sneakoscope 0.8.0 → 0.8.2

package/src/core/codex-app.mjs

@@ -7,7 +7,30 @@ import { getCodexInfo } from './codex-adapter.mjs';
 export const CODEX_APP_DOCS_URL = 'https://developers.openai.com/codex/app/features';
 export const CODEX_CHANGELOG_URL = 'https://developers.openai.com/codex/changelog';
 export const CODEX_REMOTE_CONTROL_MIN_VERSION = '0.130.0';
-const REQUIRED_CODEX_APP_FEATURE_FLAGS = ['codex_git_commit', 'hooks', 'fast_mode', 'computer_use', 'apps', 'plugins'];
+const REQUIRED_CODEX_APP_FEATURE_FLAGS = [
+  'codex_git_commit',
+  'hooks',
+  'remote_control',
+  'fast_mode',
+  'computer_use',
+  'browser_use',
+  'browser_use_external',
+  'image_generation',
+  'in_app_browser',
+  'guardian_approval',
+  'tool_suggest',
+  'apps',
+  'plugins'
+];
+const DEFAULT_CODEX_APP_PLUGINS = [
+  { name: 'browser', marketplace: 'openai-bundled' },
+  { name: 'chrome', marketplace: 'openai-bundled' },
+  { name: 'computer-use', marketplace: 'openai-bundled' },
+  { name: 'latex', marketplace: 'openai-bundled' },
+  { name: 'documents', marketplace: 'openai-primary-runtime' },
+  { name: 'presentations', marketplace: 'openai-primary-runtime' },
+  { name: 'spreadsheets', marketplace: 'openai-primary-runtime' }
+];
 
 export function codexAppCandidatePaths(home = os.homedir(), env = process.env) {
   const candidates = [];
@@ -104,15 +127,20 @@ export async function codexAppIntegrationStatus(opts = {}) {
   const featureText = `${featureList.stdout}\n${featureList.stderr}`;
   const browserUsePath = await findPluginCache('browser-use', opts);
   const computerUsePath = await findPluginCache('computer-use', opts);
+  const defaultPlugins = await codexDefaultPluginStatus(opts);
+  const fastModeConfig = await codexFastModeConfigStatus(opts);
   const computerUseMcpListed = /computer[-_ ]?use/i.test(mcpText);
   const browserUseMcpListed = /browser[-_ ]?use/i.test(mcpText);
   const imageGenerationReady = codexFeatureEnabled(featureText, 'image_generation');
+  const inAppBrowserReady = codexFeatureEnabled(featureText, 'in_app_browser');
+  const browserUseFeatureReady = codexFeatureEnabled(featureText, 'browser_use');
   const requiredFeatureFlags = Object.fromEntries(REQUIRED_CODEX_APP_FEATURE_FLAGS.map((name) => [name, codexFeatureEnabled(featureText, name)]));
   const requiredFeatureFlagsOk = Object.values(requiredFeatureFlags).every(Boolean);
   const computerUseReady = computerUseMcpListed || Boolean(computerUsePath);
   const browserUseReady = browserUseMcpListed || Boolean(browserUsePath);
+  const browserToolReady = inAppBrowserReady || browserUseFeatureReady || browserUseReady;
   const appInstalled = Boolean(appPath);
-  const ready = appInstalled && Boolean(codex.bin) && mcpList.ok && featureList.ok && requiredFeatureFlagsOk && imageGenerationReady && computerUseReady && browserUseReady;
+  const ready = appInstalled && Boolean(codex.bin) && mcpList.ok && featureList.ok && requiredFeatureFlagsOk && defaultPlugins.ok && fastModeConfig.ok && imageGenerationReady && computerUseReady && browserToolReady;
   return {
     ok: ready,
     app: {
@@ -142,16 +170,30 @@ export async function codexAppIntegrationStatus(opts = {}) {
       ...requiredFeatureFlags,
       required_flags: requiredFeatureFlags,
       required_flags_ok: requiredFeatureFlagsOk,
+      fast_mode_config: fastModeConfig,
       image_generation: imageGenerationReady,
       image_generation_source: imageGenerationReady ? 'codex_features_list' : 'missing',
+      in_app_browser: inAppBrowserReady,
+      browser_use: browserUseFeatureReady,
+      browser_tool_ready: browserToolReady,
+      browser_tool_source: inAppBrowserReady
+        ? 'codex_features_list:in_app_browser'
+        : browserUseFeatureReady
+          ? 'codex_features_list:browser_use'
+          : browserUseMcpListed
+            ? 'mcp_list:browser_use'
+            : browserUsePath
+              ? 'plugin_cache:browser-use'
+              : 'missing',
       stdout: featureList.stdout,
       stderr: featureList.stderr
     },
     plugins: {
       computer_use_cache: computerUsePath,
-      browser_use_cache: browserUsePath
+      browser_use_cache: browserUsePath,
+      default_plugins: defaultPlugins
     },
-    guidance: codexAppGuidance({ appInstalled, codex, mcpList, featureList, requiredFeatureFlags, requiredFeatureFlagsOk, imageGenerationReady, computerUseReady, browserUseReady, computerUseMcpListed, browserUseMcpListed, remoteControl })
+    guidance: codexAppGuidance({ appInstalled, codex, mcpList, featureList, requiredFeatureFlags, requiredFeatureFlagsOk, defaultPlugins, fastModeConfig, imageGenerationReady, inAppBrowserReady, browserUseFeatureReady, computerUseReady, browserUseReady, browserToolReady, computerUseMcpListed, browserUseMcpListed, remoteControl })
   };
 }
 
