ultimate-pi 0.20.0 → 0.22.0

package/.pi/prompts/harness-review.md

@@ -13,6 +13,7 @@ Read **harness-orchestration** and **harness-review** skills before spawning.
 
 ## Allowed subagents
 
+- `harness/sentrux-repair-advisor` (Phase 1b — structural repair plan from OSS diagnostics; before benchmark evaluator)
 - `harness/reviewing/evaluator` (`mode: benchmark` then `mode: verdict`)
 - `harness/reviewing/adversary` (independent red team)
 - `harness/reviewing/tie-breaker` (escalation only when adversary blocks and eval was `conditional_pass`; skip when `--quick`)
@@ -53,15 +54,24 @@ Ownership: this command **auto-claims** the run for the current Pi session unles
 node "$UP_PKG/.pi/scripts/harness-verify.mjs"
 ```
 
-When `HARNESS_SENTRUX_REQUIRED=true`, after verify succeeds:
+**Sentrux single-scan rule:** run capture **once** per review unless `artifacts/sentrux-report.json` is missing or `HARNESS_SENTRUX_RESCAN=1`.
+
+When `HARNESS_SENTRUX_REQUIRED=true` (or report missing), after verify succeeds:
 
 ```bash
-node "$UP_PKG/.pi/scripts/harness-sentrux-cli.mjs" gate
+node "$UP_PKG/.pi/scripts/harness-sentrux-report.mjs" --out "<run_dir>" --run-id "<run_id>" --signal
+node "$UP_PKG/.pi/scripts/harness-sentrux-diagnostics.mjs" --report "<run_dir>/artifacts/sentrux-report.json" --out "<run_dir>" --churn
 ```
 
-Compare to baseline from `/harness-run` (`harness-sentrux-cli.mjs gate --save`). The wrapper resolves the project root before invoking Sentrux so `.sentrux/rules.toml` is found from run directories. If CLI missing, record `gate_status: not_installed`.
+Otherwise read existing `artifacts/sentrux-report.json`, `artifacts/sentrux-diagnostics.json`, and `artifacts/sentrux-signal.yaml` from `/harness-run`. If CLI missing (127), record `gate_status: not_installed`. Append or refresh session entry `harness-sentrux-signal`.
+
+When `HARNESS_LS_LINT_REQUIRED=true`:
+
+```bash
+node "$UP_PKG/.pi/scripts/harness-ls-lint-cli.mjs" --json
+```
 
-Ensure `artifacts/sentrux-signal.yaml` exists under the run dir (written during `/harness-run`). If missing, write it from the latest `sentrux check` / `gate` output. Append or refresh session entry `harness-sentrux-signal`.
+Ensure `artifacts/ls-lint-signal.yaml` exists (from `/harness-run` or write from CLI output). Append or refresh `harness-ls-lint-signal`.
 
 Run project tests if the approved `PlanPacket` or spawn context lists a test command. Capture stdout paths only — do not paste full logs into the next spawn.
 
@@ -72,10 +82,34 @@ schema_version: "1.0.0"
 harness_verify: pass|fail
 sentrux_check: pass|fail|skipped|not_installed
 sentrux_gate: pass|degraded|skipped|not_installed
+ls_lint: pass|fail|skipped|not_installed
+ls_lint_violations: 0
 notes: "…"
 ```
 
-`harness_artifact_ready({ paths: ["artifacts/benchmark-log.yaml", "artifacts/sentrux-signal.yaml"] })` when written.
+`harness_artifact_ready({ paths: ["artifacts/benchmark-log.yaml", "artifacts/sentrux-report.json", "artifacts/sentrux-diagnostics.json", "artifacts/sentrux-signal.yaml", "artifacts/ls-lint-signal.yaml"] })` when written.
+
+## Phase 1b — Sentrux repair advisor (subagent)
+
+**Practice:** Close the loop from fitness-function observation → bounded repair directives (ADR 0052). Skip when `artifacts/sentrux-repair-plan.yaml` already exists and `HARNESS_SENTRUX_RESCAN` is unset.
+
+Spawn when **any**:
+
+- `artifacts/sentrux-report.json` → `check.check_pass` is false, or
+- `gate.status` is `degraded`, or
+- `artifacts/sentrux-diagnostics.json` lists non-empty `diagnostics.complex_functions` or boundary/layer violations
+
+```
+subagent({
+  agentScope: "both",
+  agent: "harness/sentrux-repair-advisor",
+  task: "<HarnessSpawnContext run_dir + plan_packet_path + paths: sentrux-report.json, sentrux-diagnostics.json, sentrux-signal.yaml — read only; emit repair plan>"
+})
+```
+
+Subagent calls **`submit_sentrux_repair_plan`** → `artifacts/sentrux-repair-plan.yaml`.
+
+`harness_artifact_ready({ paths: ["artifacts/sentrux-repair-plan.yaml"] })` when written.
 
