npm - sneakoscope - Versions diffs - 1.12.0 → 1.14.0 - Mend

sneakoscope 1.12.0 → 1.14.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (136) hide show

package/README.md CHANGED Viewed

@@ -10,13 +10,15 @@ SKS does not try to clone every other harness. It focuses on one thing: making C
 ## Current Release
-SKS **1.12.0** focuses on real execution closure: UX-Review, PPT Imagegen Review, DFix, and all-feature completion now require command-path wiring, extraction reports, proof/trust/wrongness evidence, mock/real separation, and release gates that block static-only or fake evidence paths.
+SKS **1.14.0** focuses on Codex hook trust parity and real imagegen route hardening: hooks now prefer managed installs when official hashes are unavailable, `trust-doctor --actual` reports real config state, and UX/PPT image routes validate gpt-image-2 requests before generation while fake blackbox checks stay explicitly mock-like.
 ```bash
 sks features complete --json
 sks ux-review run --image <path> --generate-callouts --json
 sks ppt fixture --mock --json
 sks dfix fixture --json
+sks hooks trust-doctor --actual --json
+sks hooks install --managed --json
 ```
 Detailed release history lives in [CHANGELOG.md](CHANGELOG.md). Current release gate status lives in [docs/release-readiness.md](docs/release-readiness.md).
@@ -114,7 +116,7 @@ sks selftest --mock
 ## What Sneakoscope Adds
-`sks` adds a tmux Codex CLI runtime, Codex App `$` commands, Team/QA/PPT/Research/DB/GX/Wiki routes, OpenClaw skill generation, Context7-gated current docs, TriWiki context packs, DB safety, design SSOT policy, skill dreaming, release checks, and Honest Mode.
+`sks` adds a tmux Codex CLI runtime, Codex App `$` commands, Team/QA/PPT/Research/DB/GX/Wiki routes, OpenClaw and Hermes skill generation, Context7-gated current docs, TriWiki context packs, DB safety, design SSOT policy, skill dreaming, release checks, and Honest Mode.
 ## Report-Only Planning Surfaces
@@ -408,7 +410,7 @@ SKS does not install Git pre-commit hooks. Release metadata is changed only by e
 TriWiki is intentionally sparse: `sks wiki sweep` records demote, soft-forget, archive, delete, promote-to-skill, and promote-to-rule candidates instead of injecting every old claim into future prompts. `sks harness fixture` validates the broader Harness Growth Factory contract: deliberate forgetting fixtures, skill card metadata, experiment schema, tool-error taxonomy, permission profiles, MultiAgentV2 defaults, and tmux cockpit view coverage. `sks code-structure scan` flags handwritten files above 1000/2000/3000-line thresholds so new logic can be extracted before command files become harder to maintain.
-## OpenClaw Agent Usage
+## OpenClaw And Hermes Agent Usage
 Sneakoscope can generate an OpenClaw skill package for agents that need to operate SKS-enabled repositories.
@@ -429,6 +431,23 @@ SKS_OPENCLAW=1 sks proof-field scan --intent "small CLI change" --changed src/cl
 If OpenClaw runs in a sandbox, grant shell execution only for trusted workspaces. Database, migration, and destructive work still follows SKS safety routes.
+Sneakoscope can also generate a Hermes Agent skill package for the Hermes `/skills` surface.
+```sh
+sks hermes install
+sks hermes status --json
+sks hermes path
+```
+By default this writes `~/.hermes/skills/sneakoscope-codex/` with `SKILL.md`, a README, `hermes-config.example.yaml`, and `skill-bundle.example.yaml`. Set `HERMES_HOME` or pass `--dir` for a custom location. Hermes agents should invoke `/sneakoscope-codex` with the terminal toolset enabled and run shell commands with `SKS_HERMES=1`; this enables non-interactive dependency/update prompts while leaving SKS DB, migration, and destructive-operation safety routes intact. If you use Hermes `skills.external_dirs`, remember writable external directories can be updated by Hermes, so protect shared skill folders with filesystem permissions when needed.
+```sh
+SKS_HERMES=1 sks root --json
+SKS_HERMES=1 sks commands --json
+SKS_HERMES=1 sks dollar-commands --json
+SKS_HERMES=1 sks status --json
+```
 ## Prompt `$` Commands
 Use these inside Codex App or another agent prompt. They are prompt commands, not terminal commands.

