sneakoscope 1.14.1 → 1.15.1

package/README.md

@@ -10,15 +10,16 @@ SKS does not try to clone every other harness. It focuses on one thing: making C
 
 ## Current Release
 
-SKS **1.14.1** is an extreme stabilization release for hook trust, real imagegen smoke checks, PPT E2E review evidence, Codex 0.133 compatibility, and Scout multi-session intake. Scout runs now carry `engine_run_id`, `scout_session_id`, output-schema metadata, isolated benchmark artifacts, read-only guard v2 evidence, and speedup-claim caps for mock/static paths.
+SKS **1.15.1** closes the MAD-SKS actual executor loop: `run/apply` now dispatch through guarded executors, target-file writes are real, shell commands use argv/no-shell execution, package/service/DB and visual handoff scopes are evidence-bound, rollback plans can be applied, and flagship proof graph v4 binds the new executor blackbox reports while the SKS protected core remains immutable.
 
 ```bash
+sks mad-sks plan --target-root <path> --json
+sks mad-sks permissions --json
+sks mad-sks proof --json
+sks mad-sks rollback-apply --rollback-plan <path> --yes --json
 sks features complete --json
-sks ux-review run --image <path> --generate-callouts --json
-sks ppt fixture --mock --json
-sks dfix fixture --json
-sks hooks trust-doctor --actual --json
-sks hooks install --managed --json
+sks scouts status latest --engine-runs --json
+npm run release:readiness
 ```
 
 Detailed release history lives in [CHANGELOG.md](CHANGELOG.md). Current release gate status lives in [docs/release-readiness.md](docs/release-readiness.md).
@@ -38,6 +39,10 @@ Detailed release history lives in [CHANGELOG.md](CHANGELOG.md). Current release
 - Package boundary: [docs/package-boundary.md](docs/package-boundary.md)
 - Black-box package tests: [docs/black-box-package-tests.md](docs/black-box-package-tests.md)
 - Codex CLI compatibility: [docs/codex-cli-compat.md](docs/codex-cli-compat.md)
+- MAD-SKS rollback: [docs/mad-sks-rollback.md](docs/mad-sks-rollback.md)
+- MAD-SKS: [docs/mad-sks.md](docs/mad-sks.md)
+- Permission kernel: [docs/permission-kernel.md](docs/permission-kernel.md)
+- Immutable harness guard: [docs/immutable-harness-guard.md](docs/immutable-harness-guard.md)
 - Codex App: [docs/codex-app.md](docs/codex-app.md)
 - Core dominance: [docs/core-dominance.md](docs/core-dominance.md)
 - Performance budgets: [docs/performance-budgets.md](docs/performance-budgets.md)

package/crates/sks-core/Cargo.lock

@@ -76,7 +76,7 @@ dependencies = [
 
 [[package]]
 name = "sks-core"
-version = "1.14.1"
+version = "1.15.1"
 dependencies = [
  "serde_json",
 ]

package/crates/sks-core/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "sks-core"
-version = "1.14.1"
+version = "1.15.1"
 edition = "2021"
 
 [dependencies]

package/crates/sks-core/src/main.rs

@@ -4,7 +4,7 @@ use std::io::{self, Read, Seek, SeekFrom};
 fn main() {
     let mut args = std::env::args().skip(1);
     match args.next().as_deref() {
-        Some("--version") => println!("sks-rs 1.14.1"),
+        Some("--version") => println!("sks-rs 1.15.1"),
         Some("compact-info") => {
             let mut input = String::new();
             let _ = io::stdin().read_to_string(&mut input);

package/dist/.sks-build-stamp.json

@@ -0,0 +1,8 @@
+{
+  "schema": "sks.dist-build-stamp.v1",
+  "package_name": "sneakoscope",
+  "package_version": "1.15.1",
+  "source_digest": "802a53571deae790a749ef30bc4dafb8d32bce159f9b60504676e07caa26ed47",
+  "source_file_count": 1454,
+  "built_at_source_time": 1779520266501
+}

