npm - ummaya - Versions diffs - 0.2.4 → 0.2.5 - Mend

ummaya 0.2.4 → 0.2.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (477) hide show

package/README.md +15 -2
package/bin/ummaya +10 -1
package/npm-shrinkwrap.json +253 -2
package/package.json +5 -1
package/prompts/manifest.yaml +1 -1
package/prompts/system_v1.md +1 -0
package/pyproject.toml +26 -2
package/specs/2803-document-production-hardening/contracts/document-tools.schema.json +1043 -0
package/src/ummaya/_canonical/__init__.py +2 -0
package/src/ummaya/engine/engine.py +29 -132
package/src/ummaya/evidence/__init__.py +21 -2
package/src/ummaya/evidence/dataset_contract.py +193 -0
package/src/ummaya/evidence/document_authoring_cases.py +33 -0
package/src/ummaya/evidence/document_harness.py +313 -0
package/src/ummaya/evidence/document_viewer_ux.py +391 -0
package/src/ummaya/evidence/gates.py +70 -0
package/src/ummaya/evidence/json_types.py +20 -0
package/src/ummaya/evidence/models.py +88 -1
package/src/ummaya/evidence/output_payload.py +89 -0
package/src/ummaya/evidence/payload_documents.py +233 -0
package/src/ummaya/evidence/route_contracts.py +224 -0
package/src/ummaya/evidence/route_helpers.py +150 -0
package/src/ummaya/evidence/runner.py +81 -212
package/src/ummaya/evidence/source_provenance.py +246 -0
package/src/ummaya/evidence/source_provenance_redaction.py +176 -0
package/src/ummaya/evidence/tool_layer.py +39 -0
package/src/ummaya/evidence/tool_layer_models.py +151 -0
package/src/ummaya/ipc/adapter_manifest_emitter.py +26 -10
package/src/ummaya/ipc/document_intent_normalization.py +185 -0
package/src/ummaya/ipc/frame_schema.py +5 -5
package/src/ummaya/ipc/route_diagnostics.py +73 -0
package/src/ummaya/ipc/stdio.py +1109 -477
package/src/ummaya/llm/client.py +102 -3
package/src/ummaya/llm/config.py +8 -3
package/src/ummaya/primitives/__init__.py +6 -2
package/src/ummaya/primitives/delegation.py +1 -1
package/src/ummaya/primitives/document.py +28 -0
package/src/ummaya/settings.py +0 -3
package/src/ummaya/tools/discovery_bridge.py +17 -1
package/src/ummaya/tools/documents/__init__.py +297 -0
package/src/ummaya/tools/documents/adapter_registry.py +487 -0
package/src/ummaya/tools/documents/archive_container_probe.py +167 -0
package/src/ummaya/tools/documents/artifact_store.py +454 -0
package/src/ummaya/tools/documents/authoring.py +283 -0
package/src/ummaya/tools/documents/baselines.py +114 -0
package/src/ummaya/tools/documents/capability.py +331 -0
package/src/ummaya/tools/documents/contracts.py +112 -0
package/src/ummaya/tools/documents/conversion.py +521 -0
package/src/ummaya/tools/documents/diff.py +275 -0
package/src/ummaya/tools/documents/engines.py +163 -0
package/src/ummaya/tools/documents/evaluation.py +291 -0
package/src/ummaya/tools/documents/explicit_values.py +108 -0
package/src/ummaya/tools/documents/fixtures.py +174 -0
package/src/ummaya/tools/documents/format_completion_audit.py +471 -0
package/src/ummaya/tools/documents/formats/__init__.py +2 -0
package/src/ummaya/tools/documents/formats/archive.py +528 -0
package/src/ummaya/tools/documents/formats/base.py +41 -0
package/src/ummaya/tools/documents/formats/code_file.py +211 -0
package/src/ummaya/tools/documents/formats/data_file.py +272 -0
package/src/ummaya/tools/documents/formats/hwp.py +284 -0
package/src/ummaya/tools/documents/formats/hwpx.py +1837 -0
package/src/ummaya/tools/documents/formats/odf.py +435 -0
package/src/ummaya/tools/documents/formats/ooxml.py +1030 -0
package/src/ummaya/tools/documents/formats/passive.py +766 -0
package/src/ummaya/tools/documents/formats/pdf.py +702 -0
package/src/ummaya/tools/documents/formats/text_web.py +268 -0
package/src/ummaya/tools/documents/hwp_conversion_probe.py +178 -0
package/src/ummaya/tools/documents/hwp_direct_candidate.py +141 -0
package/src/ummaya/tools/documents/inspection.py +289 -0