@@ -206,7 +248,7 @@ export function formatCodexRemoteControlStatus(status) {
   return lines.filter(Boolean).join('\n');
 }
 
-export function codexAppGuidance({ appInstalled, codex, mcpList, featureList, requiredFeatureFlags = {}, requiredFeatureFlagsOk = true, imageGenerationReady, computerUseReady, browserUseReady, computerUseMcpListed, browserUseMcpListed, remoteControl }) {
+export function codexAppGuidance({ appInstalled, codex, mcpList, featureList, requiredFeatureFlags = {}, requiredFeatureFlagsOk = true, defaultPlugins = { ok: true, missing_enabled: [] }, fastModeConfig = { ok: true, blockers: [] }, imageGenerationReady, inAppBrowserReady, browserUseFeatureReady, computerUseReady, browserUseReady, browserToolReady, computerUseMcpListed, browserUseMcpListed, remoteControl }) {
   const lines = [];
   if (!appInstalled) {
     lines.push('Install and open Codex App for first-party MCP/plugin tools. SKS tmux launch can still run with Codex CLI alone, but Codex Computer Use and imagegen/gpt-image-2 evidence will be unavailable until Codex App is ready.');
@@ -229,13 +271,21 @@ export function codexAppGuidance({ appInstalled, codex, mcpList, featureList, re
   }
   if (featureList?.checked && featureList.ok && !requiredFeatureFlagsOk) {
     const missing = missingRequiredFeatureFlags(requiredFeatureFlags);
-    lines.push(`Codex App feature flag(s) disabled or missing: ${missing.join(', ')}. Commit message generation and app-only tool paths can fail even when CLI chat works.`);
-    lines.push('Verify with: codex features list | rg "codex_git_commit|hooks|fast_mode|computer_use|apps|plugins"');
+    lines.push(`Codex App feature flag(s) disabled or missing: ${missing.join(', ')}. Commit message generation, mobile/remote-control, and app-only tool paths can fail even when CLI chat works.`);
+    lines.push('Verify with: codex features list | rg "codex_git_commit|hooks|remote_control|fast_mode|computer_use|browser_use|browser_use_external|image_generation|in_app_browser|guardian_approval|tool_suggest|apps|plugins"');
   }
-  if (appInstalled && (!computerUseReady || !browserUseReady)) {
+  if (defaultPlugins?.missing_enabled?.length) {
+    lines.push(`Codex default plugin(s) installed but not enabled: ${defaultPlugins.missing_enabled.join(', ')}. Composer/tool UI can hide built-in surfaces even while feature flags look green.`);
+    lines.push('Run: sks doctor --fix');
+  }
+  if (fastModeConfig?.blockers?.length) {
+    lines.push(`Codex App speed selector can be hidden or locked by config: ${fastModeConfig.blockers.join(', ')}.`);
+    lines.push('Run: sks doctor --fix');
+  }
+  if (appInstalled && (!computerUseReady || !browserToolReady)) {
     lines.push('Open Codex App settings and enable recommended MCP/plugin tools. Codex CLI 0.130.0+ remote-control/app-server sessions can pick up config changes live; restart older CLI/TUI sessions.');
-    lines.push('Required for SKS QA-LOOP UI/browser evidence: Codex Computer Use only. Browser Use can support non-UI browser context, but it does not satisfy UI-level E2E verification.');
-    lines.push('Verify with: codex mcp list');
+    lines.push('Required for SKS QA-LOOP UI/browser evidence: Codex Computer Use only. Browser tools can support browsing context, but they do not satisfy UI-level E2E verification.');
+    lines.push('Verify with: codex features list; codex mcp list');
   }
   if (imageGenerationReady) {
     lines.push('Image generation is enabled; required raster assets and generated image-review evidence must invoke $imagegen/gpt-image-2 and record real output.');
@@ -245,6 +295,10 @@ export function codexAppGuidance({ appInstalled, codex, mcpList, featureList, re
   if (computerUseReady && !computerUseMcpListed) {
     lines.push('Computer Use plugin files are installed, but this check cannot prove the current thread exposes the live Computer Use tools. Start a new Codex App thread and invoke @Computer or @AppName for the actual target app or screen; Codex App readiness itself should stay on `codex features list`, `codex mcp list`, and `sks codex-app check`.');
   }
+  if (browserToolReady) {
+    const source = inAppBrowserReady ? 'in-app browser feature' : browserUseFeatureReady ? 'browser_use feature' : 'Browser Use plugin';
+    lines.push(`Browser tooling is visible via ${source}; prefer the first-party in-app browser for local web apps, and keep Codex Computer Use as the only accepted UI verification evidence source.`);
+  }
   if (browserUseReady && !browserUseMcpListed) {
     lines.push('Browser Use plugin files are installed, but `codex mcp list` does not list a browser-use MCP server. Treat Browser Use as plugin-scoped, not as SKS UI verification evidence.');
   }
@@ -260,8 +314,10 @@ export function formatCodexAppStatus(status, { includeRaw = false } = {}) {
     `Codex CLI:   ${status.codex_cli.ok ? 'ok' : 'missing'}${status.codex_cli.version ? ` ${status.codex_cli.version}` : ''}`,
     `Remote Ctrl: ${status.remote_control?.ok ? 'ok' : 'missing'}${status.remote_control?.codex_cli?.version_number ? ` min ${status.remote_control.min_version}` : ''}`,
     `App Flags:  ${status.features?.required_flags_ok ? 'ok' : `missing ${missingRequiredFeatureFlags(status.features?.required_flags).join(', ') || 'required flags'}`}`,
+    `Fast UI:    ${status.features?.fast_mode_config?.ok ? 'ok' : `locked ${(status.features?.fast_mode_config?.blockers || []).join(', ') || 'config'}`}`,
+    `Default Plugins:${status.plugins?.default_plugins?.ok ? ' ok' : ` missing ${(status.plugins?.default_plugins?.missing_enabled || []).join(', ') || 'enabled plugin config'}`}`,
     `Computer Use:${status.mcp.has_computer_use ? status.mcp.computer_use_source === 'plugin_cache' ? ' installed (verify @Computer in thread)' : ' ok' : ' missing'}`,
-    `Browser Use: ${status.mcp.has_browser_use ? status.mcp.browser_use_source === 'plugin_cache' ? 'installed (plugin scoped)' : 'ok' : 'missing'}`,
+    `Browser:     ${status.features?.browser_tool_ready ? `ok (${status.features.browser_tool_source})` : status.mcp.has_browser_use ? status.mcp.browser_use_source === 'plugin_cache' ? 'installed (plugin scoped)' : 'ok' : 'missing'}`,
     `Image Gen:   ${status.features?.image_generation ? 'ok ($imagegen/gpt-image-2)' : status.features?.checked ? 'missing' : 'not checked'}`,
     `Ready:       ${status.ok ? 'yes' : 'no'}`,
     '',
@@ -296,6 +352,120 @@ function missingRequiredFeatureFlags(flags = {}) {
   return REQUIRED_CODEX_APP_FEATURE_FLAGS.filter((name) => flags?.[name] !== true);
 }
 