package/dist/bin/sks.js

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-const FAST_PACKAGE_VERSION = '1.14.1';
+const FAST_PACKAGE_VERSION = '1.15.1';
 const args = process.argv.slice(2);
 try {
     if (args[0] === '--version' || args[0] === '-v' || args[0] === 'version') {

package/dist/build-manifest.json

@@ -1,8 +1,12 @@
 {
   "schema": "sks.dist-build.v2",
-  "version": "1.14.1",
+  "version": "1.15.1",
+  "package_version": "1.15.1",
   "typescript": true,
   "mjs_runtime_files": 0,
+  "source_digest": "802a53571deae790a749ef30bc4dafb8d32bce159f9b60504676e07caa26ed47",
+  "source_file_count": 1454,
+  "dist_stamp_schema": "sks.dist-build-stamp.v1",
   "files": [
     "bin/sks.d.ts",
     "bin/sks.js",
@@ -456,6 +460,42 @@
     "core/language-preference.js",
     "core/loop-blocker.d.ts",
     "core/loop-blocker.js",
+    "core/mad-sks/audit-ledger.d.ts",
+    "core/mad-sks/audit-ledger.js",
+    "core/mad-sks/authorization-manifest.d.ts",
+    "core/mad-sks/authorization-manifest.js",
+    "core/mad-sks/executors/computer-use-executor.d.ts",
+    "core/mad-sks/executors/computer-use-executor.js",
+    "core/mad-sks/executors/db-write-executor.d.ts",
+    "core/mad-sks/executors/db-write-executor.js",
+    "core/mad-sks/executors/executor-base.d.ts",
+    "core/mad-sks/executors/executor-base.js",
+    "core/mad-sks/executors/file-write-executor.d.ts",
+    "core/mad-sks/executors/file-write-executor.js",
+    "core/mad-sks/executors/index.d.ts",
+    "core/mad-sks/executors/index.js",
+    "core/mad-sks/executors/package-install-executor.d.ts",
+    "core/mad-sks/executors/package-install-executor.js",
+    "core/mad-sks/executors/service-control-executor.d.ts",
+    "core/mad-sks/executors/service-control-executor.js",
+    "core/mad-sks/executors/shell-command-executor.d.ts",
+    "core/mad-sks/executors/shell-command-executor.js",
+    "core/mad-sks/guard-middleware.d.ts",
+    "core/mad-sks/guard-middleware.js",
+    "core/mad-sks/immutable-harness-guard.d.ts",
+    "core/mad-sks/immutable-harness-guard.js",
+    "core/mad-sks/permission-model.d.ts",
+    "core/mad-sks/permission-model.js",
+    "core/mad-sks/proof-evidence.d.ts",
+    "core/mad-sks/proof-evidence.js",
+    "core/mad-sks/rollback-apply.d.ts",
+    "core/mad-sks/rollback-apply.js",
+    "core/mad-sks/rollback-plan.d.ts",
+    "core/mad-sks/rollback-plan.js",
+    "core/mad-sks/shell-argv-classifier.d.ts",
+    "core/mad-sks/shell-argv-classifier.js",
+    "core/mad-sks/write-guard.d.ts",
+    "core/mad-sks/write-guard.js",
     "core/managed-paths.d.ts",
     "core/managed-paths.js",
     "core/memory-governor.d.ts",

package/dist/commands/mad-sks.d.ts

@@ -8,6 +8,7 @@ export declare function run(_command: any, args?: any): Promise<void | {
         tmux: any;
         app: any;
         codexArgs: any[];
+        launchEnv: any;
         attach_command: string;
         ready: boolean;
         warnings: any;
@@ -30,6 +31,7 @@ export declare function run(_command: any, args?: any): Promise<void | {
         tmux: any;
         app: any;
         codexArgs: any[];
+        launchEnv: any;
         attach_command: string;
         ready: boolean;
         warnings: any;