package/crates/sks-core/Cargo.lock CHANGED Viewed

@@ -76,7 +76,7 @@ dependencies = [
 [[package]]
 name = "sks-core"
-version = "1.12.0"
+version = "1.14.0"
 dependencies = [
  "serde_json",
 ]

package/crates/sks-core/Cargo.toml CHANGED Viewed

@@ -1,6 +1,6 @@
 [package]
 name = "sks-core"
-version = "1.12.0"
+version = "1.14.0"
 edition = "2021"
 [dependencies]

package/crates/sks-core/src/main.rs CHANGED Viewed

@@ -4,7 +4,7 @@ use std::io::{self, Read, Seek, SeekFrom};
 fn main() {
     let mut args = std::env::args().skip(1);
     match args.next().as_deref() {
-        Some("--version") => println!("sks-rs 1.12.0"),
+        Some("--version") => println!("sks-rs 1.14.0"),
         Some("compact-info") => {
             let mut input = String::new();
             let _ = io::stdin().read_to_string(&mut input);

package/dist/bin/sks.js CHANGED Viewed

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-const FAST_PACKAGE_VERSION = '1.12.0';
+const FAST_PACKAGE_VERSION = '1.14.0';
 const args = process.argv.slice(2);
 try {
     if (args[0] === '--version' || args[0] === '-v' || args[0] === 'version') {

