sneakoscope 0.7.78 → 0.8.2

package/src/core/hooks-runtime.mjs

@@ -8,6 +8,7 @@ import { activeRouteContext, evaluateStop, prepareRoute, promptPipelineContext a
 import { classifyToolError } from './evaluation.mjs';
 import { REQUIRED_CODEX_MODEL, isForbiddenCodexModel } from './codex-model-guard.mjs';
 import { dollarCommand, stripVisibleDecisionAnswerBlocks } from './routes.mjs';
+import { appendMissionStatus } from './recallpulse.mjs';
 
 const TEAM_DIGEST_MAX_EVENTS = 4;
 const TEAM_DIGEST_MESSAGE_CHARS = 180;
@@ -19,7 +20,7 @@ const CODEX_GIT_ACTION_STOP_ARTIFACT = 'codex-git-action-stop-bypass.json';
 const STOP_REPEAT_GUARD_WINDOW_MS = 10 * 60 * 1000;
 const STOP_REPEAT_GUARD_MAX_ENTRIES = 25;
 const DEFAULT_STOP_REPEAT_GUARD_LIMIT = 2;
-const CODEX_GIT_ACTION_STOP_TTL_MS = 5 * 60 * 1000;
+const CODEX_GIT_ACTION_STOP_TTL_MS = 15 * 60 * 1000;
 
 async function loadHookPayload() {
   const raw = await readStdin();
@@ -105,12 +106,39 @@ export async function hookMain(name) {
 function blockForbiddenClientModel(payload = {}) {
   const model = forbiddenClientModelFromPayload(payload);
   if (!model || !isForbiddenCodexModel(model)) return null;
+  if (looksLikeCodexUiSettingsEvent(payload)) return null;
   return {
     decision: 'block',
     reason: `SKS requires ${REQUIRED_CODEX_MODEL}; client payload requested ${model}. Switch the Codex client/session model to ${REQUIRED_CODEX_MODEL} and retry.`
   };
 }
 
+function looksLikeCodexUiSettingsEvent(payload = {}) {
+  const prompt = stripVisibleDecisionAnswerBlocks(extractUserPrompt(payload));
+  const haystack = [
+    payload.action,
+    payload.intent,
+    payload.operation,
+    payload.permission,
+    payload.description,
+    payload.kind,
+    payload.type,
+    payload.feature,
+    payload.source,
+    payload.event,
+    payload.hook,
+    payload.hook_name,
+    payload.metadata?.action,
+    payload.metadata?.intent,
+    payload.metadata?.operation,
+    payload.metadata?.feature,
+    payload.metadata?.source,
+    payload.context?.surface,
+    payload.session?.surface
+  ].filter(Boolean).join(' ');
+  return !prompt && /\b(?:settings|preferences|profile|speed|fast[_\s-]*mode|reasoning|model[_\s-]*select|codex[_\s-]*app)\b/i.test(haystack);
+}
+
 function forbiddenClientModelFromPayload(payload = {}) {
   const candidates = [
     payload.model,
@@ -147,6 +175,12 @@ async function hookUserPrompt(root, state, payload, noQuestion) {
       systemMessage: 'SKS: Codex App git action bypassed route gates.'
     };
   }
+  if (looksLikeCodexUiSettingsEvent(payload)) {
+    return {
+      continue: true,
+      systemMessage: 'SKS: Codex App settings/profile event ignored; route gates unchanged.'
+    };
+  }
   if (!noQuestion) {
     const prompt = stripVisibleDecisionAnswerBlocks(extractUserPrompt(payload));
     const madSksConfirmation = await handleMadSksUserConfirmation(root, state, prompt);
@@ -358,6 +392,12 @@ async function hookStop(root, state, payload, noQuestion) {
       systemMessage: 'SKS: Codex App git action accepted without route finalization gates.'
     };
   }
+  if (looksLikeCodexGitActionStopCompletion(last, payload)) {
+    return {
+      continue: true,
+      systemMessage: 'SKS: Codex App git action completion accepted without route finalization gates.'
+    };
+  }
   if (!noQuestion && (hasDfixLightCompletion(last) || await consumeLightRouteStop(root, payload))) {
     return {
       continue: true,
@@ -468,12 +508,42 @@ function looksLikeCodexGitAction(payload = {}) {
     || /커밋\s*메시지\s*생성/i.test(haystack);
   const promptSignal = /\bgenerate(?:\s+a)?(?:\s+git)?\s+commit\s+message\b/i.test(prompt)
     || /\bcommit\s+message\b[\s\S]{0,80}\b(?:staged|diff|changes?|git)\b/i.test(prompt)
+    || looksLikeStockCodexGitActionPrompt(prompt)
     || /커밋\s*메시지\s*생성/i.test(prompt);
   if (!appSignal && !promptSignal) return false;
+  if (looksLikeStockCodexGitActionPrompt(prompt)) return true;
   if (appSignal) return true;
   return !looksLikeUserImplementationRequest(prompt);
 }
 