+async function codexDefaultPluginStatus(opts = {}) {
+  const home = opts.home || os.homedir();
+  const cwd = opts.cwd || process.cwd();
+  const globalConfigPath = path.join(home || '', '.codex', 'config.toml');
+  const projectConfigPath = path.join(cwd || '', '.codex', 'config.toml');
+  const globalConfig = await readTextIfExists(globalConfigPath);
+  const projectConfig = path.resolve(projectConfigPath) === path.resolve(globalConfigPath)
+    ? ''
+    : await readTextIfExists(projectConfigPath);
+  const configText = `${globalConfig}\n${projectConfig}`;
+  const entries = [];
+  for (const plugin of DEFAULT_CODEX_APP_PLUGINS) {
+    const source = await findDefaultPluginSource(plugin, { home, configText });
+    const enabled = codexPluginEnabled(configText, plugin);
+    entries.push({
+      id: `${plugin.name}@${plugin.marketplace}`,
+      name: plugin.name,
+      marketplace: plugin.marketplace,
+      installed: Boolean(source),
+      source,
+      enabled
+    });
+  }
+  const installed = entries.filter((entry) => entry.installed);
+  const missingEnabled = installed.filter((entry) => !entry.enabled).map((entry) => entry.id);
+  return {
+    ok: missingEnabled.length === 0,
+    checked: true,
+    entries,
+    missing_enabled: missingEnabled
+  };
+}
+
+async function codexFastModeConfigStatus(opts = {}) {
+  const home = opts.home || os.homedir();
+  const cwd = opts.cwd || process.cwd();
+  const globalConfigPath = path.join(home || '', '.codex', 'config.toml');
+  const projectConfigPath = path.join(cwd || '', '.codex', 'config.toml');
+  const configs = [
+    { scope: 'global', path: globalConfigPath, text: await readTextIfExists(globalConfigPath) }
+  ];
+  if (path.resolve(projectConfigPath) !== path.resolve(globalConfigPath)) {
+    configs.push({ scope: 'project', path: projectConfigPath, text: await readTextIfExists(projectConfigPath) });
+  }
+  const blockers = [];
+  for (const config of configs) {
+    if (!config.text) continue;
+    const topLevel = topLevelToml(config.text);
+    if (/(^|\n)\s*model_reasoning_effort\s*=/.test(topLevel)) blockers.push(`${config.scope}:top_level_model_reasoning_effort`);
+    if (/(^|\n)\s*fast_default_opt_out\s*=\s*true\s*(?:#.*)?(?=\n|$)/.test(tomlTable(config.text, 'notice'))) blockers.push(`${config.scope}:fast_default_opt_out`);
+  }
+  const merged = configs.map((config) => config.text).join('\n');
+  const fastMode = tomlTable(merged, 'user.fast_mode');
+  if (!/(^|\n)\s*visible\s*=\s*true\s*(?:#.*)?(?=\n|$)/.test(fastMode)) blockers.push('user.fast_mode.visible_missing');
+  if (!/(^|\n)\s*enabled\s*=\s*true\s*(?:#.*)?(?=\n|$)/.test(fastMode)) blockers.push('user.fast_mode.enabled_missing');
+  if (!/(^|\n)\s*default_profile\s*=\s*"sks-fast-high"\s*(?:#.*)?(?=\n|$)/.test(fastMode)) blockers.push('user.fast_mode.default_profile_missing');
+  return {
+    ok: blockers.length === 0,
+    checked: true,
+    blockers
+  };
+}
+
+async function readTextIfExists(file) {
+  try {
+    return await fsp.readFile(file, 'utf8');
+  } catch {
+    return '';
+  }
+}
+
+async function findDefaultPluginSource(plugin, { home, configText }) {
+  const cached = await findPluginCache(plugin.name, { home });
+  if (cached) return cached;
+  for (const source of marketplaceSources(configText, plugin.marketplace)) {
+    const candidate = path.join(source, 'plugins', plugin.name, '.codex-plugin', 'plugin.json');
+    if (await exists(candidate)) return path.dirname(path.dirname(candidate));
+  }
+  return null;
+}
+
+function marketplaceSources(configText = '', marketplaceName = '') {
+  const table = `marketplaces.${marketplaceName}`;
+  const re = new RegExp(`(?:^|\\n)\\[${escapeRegExp(table)}\\]([\\s\\S]*?)(?=\\n\\[[^\\]]+\\]|\\s*$)`, 'g');
+  const sources = [];
+  for (const match of String(configText || '').matchAll(re)) {
+    const source = match[1].match(/(?:^|\n)\s*source\s*=\s*"([^"]+)"/)?.[1];
+    if (source) sources.push(source);
+  }
+  return Array.from(new Set(sources));
+}
+
+function codexPluginEnabled(configText = '', plugin = {}) {
+  const table = `plugins."${plugin.name}@${plugin.marketplace}"`;
+  const re = new RegExp(`(?:^|\\n)\\[${escapeRegExp(table)}\\]([\\s\\S]*?)(?=\\n\\[[^\\]]+\\]|\\s*$)`);
+  const block = String(configText || '').match(re)?.[1] || '';
+  return /(?:^|\n)\s*enabled\s*=\s*true\s*(?:#.*)?(?=\n|$)/.test(block);
+}
+
+function topLevelToml(text = '') {
+  const lines = String(text || '').split('\n');
+  const firstTable = lines.findIndex((line) => /^\s*\[.+\]\s*$/.test(line));
+  return (firstTable === -1 ? lines : lines.slice(0, firstTable)).join('\n');
+}
+
+function tomlTable(text = '', table = '') {
+  const re = new RegExp(`(?:^|\\n)\\[${escapeRegExp(table)}\\]([\\s\\S]*?)(?=\\n\\[[^\\]]+\\]|\\s*$)`);
+  return String(text || '').match(re)?.[1] || '';
+}
+
+function escapeRegExp(text = '') {
+  return String(text).replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+}
+
 function remoteControlGuidance(status = {}) {
   if (!status.codex_cli?.ok) return 'Codex remote-control requires Codex CLI 0.130.0+. Install with: npm i -g @openai/codex@latest';
   if (status.reason === 'codex_cli_version_unknown') return 'Codex remote-control requires Codex CLI 0.130.0+, but the installed CLI version could not be parsed. Check: codex --version';