package/dist/build-manifest.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "schema": "sks.dist-build.v2",
-  "version": "1.12.0",
+  "version": "1.14.0",
   "typescript": true,
   "mjs_runtime_files": 0,
   "files": [
@@ -18,6 +18,8 @@
     "cli/feature-commands.js",
     "cli/help-fast.d.ts",
     "cli/help-fast.js",
+    "cli/hermes-command.d.ts",
+    "cli/hermes-command.js",
     "cli/install-helpers.d.ts",
     "cli/install-helpers.js",
     "cli/main.d.ts",
@@ -92,6 +94,8 @@
     "commands/harness.js",
     "commands/help.d.ts",
     "commands/help.js",
+    "commands/hermes.d.ts",
+    "commands/hermes.js",
     "commands/hook.d.ts",
     "commands/hook.js",
     "commands/hooks.d.ts",
@@ -186,10 +190,14 @@
     "core/codex-app.js",
     "core/codex-compat/codex-0-132.d.ts",
     "core/codex-compat/codex-0-132.js",
+    "core/codex-compat/codex-0-133.d.ts",
+    "core/codex-compat/codex-0-133.js",
     "core/codex-compat/codex-compat-report.d.ts",
     "core/codex-compat/codex-compat-report.js",
     "core/codex-compat/codex-config-policy.d.ts",
     "core/codex-compat/codex-config-policy.js",
+    "core/codex-compat/codex-hook-events.d.ts",
+    "core/codex-compat/codex-hook-events.js",
     "core/codex-compat/codex-hook-issues.d.ts",
     "core/codex-compat/codex-hook-issues.js",
     "core/codex-compat/codex-hook-output-builders.d.ts",
@@ -210,6 +218,22 @@
     "core/codex-compat/codex-version.js",
     "core/codex-exec-output-schema.d.ts",
     "core/codex-exec-output-schema.js",
+    "core/codex-hooks/codex-hook-actual-discovery.d.ts",
+    "core/codex-hooks/codex-hook-actual-discovery.js",
+    "core/codex-hooks/codex-hook-config-writer.d.ts",
+    "core/codex-hooks/codex-hook-config-writer.js",
+    "core/codex-hooks/codex-hook-hash.d.ts",
+    "core/codex-hooks/codex-hook-hash.js",
+    "core/codex-hooks/codex-hook-managed-install.d.ts",
+    "core/codex-hooks/codex-hook-managed-install.js",
+    "core/codex-hooks/codex-hook-official-parity.d.ts",
+    "core/codex-hooks/codex-hook-official-parity.js",
+    "core/codex-hooks/codex-hook-state-writer.d.ts",
+    "core/codex-hooks/codex-hook-state-writer.js",
+    "core/codex-hooks/codex-hook-trust-doctor.d.ts",
+    "core/codex-hooks/codex-hook-trust-doctor.js",
+    "core/codex-hooks/codex-hook-trust-state.d.ts",
+    "core/codex-hooks/codex-hook-trust-state.js",
     "core/codex-lb-circuit.d.ts",
     "core/codex-lb-circuit.js",
     "core/codex-lb/codex-lb-env.d.ts",
@@ -306,6 +330,26 @@
     "core/decision-lattice.js",
     "core/dfix.d.ts",
     "core/dfix.js",
+    "core/dfix/codex-handoff.d.ts",
+    "core/dfix/codex-handoff.js",
+    "core/dfix/dfix-cache.d.ts",
+    "core/dfix/dfix-cache.js",
+    "core/dfix/error-signature.d.ts",
+    "core/dfix/error-signature.js",
+    "core/dfix/patch-runner.d.ts",
+    "core/dfix/patch-runner.js",
+    "core/dfix/patch-templates.d.ts",
+    "core/dfix/patch-templates.js",
+    "core/dfix/path-decision.d.ts",
+    "core/dfix/path-decision.js",
+    "core/dfix/performance.d.ts",
+    "core/dfix/performance.js",
+    "core/dfix/root-cause-ranking.d.ts",