 ## Phase 2 — Measure actuals vs plan (benchmark evaluator)
 
@@ -85,7 +119,7 @@ notes: "…"
 subagent({
   agentScope: "both",
   agent: "harness/reviewing/evaluator",
-  task: "<HarnessSpawnContext mode benchmark + plan_packet_path + run_dir + acceptance_checks + paths: benchmark-log.yaml, sentrux-signal.yaml — treat Sentrux fields as measured structural actuals, not executor goals>"
+  task: "<HarnessSpawnContext mode benchmark + plan_packet_path + run_dir + acceptance_checks + paths: benchmark-log.yaml, sentrux-signal.yaml, ls-lint-signal.yaml — treat Sentrux/ls-lint fields as measured structural actuals, not executor goals>"
 })
 ```
 

package/.pi/prompts/harness-run.md

@@ -1,6 +1,5 @@
 ---
 description: Execute only against an approved PlanPacket with strict phase gates.
-argument-hint: ""
 ---
 
 # harness-run
@@ -38,6 +37,14 @@ The wrapper passes the resolved project root explicitly so Sentrux can find `.se
 
 Do **not** ask the executor to optimize Sentrux metrics — observation is for `/harness-review` only.
 
+When `HARNESS_LS_LINT_REQUIRED=true`, record a pre-execute filename baseline:
+
+```bash
+node "$UP_PKG/.pi/scripts/harness-ls-lint-cli.mjs" --json
+```
+
+Note `violation_count` in run notes (do not block execute on pre-existing violations unless chair policy says otherwise).
+
 ## Orchestration — Single jelled implementer
 
 **Practice:** Peopleware — one accountable team owns delivery; generator–evaluator separation (executor does not self-certify).
@@ -58,29 +65,44 @@ subagent({ agentScope: "both", agent: "harness/running/executor", task: "<Harnes
 
 **Practice:** Monitoring actuals vs baseline — in-process fitness functions after generator work.
 
-After executor subprocess completes:
+After executor subprocess completes, run **one** Sentrux capture (OSS CLI parse — no MCP/Pro):
+
+```bash
+node "$UP_PKG/.pi/scripts/harness-sentrux-report.mjs" --out "<run_dir>" --run-id "<run_id>" --signal
+node "$UP_PKG/.pi/scripts/harness-sentrux-diagnostics.mjs" --report "<run_dir>/artifacts/sentrux-report.json" --out "<run_dir>" --churn
+```
+
+- If `sentrux-report.json` → `check.check_pass` is false or `gate.status` is `degraded` → set `execution_status: scope_drift` (or `blocked` if unrecoverable); parent runs **`/harness-review`** next (not immediate replan).
+- `harness-sentrux-report.mjs --signal` writes `artifacts/sentrux-signal.yaml` (schema `1.1.0`) with `report_path`, `diagnostics_path`, `quality_signal`, `violation_count`, `degraded_reasons` when present.
+- If `sentrux` is not installed (exit 127), record `gate_status: not_installed` via minimal `write_harness_yaml` and continue.
+
+Append session custom entry `harness-sentrux-signal` mirroring the signal file (observation bus / telemetry).
+
+`harness_artifact_ready({ paths: ["artifacts/sentrux-report.json", "artifacts/sentrux-diagnostics.json", "artifacts/sentrux-signal.yaml"] })` when written.
+
+When `HARNESS_LS_LINT_REQUIRED=true`, after executor completes:
 
 ```bash
-node "$UP_PKG/.pi/scripts/harness-sentrux-cli.mjs" check
-node "$UP_PKG/.pi/scripts/harness-sentrux-cli.mjs" gate
+node "$UP_PKG/.pi/scripts/harness-ls-lint-cli.mjs" --json
 ```
 
-- If `sentrux check` exits non-zero or `gate` reports degradation → set `execution_status: scope_drift` (or `blocked` if unrecoverable); parent runs **`/harness-review`** next (not immediate replan).
-- Write `artifacts/sentrux-signal.yaml` via `write_harness_yaml`:
+- If `lint_pass` is false → include in `validation_summary`; prefer `scope_drift` when new violations vs pre-run baseline.
+- Write `artifacts/ls-lint-signal.yaml` via `write_harness_yaml`:
 
