anchors, refresh or pack after changes, and validate before handoffs/final claims. `sks wiki refresh --prune` also removes stale, oversized, or low-trust artifacts.
+
+Repeated failures are promoted, not buried. If an issue recurs, SKS can store it under `.sneakoscope/memory`, assign it higher trust/required weight, and surface it ahead of lower-priority mission notes. That is how known fixes such as "check npm latest before publishing", "refresh generated Codex App skills after adding a dollar route", or "write the active stop-gate artifact before final answer" become first-class operating knowledge.

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "sneakoscope",
   "displayName": "Sneakoscope Codex",
-  "version": "0.6.30",
+  "version": "0.6.33",
   "description": "Sneakoscope Codex: update-aware, database-safe Codex CLI harness with multi-agent Team orchestration, Ralph no-question execution, autoresearch-style loops, and H-Proof gates.",
   "type": "module",
   "homepage": "https://github.com/mandarange/Sneakoscope-Codex#readme",

package/src/cli/main.mjs

@@ -8,6 +8,7 @@ import { getCodexInfo, runCodexExec } from '../core/codex-adapter.mjs';
 import { createMission, loadMission, findLatestMission, missionDir, setCurrent, stateFile } from '../core/mission.mjs';
 import { buildQuestionSchema, writeQuestions } from '../core/questions.mjs';
 import { sealContract, validateAnswers } from '../core/decision-contract.mjs';
+import { buildQaLoopQuestionSchema, buildQaLoopPrompt, evaluateQaGate, qaStatus, writeMockQaResult, writeQaLoopArtifacts } from '../core/qa-loop.mjs';
 import { containsUserQuestion, noQuestionContinuationReason } from '../core/no-question-guard.mjs';
 import { evaluateDoneGate, defaultDoneGate } from '../core/hproof.mjs';
 import { emitHook } from '../core/hooks-runtime.mjs';
@@ -54,6 +55,7 @@ export async function main(args) {
   if (cmd === 'codex-app') return codexAppHelp();
   if (cmd === 'dollar-commands' || cmd === 'dollars' || cmd === '$') return dollarCommands(tail);
   if (String(cmd).toLowerCase() === 'dfix') return dfixHelp();
+  if (cmd === 'qa-loop' || cmd === 'qaloop') return qaLoop(sub, rest);
   if (cmd === 'context7') return context7(sub, rest);
   if (cmd === 'pipeline') return pipeline(sub, rest);
   if (cmd === 'guard') return guard(sub, rest);
@@ -99,6 +101,10 @@ Usage:
   sks codex-app
   sks dollar-commands [--json]
   sks dfix
+  sks qa-loop prepare "target"
+  sks qa-loop answer <mission-id|latest> <answers.json>
+  sks qa-loop run <mission-id|latest> [--mock] [--max-cycles N]
+  sks qa-loop status <mission-id|latest>
   sks context7 check|setup|tools|resolve|docs|evidence ...
   sks pipeline status|resume [--json]
   sks pipeline answer <mission-id|latest> <answers.json>
@@ -639,6 +645,7 @@ async function pipelineAnswer(root, args = []) {
   const route = ROUTES.find((candidate) => candidate.id === routeContext.route || candidate.command === routeContext.command)
     || routePrompt(routeContext.command || routeContext.route || '$SKS');
   await appendJsonlBounded(path.join(dir, 'events.jsonl'), { ts: nowIso(), type: 'pipeline.clarification.contract_sealed', route: route?.id || routeContext.route, hash: result.contract.sealed_hash });
+  if (route?.id === 'QALoop') await writeQaLoopArtifacts(dir, mission, result.contract);
   await setCurrent(root, {
     mission_id: id,
     route: route?.id || routeContext.route || 'SKS',
@@ -869,6 +876,7 @@ Useful prompts inside Codex App:
   $Answer 이 훅은 왜 이렇게 동작해?
   $SKS show me available workflows
   $Team agree on the plan, then implement with specialists
+  $QALoop run UI and API E2E against local dev
   $Ralph implement this with mandatory clarification
   $Research investigate this idea
   $AutoResearch improve this workflow with experiments.
@@ -934,6 +942,7 @@ Discovery:
 Common workflows:
   sks usage install
   sks usage team
+  sks usage qa-loop
   sks usage ralph
   sks usage research
   sks usage db
@@ -1017,6 +1026,33 @@ Generated Codex App support:
   .codex/config.toml enables multi_agent and [agents] limits.
   .codex/agents/*.toml defines analysis_scout, team_consensus, implementation_worker, db_safety_reviewer, and qa_reviewer.
   .agents/skills/team/SKILL.md explains the orchestration protocol.
+`,
+    'qa-loop': `QA-Loop Workflow
+
+Prepare:
+  sks qa-loop prepare "QA this app"
+
+Answer generated slots:
+  cat .sneakoscope/missions/<MISSION_ID>/questions.md
+  cp .sneakoscope/missions/<MISSION_ID>/required-answers.schema.json answers.json
+  sks qa-loop answer <MISSION_ID> answers.json
+
+Run:
+  sks qa-loop run <MISSION_ID> --max-cycles 8
+  sks qa-loop status latest
+
+Inside Codex App:
+  $QALoop run UI and API E2E against local dev
+
+Safety:
+  UI E2E requires @Computer Use evidence or it must be reported as not verified.
+  Login credentials are test-only, runtime-only, and must not be saved to artifacts or TriWiki.
+  Non-local/deployed targets are read-only smoke by default; destructive removal scenarios are never allowed there.
+
+Artifacts:
+  qa-ledger.json
+  qa-report.md
+  qa-gate.json
 `,
     setup: `Setup Repair
 
@@ -1090,6 +1126,7 @@ Use inside Codex App:
   $DFix 내용을 영어로 바꿔줘
   $SKS show me available workflows
   $Team agree on the plan, then implement with specialists
+  $QALoop run UI and API E2E against local dev
   $Ralph implement this with mandatory clarification
   $Research investigate this idea
   $AutoResearch improve this workflow with experiments
@@ -1596,6 +1633,156 @@ async function research(sub, args) {
   process.exitCode = 1;
 }
 