+function looksLikeStockCodexGitActionPrompt(prompt = '') {
+  const text = String(prompt || '').trim();
+  if (!text || text.length > 120) return false;
+  return /^(?:generate\s+(?:a\s+)?git\s+commit\s+message(?:\s+for\s+(?:the\s+)?(?:staged\s+)?diff)?|commit\s+changes|commit\s+and\s+push\s+changes|push\s+changes|create\s+(?:a\s+)?commit|create\s+(?:a\s+)?pull\s+request)\.?$/i.test(text);
+}
+
+function looksLikeCodexGitActionStopCompletion(last = '', payload = {}) {
+  const text = String(last || '').trim();
+  const haystack = [
+    payload.action,
+    payload.intent,
+    payload.operation,
+    payload.kind,
+    payload.type,
+    payload.feature,
+    payload.source,
+    payload.event,
+    payload.metadata?.action,
+    payload.metadata?.intent,
+    payload.metadata?.operation,
+    payload.metadata?.feature,
+    payload.metadata?.source
+  ].filter(Boolean).join(' ');
+  if (/\bcodex[_\s-]*app\b[\s\S]{0,80}\bgit\b[\s\S]{0,80}\b(?:action|commit|push|pr)\b/i.test(haystack)) return true;
+  if (!text || text.length > 180) return false;
+  return /^(?:commit(?:ted)?(?:\s+and\s+pushed)?(?:\s+changes)?(?:\s+complete[.!]?)?|push(?:ed)?(?:\s+changes)?(?:\s+complete[.!]?)?|created\s+(?:a\s+)?pull\s+request[.!]?)$/i.test(text);
+}
+
 function looksLikeUserImplementationRequest(text = '') {
   return /(fix|bug|broken|error|issue|implement|change|update|repair|수정|버그|오류|에러|문제|고쳐|고치|해결|변경|수리|패치|안생기|안\s*생기)/i.test(String(text || ''));
 }
@@ -541,6 +611,18 @@ async function finalizationRepeatDecision(root, state = {}, payload = {}, reason
     }
   };
   await writeJsonAtomic(guardPath, record).catch(() => null);
+  if (state.mission_id) {
+    await appendMissionStatus(root, state.mission_id, {
+      category: repeatCount >= limit ? 'warning' : 'blocker',
+      audience: ['user', 'route', 'final-summary'],
+      stage_id: 'before_final',
+      message: repeatCount >= limit
+        ? `Repeated ${kind} stop prompt was suppressed; route completion is still unclaimed until evidence passes.`
+        : reason,
+      dedupe_key: key,
+      evidence: [STOP_REPEAT_GUARD_ARTIFACT]
+    }).catch(() => null);
+  }
   if (repeatCount < limit) return null;
   return {
     continue: true,
@@ -928,6 +1010,18 @@ export async function selftestCodexCommitHooks() {
   const appCommitPushStop = await runHook('stop', { conversation_id: commitPushId, last_assistant_message: 'Commit and push complete.' });
   if (appCommitPushStop.code !== 0) throw new Error(`selftest failed: app commit-push stop ${appCommitPushStop.code}: ${appCommitPushStop.stderr}`);
   if (JSON.parse(appCommitPushStop.stdout).decision === 'block') throw new Error('selftest failed: app commit-push stop bypass');
+  const metadataLightId = 'metadata-light-commit-push-selftest';
+  const metadataLightHook = await runHook('user-prompt-submit', { conversation_id: metadataLightId, prompt: 'Commit and push changes.' });
+  if (metadataLightHook.code !== 0) throw new Error(`selftest failed: metadata-light commit-push hook ${metadataLightHook.code}: ${metadataLightHook.stderr}`);
+  const metadataLightJson = JSON.parse(metadataLightHook.stdout);
+  if (metadataLightJson.decision === 'block' || metadataLightJson.hookSpecificOutput?.additionalContext || !String(metadataLightJson.systemMessage || '').includes('git action')) throw new Error('selftest failed: metadata-light app commit-push route bypass');
+  const metadataLightStop = await runHook('stop', { conversation_id: metadataLightId, last_assistant_message: 'Commit and push complete.' });
+  if (metadataLightStop.code !== 0) throw new Error(`selftest failed: metadata-light commit-push stop ${metadataLightStop.code}: ${metadataLightStop.stderr}`);
+  if (JSON.parse(metadataLightStop.stdout).decision === 'block') throw new Error('selftest failed: metadata-light commit-push stop bypass');
+  const settingsHook = await runHook('user-prompt-submit', { model: 'gpt-5.0-forbidden', metadata: { source: 'codex_app_settings', feature: 'speed profile' } });
+  if (settingsHook.code !== 0) throw new Error(`selftest failed: settings hook ${settingsHook.code}: ${settingsHook.stderr}`);
+  const settingsJson = JSON.parse(settingsHook.stdout);
+  if (settingsJson.decision === 'block' || settingsJson.hookSpecificOutput?.additionalContext || !String(settingsJson.systemMessage || '').includes('settings/profile event ignored')) throw new Error('selftest failed: settings/profile event should not route or block');
   const userHook = await runHook('user-prompt-submit', { prompt: '[커밋 메시지를 생성하지 못했습니다.] 코덱스 앱에서 이 버그 수정해줘' });
   if (userHook.code !== 0) throw new Error(`selftest failed: user commit hook ${userHook.code}: ${userHook.stderr}`);
   if (!JSON.parse(userHook.stdout).hookSpecificOutput?.additionalContext?.includes('$Team route prepared')) throw new Error('selftest failed: user prompt route');