 ```yaml
 schema_version: "1.0.0"
 run_id: "<run_id>"
-check_pass: true|false
-gate_status: pass|degraded|skipped|not_installed
-quality_signal_summary: "<one line from CLI output>"
+lint_pass: true|false
+violation_count: 0
+status: pass|fail|skipped|not_installed
+quality_signal_summary: "<one line>"
 recorded_at: "<ISO8601>"
 phase: execute
 ```
 
-- Append session custom entry `harness-sentrux-signal` with the same fields (observation bus / telemetry).
+- Append session custom entry `harness-ls-lint-signal` with the same fields.
 
-`harness_artifact_ready({ paths: ["artifacts/sentrux-signal.yaml"] })` when written.
+`harness_artifact_ready({ paths: ["artifacts/ls-lint-signal.yaml"] })` when written.
 
 ## Parent rules
 

package/.pi/prompts/harness-setup.md

@@ -15,11 +15,12 @@ Bootstraps the complete ultimate-pi agentic harness: Graphify knowledge graph, C
 |---------|------------------|
 | `UP_PKG="$(pwd)"` in an **external** repo | Wrong — scripts live in the npm package. Resolve via `harness-resolve-up-pkg.mjs` (see Step 0). |
 | Re-running 2.1–2.8 manually after CLI verify | Wasteful — trust `harness-cli-verify.sh` output; only fix reported ✗ lines. |
-| Overwriting `AGENTS.md` after graphify | Graphify appends a section — **merge**, do not replace (Step 4.3). |
+| Overwriting `AGENTS.md` after graphify | Graphify appends a section — **merge**, do not replace (Step 4.5). |
 | `sentrux-rules-sync` without project manifest | Use **`harness-sentrux-bootstrap.mjs`** (Step 4.2) — seeds manifest + idempotent rules sync. |
 | Re-running bootstrap with `--force` on unchanged manifest | Wasteful but safe — default bootstrap skips when hash unchanged; `--force` only after manifest edits. |
 | `graph.json` uses `links`, not `edges` | Step 6 stats: `g.get('edges', g.get('links', []))`. |
 | Guessing harness-web / `.env` defaults when `ask_user` is available | **Mandatory `ask_user`** at Step 4.0 unless `--non-interactive`. |
+| WSL2 / SSH without WebView | Set `HARNESS_ASK_USER_UI=tui` in project `.env` (or rely on `auto` TUI fallback). Glimpse needs a display (WSLg or X11). |
 | `sudo apt-get` without passwordless sudo | Skip — report manual fix; do not block the rest of setup. |
 | `graphify codex install` | **Never run** — it writes `.codex/hooks.json`. Harness targets pi only (`graphify install --platform pi`). |
 | Overwriting `.env` | Use `harness-sync-env.mjs` — never rewrite; append missing keys only. |
@@ -155,7 +156,7 @@ bash "$UP_PKG/.pi/scripts/harness-cli-verify.sh"
 # Reinstall everything: bash "$UP_PKG/.pi/scripts/harness-cli-verify.sh" --force
 ```
 
-**Required (script must exit 0):** scrapling + harness-web smoke, ctx7, ast-grep (`sg`), sentrux (when harness manifest present).
+**Required (script must exit 0):** scrapling + harness-web smoke, ctx7, ast-grep (`sg`), sentrux (when harness manifest present), ls-lint (when naming manifest present).
 
 **Warnings allowed:** biome (optional; skipped for non-JS/TS repos or if install fails), gh (if not authenticated), agent-browser (if OS libs need manual `sudo apt-get install`), cocoindex-code (empty corpus on tiny repos; first `[full]` install downloads local embedding model).
 
@@ -326,6 +327,12 @@ sentrux plugin add-standard 2>/dev/null || echo "Plugins already installed or fa
 
 **Rules.toml bootstrap runs in Step 4.2** (idempotent, merge-safe). Sentrux CLI workflows use the package **`sentrux`** skill (`.agents/skills/sentrux`); no symlink into `.pi/skills/` required.
 