package/dist/commands/wiki.d.ts

@@ -15,7 +15,7 @@ export declare function run(_command: any, args?: any): Promise<void | {
     };
     active_records: {
         id: string;
-        kind: "callout_extraction_schema_failed" | "missing_evidence" | "incorrect_claim" | "overconfident_claim" | "stale_evidence" | "test_failure" | "route_misclassification" | "scout_error" | "visual_anchor_error" | "image_bbox_error" | "db_safety_false_positive" | "db_safety_false_negative" | "hook_policy_mismatch" | "hook_semantic_mismatch" | "hook_strict_subset_misclassified" | "codex_lb_health_misread" | "codex_lb_missing_env_raw_message" | "codex_lb_setup_choice_drift" | "codex_lb_env_persistence_failure" | "computer_use_policy_misclassification" | "computer_use_live_smoke_mismatch" | "computer_use_external_block_overclaimed" | "mock_real_confusion" | "user_intent_misread" | "artifact_schema_error" | "trust_status_overclaim" | "ux_review_text_only_fallback" | "ux_generated_image_not_real" | "ux_fake_generic_callout_detected" | "ux_callout_ocr_uncertain" | "gpt_image_2_callout_generation_failed" | "callout_bbox_out_of_bounds" | "ux_patch_applied_without_recheck" | "ux_after_recheck_regression" | "ux_image_fidelity_mismatch" | "ux_output_schema_unavailable_fallback" | "fix_loop_noop_patch" | "visual_fix_not_rechecked" | "post_fix_regression_detected" | "ppt_text_only_review_fallback" | "ppt_slide_export_failed" | "ppt_imagegen_callout_generation_failed" | "ppt_slide_callout_extraction_failed" | "ppt_slide_bbox_out_of_bounds" | "ppt_deck_patch_noop" | "ppt_fix_not_reexported" | "ppt_slide_not_rechecked" | "ppt_post_fix_regression_detected" | "dfix_diagnosis_missing" | "dfix_root_cause_missing" | "dfix_patch_plan_missing" | "dfix_verification_missing" | "dfix_noop_patch" | "repeated_blocker_stop";
+        kind: "callout_extraction_schema_failed" | "missing_evidence" | "incorrect_claim" | "overconfident_claim" | "stale_evidence" | "test_failure" | "route_misclassification" | "scout_error" | "visual_anchor_error" | "image_bbox_error" | "db_safety_false_positive" | "db_safety_false_negative" | "hook_policy_mismatch" | "hook_semantic_mismatch" | "hook_strict_subset_misclassified" | "codex_lb_health_misread" | "codex_lb_missing_env_raw_message" | "codex_lb_setup_choice_drift" | "codex_lb_env_persistence_failure" | "computer_use_policy_misclassification" | "computer_use_live_smoke_mismatch" | "computer_use_external_block_overclaimed" | "mock_real_confusion" | "user_intent_misread" | "artifact_schema_error" | "trust_status_overclaim" | "ux_review_text_only_fallback" | "ux_generated_image_not_real" | "ux_fake_generic_callout_detected" | "ux_callout_ocr_uncertain" | "gpt_image_2_callout_generation_failed" | "callout_bbox_out_of_bounds" | "ux_patch_applied_without_recheck" | "ux_after_recheck_regression" | "ux_image_fidelity_mismatch" | "ux_output_schema_unavailable_fallback" | "fix_loop_noop_patch" | "visual_fix_not_rechecked" | "post_fix_regression_detected" | "ppt_text_only_review_fallback" | "ppt_slide_export_failed" | "ppt_imagegen_callout_generation_failed" | "ppt_slide_callout_extraction_failed" | "ppt_slide_bbox_out_of_bounds" | "ppt_deck_patch_noop" | "ppt_fix_not_reexported" | "ppt_slide_not_rechecked" | "ppt_post_fix_regression_detected" | "dfix_diagnosis_missing" | "dfix_root_cause_missing" | "dfix_patch_plan_missing" | "dfix_verification_missing" | "dfix_noop_patch" | "mad_sks_protected_core_write_attempt" | "mad_sks_symlink_escape_attempt" | "mad_sks_unapproved_system_access" | "mad_sks_missing_rollback_plan" | "mad_sks_secret_leak_detected" | "mad_sks_unverified_system_change" | "mad_sks_db_write_without_snapshot" | "mad_sks_service_control_without_previous_state" | "repeated_blocker_stop";
         severity: "high" | "low" | "medium" | "critical";
         route: string | null;
         claim: string;