package/src/core/init.mjs

@@ -17,15 +17,32 @@ const GENERATED_PRUNE_POLICY = 'remove_previous_sks_generated_paths_absent_from_
 
 export const REQUIRED_GENERATED_CODEX_APP_FEATURE_FLAGS = [
   'hooks',
+  'remote_control',
   'multi_agent',
   'fast_mode',
   'fast_mode_ui',
   'codex_git_commit',
   'computer_use',
+  'browser_use',
+  'browser_use_external',
+  'image_generation',
+  'in_app_browser',
+  'guardian_approval',
+  'tool_suggest',
   'apps',
   'plugins'
 ];
 
+const DEFAULT_CODEX_APP_PLUGINS = [
+  ['browser', 'openai-bundled'],
+  ['chrome', 'openai-bundled'],
+  ['computer-use', 'openai-bundled'],
+  ['latex', 'openai-bundled'],
+  ['documents', 'openai-primary-runtime'],
+  ['presentations', 'openai-primary-runtime'],
+  ['spreadsheets', 'openai-primary-runtime']
+];
+
 export function hasTopLevelCodexModeLock(text = '') {
   const lines = String(text || '').split('\n');
   const firstTable = lines.findIndex((x) => /^\s*\[.+\]\s*$/.test(x));
@@ -491,11 +508,18 @@ function mergeManagedCodexConfigToml(existingContent = '') {
   next = upsertTopLevelTomlString(next, 'service_tier', 'fast');
   next = upsertTopLevelTomlBoolean(next, 'suppress_unstable_features_warning', true);
   next = upsertTomlTableKey(next, 'features', 'hooks = true');
+  next = upsertTomlTableKey(next, 'features', 'remote_control = true');
   next = upsertTomlTableKey(next, 'features', 'multi_agent = true');
   next = upsertTomlTableKey(next, 'features', 'fast_mode = true');
   next = upsertTomlTableKey(next, 'features', 'fast_mode_ui = true');
   next = upsertTomlTableKey(next, 'features', 'codex_git_commit = true');
   next = upsertTomlTableKey(next, 'features', 'computer_use = true');
+  next = upsertTomlTableKey(next, 'features', 'browser_use = true');
+  next = upsertTomlTableKey(next, 'features', 'browser_use_external = true');
+  next = upsertTomlTableKey(next, 'features', 'image_generation = true');
+  next = upsertTomlTableKey(next, 'features', 'in_app_browser = true');
+  next = upsertTomlTableKey(next, 'features', 'guardian_approval = true');
+  next = upsertTomlTableKey(next, 'features', 'tool_suggest = true');
   next = upsertTomlTableKey(next, 'features', 'apps = true');
   next = upsertTomlTableKey(next, 'features', 'plugins = true');
   next = upsertTomlTableKey(next, 'user.fast_mode', 'visible = true');
@@ -506,6 +530,10 @@ function mergeManagedCodexConfigToml(existingContent = '') {
   for (const block of managedCodexConfigBlocks()) {
     next = upsertTomlTable(next, block.table, block.text);
   }
+  for (const [name, marketplace] of DEFAULT_CODEX_APP_PLUGINS) {
+    const table = `plugins."${name}@${marketplace}"`;
+    next = upsertTomlTable(next, table, `[${table}]\nenabled = true`);
+  }
   return `${next.trim()}\n`;
 }
 
@@ -517,6 +545,7 @@ async function mergeGlobalCodexConfigIfAvailable(configText = '', configPath = '
   if (configPath && path.resolve(configPath) === path.resolve(globalConfigPath)) return configText;
   const globalConfig = await readText(globalConfigPath, '');
   let next = mergeGlobalMcpServers(configText, globalConfig);
+  next = mergeGlobalCodexAppRuntimeTables(next, globalConfig);
   if (selectedRe.test(next) && /\[model_providers\.codex-lb\]/.test(next)) return `${String(next || '').trim()}\n`;
   const envPath = path.join(home, '.codex', 'sks-codex-lb.env');
   if (!(await exists(envPath))) return next;
@@ -562,18 +591,24 @@ function mergeGlobalMcpServers(configText = '', globalConfig = '') {
   return next;
 }
 
+function mergeGlobalCodexAppRuntimeTables(configText = '', globalConfig = '') {
+  let next = configText;
+  const re = /(?:^|\n)(\[((?:marketplaces|plugins)\.[^\]\r\n]+)\][\s\S]*?)(?=\n\[[^\]]+\]|\s*$)/g;
+  for (const match of String(globalConfig || '').matchAll(re)) {
+    const block = match[1].trim();
+    const table = match[2].trim();
+    if (!new RegExp(`(^|\\n)\\[${escapeRegExp(table)}\\]`).test(next)) next = upsertTomlTable(next, table, block);
+  }
+  return next;
+}
+
 function removeLegacyTopLevelCodexModeLocks(text = '') {
-  const legacy = {
-    model_reasoning_effort: new Set(['high'])
-  };
   const lines = String(text || '').split('\n');
   const firstTable = lines.findIndex((x) => /^\s*\[.+\]\s*$/.test(x));
   const end = firstTable === -1 ? lines.length : firstTable;
   return lines.filter((line, index) => {
     if (index >= end) return true;
-    const match = line.match(/^\s*([A-Za-z0-9_.-]+)\s*=\s*"([^"]*)"\s*(?:#.*)?$/);
-    if (!match) return true;
-    return !legacy[match[1]]?.has(match[2]);
+    return !/^\s*model_reasoning_effort\s*=/.test(line);
   }).join('\n').replace(/^\n+/, '').replace(/\n{3,}/g, '\n\n');
 }
 
