token-pilot 0.24.0 → 0.24.2

package/.claude-plugin/plugin.json

@@ -1,6 +1,6 @@
 {
   "name": "token-pilot",
-  "version": "0.24.0",
+  "version": "0.24.2",
   "description": "Enforcement layer for token-efficient AI coding: MCP-first hook with structural denial summaries, SessionStart reminder, bless-agents CLI, and six tp-* subagents — works for every agent including those without MCP access.",
   "author": "token-pilot",
   "license": "MIT",

package/CHANGELOG.md

@@ -5,6 +5,41 @@ All notable changes to Token Pilot will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [0.24.2] - 2026-04-18
+
+### Changed — README manual-install section restored and expanded
+
+In v0.20.2 I collapsed "Manual install" under a `<details>` to keep the README slim. That was overcorrection: users on Cursor / Codex / Cline / CI / team-shared configs had no quick "how do I add the MCP server?" answer visible.
+
+Restored the section as a proper `## Manual MCP install` heading with **per-client examples**:
+
+- **Claude Code** — both `claude mcp add` CLI and direct `.mcp.json` edit
+- **Cursor** — `.cursor/mcp.json` example
+- **Codex CLI** — `~/.codex/config.toml` TOML stanza
+- **Cline (VS Code)** — `cline_mcp_settings.json` example
+- **Any MCP-compatible client** — generic `command + args` pattern
+- **Subagents install** (Claude-Code-only) — scope flags + `--force`
+- **From source** — for contributors / vendored installs
+
+Also added an env-var table (`TOKEN_PILOT_DENY_THRESHOLD`, `TOKEN_PILOT_ADAPTIVE_THRESHOLD`, `TOKEN_PILOT_BYPASS`, `TOKEN_PILOT_SKIP_POSTINSTALL`) — these used to be scattered across the codebase with no single reference.
+
+Docs-only change. No code / test changes. 911 tests still green.
+
+## [0.24.1] - 2026-04-18
+
+### Fixed — two findings from v0.23.6 field verification
+
+**1. `read_symbols` guard missed on real Vue / TS files.** The field report showed a 6-symbols-from-6-exports request where the v0.23.6 guard failed to trip. Root cause: the guard used `sum(lineCount) / fileLines ≥ 0.7`, but ast-index's parser returns **overlapping ranges** on arrow functions / `export function` / Vue SFCs / TypeScript type-vs-function — so `sum(lineCount)` gets inflated past the file size and ratios become meaningless. Switched to a **count-based** guard: if ≥ 3 symbols AND ≥ 70% of the file's top-level symbol count, refuse and advise `smart_read`. Immune to parser line-range bugs.
+
+**2. `docs/token-pilot-dir.md` was not shipped in the npm package.** I added the file in v0.23.6 but forgot the `docs/*.md` glob in `package.json` `files:`. Now included.
+
+### Added
+
+- **Parser-overlap warning.** If the handler sees `sum(symbol.lineCount) > file.lineCount × 1.5` (definite parser mis-parse — symbols claiming more lines than the file has), it logs one stderr warning pointing at the upstream `defendend/Claude-ast-index-search` issue tracker. Doesn't fail the request; gives users a signal when ast-index is the real culprit for weird results.
+
+### Numbers
+- 911 tests green (+1 regression test for overlapping-ranges guard), `tsc --noEmit` clean.
+
 ## [0.24.0] - 2026-04-18
 
 ### Added — Tier 3 combo-agents (TP-z64 delivered)

package/README.md

@@ -46,10 +46,35 @@ This does two things:
 
 Restart your AI assistant to activate. The Read hook auto-installs the first time `token-pilot` starts inside Claude Code. Works with **Claude Code, Cursor, Codex, Antigravity, Cline**, and any MCP-compatible client.
 
-<details>
-<summary>Manual install (other MCP clients, from source, scripted CI)</summary>
+## Manual MCP install (per-client examples)
 