+### 2.9 — ls-lint (Filename / Directory Naming)
+
+Installed and smoke-tested by `harness-cli-verify.sh` (`npm install -g @ls-lint/ls-lint@2.3.1`).
+
+**`.ls-lint.yml` bootstrap runs in Step 4.3** (idempotent, merge-safe). Use skill **`harness-ls-lint-setup`**; sync via `/harness-ls-lint-sync` in pi.
+
 ## Step 3 — Pi Extension Packages
 
 Bundled extensions load from the installed `ultimate-pi` package. The harness lens wrapper at `.pi/extensions/harness-lens.ts` loads `.pi/extensions/lib/harness-lens/` for edit autopatch, secrets blocking, deferred format, and LSP tools. Structural search uses shell `sg` (installed globally by setup); architecture gates use Sentrux. See [ADR 0045](.pi/harness/docs/adrs/0045-harness-lens-minimal-contract.md).
@@ -454,6 +461,18 @@ Rules:
 - Re-runs only add keys from `$UP_PKG/.pi/harness/env.harness.template` that are absent (managed block at EOF).
 - Ensure `.env` is gitignored (Step 4.1).
 
+### 4.0c — ask_user UI (optional)
+
+Harness `ask_user` supports terminal (TUI), headless (CI), and Glimpse WebView (`HARNESS_ASK_USER_UI=auto|tui|glimpse|headless`). Dependencies install with `.pi/npm` during pi package install.
+
+| Environment | Recommendation |
+|-------------|----------------|
+| **WSL2 without WSLg / no DISPLAY** | `HARNESS_ASK_USER_UI=tui` in `.env` (default `auto` already falls back) |
+| **Desktop Linux / macOS / WSLg** | `auto` or `glimpse` for richer questionnaires |
+| **CI / `--non-interactive`** | Prompts skipped; do not expect WebView |
+
+Append `HARNESS_ASK_USER_UI=tui` to `.env` when WebView is unavailable. The first real `ask_user` reports `ui_backend` and `ui_degraded` in tool details. See ADR 0054.
+
 Template keys (placeholders — user fills secrets): `HARNESS_TELEMETRY_ENABLED`, `HARNESS_WEB_*`, `HARNESS_VCC_COMPACTION`, `HARNESS_VCC_DEBUG`, plus commented optional PostHog / Graphify vars.
 
 ### 4.1 — .gitignore Entries
@@ -484,6 +503,10 @@ Ensure `.gitignore` contains harness runtime entries (see repo root `.gitignore`
 .sentrux/*
 !.sentrux/
 !.sentrux/rules.toml
+
+# ls-lint sync meta (.ls-lint.yml is committed)
+.ls-lint/*
+!.ls-lint/
 ```
 
 ### 4.2 — Sentrux rules bootstrap (required)
@@ -521,7 +544,52 @@ Set up structural regression baseline (optional):
 node "$UP_PKG/.pi/scripts/harness-sentrux-cli.mjs" gate --save 2>/dev/null || echo "Baseline will be saved on first gate run"
 ```
 
-### 4.3 — Project AGENTS.md
+### 4.3 — ls-lint naming bootstrap (required)
+
+**Skill:** invoke **harness-ls-lint-setup** before hand-editing `.ls-lint.yml` or `naming.manifest.json`.
+
+From **project root**, run the bundled bootstrap (seeds manifest when missing, syncs `.ls-lint.yml` without clobbering custom YAML):
+
+```bash
+node "$UP_PKG/.pi/scripts/harness-ls-lint-bootstrap.mjs"
+# After editing naming.manifest.json:
+node "$UP_PKG/.pi/scripts/harness-ls-lint-bootstrap.mjs" --force
+# In pi: /harness-ls-lint-sync  (always --force sync)
+```
+
+| Command | When |
+|---------|------|
+| `harness-ls-lint-bootstrap.mjs` (no flags) | `/harness-setup`, first install, re-run safe |
+| `harness-ls-lint-bootstrap.mjs --force` | Manifest rules/ignores changed |
+| `ls-lint-rules-sync.mjs --check` | CI / harness-verify drift only |
+| `harness-ls-lint-cli.mjs` | Root-resolving filename checks from harness run dirs |
+| `/harness-ls-lint-sync` | Interactive re-sync from pi |
+
+Verify naming:
+
+```bash
+node "$UP_PKG/.pi/scripts/harness-ls-lint-cli.mjs" && echo "✓ ls-lint pass" || echo "✗ ls-lint failed"
+```
+
+### 4.4 — Auto-commit co-author bootstrap (required)
+
+**Skill:** invoke **harness-git-commit** before any agent commit.
+
+From **project root**:
+
+```bash
+node "$UP_PKG/.pi/scripts/harness-auto-commit-bootstrap.mjs"
+```
+
+| Command | When |
+|---------|------|
+| `harness-auto-commit-bootstrap.mjs` | `/harness-setup`, first install, re-run safe |
+| `harness-git-commit.mjs --dry-run --subject "…"` | Preview message + trailer |
+| `harness-git-commit.mjs --type … --scope … --subject "…"` | Commit after `git add` |
+
+Edit `.pi/auto-commit.json` to customize `message.template` or `coAuthor` (project overrides package defaults).
+
+### 4.5 — Project AGENTS.md
 