@@ -874,7 +909,7 @@ export async function installSkills(root) {
     'computer-use-fast': `---\nname: computer-use-fast\ndescription: Alias for the maximum-speed $Computer-Use/$CU Codex Computer Use lane.\n---\n\nUse the same rules as computer-use: skip Team debate, QA-LOOP clarification, upfront TriWiki refresh, Context7, subagents, and reflection unless explicitly requested. Use Codex Computer Use directly; never substitute Playwright, Chrome MCP, Browser Use, Selenium, Puppeteer, or other browser automation for UI/browser evidence. At the end only, refresh/pack TriWiki, validate it, then provide a concise completion summary plus Honest Mode.\n`,
     'cu': `---\nname: cu\ndescription: Short alias for the maximum-speed $Computer-Use Codex Computer Use lane.\n---\n\nUse the same rules as computer-use. This is a speed lane for focused UI/browser/visual tasks that require Codex Computer Use evidence, with TriWiki refresh/validate and Honest Mode deferred to final closeout.\n`,
     'goal': `---\nname: goal\ndescription: Fast $Goal/$goal bridge overlay for Codex native persisted /goal workflows.\n---\n\nUse when the user invokes $Goal/$goal or asks to persist a workflow with Codex native /goal continuation. Prepare with sks goal create or the $Goal route, write only the lightweight bridge artifacts, then use native Codex /goal create, pause, resume, and clear controls where available. Goal does not replace Team, QA, DB, or other SKS execution routes; continue implementation through the selected route and use Context7 only when external API/library docs are involved. Do not recreate the old no-question loop.\n`,
-    'research': `---\nname: research\ndescription: Dollar-command route for $Research or $research frontier discovery workflows.\n---\n\nUse when the user invokes $Research/$research or asks for research, hypotheses, new mechanisms, falsification, or testable predictions. Prefer sks research prepare and sks research run. Run the genius-lens scout council with Einstein/Feynman/Turing/von Neumann-inspired cognitive roles plus a skeptic lens; do not impersonate the historical people. Every Research scout must run with effort=xhigh, record one literal "Eureka!" idea, and participate in a vigorous evidence-bound debate before synthesis. Create research-source-skill.md as a route-local Skill Creator artifact, then maximize layered public web/source search across papers, official/government or leading-institution data, standards/primary docs, current news, public discourse, developer/practitioner sources, and counterevidence before synthesis. Record research-source-skill.md, source-ledger.json, scout-ledger.json, debate-ledger.json, novelty-ledger.json, falsification-ledger.json, research-report.md, research-paper.md, genius-opinion-summary.md, and research-gate.json. Context7 is optional and only needed when the research topic depends on external package/API/framework docs; do not use it as the default research evidence layer. Normal Research may take one or two hours when needed; favor real source collection, cross-layer comparison, falsification, and a concise paper manuscript over speed. Do not use --mock except for selftests or dry harness checks; if live source execution is unavailable, record a blocker and keep the gate unpassed. Do not use for ordinary code edits.\n`,