-Add to your `.mcp.json`:
+If `init` isn't right for your setup — CI, non-TTY environments, editing a shared team config, or a client without an interactive installer — add Token Pilot as an MCP server directly. The server command is `npx -y token-pilot` on every client; only the config file shape differs.
+
+### Claude Code
+
+Two equivalent paths:
+
+```bash
+# Via CLI (recommended — handles scope + scoping)
+claude mcp add token-pilot -- npx -y token-pilot
+claude mcp add --scope user token-pilot -- npx -y token-pilot
+claude mcp add --scope project token-pilot -- npx -y token-pilot
+
+# Or edit .mcp.json directly (project-level) / ~/.mcp.json (user-level)
+```
+
+```json
+{
+  "mcpServers": {
+    "token-pilot": { "command": "npx", "args": ["-y", "token-pilot"] },
+    "context-mode": { "command": "npx", "args": ["-y", "claude-context-mode"] }
+  }
+}
+```
+
+### Cursor
+
+Cursor reads `.cursor/mcp.json` (project) or `~/.cursor/mcp.json` (global):
 
 ```json
 {
@@ -59,27 +84,64 @@ Add to your `.mcp.json`:
 }
 ```
 
-Claude Code shortcuts:
+### Codex CLI
 
-```bash
-claude mcp add token-pilot -- npx -y token-pilot
-claude mcp add --scope user token-pilot -- npx -y token-pilot
+Codex reads `~/.codex/config.toml`:
+
+```toml
+[mcp_servers.token-pilot]
+command = "npx"
+args = ["-y", "token-pilot"]
 ```
 
-From source:
+### Cline (VS Code)
+
+Cline reads `cline_mcp_settings.json` (accessible via Cline panel → MCP Servers → Edit):
+
+```json
+{
+  "mcpServers": {
+    "token-pilot": { "command": "npx", "args": ["-y", "token-pilot"] }
+  }
+}
+```
+
+### Any MCP-compatible client
+
+Use the generic MCP protocol — the server is a plain stdio process:
+
+```
+command: npx
+args:    -y token-pilot
+```
+
+No env vars required. Optional overrides:
+
+| Env var | Default | Purpose |
+|---|---|---|
+| `TOKEN_PILOT_DENY_THRESHOLD` | `300` | Line count above which the Read hook intervenes |
+| `TOKEN_PILOT_ADAPTIVE_THRESHOLD` | `false` | Enable the adaptive curve as the session burns |
+| `TOKEN_PILOT_BYPASS` | unset | Set to `1` to disable the Read hook for one session |
+| `TOKEN_PILOT_SKIP_POSTINSTALL` | unset | Skip the `ast-index` safety-net install at `npm install` time |
+
+### Subagents (Claude Code only)
+
+`tp-*` subagents are a Claude Code feature. Other clients use only the MCP tools + Read hook. To install on a target scope explicitly:
 
 ```bash
-git clone https://github.com/Digital-Threads/token-pilot.git
-cd token-pilot && npm install && npm run build
-# then point .mcp.json at dist/index.js
+npx token-pilot install-agents --scope=user            # all projects
+npx token-pilot install-agents --scope=project         # this repo only
+npx token-pilot install-agents --scope=user --force    # re-apply after an update
 ```
 
-Non-interactive subagent install (CI):
+### From source (contributors / vendored installs)
 