 **Do not overwrite** an existing `AGENTS.md` — graphify bootstrap may have appended a `## Graphify` section. If missing, create minimal onboarding content; if present, only add harness subsections that are absent.
 
@@ -652,6 +720,7 @@ Output summary table:
 | ast-grep | ✓/✗ | AST-aware code search (`sg`)
 | gh CLI | ✓/✗ | Auth: yes/no |
 | sentrux | ✓/✗ | CLI + plugins; rules via Step 4.2 bootstrap |
+| ls-lint | ✓/✗ | CLI; `.ls-lint.yml` via Step 4.3 bootstrap |
 | Sentrux rules.toml | ✓/✗ | `.sentrux/rules.toml` synced from manifest |
 | pi extensions | ✓/✗ | bundled extensions + harness lens wrapper |
 | harness lens | ✓/✗ | `.pi/extensions/harness-lens.ts`; PostHog owns lens telemetry; complements Sentrux architecture signal |

package/.pi/prompts/harness-steer.md

@@ -15,12 +15,13 @@ Thin orchestrator for the **steer loop** (ADR 0044). Run only after `/harness-re
 
 ## Steps
 
-1. Read `artifacts/review-outcome.yaml`, `artifacts/repair-brief.yaml`, `plan_packet_path` (paths only — do not paste bodies into tool args).
+1. Read `artifacts/review-outcome.yaml`, `artifacts/repair-brief.yaml`, `plan_packet_path` (paths only — do not paste bodies into tool args). When present, `repair-brief.yaml` already merges `artifacts/sentrux-repair-plan.yaml` (`[sentrux:…]` directives).
 2. Update `artifacts/steer-state.yaml` (`attempt`, `max_attempts`, `active: true`).
 3. Set policy phase to **execute** before spawning executor (required for mutating tools).
 4. One `ask_user` steer gate unless `run-context.steer_approved` is already true.
 5. Spawn **`harness/running/executor`** with `HarnessSpawnContext.mode: repair` and `repair_brief_path: artifacts/repair-brief.yaml`. Repair uses the same hash-anchored `read`/`edit`, batching, and pre-handoff verification rules as `/harness-run` (ADR 0051).
 6. Optional: `node "$UP_PKG/.pi/scripts/harness-sentrux-cli.mjs" gate --save` after repair to refresh baseline (ADR 0044).
+7. Optional: `node "$UP_PKG/.pi/scripts/harness-ls-lint-cli.mjs"` after repair to confirm filename conventions (ADR 0052).
 7. `next_command`: **`/harness-review`** (always re-verify; tiered adversary on attempts 2+ per practice-map).
 
 ## Forbidden

package/.pi/prompts/wiki-save.md

@@ -1,5 +1,6 @@
 ---
 description: Save the current conversation or a specific insight as a structured note in the knowledge graph.
+argument-hint: "[name|session|decision <name>]"
 ---
 
 Read the `graphify` skill for context on graphify-out/ structure.
@@ -9,10 +10,10 @@ so it can be graphified and queried. Then run `graphify ./raw --update` to
 incorporate it into the knowledge graph.
 
 Usage:
-- `/save` — analyze the full conversation and save the most valuable content
-- `/save [name]` — save with a specific note title
-- `/save session` — save a complete session summary
-- `/save decision [name]` — save as a design/governance decision (also mirror into `.pi/harness/incidents/` when incident tracking is required)
+- `/wiki-save` — analyze the full conversation and save the most valuable content
+- `/wiki-save [name]` — save with a specific note title
+- `/wiki-save session` — save a complete session summary
+- `/wiki-save decision [name]` — save as a design/governance decision (also mirror into `.pi/harness/incidents/` when incident tracking is required)
 