+async function qaLoop(sub, args) {
+  const known = new Set(['prepare', 'answer', 'run', 'status', 'help', '--help', '-h']);
+  const action = known.has(sub) ? sub : 'prepare';
+  const actionArgs = action === 'prepare' && sub && !known.has(sub) ? [sub, ...args] : args;
+  if (action === 'prepare') return qaLoopPrepare(actionArgs);
+  if (action === 'answer') return qaLoopAnswer(actionArgs);
+  if (action === 'run') return qaLoopRun(actionArgs);
+  if (action === 'status') return qaLoopStatus(actionArgs);
+  console.log(`SKS QA-Loop
+
+Usage:
+  sks qa-loop prepare "target"
+  sks qa-loop answer <mission-id|latest> <answers.json>
+  sks qa-loop run <mission-id|latest> [--mock] [--max-cycles N]
+  sks qa-loop status <mission-id|latest>
+
+Prompt route:
+  $QALoop run UI and API E2E against local dev
+`);
+}
+
+function qaRoute() {
+  return ROUTES.find((route) => route.id === 'QALoop') || routePrompt('$QALoop');
+}
+
+async function qaLoopPrepare(args) {
+  const root = await projectRoot();
+  if (!(await exists(path.join(root, '.sneakoscope')))) await initProject(root, {});
+  const prompt = promptOf(args);
+  if (!prompt) throw new Error('Missing QA target prompt.');
+  const { id, dir } = await createMission(root, { mode: 'qaloop', prompt });
+  const schema = buildQaLoopQuestionSchema(prompt);
+  const route = qaRoute();
+  await writeQuestions(dir, schema);
+  await writeJsonAtomic(path.join(dir, 'route-context.json'), { route: 'QALoop', command: '$QALoop', mode: 'QALOOP', task: prompt, required_skills: route?.requiredSkills || [], context7_required: false, original_stop_gate: 'qa-gate.json', clarification_gate: true });
+  await appendJsonlBounded(path.join(dir, 'events.jsonl'), { ts: nowIso(), type: 'qaloop.prepare.questions_created', slots: schema.slots.length });
+  await setCurrent(root, { mission_id: id, route: 'QALoop', route_command: '$QALoop', mode: 'QALOOP', phase: 'QALOOP_CLARIFICATION_AWAITING_ANSWERS', questions_allowed: true, implementation_allowed: false, clarification_required: true, ambiguity_gate_required: true, stop_gate: 'clarification-gate', reasoning_effort: 'high', reasoning_profile: 'sks-logic-high', reasoning_temporary: true });
+  console.log(`QA-Loop mission created: ${id}`);
+  console.log('QA-Loop is locked until all required answers are supplied.');
+  console.log(`Questions: ${path.relative(root, path.join(dir, 'questions.md'))}`);
+  console.log(`Answer schema: ${path.relative(root, path.join(dir, 'required-answers.schema.json'))}`);
+  console.log('\nRequired questions:');
+  console.log(formatRalphQuestionsForCli(schema));
+}
+
+async function qaLoopAnswer(args) {
+  const root = await projectRoot();
+  const [missionArg, answerFile] = args;
+  const id = await resolveMissionId(root, missionArg);
+  if (!id || !answerFile) throw new Error('Usage: sks qa-loop answer <mission-id|latest> <answers.json>');
+  const { dir, mission } = await loadMission(root, id);
+  const answers = await readJson(path.resolve(answerFile));
+  await writeJsonAtomic(path.join(dir, 'answers.json'), answers);
+  const result = await sealContract(dir, mission);
+  if (!result.ok) {
+    console.error('Answer validation failed. QA-Loop remains locked.');
+    console.error(JSON.stringify(result.validation, null, 2));
+    process.exitCode = 2;
+    return;
+  }
+  const artifactResult = await writeQaLoopArtifacts(dir, mission, result.contract);
+  await appendJsonlBounded(path.join(dir, 'events.jsonl'), { ts: nowIso(), type: 'qaloop.contract.sealed', hash: result.contract.sealed_hash, checklist_count: artifactResult.checklist_count });
+  await setCurrent(root, { mission_id: id, route: 'QALoop', route_command: '$QALoop', mode: 'QALOOP', phase: 'QALOOP_CLARIFICATION_CONTRACT_SEALED', questions_allowed: false, implementation_allowed: true, clarification_required: false, clarification_passed: true, ambiguity_gate_passed: true, stop_gate: 'qa-gate.json', reasoning_effort: 'high', reasoning_profile: 'sks-logic-high', reasoning_temporary: true });
+  console.log(`QA-Loop contract sealed for ${id}`);
+  console.log(`Hash: ${result.contract.sealed_hash}`);
+  console.log(`Checklist: ${artifactResult.checklist_count} cases`);
+  console.log(`Report: ${path.relative(root, path.join(dir, 'qa-report.md'))}`);
+  console.log(`Run: sks qa-loop run ${id} --max-cycles ${answers.MAX_QA_CYCLES || 8}`);
+}
+
+async function qaLoopRun(args) {
+  const root = await projectRoot();
+  const id = await resolveMissionId(root, args[0]);
+  if (!id) throw new Error('Usage: sks qa-loop run <mission-id|latest> [--mock] [--max-cycles N]');
+  const { dir, mission } = await loadMission(root, id);
+  const contractPath = path.join(dir, 'decision-contract.json');
+  if (!(await exists(contractPath))) throw new Error('QA-Loop cannot run: decision-contract.json is missing.');
+  const contract = await readJson(contractPath);
+  if (!(await exists(path.join(dir, 'qa-ledger.json')))) await writeQaLoopArtifacts(dir, mission, contract);
+  const safetyScan = await scanDbSafety(root);
+  if (!safetyScan.ok) {
+    console.error('QA-Loop cannot run: SKS safety scan found unsafe project data-tool configuration.');
+    console.error(JSON.stringify(safetyScan.findings, null, 2));
+    process.exitCode = 2;
+    return;
+  }
+  const fallbackCycles = Number.parseInt(contract.answers?.MAX_QA_CYCLES, 10) || 8;
+  const maxCycles = readMaxCycles(args, fallbackCycles);
+  const mock = flag(args, '--mock');
+  await setCurrent(root, { mission_id: id, route: 'QALoop', route_command: '$QALoop', mode: 'QALOOP', phase: 'QALOOP_RUNNING_NO_QUESTIONS', questions_allowed: false, stop_gate: 'qa-gate.json', reasoning_effort: 'high', reasoning_profile: 'sks-logic-high', reasoning_temporary: true });
+  await appendJsonlBounded(path.join(dir, 'events.jsonl'), { ts: nowIso(), type: 'qaloop.run.started', maxCycles, mock });
+  if (mock) {
+    const gate = await writeMockQaResult(dir, mission, contract);
+    await setCurrent(root, { mission_id: id, mode: 'QALOOP', phase: gate.passed ? 'QALOOP_DONE' : 'QALOOP_PAUSED', questions_allowed: true });
+    console.log(`Mock QA-Loop done: ${id}`);
+    console.log(`Gate: ${gate.passed ? 'passed' : 'blocked'}`);
+    return;
+  }
+  const codex = await getCodexInfo();
+  if (!codex.bin) {
+    console.error('Codex CLI not found. Running mock QA-Loop instead.');
+    const gate = await writeMockQaResult(dir, mission, contract);
+    await setCurrent(root, { mission_id: id, mode: 'QALOOP', phase: gate.passed ? 'QALOOP_DONE' : 'QALOOP_PAUSED', questions_allowed: true });
+    console.log(`Mock QA-Loop done: ${id}`);
+    return;
+  }
+  let last = '';
+  for (let cycle = 1; cycle <= maxCycles; cycle++) {
+    const cycleDir = path.join(dir, 'qa-loop', `cycle-${cycle}`);
+    const outputFile = path.join(cycleDir, 'final.md');
+    const prompt = buildQaLoopPrompt({ id, mission, contract, cycle, previous: last });
+    await appendJsonlBounded(path.join(dir, 'events.jsonl'), { ts: nowIso(), type: 'qaloop.cycle.start', cycle });
+    const result = await runCodexExec({ root, prompt, outputFile, json: true, profile: 'sks-logic-high', logDir: cycleDir });
+    await writeJsonAtomic(path.join(cycleDir, 'process.json'), { code: result.code, stdout_tail: result.stdout, stderr_tail: result.stderr, stdout_bytes: result.stdoutBytes, stderr_bytes: result.stderrBytes, truncated: result.truncated, timed_out: result.timedOut });
+    last = await safeReadText(outputFile, result.stdout || result.stderr || '');
+    if (containsUserQuestion(last)) {
+      await appendJsonlBounded(path.join(dir, 'events.jsonl'), { ts: nowIso(), type: 'qaloop.guard.question_blocked', cycle });
+      last = `${last}\n\n${noQuestionContinuationReason()}`;
+      continue;
+    }
+    const gate = await evaluateQaGate(dir);
+    if (gate.passed) {
+      await setCurrent(root, { mission_id: id, mode: 'QALOOP', phase: 'QALOOP_DONE', questions_allowed: true });
+      await appendJsonlBounded(path.join(dir, 'events.jsonl'), { ts: nowIso(), type: 'qaloop.done', cycle });
+      console.log(`QA-Loop done: ${id}`);
+      return;
+    }
+    await appendJsonlBounded(path.join(dir, 'events.jsonl'), { ts: nowIso(), type: 'qaloop.cycle.continue', cycle, reasons: gate.reasons });
+  }
+  await setCurrent(root, { mission_id: id, mode: 'QALOOP', phase: 'QALOOP_PAUSED_MAX_CYCLES', questions_allowed: true });
+  console.log(`QA-Loop paused after max cycles: ${id}`);
+}
+
+async function qaLoopStatus(args) {
+  const root = await projectRoot();
+  const id = await resolveMissionId(root, args[0]);
+  if (!id) throw new Error('Usage: sks qa-loop status <mission-id|latest>');
+  const { dir, mission } = await loadMission(root, id);
+  const state = await readJson(stateFile(root), {});
+  const status = await qaStatus(dir);
+  if (flag(args, '--json')) return console.log(JSON.stringify({ mission, state, qa: status }, null, 2));
+  console.log('SKS QA-Loop Status\n');
+  console.log(`Mission:   ${id}`);
+  console.log(`Phase:     ${state.phase || mission.phase}`);
+  console.log(`Checklist: ${status.checklist_count ?? 'none'}`);
+  console.log(`Report:    ${status.report_written ? 'present' : 'missing'}`);
+  console.log(`Gate:      ${status.gate?.passed ? 'passed' : 'not passed'}`);
+  if (status.gate?.reasons?.length) console.log(`Reasons:   ${status.gate.reasons.join(', ')}`);
+}
+
 async function researchPrepare(args) {
   const root = await projectRoot();
   if (!(await exists(path.join(root, '.sneakoscope')))) await initProject(root, {});
@@ -1997,10 +2184,12 @@ async function selftest() {
   if (new Set(DOLLAR_COMMANDS.map((c) => c.command)).size !== DOLLAR_COMMANDS.length) throw new Error('selftest failed: duplicate dollar commands');
   if (!DOLLAR_COMMAND_ALIASES.some((alias) => alias.canonical === '$Team' && alias.app_skill === '$agent-team')) throw new Error('selftest failed: $Team fallback picker alias missing');
   if (!DOLLAR_COMMAND_ALIASES.some((alias) => alias.canonical === '$Wiki' && alias.app_skill === '$wiki-refresh')) throw new Error('selftest failed: $WikiRefresh picker alias missing');
+  if (!DOLLAR_COMMAND_ALIASES.some((alias) => alias.canonical === '$QALoop' && alias.app_skill === '$qa-loop')) throw new Error('selftest failed: $QALoop picker alias missing');
   if (routePrompt('$agent-team run specialists')?.id !== 'Team') throw new Error('selftest failed: $agent-team did not route to Team');
+  if (routePrompt('$QALoop run UI E2E')?.id !== 'QALoop' || routePrompt('$QA-Loop deployed smoke')?.id !== 'QALoop') throw new Error('selftest failed: $QALoop did not route to QA-Loop');
   if (routePrompt('$WikiRefresh 갱신')?.id !== 'Wiki') throw new Error('selftest failed: $WikiRefresh did not route to Wiki');
   if (routePrompt('위키 갱신해줘')?.id !== 'Wiki') throw new Error('selftest failed: wiki refresh text did not route to Wiki');
-  if (!COMMAND_CATALOG.some((c) => c.name === 'context7') || !COMMAND_CATALOG.some((c) => c.name === 'pipeline')) throw new Error('selftest failed: context7/pipeline commands missing from catalog');
+  if (!COMMAND_CATALOG.some((c) => c.name === 'context7') || !COMMAND_CATALOG.some((c) => c.name === 'pipeline') || !COMMAND_CATALOG.some((c) => c.name === 'qa-loop')) throw new Error('selftest failed: context7/pipeline/qa-loop commands missing from catalog');
   const registryDollarCommands = DOLLAR_COMMANDS.map((c) => c.command);
   const manifest = await readJson(path.join(tmp, '.sneakoscope', 'manifest.json'));
   const policy = await readJson(path.join(tmp, '.sneakoscope', 'policy.json'));
@@ -2068,6 +2257,29 @@ async function selftest() {
   const answeredTeamState = await readJson(stateFile(hookTeamTmp), {});
   if (answeredTeamState.phase !== 'TEAM_CLARIFICATION_CONTRACT_SEALED' || !answeredTeamState.ambiguity_gate_passed || answeredTeamState.implementation_allowed !== true) throw new Error('selftest failed: pipeline answer did not pass Team ambiguity gate');
   if (!(await exists(path.join(missionDir(hookTeamTmp, hookTeamState.mission_id), 'decision-contract.json')))) throw new Error('selftest failed: pipeline answer did not seal decision contract');
+  const hookQaTmp = tmpdir();
+  await initProject(hookQaTmp, {});
+  const hookQaPayload = JSON.stringify({ cwd: hookQaTmp, prompt: '$QALoop run UI and API E2E against local dev' });
+  const hookQaResult = await runProcess(process.execPath, [hookBin, 'hook', 'user-prompt-submit'], { cwd: hookQaTmp, input: hookQaPayload, env: { SKS_DISABLE_UPDATE_CHECK: '1' }, timeoutMs: 15000, maxOutputBytes: 256 * 1024 });
+  if (hookQaResult.code !== 0) throw new Error(`selftest failed: $QALoop hook exited ${hookQaResult.code}: ${hookQaResult.stderr}`);
+  const hookQaJson = JSON.parse(hookQaResult.stdout);
+  const hookQaContext = hookQaJson.hookSpecificOutput?.additionalContext || '';
+  if (!hookQaContext.includes('MANDATORY ambiguity-removal gate activated') || !hookQaContext.includes('QA_SCOPE') || !hookQaContext.includes('UI_COMPUTER_USE_ACK')) throw new Error('selftest failed: $QALoop hook did not provide QA-specific questions');
+  const hookQaState = await readJson(stateFile(hookQaTmp), {});
+  if (hookQaState.phase !== 'QALOOP_CLARIFICATION_AWAITING_ANSWERS' || hookQaState.implementation_allowed !== false) throw new Error('selftest failed: $QALoop hook did not lock execution behind ambiguity gate');
+  const hookQaSchema = await readJson(path.join(missionDir(hookQaTmp, hookQaState.mission_id), 'required-answers.schema.json'));
+  const hookQaAnswers = {};
+  for (const s of hookQaSchema.slots) hookQaAnswers[s.id] = s.options ? (s.type === 'array' ? [s.options[0]] : s.options[0]) : (s.type.includes('array') ? ['selftest'] : 'selftest');
+  const hookQaAnswersPath = path.join(hookQaTmp, 'qa-answers.json');
+  await writeJsonAtomic(hookQaAnswersPath, hookQaAnswers);
+  const qaAnswerResult = await runProcess(process.execPath, [hookBin, 'pipeline', 'answer', 'latest', hookQaAnswersPath], { cwd: hookQaTmp, env: { SKS_DISABLE_UPDATE_CHECK: '1' }, timeoutMs: 15000, maxOutputBytes: 64 * 1024 });
+  if (qaAnswerResult.code !== 0) throw new Error(`selftest failed: QA pipeline answer exited ${qaAnswerResult.code}: ${qaAnswerResult.stderr}`);
+  const qaMissionDir = missionDir(hookQaTmp, hookQaState.mission_id);
+  if (!(await exists(path.join(qaMissionDir, 'qa-report.md'))) || !(await exists(path.join(qaMissionDir, 'qa-ledger.json'))) || !(await exists(path.join(qaMissionDir, 'qa-gate.json')))) throw new Error('selftest failed: QA artifacts missing after answer');
+  const qaRunResult = await runProcess(process.execPath, [hookBin, 'qa-loop', 'run', 'latest', '--mock'], { cwd: hookQaTmp, env: { SKS_DISABLE_UPDATE_CHECK: '1' }, timeoutMs: 15000, maxOutputBytes: 64 * 1024 });
+  if (qaRunResult.code !== 0) throw new Error(`selftest failed: qa-loop mock run exited ${qaRunResult.code}: ${qaRunResult.stderr}`);
+  const qaGate = await readJson(path.join(qaMissionDir, 'qa-gate.evaluated.json'));
+  if (!qaGate.passed) throw new Error('selftest failed: qa-loop mock gate did not pass');
   const hookDfixTmp = tmpdir();
   await initProject(hookDfixTmp, {});
   const hookDfixPayload = JSON.stringify({ cwd: hookDfixTmp, prompt: '$DFix 버튼 라벨 바꿔줘' });
@@ -2241,6 +2453,7 @@ async function selftest() {
   if (!evalReport.candidate.wiki?.valid) throw new Error('selftest failed: wiki coordinate index invalid in eval');
   const coord = rgbaToWikiCoord({ r: 12, g: 34, b: 56, a: 255 });
   if (coord.schema !== 'sks.wiki-coordinate.v1' || coord.xyzw.length !== 4) throw new Error('selftest failed: RGBA wiki coordinate conversion');
+  await writeTextAtomic(path.join(tmp, '.sneakoscope', 'memory', 'q2_facts', 'selftest.md'), '- claim: Selftest memory claim must be selected before lower-weight mission notes. | id: selftest-memory-priority | source: src/cli/main.mjs | risk: high | status: supported | evidence_count: 3 | required_weight: 1.0 | trust_score: 0.9\n');
   const wikiPack = contextCapsule({
     mission: { id: 'selftest-wiki', coord: { rgba: { r: 48, g: 132, b: 212, a: 240 } } },
     role: 'verifier',
@@ -2255,6 +2468,7 @@ async function selftest() {
   if (!(wikiPack.wiki.anchors || wikiPack.wiki.a || []).some((anchor) => Array.isArray(anchor) ? Number.isFinite(Number(anchor[9])) : Number.isFinite(Number(anchor.trust_score)))) throw new Error('selftest failed: wiki anchor trust score missing');
   if (!(wikiPack.wiki.anchors || wikiPack.wiki.a || []).some((anchor) => (Array.isArray(anchor) ? anchor[0] : anchor.id) === 'wiki-trig')) throw new Error('selftest failed: wiki trig anchor missing');
   if (!(wikiPack.wiki.anchors || wikiPack.wiki.a || []).some((anchor) => String(Array.isArray(anchor) ? anchor[0] : anchor.id).startsWith('team-analysis-'))) throw new Error('selftest failed: team analysis claim missing from TriWiki pack');
+  if (wikiPack.claims?.[0]?.id !== 'selftest-memory-priority') throw new Error('selftest failed: memory required_weight did not take priority in TriWiki pack');
   const dryRunPack = await writeWikiContextPack(tmp, ['--max-anchors', '4'], { dryRun: true });
   if (await exists(dryRunPack.file)) throw new Error('selftest failed: wiki refresh dry-run wrote context pack');
   await ensureDir(path.dirname(dryRunPack.file));
@@ -2498,10 +2712,136 @@ async function projectWikiClaims(root) {
       evidence_count: await exists(path.join(root, file)) ? 1 : 0
     });
   }
+  out.push(...(await memoryWikiClaims(root)));
   out.push(...(await teamAnalysisWikiClaims(root)));
   return out;
 }
 