+    'research': `---\nname: research\ndescription: Dollar-command route for $Research or $research frontier discovery workflows.\n---\n\nUse when the user invokes $Research/$research or asks for research, hypotheses, new mechanisms, falsification, or testable predictions. Prefer sks research prepare and sks research run. Research is not an implementation route: do not edit repository source, docs, package metadata, generated skills, or harness files; write only route-local mission artifacts under .sneakoscope/missions/<mission-id>/. Run the genius-lens scout council with named persona-inspired cognitive roles: Einstein Scout, Feynman Scout, Turing Scout, von Neumann Scout, and Skeptic Scout. These are lenses only; do not impersonate the historical people. Every Research scout ledger row must include display_name, persona, persona_boundary, effort=xhigh, reasoning_effort=xhigh, service_tier when available, one literal "Eureka!" idea, falsifiers, cheap_probes, and challenge_or_response before synthesis. This is not a fixed three-cycle route: repeat source gathering, Eureka ideas, evidence-bound debate, falsification, and synthesis pressure until every scout records final agreement, or until the explicit max-cycle safety cap pauses with an unpassed gate. Create research-source-skill.md as a route-local Skill Creator artifact, then maximize layered public web/source search across latest papers, official/government or leading-institution data, standards/primary docs, current news, public discourse, developer/practitioner sources, traditional background sources, and counterevidence before synthesis. Record research-source-skill.md, source-ledger.json, scout-ledger.json, debate-ledger.json, novelty-ledger.json, falsification-ledger.json, research-report.md, research-paper.md, genius-opinion-summary.md, and research-gate.json. debate-ledger.json must include consensus_iterations, unanimous_consensus, and per-scout agreements; research-gate.json cannot pass until unanimous_consensus=true with every scout agreement recorded. Context7 is optional and only needed when the research topic depends on external package/API/framework docs; do not use it as the default research evidence layer. Normal Research may take one or two hours when needed; favor real source collection, cross-layer comparison, falsification, and a concise paper manuscript over speed. Do not use --mock except for selftests or dry harness checks; if live source execution is unavailable, record a blocker and keep the gate unpassed. Do not use for ordinary code edits.\n`,
     'autoresearch': `---\nname: autoresearch\ndescription: Dollar-command route for $AutoResearch or $autoresearch iterative experiment loops.\n---\n\nUse for $AutoResearch, iterative improvement, SEO/GEO, ranking, workflow, benchmark, or experiments. Define program, hypothesis, experiment, metric, keep/discard, falsification, next step, and Honest Mode. Load seo-geo-optimizer for README/npm/GitHub/schema/AI-search work.\n`,
     'db': `---\nname: db\ndescription: Dollar-command route for $DB or $db database and Supabase safety checks.\n---\n\nUse when the user invokes $DB/$db or the task touches SQL, Supabase, Postgres, migrations, Prisma, Drizzle, Knex, MCP database tools, or production data. Run or follow sks db policy, sks db scan, sks db classify, and sks db check. Destructive database operations remain forbidden.\n`,