package/src/core/fsx.mjs

@@ -5,7 +5,7 @@ import os from 'node:os';
 import crypto from 'node:crypto';
 import { spawn } from 'node:child_process';
 
-export const PACKAGE_VERSION = '0.8.0';
+export const PACKAGE_VERSION = '0.8.2';
 export const DEFAULT_PROCESS_TAIL_BYTES = 256 * 1024;
 export const DEFAULT_PROCESS_TIMEOUT_MS = 30 * 60 * 1000;
 

package/src/core/hooks-runtime.mjs

@@ -20,7 +20,7 @@ const CODEX_GIT_ACTION_STOP_ARTIFACT = 'codex-git-action-stop-bypass.json';
 const STOP_REPEAT_GUARD_WINDOW_MS = 10 * 60 * 1000;
 const STOP_REPEAT_GUARD_MAX_ENTRIES = 25;
 const DEFAULT_STOP_REPEAT_GUARD_LIMIT = 2;
-const CODEX_GIT_ACTION_STOP_TTL_MS = 5 * 60 * 1000;
+const CODEX_GIT_ACTION_STOP_TTL_MS = 15 * 60 * 1000;
 
 async function loadHookPayload() {
   const raw = await readStdin();
@@ -106,12 +106,39 @@ export async function hookMain(name) {
 function blockForbiddenClientModel(payload = {}) {
   const model = forbiddenClientModelFromPayload(payload);
   if (!model || !isForbiddenCodexModel(model)) return null;
+  if (looksLikeCodexUiSettingsEvent(payload)) return null;
   return {
     decision: 'block',
     reason: `SKS requires ${REQUIRED_CODEX_MODEL}; client payload requested ${model}. Switch the Codex client/session model to ${REQUIRED_CODEX_MODEL} and retry.`
   };
 }
 