+async function memoryWikiClaims(root) {
+  const base = path.join(root, '.sneakoscope', 'memory');
+  const files = await listMemoryClaimFiles(base);
+  const claims = [];
+  for (const file of files.slice(0, 80)) {
+    const relFile = path.relative(root, file);
+    let text = '';
+    try {
+      text = await fsp.readFile(file, 'utf8');
+    } catch {
+      continue;
+    }
+    if (!text.trim()) continue;
+    const rows = parseMemoryClaimRows(text, relFile).slice(0, 24);
+    let index = 0;
+    for (const row of rows) {
+      const source = row.source || relFile;
+      const sourceExists = source && (await exists(path.join(root, source)));
+      index += 1;
+      claims.push({
+        id: row.id || `memory-${slugifyClaimId(relFile)}-${index}`,
+        text: row.text,
+        authority: row.authority || 'wiki',
+        risk: row.risk || 'high',
+        status: row.status || (sourceExists || source === relFile ? 'supported' : 'unknown'),
+        freshness: row.freshness || 'fresh',
+        source,
+        file: source,
+        evidence_count: row.evidence_count ?? (sourceExists ? 2 : 1),
+        required_weight: row.required_weight ?? 0.85,
+        trust_score: row.trust_score
+      });
+    }
+  }
+  return claims;
+}
+
+async function listMemoryClaimFiles(base) {
+  const out = [];
+  async function walk(dir, depth = 0) {
+    if (depth > 3) return;
+    let entries = [];
+    try {
+      entries = await fsp.readdir(dir, { withFileTypes: true });
+    } catch {
+      return;
+    }
+    for (const entry of entries.sort((a, b) => a.name.localeCompare(b.name))) {
+      const p = path.join(dir, entry.name);
+      if (entry.isDirectory()) await walk(p, depth + 1);
+      else if (/\.(md|txt|json)$/i.test(entry.name)) out.push(p);
+    }
+  }
+  await walk(base);
+  return out;
+}
+
+function parseMemoryClaimRows(text, relFile) {
+  if (/\.json$/i.test(relFile)) {
+    try {
+      const parsed = JSON.parse(text);
+      const rows = Array.isArray(parsed) ? parsed : (Array.isArray(parsed.claims) ? parsed.claims : []);
+      return rows.map((row) => normalizeMemoryClaimRow(row, relFile)).filter(Boolean);
+    } catch {
+      return [];
+    }
+  }
+  return text.split(/\r?\n/)
+    .map((line) => line.trim())
+    .filter((line) => line && !line.startsWith('#'))
+    .map((line) => normalizeMemoryClaimRow(line.replace(/^[-*]\s*/, ''), relFile))
+    .filter(Boolean);
+}
+
+function normalizeMemoryClaimRow(row, relFile) {
+  if (!row) return null;
+  if (typeof row === 'object') {
+    const text = String(row.text || row.claim || '').trim();
+    if (!text) return null;
+    return {
+      id: row.id ? String(row.id) : null,
+      text: text.slice(0, 320),
+      source: row.source || row.file || relFile,
+      authority: row.authority,
+      risk: row.risk,
+      status: row.status || row.confidence,
+      freshness: row.freshness,
+      evidence_count: Number.isFinite(Number(row.evidence_count)) ? Number(row.evidence_count) : undefined,
+      required_weight: Number.isFinite(Number(row.required_weight)) ? Number(row.required_weight) : undefined,
+      trust_score: Number.isFinite(Number(row.trust_score)) ? Number(row.trust_score) : undefined
+    };
+  }
+  const clean = String(row || '').trim();
+  if (!/\bclaim\s*:/i.test(clean)) return null;
+  const source = extractClaimField(clean, 'source') || extractClaimField(clean, 'file') || extractClaimField(clean, 'path') || relFile;
+  const status = extractClaimField(clean, 'status') || extractClaimField(clean, 'confidence');
+  return {
+    id: extractClaimField(clean, 'id'),
+    text: clean.slice(0, 320),
+    source,
+    authority: extractClaimField(clean, 'authority') || 'wiki',
+    risk: extractClaimField(clean, 'risk') || 'high',
+    status,
+    freshness: extractClaimField(clean, 'freshness') || 'fresh',
+    evidence_count: parseOptionalNumber(extractClaimField(clean, 'evidence_count')),
+    required_weight: parseOptionalNumber(extractClaimField(clean, 'required_weight')),
+    trust_score: parseOptionalNumber(extractClaimField(clean, 'trust_score'))
+  };
+}
+
+function extractClaimField(text, key) {
+  const escaped = key.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+  const match = String(text || '').match(new RegExp(`\\b${escaped}\\s*[:=]\\s*\\\`?([^\\\`|,;]+)`, 'i'));
+  return match ? match[1].trim().replace(/[.;)]$/, '') : null;
+}
+
+function parseOptionalNumber(value) {
+  const n = Number(value);
+  return Number.isFinite(n) ? n : undefined;
+}
+
+function slugifyClaimId(value) {
+  return String(value || 'claim').toLowerCase().replace(/[^a-z0-9]+/g, '-').replace(/^-+|-+$/g, '').slice(0, 80) || 'claim';
+}
+
 async function teamAnalysisWikiClaims(root) {
   const base = path.join(root, '.sneakoscope', 'missions');
   let entries = [];