 ```bash
-npx token-pilot install-agents --scope=user|project [--force]
+git clone https://github.com/Digital-Threads/token-pilot.git
+cd token-pilot && npm install && npm run build
+# Point your client's config at dist/index.js:
+#   "command": "node", "args": ["/abs/path/to/token-pilot/dist/index.js"]
 ```
-</details>
 
 ## Modes
 

package/dist/agents/tp-api-surface-tracker.md

@@ -8,7 +8,7 @@ tools:
   - mcp__token-pilot__smart_diff
   - mcp__token-pilot__read_symbol
   - Bash
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: 1ab0a379cfa6cf59c908be61c573ba208c0a8c47d7712bc5341c3600dd49ac3c
 ---
 

package/dist/agents/tp-audit-scanner.md

@@ -10,7 +10,7 @@ tools:
   - mcp__token-pilot__read_section
   - Grep
   - Read
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: a740dc6c928d11d7c2c5fbaa953c50b0e35f2abc2dd6e5ef5117bf469a2d0207
 ---
 

package/dist/agents/tp-commit-writer.md

@@ -8,7 +8,7 @@ tools:
   - mcp__token-pilot__test_summary
   - mcp__token-pilot__outline
   - Bash
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: 559a0b61d20974bf33e35bc4c80dcf1b41d10d4df46cf9d05d3d5620713cd46f
 ---
 

package/dist/agents/tp-dead-code-finder.md

@@ -9,7 +9,7 @@ tools:
   - mcp__token-pilot__related_files
   - Grep
   - Read
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: 482e33ba566dc75d87753d980267fb2e01763e5924612efd54ec89993b5e12fd
 ---
 

package/dist/agents/tp-debugger.md

@@ -11,7 +11,7 @@ tools:
   - mcp__token-pilot__read_for_edit
   - Read
   - Bash
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: 04864ae0bf0689863d7de9f4c0b44b293087b34098ad2771837e491d37dab953
 ---
 

package/dist/agents/tp-dep-health.md

@@ -8,7 +8,7 @@ tools:
   - mcp__token-pilot__find_unused
   - Bash
   - Read
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: abf5f78b2d55e4611eb1cdde75d604993071f14ac7b5cd6b51ecd5cc1beddc38
 ---
 

package/dist/agents/tp-history-explorer.md

@@ -9,7 +9,7 @@ tools:
   - mcp__token-pilot__outline
   - Bash
   - Read
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: b2daca007e959eaf26bf9a4d92ba36c3aa277a51de4ca4db674833d36acbe11b
 ---
 

package/dist/agents/tp-impact-analyzer.md

@@ -11,7 +11,7 @@ tools:
   - mcp__token-pilot__smart_read_many
   - mcp__token-pilot__read_symbols
   - Read
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: 0be2620ce0303f912f6b3334f261d169f064970c0d16602fa1e76db4cb2ea441
 ---
 

package/dist/agents/tp-incident-timeline.md

@@ -7,7 +7,7 @@ tools:
   - mcp__token-pilot__find_usages
   - mcp__token-pilot__read_symbol
   - Bash
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: 420ffc423c7479a8d4e1b226cf73eb98d6d41388317c74a950d7f3b6240b6786
 ---
 

package/dist/agents/tp-migration-scout.md

@@ -10,7 +10,7 @@ tools:
   - mcp__token-pilot__smart_read_many
   - Grep
   - Glob
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: cf32cdee777430ecc6732db32b3f883a685c8a02b6dc93379d71b15555e79b3e
 ---
 

package/dist/agents/tp-onboard.md

@@ -10,7 +10,7 @@ tools:
   - mcp__token-pilot__smart_read
   - mcp__token-pilot__smart_read_many
   - mcp__token-pilot__read_section
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: ae0b86eaffaf34bf283b94b5572481fa8c2d6a2a25193f1173b70bef0fbe1919
 ---
 

package/dist/agents/tp-pr-reviewer.md

@@ -10,7 +10,7 @@ tools:
   - mcp__token-pilot__smart_read_many
   - mcp__token-pilot__read_for_edit
   - Read
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: eb9fb7f87d9ab61c5b18248a40b283008b5d73414ddb2e3094ff0826e7e463d0
 ---
 

package/dist/agents/tp-refactor-planner.md

@@ -7,7 +7,7 @@ tools:
   - mcp__token-pilot__read_diff
   - mcp__token-pilot__outline
   - mcp__token-pilot__read_symbol
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: a058518619fd6e2def0c9226f6c70438a5e0a80efe680c935414ecd7e1b14a4f
 ---
 

package/dist/agents/tp-review-impact.md

@@ -8,7 +8,7 @@ tools:
   - mcp__token-pilot__outline
   - mcp__token-pilot__module_info
   - Bash
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: 72b635f511492188587d6cb6fd70f936ae34cf5df1f9cd9eff7849cf1231e185
 ---
 

package/dist/agents/tp-run.md

@@ -15,7 +15,7 @@ tools:
   - Grep
   - Glob
   - Bash
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: d665d57085db38077d0eeab74bda8bdb84c9ad59688495486059af5d3fac67cf
 ---
 

package/dist/agents/tp-session-restorer.md

@@ -9,7 +9,7 @@ tools:
   - mcp__token-pilot__session_budget
   - Bash
   - Read
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: 35b7f333a28c94e7dc89fcc3171703c4b466225f55cd5c701b7592f4f6486440
 ---
 

package/dist/agents/tp-test-coverage-gapper.md

@@ -10,7 +10,7 @@ tools:
   - mcp__token-pilot__test_summary