+function looksLikeCodexUiSettingsEvent(payload = {}) {
+  const prompt = stripVisibleDecisionAnswerBlocks(extractUserPrompt(payload));
+  const haystack = [
+    payload.action,
+    payload.intent,
+    payload.operation,
+    payload.permission,
+    payload.description,
+    payload.kind,
+    payload.type,
+    payload.feature,
+    payload.source,
+    payload.event,
+    payload.hook,
+    payload.hook_name,
+    payload.metadata?.action,
+    payload.metadata?.intent,
+    payload.metadata?.operation,
+    payload.metadata?.feature,
+    payload.metadata?.source,
+    payload.context?.surface,
+    payload.session?.surface
+  ].filter(Boolean).join(' ');
+  return !prompt && /\b(?:settings|preferences|profile|speed|fast[_\s-]*mode|reasoning|model[_\s-]*select|codex[_\s-]*app)\b/i.test(haystack);
+}
+
 function forbiddenClientModelFromPayload(payload = {}) {
   const candidates = [
     payload.model,
@@ -148,6 +175,12 @@ async function hookUserPrompt(root, state, payload, noQuestion) {
       systemMessage: 'SKS: Codex App git action bypassed route gates.'
     };
   }
+  if (looksLikeCodexUiSettingsEvent(payload)) {
+    return {
+      continue: true,
+      systemMessage: 'SKS: Codex App settings/profile event ignored; route gates unchanged.'
+    };
+  }
   if (!noQuestion) {
     const prompt = stripVisibleDecisionAnswerBlocks(extractUserPrompt(payload));
     const madSksConfirmation = await handleMadSksUserConfirmation(root, state, prompt);
@@ -359,6 +392,12 @@ async function hookStop(root, state, payload, noQuestion) {
       systemMessage: 'SKS: Codex App git action accepted without route finalization gates.'
     };
   }
+  if (looksLikeCodexGitActionStopCompletion(last, payload)) {
+    return {
+      continue: true,
+      systemMessage: 'SKS: Codex App git action completion accepted without route finalization gates.'
+    };
+  }
   if (!noQuestion && (hasDfixLightCompletion(last) || await consumeLightRouteStop(root, payload))) {
     return {
       continue: true,
@@ -469,12 +508,42 @@ function looksLikeCodexGitAction(payload = {}) {
     || /커밋\s*메시지\s*생성/i.test(haystack);
   const promptSignal = /\bgenerate(?:\s+a)?(?:\s+git)?\s+commit\s+message\b/i.test(prompt)
     || /\bcommit\s+message\b[\s\S]{0,80}\b(?:staged|diff|changes?|git)\b/i.test(prompt)
+    || looksLikeStockCodexGitActionPrompt(prompt)
     || /커밋\s*메시지\s*생성/i.test(prompt);
   if (!appSignal && !promptSignal) return false;
+  if (looksLikeStockCodexGitActionPrompt(prompt)) return true;
   if (appSignal) return true;
   return !looksLikeUserImplementationRequest(prompt);
 }
 
+function looksLikeStockCodexGitActionPrompt(prompt = '') {
+  const text = String(prompt || '').trim();
+  if (!text || text.length > 120) return false;
+  return /^(?:generate\s+(?:a\s+)?git\s+commit\s+message(?:\s+for\s+(?:the\s+)?(?:staged\s+)?diff)?|commit\s+changes|commit\s+and\s+push\s+changes|push\s+changes|create\s+(?:a\s+)?commit|create\s+(?:a\s+)?pull\s+request)\.?$/i.test(text);
+}
+
+function looksLikeCodexGitActionStopCompletion(last = '', payload = {}) {
+  const text = String(last || '').trim();
+  const haystack = [
+    payload.action,
+    payload.intent,
+    payload.operation,
+    payload.kind,
+    payload.type,
+    payload.feature,
+    payload.source,
+    payload.event,
+    payload.metadata?.action,
+    payload.metadata?.intent,
+    payload.metadata?.operation,
+    payload.metadata?.feature,
+    payload.metadata?.source
+  ].filter(Boolean).join(' ');
+  if (/\bcodex[_\s-]*app\b[\s\S]{0,80}\bgit\b[\s\S]{0,80}\b(?:action|commit|push|pr)\b/i.test(haystack)) return true;
+  if (!text || text.length > 180) return false;
+  return /^(?:commit(?:ted)?(?:\s+and\s+pushed)?(?:\s+changes)?(?:\s+complete[.!]?)?|push(?:ed)?(?:\s+changes)?(?:\s+complete[.!]?)?|created\s+(?:a\s+)?pull\s+request[.!]?)$/i.test(text);
+}
+
 function looksLikeUserImplementationRequest(text = '') {
   return /(fix|bug|broken|error|issue|implement|change|update|repair|수정|버그|오류|에러|문제|고쳐|고치|해결|변경|수리|패치|안생기|안\s*생기)/i.test(String(text || ''));
 }
@@ -941,6 +1010,18 @@ export async function selftestCodexCommitHooks() {
   const appCommitPushStop = await runHook('stop', { conversation_id: commitPushId, last_assistant_message: 'Commit and push complete.' });
   if (appCommitPushStop.code !== 0) throw new Error(`selftest failed: app commit-push stop ${appCommitPushStop.code}: ${appCommitPushStop.stderr}`);
   if (JSON.parse(appCommitPushStop.stdout).decision === 'block') throw new Error('selftest failed: app commit-push stop bypass');
+  const metadataLightId = 'metadata-light-commit-push-selftest';
+  const metadataLightHook = await runHook('user-prompt-submit', { conversation_id: metadataLightId, prompt: 'Commit and push changes.' });
+  if (metadataLightHook.code !== 0) throw new Error(`selftest failed: metadata-light commit-push hook ${metadataLightHook.code}: ${metadataLightHook.stderr}`);
+  const metadataLightJson = JSON.parse(metadataLightHook.stdout);
+  if (metadataLightJson.decision === 'block' || metadataLightJson.hookSpecificOutput?.additionalContext || !String(metadataLightJson.systemMessage || '').includes('git action')) throw new Error('selftest failed: metadata-light app commit-push route bypass');
+  const metadataLightStop = await runHook('stop', { conversation_id: metadataLightId, last_assistant_message: 'Commit and push complete.' });
+  if (metadataLightStop.code !== 0) throw new Error(`selftest failed: metadata-light commit-push stop ${metadataLightStop.code}: ${metadataLightStop.stderr}`);
+  if (JSON.parse(metadataLightStop.stdout).decision === 'block') throw new Error('selftest failed: metadata-light commit-push stop bypass');
+  const settingsHook = await runHook('user-prompt-submit', { model: 'gpt-5.0-forbidden', metadata: { source: 'codex_app_settings', feature: 'speed profile' } });
+  if (settingsHook.code !== 0) throw new Error(`selftest failed: settings hook ${settingsHook.code}: ${settingsHook.stderr}`);
+  const settingsJson = JSON.parse(settingsHook.stdout);
+  if (settingsJson.decision === 'block' || settingsJson.hookSpecificOutput?.additionalContext || !String(settingsJson.systemMessage || '').includes('settings/profile event ignored')) throw new Error('selftest failed: settings/profile event should not route or block');
   const userHook = await runHook('user-prompt-submit', { prompt: '[커밋 메시지를 생성하지 못했습니다.] 코덱스 앱에서 이 버그 수정해줘' });
   if (userHook.code !== 0) throw new Error(`selftest failed: user commit hook ${userHook.code}: ${userHook.stderr}`);
   if (!JSON.parse(userHook.stdout).hookSpecificOutput?.additionalContext?.includes('$Team route prepared')) throw new Error('selftest failed: user prompt route');