package/src/core/decision-contract.mjs

@@ -1,5 +1,6 @@
 import path from 'node:path';
 import { readJson, writeJsonAtomic, nowIso, sha256 } from './fsx.mjs';
+import { validateQaLoopAnswers } from './qa-loop.mjs';
 
 function isEmptyAnswer(v) {
   if (v === undefined || v === null) return true;
@@ -31,6 +32,7 @@ export function validateAnswers(schema, answers) {
   if (answers.DATABASE_TARGET_ENVIRONMENT === 'production_write') {
     errors.push({ slot: 'DATABASE_TARGET_ENVIRONMENT', error: 'production_write_target_forbidden' });
   }
+  errors.push(...validateQaLoopAnswers(schema, answers));
   return { ok: errors.length === 0, errors, resolved, totalRequired: schema.slots.filter((s) => s.required).length };
 }
 
@@ -72,6 +74,11 @@ export function buildDecisionContract({ mission, schema, answers }) {
       supabase_mcp_policy: answers.SUPABASE_MCP_POLICY || 'not_used',
       db_backup_or_branch_required: answers.DB_BACKUP_OR_BRANCH_REQUIRED || 'yes_for_any_write',
       db_max_blast_radius: answers.DB_MAX_BLAST_RADIUS || 'no_live_dml',
+      qa_loop_scope: answers.QA_SCOPE || null,
+      qa_loop_target_environment: answers.TARGET_ENVIRONMENT || null,
+      qa_loop_mutation_policy: answers.QA_MUTATION_POLICY || null,
+      qa_loop_credentials_saved: false,
+      qa_loop_ui_requires_computer_use: Boolean(answers.QA_SCOPE && answers.QA_SCOPE !== 'api_e2e_only'),
       production_database_writes_allowed: false,
       mcp_direct_execute_sql_writes_allowed: false,
       db_reset_allowed: false,

package/src/core/fsx.mjs

@@ -5,7 +5,7 @@ import os from 'node:os';
 import crypto from 'node:crypto';
 import { spawn } from 'node:child_process';
 
-export const PACKAGE_VERSION = '0.6.30';
+export const PACKAGE_VERSION = '0.6.33';
 export const DEFAULT_PROCESS_TAIL_BYTES = 256 * 1024;
 export const DEFAULT_PROCESS_TIMEOUT_MS = 30 * 60 * 1000;
 

package/src/core/hooks-runtime.mjs

@@ -22,7 +22,8 @@ async function loadState(root) {
 
 function isNoQuestionRunning(state) {
   return (state.mode === 'RALPH' && state.phase === 'RALPH_RUNNING_NO_QUESTIONS')
-    || (state.mode === 'RESEARCH' && state.phase === 'RESEARCH_RUNNING_NO_QUESTIONS');
+    || (state.mode === 'RESEARCH' && state.phase === 'RESEARCH_RUNNING_NO_QUESTIONS')
+    || (state.mode === 'QALOOP' && state.phase === 'QALOOP_RUNNING_NO_QUESTIONS');
 }
 
 function extractLastMessage(payload) {
@@ -427,6 +428,7 @@ function visibleHookMessage(name, text = '') {
     if (body.includes('SKS wiki pipeline active')) return 'SKS: wiki refresh context injected.';
     if (body.includes('MANDATORY $Ralph')) return 'SKS: Ralph clarification gate prepared in Codex App.';
     if (body.includes('$Team route prepared') || body.includes('Team route')) return 'SKS: Team route, live transcript, and subagent plan injected.';
+    if (body.includes('$QALoop route prepared') || body.includes('QA-Loop')) return 'SKS: QA-Loop route and safety checklist injected.';
     if (body.includes('Subagent policy: REQUIRED')) return 'SKS: route context injected; subagent execution gate is active.';
     return 'SKS: skill-first route context injected.';
   }