+    "core/dfix/root-cause-ranking.js",
+    "core/dfix/verification-runner.d.ts",
+    "core/dfix/verification-runner.js",
+    "core/dfix/verification-selector.d.ts",
+    "core/dfix/verification-selector.js",
     "core/dogfood-loop.d.ts",
     "core/dogfood-loop.js",
     "core/effort-orchestrator.d.ts",
@@ -374,6 +418,8 @@
     "core/harness-conflicts.js",
     "core/harness-guard.d.ts",
     "core/harness-guard.js",
+    "core/hermes.d.ts",
+    "core/hermes.js",
     "core/hooks-runtime.d.ts",
     "core/hooks-runtime.js",
     "core/hproof.d.ts",
@@ -394,6 +440,10 @@
     "core/image-ux-review/real-callout-extractor.js",
     "core/image-ux-review/recapture.d.ts",
     "core/image-ux-review/recapture.js",
+    "core/imagegen/gpt-image-2-request-validator.d.ts",
+    "core/imagegen/gpt-image-2-request-validator.js",
+    "core/imagegen/imagegen-capability.d.ts",
+    "core/imagegen/imagegen-capability.js",
     "core/init.d.ts",
     "core/init.js",
     "core/json-schema-validator.d.ts",
@@ -701,6 +751,27 @@
     "core/wiki-image/visual-anchor.js",
     "core/work-order-ledger.d.ts",
     "core/work-order-ledger.js",
+    "vendor/openai-codex/latest/hooks/permission-request.command.input.schema.json",
+    "vendor/openai-codex/latest/hooks/permission-request.command.output.schema.json",
+    "vendor/openai-codex/latest/hooks/post-compact.command.input.schema.json",
+    "vendor/openai-codex/latest/hooks/post-compact.command.output.schema.json",
+    "vendor/openai-codex/latest/hooks/post-tool-use.command.input.schema.json",
+    "vendor/openai-codex/latest/hooks/post-tool-use.command.output.schema.json",
+    "vendor/openai-codex/latest/hooks/pre-compact.command.input.schema.json",
+    "vendor/openai-codex/latest/hooks/pre-compact.command.output.schema.json",
+    "vendor/openai-codex/latest/hooks/pre-tool-use.command.input.schema.json",
+    "vendor/openai-codex/latest/hooks/pre-tool-use.command.output.schema.json",
+    "vendor/openai-codex/latest/hooks/session-start.command.input.schema.json",
+    "vendor/openai-codex/latest/hooks/session-start.command.output.schema.json",
+    "vendor/openai-codex/latest/hooks/snapshot-metadata.json",
+    "vendor/openai-codex/latest/hooks/stop.command.input.schema.json",
+    "vendor/openai-codex/latest/hooks/stop.command.output.schema.json",
+    "vendor/openai-codex/latest/hooks/subagent-start.command.input.schema.json",
+    "vendor/openai-codex/latest/hooks/subagent-start.command.output.schema.json",
+    "vendor/openai-codex/latest/hooks/subagent-stop.command.input.schema.json",
+    "vendor/openai-codex/latest/hooks/subagent-stop.command.output.schema.json",
+    "vendor/openai-codex/latest/hooks/user-prompt-submit.command.input.schema.json",
+    "vendor/openai-codex/latest/hooks/user-prompt-submit.command.output.schema.json",
     "vendor/openai-codex/rust-v0.131.0/hooks/permission-request.command.input.schema.json",
     "vendor/openai-codex/rust-v0.131.0/hooks/permission-request.command.output.schema.json",
     "vendor/openai-codex/rust-v0.131.0/hooks/post-compact.command.input.schema.json",