package/src/core/init.mjs

@@ -17,15 +17,32 @@ const GENERATED_PRUNE_POLICY = 'remove_previous_sks_generated_paths_absent_from_
 
 export const REQUIRED_GENERATED_CODEX_APP_FEATURE_FLAGS = [
   'hooks',
+  'remote_control',
   'multi_agent',
   'fast_mode',
   'fast_mode_ui',
   'codex_git_commit',
   'computer_use',
+  'browser_use',
+  'browser_use_external',
+  'image_generation',
+  'in_app_browser',
+  'guardian_approval',
+  'tool_suggest',
   'apps',
   'plugins'
 ];
 
+const DEFAULT_CODEX_APP_PLUGINS = [
+  ['browser', 'openai-bundled'],
+  ['chrome', 'openai-bundled'],
+  ['computer-use', 'openai-bundled'],
+  ['latex', 'openai-bundled'],
+  ['documents', 'openai-primary-runtime'],
+  ['presentations', 'openai-primary-runtime'],
+  ['spreadsheets', 'openai-primary-runtime']
+];
+
 export function hasTopLevelCodexModeLock(text = '') {
   const lines = String(text || '').split('\n');
   const firstTable = lines.findIndex((x) => /^\s*\[.+\]\s*$/.test(x));
@@ -491,11 +508,18 @@ function mergeManagedCodexConfigToml(existingContent = '') {
   next = upsertTopLevelTomlString(next, 'service_tier', 'fast');
   next = upsertTopLevelTomlBoolean(next, 'suppress_unstable_features_warning', true);
   next = upsertTomlTableKey(next, 'features', 'hooks = true');
+  next = upsertTomlTableKey(next, 'features', 'remote_control = true');
   next = upsertTomlTableKey(next, 'features', 'multi_agent = true');
   next = upsertTomlTableKey(next, 'features', 'fast_mode = true');
   next = upsertTomlTableKey(next, 'features', 'fast_mode_ui = true');
   next = upsertTomlTableKey(next, 'features', 'codex_git_commit = true');
   next = upsertTomlTableKey(next, 'features', 'computer_use = true');
+  next = upsertTomlTableKey(next, 'features', 'browser_use = true');
+  next = upsertTomlTableKey(next, 'features', 'browser_use_external = true');
+  next = upsertTomlTableKey(next, 'features', 'image_generation = true');
+  next = upsertTomlTableKey(next, 'features', 'in_app_browser = true');
+  next = upsertTomlTableKey(next, 'features', 'guardian_approval = true');
+  next = upsertTomlTableKey(next, 'features', 'tool_suggest = true');
   next = upsertTomlTableKey(next, 'features', 'apps = true');
   next = upsertTomlTableKey(next, 'features', 'plugins = true');
   next = upsertTomlTableKey(next, 'user.fast_mode', 'visible = true');
@@ -506,6 +530,10 @@ function mergeManagedCodexConfigToml(existingContent = '') {
   for (const block of managedCodexConfigBlocks()) {
     next = upsertTomlTable(next, block.table, block.text);
   }
+  for (const [name, marketplace] of DEFAULT_CODEX_APP_PLUGINS) {
+    const table = `plugins."${name}@${marketplace}"`;
+    next = upsertTomlTable(next, table, `[${table}]\nenabled = true`);
+  }
   return `${next.trim()}\n`;
 }
 
@@ -517,6 +545,7 @@ async function mergeGlobalCodexConfigIfAvailable(configText = '', configPath = '
   if (configPath && path.resolve(configPath) === path.resolve(globalConfigPath)) return configText;
   const globalConfig = await readText(globalConfigPath, '');
   let next = mergeGlobalMcpServers(configText, globalConfig);
+  next = mergeGlobalCodexAppRuntimeTables(next, globalConfig);
   if (selectedRe.test(next) && /\[model_providers\.codex-lb\]/.test(next)) return `${String(next || '').trim()}\n`;
   const envPath = path.join(home, '.codex', 'sks-codex-lb.env');
   if (!(await exists(envPath))) return next;
@@ -562,18 +591,24 @@ function mergeGlobalMcpServers(configText = '', globalConfig = '') {
   return next;
 }
 