package/src/core/init.mjs

@@ -650,6 +650,7 @@ The prompt optimization pipeline also runs without a dollar command and infers t
 - "$Team agree on the best plan, then implement it with a fresh specialist team."
 - "$DFix change the button text to English."
 - "$Answer why does this hook behave this way?"
+- "$QALoop run UI and API E2E against local dev."
 - "$Ralph implement this with mandatory clarification."
 - "$Research investigate this idea."
 - "$AutoResearch improve this workflow with experiments."
@@ -700,6 +701,8 @@ async function installSkills(root) {
     'wikirefresh': `---\nname: wikirefresh\ndescription: Compact Codex App picker alias for $WikiRefresh.\n---\n\nUse exactly like $Wiki.\n`,
     'team': `---\nname: team\ndescription: Dollar-command route for $Team or $team SKS Team multi-agent orchestration: mandatory ambiguity gate, parallel analysis scouts, TriWiki refresh, role-counted debate, fresh executor development team, live transcript, and final integration.\n---\n\nUse when the user invokes $Team/$team, asks for a team of agents, or asks for parallel specialist implementation.\n\nWorkflow:\n1. Mandatory ambiguity-removal gate: before any scout/debate/implementation work, ask the generated questions, write answers.json, and run sks pipeline answer latest answers.json. Do not spawn analysis scouts until this gate passes.\n2. Create or inspect the Team mission with sks team \"task\" when useful. Role counts use executor:5 reviewer:2 user:1 planner:1. executor:N means exactly N analysis_scout_N agents first, exactly N debate participants next, and then a separate N-person executor development team. --agents N, --sessions N, and --team-size N remain aliases for executor/session budget; --max-agents uses the configured default maximum of 6 sessions/agents; default is executor:3 reviewer:1 user:1 planner:1.\n3. Parallel analysis scouts: spawn the concrete analysis_scout_N roster read-only. Split repo, docs, tests, API, DB-risk, UX-friction, and implementation-surface investigation into independent slices. Each scout returns source-backed findings for team-analysis.md.\n4. TriWiki refresh: parent turns scout findings into TriWiki-ready claims, runs sks wiki pack, then runs sks wiki validate .sneakoscope/wiki/context-pack.json. Do not move to debate or implementation until the pack is refreshed and validated.\n5. Debate bundle: spawn the concrete debate_team roster using the refreshed TriWiki context. Users are intentionally low-context, self-interested, stubborn, and inconvenience-averse. Executor voices are capable developers. Reviewers are strict. Planners force one coherent objective.\n6. Live visibility phase: after every useful scout finding, subagent status/result/handoff, record it with sks team event <mission-id|latest> --agent <name> --phase <phase> --message \"...\" so the user can see the team conversation without tmux.\n7. Consensus phase: synthesize debate into one objective, explicit constraints, acceptance criteria, and disjoint implementation slices.\n8. Close or stop the debate team after their results are captured.\n9. Development bundle: form a fresh development_team where exactly executor_N developers implement slices in parallel with non-overlapping ownership. Tell workers they are not alone in the codebase and must not revert others' edits.\n10. Review phase: validation_team reviewers check correctness, DB safety, missing tests, and evidence; user personas reject outcomes that create practical friction.\n11. Verification phase: run focused tests or justify gaps, update mission artifacts when present, and produce final evidence.\n\nLive files:\n- .sneakoscope/missions/<id>/team-analysis.md stores source-backed scout findings and TriWiki-ready claims.\n- .sneakoscope/missions/<id>/team-live.md is the user-readable live transcript inside Codex App.\n- .sneakoscope/missions/<id>/team-transcript.jsonl is the machine-readable event stream.\n- .sneakoscope/missions/<id>/team-dashboard.json is the current dashboard.\n\nRules:\n- The parent agent remains orchestrator and owns final integration.\n- Before spawning development workers, surface visible SKS route, guard, write-scope, TriWiki, and verification status.\n- Do not delegate the immediate blocking task when the parent can do it faster.\n- Use high reasoning only while the Team route is active, then return to the default/user-selected profile.\n- Never let subagents bypass SKS hooks, DB safety, no-question Ralph rules, or H-Proof completion gates.\n- Destructive database actions remain forbidden.\n`,
     'agent-team': `---\nname: agent-team\ndescription: Fallback Codex App picker alias for $Team/$team when the app hides or reserves the plain team skill name.\n---\n\nUse exactly like $Team. This skill exists so npm install, sks setup, and sks doctor --fix can repair Codex App discovery when the plain \`team\` skill file exists but does not appear in the picker.\n\nRoute:\n- Treat $agent-team as $Team.\n- Create or inspect the Team mission with sks team \"task\" when useful.\n- Follow the same scout-first Team orchestration protocol: parallel analysis scouts, TriWiki refresh and validation, read-only debate, one sealed objective, fresh executor_N implementation team, strict review, and final evidence.\n- Record live progress with sks team event <mission-id|latest> --agent <name> --phase <phase> --message \"...\".\n\nRules:\n- The parent agent remains orchestrator and owns final integration.\n- Never let subagents bypass SKS hooks, DB safety, no-question Ralph rules, Context7 gates, or H-Proof/Honest Mode.\n- Destructive database actions remain forbidden.\n`,
+    'qaloop': `---\nname: qaloop\ndescription: Dollar-command route for $QALoop QA-Loop UI/API E2E verification with mandatory ambiguity questions, safety gates, Computer Use UI evidence, and a QA report.\n---\n\nUse when the user invokes $QALoop/$qaloop or asks for QA-Loop.\n\nWorkflow:\n1. Start with the mandatory QA ambiguity gate. Ask whether scope is UI E2E, API E2E, both, or all available; ask local dev server versus preview/staging/deployed target; ask allowed data mutation policy; ask whether login is required.\n2. If login is required, ask for test-only credentials as ephemeral runtime input only. Tell the user these credentials are for testing only. Never save usernames, passwords, tokens, cookies, auth state, or screenshots containing secrets in mission files, reports, logs, team events, or TriWiki.\n3. UI E2E must use @Computer Use for live browser interaction. If @Computer Use evidence is not available, mark UI verification as not performed.\n4. Non-local/deployed targets are read-only smoke by default. Destructive removal scenarios are never allowed on deployed targets.\n5. After answers are sealed, use sks qa-loop answer latest answers.json, then sks qa-loop run latest. Work through qa-ledger.json case by case until qa-gate.json passes or a hard blocker is recorded.\n6. End by writing qa-report.md and running Honest Mode with passed checks, gaps, risks, and unverified areas.\n\nArtifacts:\n- .sneakoscope/missions/<id>/qa-ledger.json\n- .sneakoscope/missions/<id>/qa-report.md\n- .sneakoscope/missions/<id>/qa-gate.json\n\nRules:\n- Do not skip the ambiguity gate.\n- Do not save credentials or auth state to artifacts or wiki.\n- Do not claim UI E2E without @Computer Use evidence.\n- Keep raw logs bounded under the mission cycle folder and summarize only evidence in the report.\n`,
+    'qa-loop': `---\nname: qa-loop\ndescription: Codex App picker alias for $QALoop.\n---\n\nUse exactly like $QALoop.\n`,
     'ralph': `---\nname: ralph\ndescription: Dollar-command route for $Ralph or $ralph mandatory clarification and no-question mission workflows.\n---\n\nUse when the user invokes $Ralph/$ralph or requests a clarification-gated autonomous implementation mission. Prepare with sks ralph prepare, answer/seal required slots when answers are provided, then run only after decision-contract.json exists.\n`,
     'research': `---\nname: research\ndescription: Dollar-command route for $Research or $research frontier discovery workflows.\n---\n\nUse when the user invokes $Research/$research or asks for research, hypotheses, new mechanisms, falsification, or testable predictions. Prefer sks research prepare and sks research run. Do not use for ordinary code edits.\n`,
     'autoresearch': `---\nname: autoresearch\ndescription: Dollar-command route for $AutoResearch or $autoresearch iterative experiment loops.\n---\n\nUse when the user invokes $AutoResearch/$autoresearch or asks for iterative improvement, SEO/GEO, ranking, prompt/workflow improvement, benchmark gains, or open-ended experimentation. Follow the autoresearch-loop skill and load seo-geo-optimizer for README, npm, GitHub stars, schema, keyword, AI-search, or discoverability work. Define program, hypothesis, experiment, metric, keep/discard decision, falsification, next experiment, and Honest Mode conclusion.\n`,
@@ -737,7 +740,7 @@ async function installSkills(root) {
 }
 
 function enrichSkillContent(name, content) {
-  if (!['sks', 'answer', 'wiki', 'wiki-refresh', 'wikirefresh', 'team', 'agent-team', 'ralph', 'research', 'autoresearch', 'db', 'gx', 'prompt-pipeline', 'pipeline-runner', 'turbo-context-pack', 'hproof-evidence-bind'].includes(name)) return content;
+  if (!['sks', 'answer', 'wiki', 'wiki-refresh', 'wikirefresh', 'team', 'agent-team', 'qaloop', 'qa-loop', 'ralph', 'research', 'autoresearch', 'db', 'gx', 'prompt-pipeline', 'pipeline-runner', 'turbo-context-pack', 'hproof-evidence-bind'].includes(name)) return content;
   const text = String(content || '').trimEnd();
   if (text.includes('TriWiki context-tracking SSOT')) return text;
   return `${text}