     'mad-sks': `---\nname: mad-sks\ndescription: Explicit high-risk authorization modifier for $MAD-SKS scoped Supabase MCP DB permission widening.\n---\n\nUse only when the user explicitly invokes $MAD-SKS or top-level sks --mad. It can be combined with another route, such as $MAD-SKS $Team or $DB ... $MAD-SKS; in that case the other command remains the primary workflow and MAD-SKS is only the temporary permission grant. The widened permission applies only while the active mission gate is open, must be deactivated when the task ends, and opens live server work, Supabase MCP database writes, column/schema cleanup, direct execute SQL, migration application when required, and normal targeted DB writes. Keep only catastrophic safeguards: whole database/schema/table removal, truncate, all-row delete/update, reset, dangerous project/branch management, credential exfiltration, persistent security weakening, and unrequested fallback implementation remain blocked. Do not carry MAD-SKS permission into later prompts or routes. The permission profile is centralized in src/core/permission-gates.mjs so skill/hook/MCP-style gates share one decision function.\n`,
@@ -896,7 +931,7 @@ export async function installSkills(root) {
     'gx-visual-read': `---\nname: gx-visual-read\ndescription: Read a Sneakoscope Codex deterministic visual sheet and produce context notes.\n---\n\nExtract nodes, edges, invariants, tests, risks, uncertainties, and RGBA anchors from source/render/snapshot. Do not infer hidden nodes.\n`,
     'gx-visual-validate': `---\nname: gx-visual-validate\ndescription: Validate render metadata against vgraph.json and beta.json.\n---\n\nRun sks gx validate and drift; fail stale or incomplete hashes, nodes, edges, invariants, or anchors.\n`,
     'turbo-context-pack': `---\nname: turbo-context-pack\ndescription: Build ultra-low-token context packet with Q4 bits, Q3 tags, top-K claims, and minimal evidence.\n---\n\nDefault to Q4/Q3 plus TriWiki RGBA anchors and attention.use_first. Add Q2/Q1 only when needed or when attention.hydrate_first says source hydration is required. Keep id, hash, path, and coordinate tuple for hydration.\n`,
-    'research-discovery': `---\nname: research-discovery\ndescription: Run SKS Research Mode for frontier-style research, hypotheses, novelty ledgers, falsification, and experiments.\n---\n\nFrame criteria, map assumptions, run maximum available web/source search, generate xhigh scout findings through Einstein/Feynman/Turing/von Neumann-inspired lenses plus a skeptic lens, require each scout to record a literal "Eureka!" idea, run evidence-bound debate, falsify, keep surviving insights, and record source ids, novelty/confidence/falsifiers/next experiments. Do not overclaim.\n`,
+    'research-discovery': `---\nname: research-discovery\ndescription: Run SKS Research Mode for frontier-style research, hypotheses, novelty ledgers, falsification, and experiments.\n---\n\nFrame criteria, map assumptions, run maximum available web/source search, generate xhigh scout findings through Einstein Scout, Feynman Scout, Turing Scout, von Neumann Scout, and Skeptic Scout persona-inspired lenses, require each scout to record display_name/persona/persona_boundary plus a literal "Eureka!" idea, run evidence-bound debate, falsify, keep surviving insights, and record source ids, novelty/confidence/falsifiers/next experiments. Do not impersonate historical people and do not overclaim.\n`,
     'performance-evaluator': `---\nname: performance-evaluator\ndescription: Evaluate SKS performance, token-saving, accuracy-proxy, context-compression, or workflow improvements.\n---\n\nUse sks eval run/compare before claims. Report token_savings_pct, accuracy_delta/proxy, required_recall, support, and meaningful_improvement.\n`,
     'image-ux-review': imageUxReviewSkill('image-ux-review'),
     'ux-review': imageUxReviewSkill('ux-review'),