+function mergeGlobalCodexAppRuntimeTables(configText = '', globalConfig = '') {
+  let next = configText;
+  const re = /(?:^|\n)(\[((?:marketplaces|plugins)\.[^\]\r\n]+)\][\s\S]*?)(?=\n\[[^\]]+\]|\s*$)/g;
+  for (const match of String(globalConfig || '').matchAll(re)) {
+    const block = match[1].trim();
+    const table = match[2].trim();
+    if (!new RegExp(`(^|\\n)\\[${escapeRegExp(table)}\\]`).test(next)) next = upsertTomlTable(next, table, block);
+  }
+  return next;
+}
+
 function removeLegacyTopLevelCodexModeLocks(text = '') {
-  const legacy = {
-    model_reasoning_effort: new Set(['high'])
-  };
   const lines = String(text || '').split('\n');
   const firstTable = lines.findIndex((x) => /^\s*\[.+\]\s*$/.test(x));
   const end = firstTable === -1 ? lines.length : firstTable;
   return lines.filter((line, index) => {
     if (index >= end) return true;
-    const match = line.match(/^\s*([A-Za-z0-9_.-]+)\s*=\s*"([^"]*)"\s*(?:#.*)?$/);
-    if (!match) return true;
-    return !legacy[match[1]]?.has(match[2]);
+    return !/^\s*model_reasoning_effort\s*=/.test(line);
   }).join('\n').replace(/^\n+/, '').replace(/\n{3,}/g, '\n\n');
 }
 
@@ -874,7 +909,7 @@ export async function installSkills(root) {
     'computer-use-fast': `---\nname: computer-use-fast\ndescription: Alias for the maximum-speed $Computer-Use/$CU Codex Computer Use lane.\n---\n\nUse the same rules as computer-use: skip Team debate, QA-LOOP clarification, upfront TriWiki refresh, Context7, subagents, and reflection unless explicitly requested. Use Codex Computer Use directly; never substitute Playwright, Chrome MCP, Browser Use, Selenium, Puppeteer, or other browser automation for UI/browser evidence. At the end only, refresh/pack TriWiki, validate it, then provide a concise completion summary plus Honest Mode.\n`,
     'cu': `---\nname: cu\ndescription: Short alias for the maximum-speed $Computer-Use Codex Computer Use lane.\n---\n\nUse the same rules as computer-use. This is a speed lane for focused UI/browser/visual tasks that require Codex Computer Use evidence, with TriWiki refresh/validate and Honest Mode deferred to final closeout.\n`,
     'goal': `---\nname: goal\ndescription: Fast $Goal/$goal bridge overlay for Codex native persisted /goal workflows.\n---\n\nUse when the user invokes $Goal/$goal or asks to persist a workflow with Codex native /goal continuation. Prepare with sks goal create or the $Goal route, write only the lightweight bridge artifacts, then use native Codex /goal create, pause, resume, and clear controls where available. Goal does not replace Team, QA, DB, or other SKS execution routes; continue implementation through the selected route and use Context7 only when external API/library docs are involved. Do not recreate the old no-question loop.\n`,
-    'research': `---\nname: research\ndescription: Dollar-command route for $Research or $research frontier discovery workflows.\n---\n\nUse when the user invokes $Research/$research or asks for research, hypotheses, new mechanisms, falsification, or testable predictions. Prefer sks research prepare and sks research run. Run the genius-lens scout council with named persona-inspired cognitive roles: Einstein Scout, Feynman Scout, Turing Scout, von Neumann Scout, and Skeptic Scout. These are lenses only; do not impersonate the historical people. Every Research scout ledger row must include display_name, persona, persona_boundary, effort=xhigh, reasoning_effort=xhigh, service_tier when available, one literal "Eureka!" idea, falsifiers, cheap_probes, and challenge_or_response before synthesis. Create research-source-skill.md as a route-local Skill Creator artifact, then maximize layered public web/source search across papers, official/government or leading-institution data, standards/primary docs, current news, public discourse, developer/practitioner sources, and counterevidence before synthesis. Record research-source-skill.md, source-ledger.json, scout-ledger.json, debate-ledger.json, novelty-ledger.json, falsification-ledger.json, research-report.md, research-paper.md, genius-opinion-summary.md, and research-gate.json. Context7 is optional and only needed when the research topic depends on external package/API/framework docs; do not use it as the default research evidence layer. Normal Research may take one or two hours when needed; favor real source collection, cross-layer comparison, falsification, and a concise paper manuscript over speed. Do not use --mock except for selftests or dry harness checks; if live source execution is unavailable, record a blocker and keep the gate unpassed. Do not use for ordinary code edits.\n`,
+    'research': `---\nname: research\ndescription: Dollar-command route for $Research or $research frontier discovery workflows.\n---\n\nUse when the user invokes $Research/$research or asks for research, hypotheses, new mechanisms, falsification, or testable predictions. Prefer sks research prepare and sks research run. Research is not an implementation route: do not edit repository source, docs, package metadata, generated skills, or harness files; write only route-local mission artifacts under .sneakoscope/missions/<mission-id>/. Run the genius-lens scout council with named persona-inspired cognitive roles: Einstein Scout, Feynman Scout, Turing Scout, von Neumann Scout, and Skeptic Scout. These are lenses only; do not impersonate the historical people. Every Research scout ledger row must include display_name, persona, persona_boundary, effort=xhigh, reasoning_effort=xhigh, service_tier when available, one literal "Eureka!" idea, falsifiers, cheap_probes, and challenge_or_response before synthesis. This is not a fixed three-cycle route: repeat source gathering, Eureka ideas, evidence-bound debate, falsification, and synthesis pressure until every scout records final agreement, or until the explicit max-cycle safety cap pauses with an unpassed gate. Create research-source-skill.md as a route-local Skill Creator artifact, then maximize layered public web/source search across latest papers, official/government or leading-institution data, standards/primary docs, current news, public discourse, developer/practitioner sources, traditional background sources, and counterevidence before synthesis. Record research-source-skill.md, source-ledger.json, scout-ledger.json, debate-ledger.json, novelty-ledger.json, falsification-ledger.json, research-report.md, research-paper.md, genius-opinion-summary.md, and research-gate.json. debate-ledger.json must include consensus_iterations, unanimous_consensus, and per-scout agreements; research-gate.json cannot pass until unanimous_consensus=true with every scout agreement recorded. Context7 is optional and only needed when the research topic depends on external package/API/framework docs; do not use it as the default research evidence layer. Normal Research may take one or two hours when needed; favor real source collection, cross-layer comparison, falsification, and a concise paper manuscript over speed. Do not use --mock except for selftests or dry harness checks; if live source execution is unavailable, record a blocker and keep the gate unpassed. Do not use for ordinary code edits.\n`,
     'autoresearch': `---\nname: autoresearch\ndescription: Dollar-command route for $AutoResearch or $autoresearch iterative experiment loops.\n---\n\nUse for $AutoResearch, iterative improvement, SEO/GEO, ranking, workflow, benchmark, or experiments. Define program, hypothesis, experiment, metric, keep/discard, falsification, next step, and Honest Mode. Load seo-geo-optimizer for README/npm/GitHub/schema/AI-search work.\n`,
     'db': `---\nname: db\ndescription: Dollar-command route for $DB or $db database and Supabase safety checks.\n---\n\nUse when the user invokes $DB/$db or the task touches SQL, Supabase, Postgres, migrations, Prisma, Drizzle, Knex, MCP database tools, or production data. Run or follow sks db policy, sks db scan, sks db classify, and sks db check. Destructive database operations remain forbidden.\n`,
     'mad-sks': `---\nname: mad-sks\ndescription: Explicit high-risk authorization modifier for $MAD-SKS scoped Supabase MCP DB permission widening.\n---\n\nUse only when the user explicitly invokes $MAD-SKS or top-level sks --mad. It can be combined with another route, such as $MAD-SKS $Team or $DB ... $MAD-SKS; in that case the other command remains the primary workflow and MAD-SKS is only the temporary permission grant. The widened permission applies only while the active mission gate is open, must be deactivated when the task ends, and opens live server work, Supabase MCP database writes, column/schema cleanup, direct execute SQL, migration application when required, and normal targeted DB writes. Keep only catastrophic safeguards: whole database/schema/table removal, truncate, all-row delete/update, reset, dangerous project/branch management, credential exfiltration, persistent security weakening, and unrequested fallback implementation remain blocked. Do not carry MAD-SKS permission into later prompts or routes. The permission profile is centralized in src/core/permission-gates.mjs so skill/hook/MCP-style gates share one decision function.\n`,