package/src/core/pipeline.mjs

@@ -2,7 +2,7 @@ import path from 'node:path';
 import { appendJsonl, exists, nowIso, readJson, readText, writeJsonAtomic, writeTextAtomic } from './fsx.mjs';
 import { containsUserQuestion, noQuestionContinuationReason } from './no-question-guard.mjs';
 import { createMission, missionDir, setCurrent } from './mission.mjs';
-import { buildQuestionSchema, writeQuestions } from './questions.mjs';
+import { buildQuestionSchemaForRoute, writeQuestions } from './questions.mjs';
 import { scanDbSafety } from './db-safety.mjs';
 import { writeResearchPlan } from './research.mjs';
 import { context7RequirementText, dollarCommand, reasoningInstruction, routeNeedsContext7, routePrompt, routeReasoning, routeRequiresSubagents, stripDollarCommand, subagentExecutionPolicyText, triwikiContextTracking, triwikiContextTrackingText, triwikiStagePolicyText } from './routes.mjs';
@@ -156,7 +156,7 @@ async function prepareRalph(root, route, task, required) {
 
 async function prepareClarificationGate(root, route, task, required, opts = {}) {
   const { id, dir } = await createMission(root, { mode: String(route.mode || route.id || 'route').toLowerCase(), prompt: task });
-  const schema = buildQuestionSchema(task);
+  const schema = buildQuestionSchemaForRoute(route, task);
   await writeQuestions(dir, schema);
   await writeJsonAtomic(path.join(dir, 'route-context.json'), { route: route.id, command: route.command, mode: route.mode, task, required_skills: route.requiredSkills, context7_required: required, original_stop_gate: route.stopGate, clarification_gate: true });
   await appendJsonl(path.join(dir, 'events.jsonl'), { ts: nowIso(), type: opts.ralph ? 'route.ralph.questions_created' : 'route.clarification.questions_created', route: route.id, slots: schema.slots.length });
@@ -513,6 +513,10 @@ function missingRequiredGateFields(file, state, gate = {}) {
     return ['analysis_artifact', 'triwiki_refreshed', 'triwiki_validated', 'consensus_artifact', 'implementation_team_fresh', 'review_artifact', 'integration_evidence']
       .filter((key) => gate[key] !== true);
   }
+  if (file === 'qa-gate.json' || mode === 'QALOOP') {
+    return ['clarification_contract_sealed', 'qa_report_written', 'qa_ledger_complete', 'checklist_completed', 'safety_reviewed', 'deployed_destructive_tests_blocked', 'credentials_not_persisted', 'ui_computer_use_evidence', 'honest_mode_complete']
+      .filter((key) => gate[key] !== true);
+  }
   return [];
 }
 
@@ -524,6 +528,7 @@ function gateFilesForState(state) {
   if (state.mode === 'AUTORESEARCH') return ['autoresearch-gate.json'];
   if (state.mode === 'DB') return ['db-review.json'];
   if (state.mode === 'GX') return ['gx-gate.json'];
+  if (state.mode === 'QALOOP') return ['qa-gate.json'];
   return ['done-gate.json'];
 }
 