   - Glob
   - Grep
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: cc3d1f46fdb95ac3caf9344f69f1ddcd5ce5a175ee70aa150b7f9fda93edb152
 ---
 

package/dist/agents/tp-test-triage.md

@@ -7,7 +7,7 @@ tools:
   - mcp__token-pilot__read_range
   - mcp__token-pilot__find_usages
   - mcp__token-pilot__read_symbol
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: 255912c47661d203c8f9a735237bc419f97e937f788a01811bbe126ee3dd5878
 ---
 

package/dist/agents/tp-test-writer.md

@@ -12,7 +12,7 @@ tools:
   - Write
   - Edit
   - Bash
-token_pilot_version: "0.24.0"
+token_pilot_version: "0.24.2"
 token_pilot_body_hash: 533b3d2387e631a24291314b2b8ad8c3e01c19e0b9ec1d3fe08ae0011f0c73f9
 ---
 

package/dist/handlers/read-symbols.js

@@ -21,22 +21,22 @@ export async function handleReadSymbols(args, projectRoot, symbolResolver, fileC
     }
     const N = args.symbols.length;
     const sections = [];
-    // v0.23.6 — anti-pattern guard. When the caller requests nearly every
-    // symbol in the file, the sum of bodies + N × per-symbol metadata
-    // exceeds a single raw Read. That's worse than what smart_read +
-    // read_for_edit would do. Refuse the request and tell the caller.
-    if (structure && structure.symbols && structure.symbols.length > 0) {
+    // v0.24.1 — anti-pattern guard. When the caller requests most of the
+    // symbols in the file, a batch read costs more than one smart_read.
+    // Earlier versions used sum(lineCount), but ast-index parser bugs
+    // (arrow functions / export function / Vue SFC / TS types) return
+    // overlapping ranges that inflate the sum and let the guard miss. The
+    // count-based check (requested symbols / total top-level symbols) is
+    // immune to those parser issues.
+    if (structure && structure.symbols && structure.symbols.length >= 3) {
         const uniqueRequested = new Set(args.symbols.map((s) => s.split(".")[0]));
         const matchedTopLevel = structure.symbols.filter((s) => uniqueRequested.has(s.name));
-        const totalTopLevelLines = structure.symbols.reduce((sum, s) => sum + (s.location.lineCount ?? 0), 0);
-        const requestedLines = matchedTopLevel.reduce((sum, s) => sum + (s.location.lineCount ?? 0), 0);
-        if (totalTopLevelLines > 0 &&
-            requestedLines / totalTopLevelLines >= 0.7 &&
-            matchedTopLevel.length >= 3) {
+        const total = structure.symbols.length;
+        if (matchedTopLevel.length >= 3 && matchedTopLevel.length / total >= 0.7) {
             const text = `FILE: ${args.path} | SYMBOLS: ${N} requested\n\n` +
-                `ADVISORY: You requested ${matchedTopLevel.length} symbols covering ` +
-                `≥70% of this file (${requestedLines}/${totalTopLevelLines} lines). ` +
-                `A batch read here costs more than reading the whole file once.\n\n` +
+                `ADVISORY: You requested ${matchedTopLevel.length}/${total} symbols ` +
+                `(≥70% of the file's top-level symbols). A batch read here costs ` +
+                `more than reading the whole file once.\n\n` +
                 `Cheaper alternatives:\n` +
                 `  - smart_read("${args.path}") for a structural overview\n` +
                 `  - read_for_edit("${args.path}", "<symbol>") when you need exact edit context\n` +
@@ -45,6 +45,19 @@ export async function handleReadSymbols(args, projectRoot, symbolResolver, fileC
                 `or use raw Read (bounded).`;
             return { content: [{ type: "text", text }] };
         }
+        // v0.24.1 — sanity-check for parser-produced overlapping ranges. When
+        // the sum of symbol lineCounts exceeds the actual file line count by
+        // >1.5× we're almost certainly seeing ast-index getting confused by
+        // arrow functions / Vue SFCs / type-vs-function. Log once so users
+        // can report upstream; don't fail the request.
+        const totalSymbolLines = structure.symbols.reduce((sum, s) => sum + (s.location.lineCount ?? 0), 0);
+        const fileLines = lines.length;
+        if (fileLines > 0 && totalSymbolLines > fileLines * 1.5) {
+            process.stderr.write(`[token-pilot] ast-index parser produced overlapping symbol ranges for ${args.path} ` +
+                `(sum=${totalSymbolLines} lines vs file=${fileLines}). ` +
+                `Results may mis-classify symbols; consider smart_read + read_for_edit instead. ` +
+                `Upstream issue: https://github.com/defendend/Claude-ast-index-search/issues\n`);
+        }
     }
     // Show mode constants (same as read_symbol.ts)
     const MAX_SYMBOL_LINES = 300;