package/src/core/pipeline.mjs

@@ -921,7 +921,7 @@ async function prepareResearch(root, route, task, required) {
   await writeResearchPlan(dir, task, {});
   const pipelinePlan = await writePipelinePlan(dir, { missionId: id, route, task, required, ambiguity: { required: false, status: 'direct_route' } });
   await setCurrent(root, routeState(id, route, 'RESEARCH_PREPARED', required, { prompt: task, pipeline_plan_ready: validatePipelinePlan(pipelinePlan).ok, pipeline_plan_path: PIPELINE_PLAN_ARTIFACT }));
-  return routeContext(route, id, task, required, 'Run sks research run latest as a real long-running source-gathering pass, never an automatic mock fallback; create research-source-skill.md, maximize layered public source search, require every scout effort=xhigh plus one Eureka! idea, fill source-ledger.json, scout-ledger.json, debate-ledger.json, novelty-ledger.json, falsification-ledger.json, research-report.md, research-paper.md, genius-opinion-summary.md, and pass research-gate.json.');
+  return routeContext(route, id, task, required, 'Run sks research run latest as a real long-running source-gathering pass, never an automatic mock fallback; do not modify repository source code; create research-source-skill.md, maximize layered public source search, require every scout effort=xhigh plus one Eureka! idea, repeat scout/debate/falsification cycles until unanimous_consensus=true for every scout or the explicit safety cap pauses the run, fill source-ledger.json, scout-ledger.json, debate-ledger.json, novelty-ledger.json, falsification-ledger.json, research-report.md, research-paper.md, genius-opinion-summary.md, and pass research-gate.json.');
 }
 
 async function prepareAutoResearch(root, route, task, required) {
@@ -1400,6 +1400,8 @@ function normalizeComplianceReason(reason = '') {
 async function passedActiveGate(root, state) {
   const id = state?.mission_id;
   if (!id) return { ok: false, file: null };
+  const hardBlocker = await passedHardBlocker(root, state);
+  if (hardBlocker.ok) return hardBlocker;
   const files = gateFilesForState(state);
   for (const file of files) {
     const p = path.join(missionDir(root, id), file);
@@ -1414,8 +1416,6 @@ async function passedActiveGate(root, state) {
       return { ok: false, file };
     }
   }
-  const hardBlocker = await passedHardBlocker(root, state);
-  if (hardBlocker.ok) return hardBlocker;
   return { ok: false, file: files[0] || null };
 }