 Save to: `./raw/[sanitized-name].md`
 Then: `graphify ./raw --update`

package/.pi/scripts/README.md

@@ -28,7 +28,15 @@ From **Typescript extensions**, use `resolveHarnessScript()` / `getHarnessPackag
 | Sentrux rules re-sync after manifest edit | `node "$UP_PKG/.pi/scripts/harness-sentrux-bootstrap.mjs" --force` or `/harness-sentrux-sync` |
 | Sentrux rules drift check (CI) | `node "$UP_PKG/.pi/scripts/sentrux-rules-sync.mjs" --check` |
 | Sentrux run/review check or gate (root-resolving) | `node "$UP_PKG/.pi/scripts/harness-sentrux-cli.mjs" check` / `gate [--save]` |
+| Sentrux single-scan report + signal (ADR 0052) | `node "$UP_PKG/.pi/scripts/harness-sentrux-report.mjs" --out <run_dir> --run-id <id> --signal` |
+| Sentrux diagnostics synthesis | `node "$UP_PKG/.pi/scripts/harness-sentrux-diagnostics.mjs" --report <run_dir>/artifacts/sentrux-report.json --out <run_dir> [--churn]` |
+| ls-lint naming bootstrap (harness-setup) | `node "$UP_PKG/.pi/scripts/harness-ls-lint-bootstrap.mjs"` |
+| ls-lint naming re-sync after manifest edit | `node "$UP_PKG/.pi/scripts/harness-ls-lint-bootstrap.mjs" --force` or `/harness-ls-lint-sync` |
+| ls-lint config drift check (CI) | `node "$UP_PKG/.pi/scripts/ls-lint-rules-sync.mjs" --check` |
+| ls-lint filename check (root-resolving) | `node "$UP_PKG/.pi/scripts/harness-ls-lint-cli.mjs` [`--json`] |
 | Resolve package root (`UP_PKG`) | `node "$UP_PKG/.pi/scripts/harness-resolve-up-pkg.mjs"` |
+| Auto-commit config bootstrap | `node "$UP_PKG/.pi/scripts/harness-auto-commit-bootstrap.mjs"` |
+| Git commit + co-author trailer | `node "$UP_PKG/.pi/scripts/harness-git-commit.mjs" --subject "…"` [`--dry-run`] |
 | Project `.env` (append-only) | `node "$UP_PKG/.pi/scripts/harness-sync-env.mjs"` (`--create-missing` after user confirms) |
 | Harness lens extension | `.pi/extensions/harness-lens.ts` → `.pi/lib/harness-lens/index.ts` (loaded by `.pi/extensions`; PostHog owns lens telemetry) |
 

package/.pi/scripts/generate-agents-policy-yaml.mjs

@@ -32,6 +32,8 @@ const SUBMIT_BY_AGENT = {
 	"harness/trace-librarian": ["submit_human_required"],
 	"harness/incident-recorder": ["submit_human_required"],
 	"harness/sentrux-steward": ["submit_sentrux_manifest_proposal"],
+	"harness/sentrux-repair-advisor": ["submit_sentrux_repair_plan"],
+	"harness/ls-lint-steward": ["submit_ls_lint_manifest_proposal"],
 };
 
 function parseFrontmatter(content) {
@@ -48,7 +50,12 @@ function kindFor(id) {
 	if (id === "harness/reviewing/tie-breaker") return "tie_breaker";
 	if (id === "harness/trace-librarian") return "trace";
 	if (id === "harness/incident-recorder") return "incident";
-	if (id === "harness/sentrux-steward" || id === "harness/sentrux-bootstrap")
+	if (id === "harness/sentrux-repair-advisor") return "evaluator";
+	if (
+		id === "harness/sentrux-steward" ||
+		id === "harness/sentrux-bootstrap" ||
+		id === "harness/ls-lint-steward"
+	)
 		return "planner";
 	return "other";
 }
@@ -79,7 +86,12 @@ async function main() {
 
 	const kinds = {
 		planner: { tools: KIND_BASE.planner, extensions: false, read_only: true },
-		executor: { tools: KIND_BASE.executor, extensions: true, read_only: false },
+		executor: {
+			tools: KIND_BASE.executor,
+			extensions: true,
+			extension_bundle: "executor",
+			read_only: false,
+		},
 		evaluator: { tools: KIND_BASE.evaluator, extensions: false, read_only: true },
 		adversary: { tools: KIND_BASE.adversary, extensions: false, read_only: true },
 		tie_breaker: {