package/dist/core/codex-exec-output-schema.d.ts

@@ -8,6 +8,26 @@ export interface CodexExecResumeOutputSchemaAvailability {
     output_last_message_supported: boolean;
     warnings: string[];
 }
+export interface CodexExecOutputSchemaSyntaxAvailability {
+    schema: 'sks.codex-exec-output-schema-syntax.v1';
+    ok: boolean;
+    status: 'available' | 'integration_optional' | 'degraded_supported';
+    codex_bin: string | null;
+    version: string | null;
+    exec: {
+        output_schema_supported: boolean;
+        output_last_message_supported: boolean;
+        help_checked: boolean;
+    };
+    resume: {
+        output_schema_supported: boolean;
+        output_last_message_supported: boolean;
+        help_checked: boolean;
+    };
+    parity: boolean;
+    blockers: string[];
+    warnings: string[];
+}
 export interface CodexResumeOutputSchemaCommandInput {
     sessionId: string;
     prompt?: string;
@@ -16,6 +36,14 @@ export interface CodexResumeOutputSchemaCommandInput {
     json?: boolean;
     extraArgs?: readonly string[];
 }
+export interface CodexExecOutputSchemaCommandInput {
+    prompt: string;
+    outputSchemaPath: string;
+    outputFile?: string | null;
+    json?: boolean;
+    extraArgs?: readonly string[];
+}
+export declare function detectCodexExecOutputSchemaSyntax(opts?: any): Promise<CodexExecOutputSchemaSyntaxAvailability>;
 export interface CodexExecResumeOutputSchemaRunResult {
     schema: 'sks.codex-exec-output-schema-run.v1';
     ok: boolean;
@@ -35,6 +63,7 @@ export interface CodexExecResumeOutputSchemaRunResult {
     exit_code: number | null;
 }
 export declare function detectCodexExecResumeOutputSchema(opts?: any): Promise<CodexExecResumeOutputSchemaAvailability>;
+export declare function buildCodexExecOutputSchemaArgs(input: CodexExecOutputSchemaCommandInput): Promise<string[]>;
 export declare function codexSchemaPath(name: string): Promise<string>;
 export declare function assertCodexSchemaFile(schemaPath: string): Promise<{
     ok: boolean;