package/src/core/pipeline.mjs

@@ -921,7 +921,7 @@ async function prepareResearch(root, route, task, required) {
   await writeResearchPlan(dir, task, {});
   const pipelinePlan = await writePipelinePlan(dir, { missionId: id, route, task, required, ambiguity: { required: false, status: 'direct_route' } });
   await setCurrent(root, routeState(id, route, 'RESEARCH_PREPARED', required, { prompt: task, pipeline_plan_ready: validatePipelinePlan(pipelinePlan).ok, pipeline_plan_path: PIPELINE_PLAN_ARTIFACT }));
-  return routeContext(route, id, task, required, 'Run sks research run latest as a real long-running source-gathering pass, never an automatic mock fallback; create research-source-skill.md, maximize layered public source search, require every scout effort=xhigh plus one Eureka! idea, fill source-ledger.json, scout-ledger.json, debate-ledger.json, novelty-ledger.json, falsification-ledger.json, research-report.md, research-paper.md, genius-opinion-summary.md, and pass research-gate.json.');
+  return routeContext(route, id, task, required, 'Run sks research run latest as a real long-running source-gathering pass, never an automatic mock fallback; do not modify repository source code; create research-source-skill.md, maximize layered public source search, require every scout effort=xhigh plus one Eureka! idea, repeat scout/debate/falsification cycles until unanimous_consensus=true for every scout or the explicit safety cap pauses the run, fill source-ledger.json, scout-ledger.json, debate-ledger.json, novelty-ledger.json, falsification-ledger.json, research-report.md, research-paper.md, genius-opinion-summary.md, and pass research-gate.json.');
 }
 
 async function prepareAutoResearch(root, route, task, required) {
@@ -1400,6 +1400,8 @@ function normalizeComplianceReason(reason = '') {
 async function passedActiveGate(root, state) {
   const id = state?.mission_id;
   if (!id) return { ok: false, file: null };
+  const hardBlocker = await passedHardBlocker(root, state);
+  if (hardBlocker.ok) return hardBlocker;
   const files = gateFilesForState(state);
   for (const file of files) {
     const p = path.join(missionDir(root, id), file);
@@ -1414,8 +1416,6 @@ async function passedActiveGate(root, state) {
       return { ok: false, file };
     }
   }
-  const hardBlocker = await passedHardBlocker(root, state);
-  if (hardBlocker.ok) return hardBlocker;
   return { ok: false, file: files[0] || null };
 }