package/.pi/scripts/harness-auto-commit-bootstrap.mjs

@@ -0,0 +1,96 @@
+#!/usr/bin/env node
+/**
+ * Idempotent auto-commit config bootstrap for harness projects.
+ *
+ * Seeds PROJECT/.pi/auto-commit.json from the ultimate-pi package template when missing.
+ *
+ * Usage:
+ *   node "$UP_PKG/.pi/scripts/harness-auto-commit-bootstrap.mjs" [PROJECT_ROOT] [--check]
+ */
+
+import { readFile, writeFile, mkdir, access, copyFile } from "node:fs/promises";
+import { constants } from "node:fs";
+import { join, dirname, basename } from "node:path";
+import { fileURLToPath } from "node:url";
+import { validateAutoCommitConfig } from "../lib/harness-auto-commit-config.mjs";
+
+const SCRIPT_DIR = dirname(fileURLToPath(import.meta.url));
+const UP_PKG = join(SCRIPT_DIR, "..", "..");
+
+const args = process.argv.slice(2).filter((a) => !a.startsWith("-"));
+const checkOnly = process.argv.includes("--check");
+const PROJECT_ROOT = args[0] || process.cwd();
+const CONFIG_PATH = join(PROJECT_ROOT, ".pi", "auto-commit.json");
+const TEMPLATE_PATH = join(UP_PKG, ".pi", "auto-commit.json");
+
+async function fileExists(path) {
+	try {
+		await access(path, constants.R_OK);
+		return true;
+	} catch {
+		return false;
+	}
+}
+
+async function resolveScopeDefault(root) {
+	const pkgPath = join(root, "package.json");
+	if (await fileExists(pkgPath)) {
+		try {
+			const pkg = JSON.parse(await readFile(pkgPath, "utf-8"));
+			if (typeof pkg.name === "string" && pkg.name.trim()) {
+				return pkg.name.trim().replace(/^@/, "").split("/").pop() ?? pkg.name;
+			}
+		} catch {
+			/* ignore */
+		}
+	}
+	return basename(root) || "project";
+}
+
+async function main() {
+	if (!(await fileExists(TEMPLATE_PATH))) {
+		console.error(
+			"harness-auto-commit-bootstrap: missing package template",
+			TEMPLATE_PATH,
+		);
+		process.exit(1);
+	}
+
+	if (await fileExists(CONFIG_PATH)) {
+		if (checkOnly) {
+			const config = JSON.parse(await readFile(CONFIG_PATH, "utf-8"));
+			validateAutoCommitConfig(config);
+			console.log(`harness-auto-commit-bootstrap: ok ${CONFIG_PATH}`);
+			return;
+		}
+		console.log(
+			"harness-auto-commit-bootstrap: config present (edit .pi/auto-commit.json to customize)",
+		);
+		return;
+	}
+
+	if (checkOnly) {
+		console.error(
+			`harness-auto-commit-bootstrap: missing ${CONFIG_PATH} (run without --check to seed)`,
+		);
+		process.exit(1);
+	}
+
+	await mkdir(dirname(CONFIG_PATH), { recursive: true });
+	await copyFile(TEMPLATE_PATH, CONFIG_PATH);
+	const config = JSON.parse(await readFile(CONFIG_PATH, "utf-8"));
+	const scope = await resolveScopeDefault(PROJECT_ROOT);
+	if (config.message && typeof config.message === "object") {
+		config.message.scopeDefault = scope;
+	}
+	validateAutoCommitConfig(config);
+	await writeFile(CONFIG_PATH, `${JSON.stringify(config, null, "\t")}\n`, "utf-8");
+	console.log(
+		`harness-auto-commit-bootstrap: seeded -> ${CONFIG_PATH} (message.scopeDefault: ${scope})`,
+	);
+}
+
+main().catch((err) => {
+	console.error(err);
+	process.exit(1);
+});