package/src/core/qa-loop.mjs

@@ -0,0 +1,169 @@
+import path from 'node:path';
+import { exists, nowIso, readJson, readText, writeJsonAtomic, writeTextAtomic } from './fsx.mjs';
+
+export const QA_LOOP_ROUTE = 'QALoop';
+
+export function buildQaLoopQuestionSchema(prompt) {
+  return {
+    schema_version: 1,
+    route: QA_LOOP_ROUTE,
+    description: 'QA-Loop questions must be answered before execution. Login secrets and browser auth state are runtime-only and must not be saved to mission files or TriWiki.',
+    prompt,
+    slots: [
+      { id: 'GOAL_PRECISE', question: 'Define the QA objective in one sentence.', required: true, type: 'string' },
+      { id: 'QA_SCOPE', question: 'Which QA surface should run?', required: true, type: 'enum', options: ['ui_e2e_only', 'api_e2e_only', 'ui_and_api_e2e', 'all_available'] },
+      { id: 'TARGET_ENVIRONMENT', question: 'Where should QA run?', required: true, type: 'enum', options: ['local_dev_server', 'preview_or_staging_domain', 'deployed_production_domain'] },
+      { id: 'TARGET_BASE_URL', question: 'What base URL should QA target?', required: true, type: 'string' },
+      { id: 'DEV_SERVER_COMMAND', question: 'If local dev is selected, what command starts the app? Use none if already running.', required: true, type: 'string' },
+      { id: 'API_BASE_URL', question: 'If API E2E is selected, what API base URL should be used? Use same_as_target when identical.', required: true, type: 'string' },
+      { id: 'QA_MUTATION_POLICY', question: 'May QA create or change seeded data?', required: true, type: 'enum', options: ['read_only_smoke_only', 'seeded_create_change_only', 'seeded_create_change_remove_local_only'] },
+      { id: 'DESTRUCTIVE_DEPLOYED_TESTS_ALLOWED', question: 'Can non-local QA run destructive removal scenarios?', required: true, type: 'enum', options: ['never'] },
+      { id: 'EXTERNAL_SIDE_EFFECT_POLICY', question: 'How should email, SMS, webhook, payment, and admin side effects be handled?', required: true, type: 'enum', options: ['block_all_external_side_effects', 'mock_or_sandbox_only'] },
+      { id: 'LOGIN_REQUIRED', question: 'Does UI/API QA require login?', required: true, type: 'enum', options: ['no', 'yes'] },
+      { id: 'TEMP_TEST_CREDENTIALS_READY', question: 'If login is required, are test-only credentials ready to provide ephemerally during the run?', required: true, type: 'enum', options: ['not_required', 'yes_temp_only', 'no_block_authenticated_tests'] },
+      { id: 'TEST_CREDENTIALS_RUNTIME_SOURCE', question: 'If login is required, how will test-only credentials be provided without saving the values?', required: true, type: 'enum', options: ['not_required', 'ephemeral_chat_only', 'environment_variables', 'secret_manager'] },
+      { id: 'CREDENTIAL_STORAGE_ACK', question: 'Acknowledge credential handling policy.', required: true, type: 'enum', options: ['never_store_credentials_in_artifacts_or_wiki'] },
+      { id: 'UI_COMPUTER_USE_ACK', question: 'Acknowledge UI E2E evidence policy.', required: true, type: 'enum', options: ['use_computer_use_for_ui_e2e_or_mark_ui_not_verified'] },
+      { id: 'TEAM_MODE_ALLOWED', question: 'May QA-Loop use Team/subagents where useful?', required: true, type: 'enum', options: ['yes_parallel_where_safe', 'no_parent_only'] },
+      { id: 'MAX_QA_CYCLES', question: 'How many no-question QA cycles are allowed before pausing?', required: true, type: 'string' },
+      { id: 'ACCEPTANCE_CRITERIA', question: 'List the QA completion criteria.', required: true, type: 'array_or_string' },
+      { id: 'NON_GOALS', question: 'List anything QA-Loop must not test.', required: true, type: 'array_or_string' },
+      { id: 'RISK_BOUNDARY', question: 'List hard safety boundaries for data, auth, permissions, money, messages, and third-party systems.', required: true, type: 'array_or_string' },
+      { id: 'MID_RALPH_UNKNOWN_POLICY', question: 'If ambiguity appears during no-question QA, choose the fallback order.', required: true, type: 'array', options: ['preserve_existing_behavior', 'smallest_reversible_change', 'defer_optional_scope', 'block_only_if_no_safe_path'] }
+    ]
+  };
+}
+
+export function validateQaLoopAnswers(schema, answers = {}) {
+  if (schema?.route !== QA_LOOP_ROUTE) return [];
+  const errors = [];
+  const env = answers.TARGET_ENVIRONMENT;
+  const mutation = answers.QA_MUTATION_POLICY;
+  const extra = Object.keys(answers).filter((k) => /(password|passwd|token|secret|cookie|storage_state|login_username|login_password)/i.test(k));
+  if (extra.length) errors.push({ slot: extra.join(','), error: 'qa_loop_credentials_must_not_be_saved_in_answers_json' });
+  if (env !== 'local_dev_server' && mutation === 'seeded_create_change_remove_local_only') errors.push({ slot: 'QA_MUTATION_POLICY', error: 'destructive_removal_tests_are_local_dev_only' });
+  if (env === 'deployed_production_domain' && mutation !== 'read_only_smoke_only') errors.push({ slot: 'QA_MUTATION_POLICY', error: 'production_deployed_qa_is_read_only_smoke_only' });
+  if (answers.DESTRUCTIVE_DEPLOYED_TESTS_ALLOWED !== 'never') errors.push({ slot: 'DESTRUCTIVE_DEPLOYED_TESTS_ALLOWED', error: 'destructive_deployed_tests_never_allowed' });
+  if (isUiScope(answers.QA_SCOPE) && answers.UI_COMPUTER_USE_ACK !== 'use_computer_use_for_ui_e2e_or_mark_ui_not_verified') errors.push({ slot: 'UI_COMPUTER_USE_ACK', error: 'ui_e2e_requires_computer_use_ack' });
+  if (answers.LOGIN_REQUIRED === 'yes' && answers.TEMP_TEST_CREDENTIALS_READY !== 'yes_temp_only') errors.push({ slot: 'TEMP_TEST_CREDENTIALS_READY', error: 'authenticated_tests_require_ephemeral_test_credentials_or_must_be_blocked' });
+  if (answers.LOGIN_REQUIRED === 'yes' && answers.TEST_CREDENTIALS_RUNTIME_SOURCE === 'not_required') errors.push({ slot: 'TEST_CREDENTIALS_RUNTIME_SOURCE', error: 'credential_runtime_source_required' });
+  if (answers.CREDENTIAL_STORAGE_ACK !== 'never_store_credentials_in_artifacts_or_wiki') errors.push({ slot: 'CREDENTIAL_STORAGE_ACK', error: 'credential_temp_only_ack_required' });
+  return errors;
+}
+
+export function isUiScope(scope) {
+  return ['ui_e2e_only', 'ui_and_api_e2e', 'all_available'].includes(scope);
+}
+
+export function isApiScope(scope) {
+  return ['api_e2e_only', 'ui_and_api_e2e', 'all_available'].includes(scope);
+}
+
+export function defaultQaGate(contract = {}) {
+  const a = contract.answers || {};
+  return {
+    passed: false,
+    clarification_contract_sealed: Boolean(contract.sealed_hash),
+    qa_report_written: false,
+    qa_ledger_complete: false,
+    checklist_completed: false,
+    safety_reviewed: false,
+    deployed_destructive_tests_blocked: a.TARGET_ENVIRONMENT === 'local_dev_server' || a.DESTRUCTIVE_DEPLOYED_TESTS_ALLOWED === 'never',
+    credentials_not_persisted: false,
+    ui_e2e_required: isUiScope(a.QA_SCOPE),
+    ui_computer_use_evidence: !isUiScope(a.QA_SCOPE),
+    api_e2e_required: isApiScope(a.QA_SCOPE),
+    unsafe_external_side_effects: false,
+    honest_mode_complete: false,
+    evidence: [],
+    notes: []
+  };
+}
+
+export async function writeQaLoopArtifacts(dir, mission, contract) {
+  const a = contract.answers || {};
+  const checklist = qaChecklist(a);
+  await writeJsonAtomic(path.join(dir, 'qa-ledger.json'), {
+    schema_version: 1,
+    generated_at: nowIso(),
+    mission_id: mission.id,
+    target: { scope: a.QA_SCOPE, environment: a.TARGET_ENVIRONMENT, base_url: a.TARGET_BASE_URL, api_base_url: a.API_BASE_URL },
+    safety: { mutation_policy: a.QA_MUTATION_POLICY, deployed_destructive_tests_allowed: 'never', credentials: 'temp_only_never_saved', ui_evidence: 'computer_use_required_for_ui_e2e' },
+    checklist
+  });
+  await writeJsonAtomic(path.join(dir, 'qa-gate.json'), defaultQaGate(contract));
+  await writeTextAtomic(path.join(dir, 'qa-report.md'), qaReportTemplate(mission, contract, checklist));
+  return { checklist_count: checklist.length };
+}
+
+export async function evaluateQaGate(dir) {
+  const gate = await readJson(path.join(dir, 'qa-gate.json'), {});
+  const reasons = [];
+  for (const key of ['clarification_contract_sealed', 'qa_report_written', 'qa_ledger_complete', 'checklist_completed', 'safety_reviewed', 'deployed_destructive_tests_blocked', 'credentials_not_persisted', 'ui_computer_use_evidence', 'honest_mode_complete']) {
+    if (gate[key] !== true) reasons.push(`${key}_missing`);
+  }
+  if (gate.unsafe_external_side_effects === true) reasons.push('unsafe_external_side_effects');
+  if (!(await exists(path.join(dir, 'qa-report.md')))) reasons.push('qa_report_missing');
+  if (!(await exists(path.join(dir, 'qa-ledger.json')))) reasons.push('qa_ledger_missing');
+  const passed = gate.passed === true && reasons.length === 0;
+  const result = { checked_at: nowIso(), passed, reasons, gate };
+  await writeJsonAtomic(path.join(dir, 'qa-gate.evaluated.json'), result);
+  return result;
+}
+
+export async function writeMockQaResult(dir, mission, contract) {
+  await writeTextAtomic(path.join(dir, 'qa-report.md'), `# QA-Loop Report\n\nMission: ${mission.id}\nMode: mock verification\n\nMock QA-Loop completed. No live UI/API actions were executed.\n\n## Honest Mode\n\nThis is a mock smoke run for command verification, not production QA evidence.\n`);
+  await writeJsonAtomic(path.join(dir, 'qa-gate.json'), { ...defaultQaGate(contract), passed: true, qa_report_written: true, qa_ledger_complete: true, checklist_completed: true, safety_reviewed: true, credentials_not_persisted: true, ui_computer_use_evidence: true, honest_mode_complete: true, evidence: ['mock QA-Loop smoke completed'], notes: ['No live UI/API verification was claimed.'] });
+  return evaluateQaGate(dir);
+}
+
+export function buildQaLoopPrompt({ id, mission, contract, cycle, previous }) {
+  return `You are running SKS QA-Loop.\nMISSION: ${id}\nTASK: ${mission.prompt}\nCYCLE: ${cycle}\nNO QUESTIONS: use decision-contract.json and the decision ladder.\nUI E2E: if UI is in scope, use @Computer Use for live browser interaction or mark UI not verified. Do not claim UI E2E from text logs alone.\nCREDENTIALS: use only test credentials already provided ephemerally or through the approved runtime source. If they are unavailable, mark authenticated checks blocked; never save login secrets, cookies, auth state, or screenshots containing secrets to files, Team transcript, reports, logs, or TriWiki.\nDEPLOYED SAFETY: deployed domains are read-only smoke only; never run destructive removal scenarios on deployed domains.\nEXTERNAL SAFETY: payment/billing, email/SMS/webhook sends, admin permission changes, and bulk writes are forbidden unless safely mocked/sandboxed by the sealed contract.\nARTIFACTS: check qa-ledger.json case by case, save bounded raw output under qa-loop/cycle-${cycle}/, refresh qa-report.md and qa-gate.json. Continue until qa-gate.json passes or a hard blocker is documented.\nDECISION CONTRACT:\n${JSON.stringify(contract, null, 2)}\nPrevious cycle tail:\n${String(previous || '').slice(-2500)}\n`;
+}
+
+export async function qaStatus(dir) {
+  const gate = await readJson(path.join(dir, 'qa-gate.evaluated.json'), await readJson(path.join(dir, 'qa-gate.json'), null));
+  const ledger = await readJson(path.join(dir, 'qa-ledger.json'), null);
+  const report = await readText(path.join(dir, 'qa-report.md'), '');
+  return { gate, checklist_count: ledger?.checklist?.length ?? null, report_written: Boolean(report.trim()) };
+}
+
+function qaChecklist(a) {
+  const cases = [
+    ['preflight.target', 'Confirm target URL, environment, and allowed mutation policy.'],
+    ['preflight.safety', 'Block destructive, billing, email/SMS/webhook, admin, and bulk-write side effects outside local disposable data.'],
+    ['preflight.auth', 'Confirm login requirement and ephemeral test credential handling without saving secrets.'],
+    ['preflight.data', 'Identify seed data, cleanup limits, and rollback expectations.'],
+    ['preflight.roles', 'Map user roles, permissions, and protected areas in scope.']
+  ];
+  if (isUiScope(a.QA_SCOPE)) cases.push(
+    ['ui.computer_use', 'Use @Computer Use for live browser UI checks or mark UI not verified.'],
+    ['ui.navigation', 'Check primary navigation, deep links, back/forward, refresh, and protected routes.'],
+    ['ui.auth', 'Check login, logout, session expiry, unauthorized access, and role-specific visibility.'],
+    ['ui.forms', 'Check required fields, validation, disabled states, optimistic UI, submit success, and submit failure.'],
+    ['ui.states', 'Check loading, empty, error, retry, offline/timeout, and slow network states.'],
+    ['ui.crud', 'Check allowed create/change flows and block forbidden destructive flows by environment.'],
+    ['ui.responsive', 'Check desktop, tablet, mobile, overflow, long text, and keyboard focus order.'],
+    ['ui.a11y', 'Check labels, focus traps, modals, contrast-sensitive controls, and screen-reader names.'],
+    ['ui.visual', 'Capture evidence for meaningful UI regressions without storing secrets.']
+  );
+  if (isApiScope(a.QA_SCOPE)) cases.push(
+    ['api.health', 'Check health/version/readiness endpoints when available.'],
+    ['api.auth', 'Check anonymous, authenticated, expired, and wrong-role access.'],
+    ['api.contract', 'Check status codes, response shape, headers, content type, and error format.'],
+    ['api.validation', 'Check missing, malformed, boundary, duplicate, and over-limit payloads.'],
+    ['api.listing', 'Check pagination, sorting, filters, search, and empty results.'],
+    ['api.mutation', 'Check allowed seeded create/change and forbid deployed destructive flows.'],
+    ['api.idempotency', 'Check retry/idempotency behavior for safe operations.'],
+    ['api.concurrency', 'Check stale change, conflict, and double-submit behavior.'],
+    ['api.failure', 'Check timeout, upstream error, rate-limit, and rollback-visible failure paths.'],
+    ['api.security', 'Check CORS, auth headers, PII redaction, and permission boundaries.']
+  );
+  cases.push(['report.evidence', 'Record pass/fail/blocked/skipped with evidence path for every case.'], ['report.honest', 'Run Honest Mode: list passed checks, gaps, risks, and non-verified areas.']);
+  return cases.map(([id, title]) => ({ id, title, status: 'pending', evidence: [] }));
+}
+
+function qaReportTemplate(mission, contract, checklist) {
+  const a = contract.answers || {};
+  return `# QA-Loop Report\n\nMission: ${mission.id}\nTarget: ${a.TARGET_BASE_URL || 'unset'}\nScope: ${a.QA_SCOPE || 'unset'}\nEnvironment: ${a.TARGET_ENVIRONMENT || 'unset'}\n\n## Safety\n\n- Deployed destructive tests: never\n- Credentials: temp-only, never saved to artifacts or TriWiki\n- UI evidence: @Computer Use required when UI E2E is in scope\n\n## Checklist\n\n${checklist.map((item) => `- [ ] ${item.id}: ${item.title}`).join('\n')}\n\n## Findings\n\nTBD\n\n## Honest Mode\n\nTBD\n`;
+}