package/dist/cli/command-registry.d.ts CHANGED Viewed

@@ -47,6 +47,7 @@ export declare const COMMANDS: {
     auth: CommandEntry;
     hooks: CommandEntry;
     openclaw: CommandEntry;
+    hermes: CommandEntry;
     tmux: CommandEntry;
     mad: CommandEntry;
     'mad-sks': CommandEntry;
@@ -132,6 +133,7 @@ export declare const TYPED_COMMANDS: {
     auth: CommandEntry;
     hooks: CommandEntry;
     openclaw: CommandEntry;
+    hermes: CommandEntry;
     tmux: CommandEntry;
     mad: CommandEntry;
     'mad-sks': CommandEntry;

package/dist/cli/command-registry.js CHANGED Viewed

@@ -100,6 +100,7 @@ export const COMMANDS = {
     auth: entry('beta', 'Alias for codex-lb auth commands', 'dist/commands/codex-lb.js', directCommand(() => import('../commands/codex-lb.js'), 'dist/commands/codex-lb.js')),
     hooks: entry('beta', 'Explain and inspect Codex hooks', 'dist/commands/hooks.js', directCommand(() => import('../commands/hooks.js'), 'dist/commands/hooks.js')),
     openclaw: entry('labs', 'Create OpenClaw skill package', 'dist/commands/openclaw.js', directCommand(() => import('../commands/openclaw.js'), 'dist/commands/openclaw.js')),
+    hermes: entry('labs', 'Create Hermes Agent skill package', 'dist/commands/hermes.js', directCommand(() => import('../commands/hermes.js'), 'dist/commands/hermes.js')),
     tmux: entry('beta', 'Open/check SKS tmux UI', 'dist/commands/tmux.js', directCommand(() => import('../commands/tmux.js'), 'dist/commands/tmux.js')),
     mad: entry('beta', 'MAD-SKS tmux permission launcher', 'dist/commands/mad-sks.js', directCommand(() => import('../commands/mad-sks.js'), 'dist/commands/mad-sks.js')),
     'mad-sks': entry('beta', 'MAD-SKS scoped permission modifier', 'dist/commands/mad-sks.js', directCommand(() => import('../commands/mad-sks.js'), 'dist/commands/mad-sks.js')),