package/docs/token-pilot-dir.md

@@ -0,0 +1,61 @@
+# `.token-pilot/` directory layout
+
+Token Pilot writes state and telemetry to a `.token-pilot/` directory in your project root. Nothing is created eagerly — each sub-path appears only when a feature that needs it fires for the first time. Committing the directory is optional; most users add it to `.gitignore`.
+
+## Files & directories
+
+| Path | Who writes | When it appears | Purpose | Commit? |
+|---|---|---|---|---|
+| `hook-events.jsonl` | Read hook | First `Read` of a code file ≥ the `denyThreshold` | JSONL telemetry — one entry per hook decision (denied / allowed / bypass). Read by `session_analytics` and the adaptive-threshold logic. Auto-rotates at 10 MB, keeps 30-day history with 100 MB total cap. | **No** |
+| `hook-denied.jsonl` | Read hook (legacy) | Historical, from before v0.20 | Older-format event log kept for backward compatibility with pre-v0.20 `loadDeniedReads()` readers. Safe to delete. | No |
+| `snapshots/` | `session_snapshot` MCP tool | First call to `session_snapshot` | Archived + `latest.md` copy of each snapshot. Retention: last 10 archives. Surfaced by the SessionStart hook when `latest.md` is < 2h old. | Optional — commit `latest.md` if you want a next-session pointer to persist across clones |
+| `context-registries/<session-id>.json` | MCP server | First dedup-aware tool call (`smart_read`, `read_symbol`, `read_range`, `smart_read_many`) with a `session_id` arg | Per-session dedup state — what was loaded, content hashes, load times. LRU cap 8 sessions in memory; older ones live only on disk. | **No** — session-local |
+| `docs/<name>.md` | `token-pilot save-doc` CLI | Explicit user invocation | User-saved research / notes (curl output, WebFetch, long paste) that should survive compaction. Read back cheaply with `smart_read` / `read_range`. | Optional — commit if the doc is team-wide knowledge |
+| `over-budget.log` | PostToolUse:Task hook | First time a `tp-*` subagent exceeds its frontmatter budget by > 10 % | JSONL audit trail for budget overages. Used by future `session_analytics` views. Empty file means no overages so far — good. | **No** |
+| `tp-refactor-planner-<timestamp>.md` | `tp-refactor-planner` agent | Only when the agent's plan exceeds its response budget | Full step list spilled from the agent's response when it would have exceeded ~500 tokens inline. Response in chat points at this file. | Usually **no** — review and delete after the refactor lands |
+
+## Quick rules
+
+- **Nothing appears until you use it.** If you only ever ran the Read hook, only `hook-events.jsonl` will exist.
+- **Safe to delete the whole folder** — everything rebuilds from the next tool call. You'll lose: dedup memory, snapshot history, saved research. You'll keep: installed hooks, agents, configs (those live elsewhere).
+- **Add to `.gitignore`** unless your team uses snapshots or saved-docs as shared context.
+
+Recommended `.gitignore` stanza:
+
+```gitignore
+# Token Pilot — session-local telemetry & state
+.token-pilot/hook-events*.jsonl
+.token-pilot/hook-denied.jsonl
+.token-pilot/context-registries/
+.token-pilot/over-budget.log
+.token-pilot/tp-refactor-planner-*.md
+
+# Keep these if you want shared snapshots / notes:
+# !.token-pilot/snapshots/latest.md
+# !.token-pilot/docs/
+```
+
+## Inspecting live state
+
+Useful one-liners to audit a session in progress:
+
+```bash
+# How many hook events this session
+wc -l .token-pilot/hook-events.jsonl
+
+# Token savings so far (sum of savedTokens)
+cat .token-pilot/hook-events.jsonl | python3 -c "
+import sys, json
+print(sum(json.loads(l).get('savedTokens', 0) for l in sys.stdin if l.strip()))"
+
+# Any subagent blew its budget?
+cat .token-pilot/over-budget.log 2>/dev/null || echo "no overages"
+
+# Latest session snapshot (if any)
+cat .token-pilot/snapshots/latest.md 2>/dev/null | head -20
+
+# What dedup state is persisted
+ls .token-pilot/context-registries/ 2>/dev/null
+```
+
+Or ask the agent — `mcp__token-pilot__session_analytics` returns the same signals in a structured form.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "token-pilot",
-  "version": "0.24.0",
+  "version": "0.24.2",
   "description": "Save up to 80% tokens when AI reads code — MCP server for token-efficient code navigation, AST-aware structural reading instead of dumping full files into context window",
   "type": "module",
   "main": "dist/index.js",
@@ -11,6 +11,7 @@
     "dist/**/*.js",
     "dist/**/*.d.ts",
     "dist/agents/*.md",
+    "docs/*.md",
     "scripts/postinstall.mjs",
     "start.sh",
     ".claude-plugin/",