package/dist/core/codex-exec-output-schema.js

@@ -3,6 +3,72 @@ import fsp from 'node:fs/promises';
 import { ensureDir, exists, packageRoot, readJson, runProcess, which } from './fsx.js';
 import { codexVersionPolicy, compareSemverLike, parseCodexVersionText } from './codex-compat/codex-version-policy.js';
 import { validateJsonSchemaRecursive } from './json-schema-validator.js';
+export async function detectCodexExecOutputSchemaSyntax(opts = {}) {
+    const codexBin = opts.codexBin || await which('codex').catch(() => null);
+    if (!codexBin) {
+        return {
+            schema: 'sks.codex-exec-output-schema-syntax.v1',
+            ok: true,
+            status: 'integration_optional',
+            codex_bin: null,
+            version: null,
+            exec: { output_schema_supported: false, output_last_message_supported: false, help_checked: false },
+            resume: { output_schema_supported: false, output_last_message_supported: false, help_checked: false },
+            parity: false,
+            blockers: [],
+            warnings: ['codex binary not detected; output-schema syntax check is integration_optional']
+        };
+    }
+    const versionResult = opts.versionText
+        ? { code: 0, stdout: String(opts.versionText), stderr: '' }
+        : await runProcess(codexBin, ['--version'], { timeoutMs: opts.timeoutMs || 3000, maxOutputBytes: 16 * 1024 });
+    const execHelpResult = opts.execHelpText
+        ? { code: 0, stdout: String(opts.execHelpText), stderr: '' }
+        : await runProcess(codexBin, ['exec', '--help'], { timeoutMs: opts.timeoutMs || 5000, maxOutputBytes: 64 * 1024 });
+    const resumeHelpResult = opts.resumeHelpText
+        ? { code: 0, stdout: String(opts.resumeHelpText), stderr: '' }
+        : await runProcess(codexBin, ['exec', 'resume', '--help'], { timeoutMs: opts.timeoutMs || 5000, maxOutputBytes: 64 * 1024 });
+    const rawVersion = `${versionResult.stdout || ''}\n${versionResult.stderr || ''}`;
+    const version = parseCodexVersionText(rawVersion);
+    const execHelp = `${execHelpResult.stdout || ''}\n${execHelpResult.stderr || ''}`;
+    const resumeHelp = `${resumeHelpResult.stdout || ''}\n${resumeHelpResult.stderr || ''}`;
+    const execSupported = /--output-schema\b/.test(execHelp);
+    const resumeSupported = /--output-schema\b/.test(resumeHelp) || Boolean(version && compareSemverLike(version, '0.132.0') >= 0 && /--output-schema\b/.test(resumeHelp));
+    const execLastMessage = /--output-last-message\b|-o,/.test(execHelp);
+    const resumeLastMessage = /--output-last-message\b|-o,/.test(resumeHelp);
+    const policy = codexVersionPolicy({ available: Boolean(version), version, source: 'codex --version' });
+    const blockers = [
+        ...(execHelpResult.code === 0 ? [] : ['codex_exec_help_failed']),
+        ...(resumeHelpResult.code === 0 ? [] : ['codex_exec_resume_help_failed'])
+    ];
+    const status = policy.status === 'integration_optional'
+        ? 'integration_optional'
+        : execSupported || resumeSupported ? 'available' : 'degraded_supported';
+    return {
+        schema: 'sks.codex-exec-output-schema-syntax.v1',
+        ok: blockers.length === 0,
+        status,
+        codex_bin: codexBin,
+        version,
+        exec: {
+            output_schema_supported: execSupported,
+            output_last_message_supported: execLastMessage,
+            help_checked: execHelpResult.code === 0
+        },
+        resume: {
+            output_schema_supported: resumeSupported,
+            output_last_message_supported: resumeLastMessage,
+            help_checked: resumeHelpResult.code === 0
+        },
+        parity: execSupported === resumeSupported,
+        blockers,
+        warnings: [
+            ...policy.warnings,
+            ...(execSupported ? [] : ['codex exec --output-schema unavailable']),
+            ...(resumeSupported ? [] : ['codex exec resume --output-schema unavailable'])
+        ]
+    };
+}
 export async function detectCodexExecResumeOutputSchema(opts = {}) {
     const codexBin = opts.codexBin || await which('codex').catch(() => null);
     if (!codexBin) {
@@ -47,6 +113,21 @@ export async function detectCodexExecResumeOutputSchema(opts = {}) {
         warnings
     };
 }
+export async function buildCodexExecOutputSchemaArgs(input) {
+    const schemaPath = path.resolve(input.outputSchemaPath);
+    const schema = await assertCodexSchemaFile(schemaPath);
+    if (!schema.ok)
+        throw new Error(`Invalid output schema: ${schema.issues.join(', ')}`);
+    const args = ['exec'];
+    if (input.json !== false)
+        args.push('--json');
+    args.push('--output-schema', schemaPath);
+    if (input.outputFile)
+        args.push('--output-last-message', path.resolve(input.outputFile));
+    args.push(...Array.from(input.extraArgs || []));
+    args.push(String(input.prompt || ''));
+    return args;
+}
 export async function codexSchemaPath(name) {
     const clean = String(name || '').replace(/[^A-Za-z0-9_.-]+/g, '');
     const file = clean.endsWith('.json') ? clean : `${clean}.schema.json`;

package/dist/core/commands/mad-sks-command.d.ts

@@ -8,6 +8,7 @@ export declare function madHighCommand(args?: any, deps?: any): Promise<void | {
         tmux: any;
         app: any;
         codexArgs: any[];
+        launchEnv: any;
         attach_command: string;
         ready: boolean;
         warnings: any;
@@ -30,6 +31,7 @@ export declare function madHighCommand(args?: any, deps?: any): Promise<void | {
         tmux: any;
         app: any;
         codexArgs: any[];
+        launchEnv: any;
         attach_command: string;
         ready: boolean;
         warnings: any;