package/dist/cli/feature-commands.js CHANGED Viewed

@@ -10,6 +10,10 @@ import { recordHookPolicyMismatchWrongness } from '../core/triwiki-wrongness/wro
 import { codexSchemaSnapshotReport } from '../core/codex-compat/codex-schema-snapshot.js';
 import { validateCodexFixtureOutputs } from '../core/codex-compat/codex-hook-schema.js';
 import { codexHookWarningCheck } from '../core/codex-compat/codex-hook-warning-detector.js';
+import { codexHookTrustDoctor } from '../core/codex-hooks/codex-hook-trust-doctor.js';
+import { writeTrustedHashStateForHooksFile } from '../core/codex-hooks/codex-hook-state-writer.js';
+import { installManagedCodexHooks } from '../core/codex-hooks/codex-hook-managed-install.js';
+import { writeCodexHookOfficialParityReport } from '../core/codex-hooks/codex-hook-official-parity.js';
 const flag = (args, name) => args.includes(name);
 export async function featuresCommand(sub = 'list', args = []) {
     const action = sub || 'list';
@@ -119,6 +123,54 @@ export async function hooksCommand(sub = 'explain', args = []) {
             console.log(`- ${event.event}: ${event.command}`);
         return;
     }
+    if (action === 'doctor' || action === 'trust-doctor') {
+        const report = await codexHookTrustDoctor(root, { fix: flag(args, '--fix'), managed: flag(args, '--managed'), actual: flag(args, '--actual') });
+        if (flag(args, '--json'))
+            return console.log(JSON.stringify(report, null, 2));
+        console.log(`Hooks trust doctor: ${report.ok ? 'ok' : 'blocked'}`);
+        for (const warning of report.warnings)
+            console.log(`- ${warning}`);
+        if (!report.ok)
+            process.exitCode = 1;
+        return;
+    }
+    if (action === 'trust-state') {
+        const report = await codexHookTrustDoctor(root, { managed: flag(args, '--managed'), actual: flag(args, '--actual') });
+        const anyReport = report;
+        if (flag(args, '--json'))
+            return console.log(JSON.stringify({ schema: flag(args, '--actual') ? 'sks.codex-hook-trust-state-command.v2' : 'sks.codex-hook-trust-state-command.v1', ok: report.ok, actual: flag(args, '--actual'), entries: report.entries, trust: report.trust, sources: anyReport.sources || [], managed_dirs: anyReport.managed_dirs || [], blockers: anyReport.blockers || [] }, null, 2));
+        console.log(`Hook trust entries: ${report.entries.length}`);
+        return;
+    }
+    if (action === 'trust-fix') {
+        const report = await codexHookTrustDoctor(root, { fix: true, managed: flag(args, '--managed') });
+        if (flag(args, '--json'))
+            return console.log(JSON.stringify(report, null, 2));
+        console.log(`Hooks trust fix: ${report.ok ? 'ok' : 'blocked'}`);
+        if (!report.ok)
+            process.exitCode = 1;
+        return;
+    }
+    if (action === 'install') {
+        const report = flag(args, '--managed')
+            ? await installManagedCodexHooks(root)
+            : await writeTrustedHashStateForHooksFile(root, undefined, undefined, { allowSksHashFallback: flag(args, '--trusted'), reason: 'Use --managed unless you intentionally accept SKS-only trusted_hash fallback with --trusted.' });
+        if (flag(args, '--json'))
+            return console.log(JSON.stringify({ ...report, schema: flag(args, '--managed') ? 'sks.codex-hooks-managed-install.v1' : 'sks.codex-hook-install-command.v2', mode: flag(args, '--managed') ? 'managed' : flag(args, '--project') ? 'project' : 'trust-state-only', trusted: flag(args, '--trusted') }, null, 2));
+        console.log(flag(args, '--managed') ? `Hooks managed install: ${report.ok ? 'ok' : 'blocked'}` : `Hooks install trust state: ${report.ok ? 'ok' : 'blocked'}`);
+        if (!report.ok)
+            process.exitCode = 1;
+        return;
+    }
+    if (action === 'actual-parity' || action === 'official-parity') {
+        const report = await writeCodexHookOfficialParityReport(root);
+        if (flag(args, '--json'))
+            return console.log(JSON.stringify(report, null, 2));
+        console.log(`Hooks official parity: ${report.ok ? 'ok' : 'blocked'} (${report.path})`);
+        if (!report.ok)
+            process.exitCode = 1;
+        return;
+    }
     if (action === 'replay') {
         const fixture = args.find((arg) => !String(arg).startsWith('--'));
         const report = await hooksReplayReport(root, fixture);
@@ -168,7 +220,7 @@ export async function hooksCommand(sub = 'explain', args = []) {
         return;
     }