package/.pi/scripts/harness-cli-verify.sh

@@ -324,6 +324,37 @@ verify_gh() {
 	fi
 }
 
+verify_ls_lint() {
+	log "[ls-lint]"
+	npm_global_install "@ls-lint/ls-lint@2.3.1" "ls-lint" || {
+		fail "ls-lint npm install"
+		return
+	}
+	if ! ls-lint --version &>/dev/null; then
+		fail "ls-lint --version failed"
+		return
+	fi
+	_bootstrap="$(cd "$(dirname "${BASH_SOURCE[0]:-$0}")" && pwd)/harness-ls-lint-bootstrap.mjs"
+	if [ -f "$_bootstrap" ]; then
+		node "$_bootstrap" --force 2>/dev/null ||
+			warn "ls-lint bootstrap failed (see harness-ls-lint-setup skill)"
+	fi
+	_cli="$(cd "$(dirname "${BASH_SOURCE[0]:-$0}")" && pwd)/harness-ls-lint-cli.mjs"
+	if [ -f "$_cli" ]; then
+		if node "$_cli" 2>/dev/null; then
+			pass "ls-lint $(ls-lint --version 2>/dev/null | head -1)"
+		else
+			fail "ls-lint filename check failed (fix violations or tune naming.manifest.json)"
+		fi
+	else
+		if ls-lint 2>/dev/null; then
+			pass "ls-lint $(ls-lint --version 2>/dev/null | head -1)"
+		else
+			fail "ls-lint check failed"
+		fi
+	fi
+}
+
 verify_sentrux() {
 	log "[sentrux]"
 	if ! have_cmd sentrux || [ "$FORCE" = true ]; then
@@ -361,7 +392,23 @@ verify_cocoindex
 verify_biome
 verify_sg
 verify_gh
+verify_auto_commit() {
+	log "[auto-commit]"
+	_git_commit="$(cd "$(dirname "${BASH_SOURCE[0]:-$0}")" && pwd)/harness-git-commit.mjs"
+	if [ ! -f "$_git_commit" ]; then
+		warn "harness-git-commit.mjs missing (package incomplete)"
+		return
+	fi
+	if node "$_git_commit" --print-message --subject "harness-cli-verify" 2>/dev/null | grep -qi 'Co-authored-by:'; then
+		pass "harness-git-commit (co-author trailer)"
+	else
+		fail "harness-git-commit --print-message missing Co-authored-by trailer"
+	fi
+}
+
 verify_sentrux
+verify_ls_lint
+verify_auto_commit
 
 log ""
 if [ "$FAILURES" -gt 0 ]; then

package/.pi/scripts/harness-git-churn.mjs

@@ -0,0 +1,77 @@
+#!/usr/bin/env node
+/**
+ * Optional git churn map (path → commit count) for Sentrux hotspot scoring.
+ *
+ * Usage:
+ *   node harness-git-churn.mjs [--root <PROJECT_ROOT>] [--days 14]
+ */
+
+import { spawn } from "node:child_process";
+import { resolveSentruxProjectRoot, takeRootArg } from "../lib/harness-sentrux-root.mjs";
+
+function runGit(args, cwd) {
+	return new Promise((resolve, reject) => {
+		const child = spawn("git", args, { cwd, env: process.env });
+		let stdout = "";
+		let stderr = "";
+		child.stdout?.on("data", (c) => {
+			stdout += c.toString();
+		});
+		child.stderr?.on("data", (c) => {
+			stderr += c.toString();
+		});
+		child.on("error", reject);
+		child.on("close", (code) => {
+			if (code !== 0) {
+				reject(new Error(stderr.trim() || `git exit ${code}`));
+				return;
+			}
+			resolve(stdout);
+		});
+	});
+}
+
+/**
+ * @param {string} projectRoot
+ * @param {{ days?: number }} opts
+ * @returns {Promise<Record<string, number>>}
+ */
+export async function loadGitChurn(projectRoot, opts = {}) {
+	const days = opts.days ?? 14;
+	const since = `${days} days ago`;
+	const stdout = await runGit(
+		[
+			"log",
+			`--since=${since}`,
+			"--name-only",
+			"--pretty=format:",
+		],
+		projectRoot,
+	);
+	const counts = {};
+	for (const line of stdout.split(/\r?\n/)) {
+		const path = line.trim();
+		if (!path || path.startsWith(".")) continue;
+		counts[path] = (counts[path] || 0) + 1;
+	}
+	return counts;
+}
+
+async function main() {
+	const { args, explicitRoot } = takeRootArg(process.argv.slice(2));
+	let days = 14;
+	for (let i = 0; i < args.length; i++) {
+		if (args[i] === "--days") days = Number.parseInt(args[++i] || "14", 10);
+	}
+	const root = await resolveSentruxProjectRoot(explicitRoot);
+	const map = await loadGitChurn(root, { days });
+	process.stdout.write(`${JSON.stringify(map, null, 2)}\n`);
+}
+
+const isMain = process.argv[1]?.endsWith("harness-git-churn.mjs");
+if (isMain) {
+	main().catch((err) => {
+		console.error(err.message || err);
+		process.exit(1);
+	});
+}