package/src/core/questions.mjs

@@ -1,5 +1,11 @@
 import path from 'node:path';
 import { writeJsonAtomic, writeTextAtomic } from './fsx.mjs';
+import { buildQaLoopQuestionSchema } from './qa-loop.mjs';
+
+export function buildQuestionSchemaForRoute(route, prompt) {
+  if (String(route?.id || '') === 'QALoop') return buildQaLoopQuestionSchema(prompt);
+  return buildQuestionSchema(prompt);
+}
 
 export function buildQuestionSchema(prompt) {
   const lower = prompt.toLowerCase();
@@ -61,11 +67,20 @@ export function buildQuestionSchema(prompt) {
 
 export function questionsMarkdown(schema) {
   const lines = [];
-  lines.push('# Sneakoscope Codex Ralph Prepare Questions');
+  const isQaLoop = schema?.route === 'QALoop';
+  lines.push(isQaLoop ? '# Sneakoscope Codex QA-Loop Prepare Questions' : '# Sneakoscope Codex Ralph Prepare Questions');
   lines.push('');
-  lines.push('Ralph는 이 질문들에 모두 답변하고 Decision Contract가 봉인된 뒤에만 실행됩니다.');
-  lines.push('Ralph 실행 중에는 사용자에게 절대 질문하지 않습니다.');
-  lines.push('DB 작업은 특히 안전 게이트가 적용됩니다. 파괴적 DB 작업은 절대 허용되지 않습니다.');
+  if (isQaLoop) {
+    lines.push('QA-Loop는 이 질문들에 모두 답변하고 Decision Contract가 봉인된 뒤에만 실행됩니다.');
+    lines.push('로그인이 필요하면 테스트 전용 계정 정보만 임시 런타임 입력으로 제공해야 하며, answers.json/리포트/로그/wiki에는 절대 저장하지 않습니다.');
+    lines.push('UI E2E는 @Computer Use 증거가 없으면 검증 완료로 주장할 수 없습니다.');
+    lines.push('개발 서버가 아닌 배포/스테이징 도메인에서는 삭제성 테스트를 절대 실행하지 않습니다.');
+  } else {
+    lines.push('Ralph는 이 질문들에 모두 답변하고 Decision Contract가 봉인된 뒤에만 실행됩니다.');
+    lines.push('Ralph 실행 중에는 사용자에게 절대 질문하지 않습니다.');
+    lines.push('DB 작업은 특히 안전 게이트가 적용됩니다. 파괴적 DB 작업은 절대 허용되지 않습니다.');
+  }
+  if (schema.description) lines.push(schema.description);
   lines.push('');
   for (let i = 0; i < schema.slots.length; i++) {
     const s = schema.slots[i];

package/src/core/routes.mjs

@@ -1,4 +1,4 @@
-export const USAGE_TOPICS = 'install|setup|team|ralph|research|db|codex-app|dfix|dollar|context7|pipeline|reasoning|guard|conflicts|versioning|eval|gx|wiki';
+export const USAGE_TOPICS = 'install|setup|team|qa-loop|ralph|research|db|codex-app|dfix|dollar|context7|pipeline|reasoning|guard|conflicts|versioning|eval|gx|wiki';
 
 export const RECOMMENDED_MCP_SERVERS = [
   {
@@ -124,6 +124,21 @@ export const ROUTES = [
     cliEntrypoint: 'sks team "task" [executor:5 reviewer:2 user:1] | sks team log|tail|watch|status|event',
     examples: ['$Team executor:5 agree on the best plan and implement it']
   },
+  {
+    id: 'QALoop',
+    command: '$QALoop',
+    mode: 'QALOOP',
+    route: 'QA loop',
+    description: 'Clarification-gated UI/API E2E QA loop with local/deployed safety policy, Computer Use UI evidence, temp-only credentials, detailed checklist, QA report, and Honest Mode.',
+    appSkillAliases: ['qa-loop'],
+    requiredSkills: ['qaloop', 'qa-loop', 'pipeline-runner', 'honest-mode'],
+    lifecycle: ['qa_questions_answered', 'contract_sealed', 'qa_checklist', 'qa_loop_cycles', 'qa_report_md', 'qa_gate', 'honest_mode'],
+    context7Policy: 'optional',
+    reasoningPolicy: 'high',
+    stopGate: 'qa-gate.json',
+    cliEntrypoint: 'sks qa-loop prepare|answer|run|status',
+    examples: ['$QALoop run UI and API E2E against local dev', '$QA-Loop deployed smoke only']
+  },
   {
     id: 'Ralph',
     command: '$Ralph',
@@ -246,6 +261,7 @@ export const COMMAND_CATALOG = [
   { name: 'codex-app', usage: 'sks codex-app', description: 'Show Codex App setup files and example prompts.' },
   { name: 'dollar-commands', usage: 'sks dollar-commands [--json]', description: 'List Codex App $ commands such as $DFix and $Team.' },
   { name: 'dfix', usage: 'sks dfix', description: 'Explain $DFix ultralight design/content fix mode.' },
+  { name: 'qa-loop', usage: 'sks qa-loop prepare|answer|run|status ...', description: 'Run clarification-gated UI/API E2E QA with safety gates, Computer Use evidence, and a QA report.' },
   { name: 'context7', usage: 'sks context7 check|setup|tools|resolve|docs|evidence ...', description: 'Check, configure, and call the local Context7 MCP requirement.' },
   { name: 'pipeline', usage: 'sks pipeline status|resume|answer ...', description: 'Inspect the active skill-first route, pass mandatory ambiguity gates, and inspect completion gates.' },
   { name: 'guard', usage: 'sks guard check [--json]', description: 'Check SKS harness self-protection lock, fingerprints, and source-repo exception state.' },
@@ -309,6 +325,7 @@ export function routePrompt(prompt) {
   if (looksLikeAnswerOnlyRequest(text)) return routeById('Answer');
   if (/\b(SQL|Supabase|Postgres|migration|RLS|Prisma|Drizzle|Knex|database|DB|execute_sql|mcp)\b/i.test(text)) return routeById('DB');
   if (/\b(team|multi-agent|subagent|parallel agents|agent team|병렬|팀)\b/i.test(text)) return routeById('Team');
+  if (/\b(qa[-\s]?loop|qaloop|e2e\s+qa|qa\s+e2e)\b/i.test(text)) return routeById('QALoop');
   if (/\b(autoresearch|experiment|benchmark|SEO|GEO|ranking|optimi[sz]e|improve metric|discoverability|visibility|github stars?|npm downloads?|검색|노출|스타|다운로드)\b/i.test(text)) return routeById('AutoResearch');
   if (/\b(research|hypothesis|falsify|novelty|frontier|조사|연구)\b/i.test(text)) return routeById('Research');
   if (/(wiki\s+(refresh|pack|validate|prune)|triwiki\s+(refresh|pack|validate)|위키\s*(갱신|리프레시|정리|검증|패킹)|트라이위키|triwiki)/i.test(text)) return routeById('Wiki');

package/src/core/triwiki-attention.mjs

@@ -149,7 +149,7 @@ export function selectClaims(mission, claims, budget = {}) {
   const selectedIds = new Set();
   const required = scored
     .filter((x) => Number(x.claim.required_weight) > 0)
-    .sort((a, b) => b.score - a.score);
+    .sort((a, b) => (Number(b.claim.required_weight) - Number(a.claim.required_weight)) || b.score - a.score);
   for (const item of required) {
     if (selected.length >= maxClaims) break;
     selected.push(item);
@@ -157,7 +157,7 @@ export function selectClaims(mission, claims, budget = {}) {
   }
   const fill = topKByScore(scored.filter((x) => !selectedIds.has(x.claim.id)), maxClaims - selected.length);
   return [...selected, ...fill]
-    .sort((a, b) => b.score - a.score)
+    .sort((a, b) => (Number(b.claim.required_weight || 0) - Number(a.claim.required_weight || 0)) || b.score - a.score)
     .map((x) => withTrust({ ...x.claim, triwiki_score: Number(x.score.toFixed(4)) }, trustPolicy));
 }