     if (action !== 'explain') {
-        console.error('Usage: sks hooks explain|status|trust-report|replay <fixture.json>|codex-schema|codex-validate|warning-check|replay-codex-fixtures [--json]');
+        console.error('Usage: sks hooks explain|status|doctor|trust-report|trust-state|trust-doctor|trust-fix|install|actual-parity|official-parity|replay <fixture.json>|codex-schema|codex-validate|warning-check|replay-codex-fixtures [--json]');
         process.exitCode = 1;
         return;
     }
@@ -205,17 +257,25 @@ async function hooksStatusReport(root) {
 }
 async function hooksTrustReport(root) {
     const status = await hooksStatusReport(root);
+    const trust = await codexHookTrustDoctor(root).catch(() => null);
     return redactSecrets({
         schema: 'sks.hooks-trust-report.v1',
         hooks_files: status.hooks_files.map((file) => file.path),
         events: [
+            { event: 'SessionStart', command: 'sks hook session-start', writes: ['.sneakoscope/state'], network: false, secret_policy: 'redacted', risk: 'low' },
             { event: 'PreToolUse', command: 'sks hook pre-tool', writes: ['.sneakoscope/bus/tool-events.jsonl'], network: false, secret_policy: 'redacted', risk: 'medium' },
             { event: 'PermissionRequest', command: 'sks hook permission-request', writes: ['.sneakoscope/state'], network: false, secret_policy: 'redacted', risk: 'medium' },
+            { event: 'PostToolUse', command: 'sks hook post-tool', writes: ['.sneakoscope/missions'], network: false, secret_policy: 'redacted', risk: 'medium' },
+            { event: 'PreCompact', command: 'sks hook pre-compact', writes: ['.sneakoscope/state'], network: false, secret_policy: 'redacted', risk: 'low' },
+            { event: 'PostCompact', command: 'sks hook post-compact', writes: ['.sneakoscope/state'], network: false, secret_policy: 'redacted', risk: 'low' },
             { event: 'UserPromptSubmit', command: 'sks hook user-prompt-submit', writes: ['.sneakoscope/missions'], network: false, secret_policy: 'redacted', risk: 'medium' },
+            { event: 'SubagentStart', command: 'sks hook subagent-start', writes: ['.sneakoscope/missions'], network: false, secret_policy: 'redacted', risk: 'low' },
+            { event: 'SubagentStop', command: 'sks hook subagent-stop', writes: ['.sneakoscope/missions'], network: false, secret_policy: 'redacted', risk: 'low' },
             { event: 'Stop', command: 'sks hook stop', writes: ['.sneakoscope/missions', '.sneakoscope/proof'], network: false, secret_policy: 'redacted', risk: 'high' }
         ],
-        ok: true,
-        warnings: status.ok ? [] : ['no hooks.json file found in project or user config']
+        trust,
+        ok: status.ok && (trust?.ok ?? true),
+        warnings: [...(status.ok ? [] : ['no hooks.json file found in project or user config']), ...(trust?.warnings || [])]
     });
 }
 async function hooksReplayReport(root, fixturePath) {
@@ -315,6 +375,16 @@ function normalizeReplayHookName(event = '') {
         return 'user-prompt-submit';
     if (normalized.includes('posttool') || normalized.includes('post-tool'))
         return 'post-tool';
+    if (normalized.includes('sessionstart') || normalized.includes('session-start'))
+        return 'session-start';
+    if (normalized.includes('subagentstart') || normalized.includes('subagent-start'))
+        return 'subagent-start';
+    if (normalized.includes('subagentstop') || normalized.includes('subagent-stop'))
+        return 'subagent-stop';
+    if (normalized.includes('precompact') || normalized.includes('pre-compact'))
+        return 'pre-compact';
+    if (normalized.includes('postcompact') || normalized.includes('post-compact'))
+        return 'post-compact';
     if (normalized.includes('stop'))
         return 'stop';
     return normalized || 'pre-tool';
@@ -332,7 +402,7 @@ export function hooksExplainReport() {
         feature_key: 'features.hooks',
         deprecated_feature_alias: 'features.codex_hooks',
         config_paths: ['~/.codex/hooks.json', '~/.codex/config.toml', '<repo>/.codex/hooks.json', '<repo>/.codex/config.toml'],
-        events: ['SessionStart', 'PreToolUse', 'PermissionRequest', 'PostToolUse', 'UserPromptSubmit', 'Stop'],
+        events: ['PreToolUse', 'PermissionRequest', 'PostToolUse', 'PreCompact', 'PostCompact', 'SessionStart', 'UserPromptSubmit', 'SubagentStart', 'SubagentStop', 'Stop'],
         handlers: {
             supported: ['command'],
             parsed_but_skipped: ['prompt', 'agent'],

package/dist/cli/hermes-command.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export declare function hermesCommand(args?: any): Promise<void>;
2	+ //# sourceMappingURL=hermes-command.d.ts.map

package/dist/cli/hermes-command.js ADDED Viewed

@@ -0,0 +1,99 @@
+import path from 'node:path';
+import { HERMES_SKILL_NAME, buildHermesSkillFiles, defaultHermesSkillDir, installHermesSkill } from '../core/hermes.js';
+import { exists } from '../core/fsx.js';
+const flag = (args, name) => args.includes(name);
+function readFlagValue(args, name, fallback) {
+    const i = args.indexOf(name);
+    return i >= 0 && args[i + 1] ? args[i + 1] : fallback;
+}
+function positionalArgs(args = []) {
+    const out = [];
+    const valueFlags = new Set(['--dir']);
+    for (let i = 0; i < args.length; i++) {
+        const arg = String(args[i]);
+        if (valueFlags.has(arg)) {
+            i++;
+            continue;
+        }
+        if (!arg.startsWith('--'))
+            out.push(arg);
+    }
+    return out;
+}
+export async function hermesCommand(args = []) {
+    const action = args[0] || 'help';
+    const targetDir = readFlagValue(args, '--dir', defaultHermesSkillDir());
+    const resultOptions = {
+        targetDir,
+        force: flag(args, '--force'),
+        dryRun: flag(args, '--dry-run')
+    };
+    if (action === 'path') {
+        const result = { skill: HERMES_SKILL_NAME, target_dir: path.resolve(targetDir) };
+        if (flag(args, '--json'))
+            return console.log(JSON.stringify(result, null, 2));
+        console.log(result.target_dir);
+        return;
+    }
+    if (action === 'status') {
+        const files = buildHermesSkillFiles();
+        const target = path.resolve(targetDir);
+        const installed = await exists(path.join(target, 'SKILL.md'));
+        const result = {
+            schema: 'sks.hermes-skill-status.v1',
+            ok: true,
+            skill: HERMES_SKILL_NAME,
+            target_dir: target,
+            installed,
+            expected_files: Object.keys(files),
+            env_mode: 'SKS_HERMES=1',
+            slash_command: `/${HERMES_SKILL_NAME}`
+        };
+        if (flag(args, '--json'))
+            return console.log(JSON.stringify(result, null, 2));
+        console.log(`Hermes skill: ${installed ? 'installed' : 'not installed'} ${target}`);
+        return;
+    }
+    if (action === 'print') {
+        const files = buildHermesSkillFiles();
+        const file = (positionalArgs(args.slice(1))[0] || 'SKILL.md');
+        if (!files[file]) {
+            console.error(`Unknown Hermes skill file: ${file}`);
+            console.error(`Files: ${Object.keys(files).join(', ')}`);
+            process.exitCode = 1;
+            return;
+        }
+        console.log(files[file]);
+        return;
+    }
+    if (action === 'install') {
+        const result = await installHermesSkill(resultOptions);
+        if (flag(args, '--json'))
+            return console.log(JSON.stringify(result, null, 2));
+        if (!result.ok) {
+            console.error(`Hermes skill install blocked: ${result.reason}`);
+            console.error(`Target: ${result.target_dir}`);
+            process.exitCode = 1;
+            return;
+        }
+        console.log(`Hermes skill ${result.status}: ${result.target_dir}`);
+        console.log(`Use it in Hermes as /${HERMES_SKILL_NAME} and run SKS shell commands with SKS_HERMES=1.`);
+        return;
+    }
+    console.log(`Hermes
+Usage:
+  sks hermes install [--dir path] [--force] [--dry-run] [--json]
+  sks hermes status [--dir path] [--json]
+  sks hermes path [--dir path] [--json]
+  sks hermes print [SKILL.md|README.md|hermes-config.example.yaml|skill-bundle.example.yaml]
+Default skill: ${HERMES_SKILL_NAME}
+Default path:  ${defaultHermesSkillDir()}
+After install, open Hermes and invoke:
+/${HERMES_SKILL_NAME} Use SKS in this repository.
+`);
+}
+//# sourceMappingURL=hermes-command.js.map

package/dist/cli/install-helpers.js CHANGED Viewed

@@ -2063,7 +2063,7 @@ export async function maybePromptCodexUpdateForLaunch(args = [], opts = {}) {
     return installCodexLatest(command, latest.version, current);
 }
 export function shouldAutoApproveInstall(args = [], env = process.env) {
-    return hasFlag(args, '--yes') || hasFlag(args, '-y') || isOpenClawRuntime(env);
+    return hasFlag(args, '--yes') || hasFlag(args, '-y') || isAgentRuntime(env);
 }
 function canAskYesNo() {
     return Boolean(input.isTTY && output.isTTY && process.env.CI !== 'true');
@@ -2071,8 +2071,18 @@ function canAskYesNo() {
 function hasFlag(args = [], name) {
     return args.includes(name);
 }
-function isOpenClawRuntime(env = process.env) {
-    return ['SKS_OPENCLAW', 'OPENCLAW', 'OPENCLAW_AGENT', 'OPENCLAW_RUN_ID', 'OPENCLAW_SESSION_ID']
+function isAgentRuntime(env = process.env) {
+    return [
+        'SKS_OPENCLAW',
+        'OPENCLAW',
+        'OPENCLAW_AGENT',
+        'OPENCLAW_RUN_ID',
+        'OPENCLAW_SESSION_ID',
+        'SKS_HERMES',
+        'HERMES_AGENT',
+        'HERMES_RUN_ID',
+        'HERMES_SESSION_ID'
+    ]
         .some((key) => /^(1|true|yes|y)$/i.test(String(env[key] || '').trim()));
 }
 async function installCodexLatest(command, latestVersion, previousVersion = null) {