package/src/ummaya/tools/documents/intake.py +1079 -0
package/src/ummaya/tools/documents/legacy_office_promotion_probe.py +366 -0
package/src/ummaya/tools/documents/models.py +1598 -0
package/src/ummaya/tools/documents/odf_promotion_probe.py +167 -0
package/src/ummaya/tools/documents/orchestrator.py +96 -0
package/src/ummaya/tools/documents/passive_capability_probe.py +251 -0
package/src/ummaya/tools/documents/patch.py +170 -0
package/src/ummaya/tools/documents/pdfa_conformance.py +284 -0
package/src/ummaya/tools/documents/pdfa_promotion_probe.py +198 -0
package/src/ummaya/tools/documents/permissions.py +110 -0
package/src/ummaya/tools/documents/planner.py +616 -0
package/src/ummaya/tools/documents/registry.py +2733 -0
package/src/ummaya/tools/documents/render.py +978 -0
package/src/ummaya/tools/documents/render_comparison.py +113 -0
package/src/ummaya/tools/documents/render_comparison_models.py +74 -0
package/src/ummaya/tools/documents/render_comparison_regions.py +73 -0
package/src/ummaya/tools/documents/render_comparison_style.py +161 -0
package/src/ummaya/tools/documents/reread.py +157 -0
package/src/ummaya/tools/documents/runtime_authoring.py +244 -0
package/src/ummaya/tools/documents/runtime_authoring_bundle.py +76 -0
package/src/ummaya/tools/documents/scorecard.py +184 -0
package/src/ummaya/tools/documents/socratic_planner.py +193 -0
package/src/ummaya/tools/documents/style.py +48 -0
package/src/ummaya/tools/documents/tool_defs.py +523 -0
package/src/ummaya/tools/documents/validate.py +347 -0
package/src/ummaya/tools/executor.py +29 -0
package/src/ummaya/tools/live_proxy.py +0 -3
package/src/ummaya/tools/models.py +5 -1
package/src/ummaya/tools/register_all.py +8 -0
package/src/ummaya/tools/registry.py +10 -1
package/src/ummaya/tools/routing/__init__.py +59 -0
package/src/ummaya/tools/routing/builder.py +105 -0
package/src/ummaya/tools/routing/cards.py +29 -0
package/src/ummaya/tools/routing/decision_service.py +534 -0
package/src/ummaya/tools/routing/decision_types.py +74 -0
package/src/ummaya/tools/routing/feasibility.py +122 -0
package/src/ummaya/tools/routing/intent.py +17 -0
package/src/ummaya/tools/routing/intent_extractor.py +207 -0
package/src/ummaya/tools/routing/intent_patterns.py +160 -0
package/src/ummaya/tools/routing/intent_public_data.py +150 -0
package/src/ummaya/tools/routing/intent_types.py +48 -0
package/src/ummaya/tools/routing/lint.py +78 -0
package/src/ummaya/tools/routing/metadata.py +174 -0
package/src/ummaya/tools/routing/projection.py +340 -0
package/src/ummaya/tools/routing/retrieval_policy.py +629 -0
package/src/ummaya/tools/routing/schema.py +81 -0
package/src/ummaya/tools/routing/types.py +96 -0
package/src/ummaya/tools/routing_index.py +2 -2
package/src/ummaya/tools/search.py +34 -746
package/tests/fixtures/documents/public_forms/baselines.yaml +113 -0
package/tui/package.json +1 -1
package/tui/src/.cc-byte-identical-whitelist.yaml +266 -0
package/tui/src/QueryEngine.ts +12 -8
package/tui/src/bridge/inboundAttachments.ts +3 -3
package/tui/src/cli/handlers/auth.ts +3 -12
package/tui/src/cli/print.ts +7 -7
package/tui/src/commands/insights.ts +1 -1
package/tui/src/commands/install-github-app/types.ts +8 -30
package/tui/src/commands/plugin/types.ts +6 -28
package/tui/src/commands/plugin/unifiedTypes.ts +4 -26
package/tui/src/commands/rename/generateSessionName.ts +1 -1
package/tui/src/components/Feedback.tsx +1 -1
package/tui/src/components/LogoV2/EmergencyTip.tsx +11 -2
package/tui/src/components/LogoV2/WelcomeV2.tsx +1 -3
package/tui/src/components/ScrollKeybindingHandler.tsx +6 -6
package/tui/src/components/Spinner/types.ts +6 -28
package/tui/src/components/agents/generateAgent.ts +1 -1
package/tui/src/components/agents/new-agent-creation/types.ts +4 -26
package/tui/src/components/config/EnvSecretIsolatedEditor.tsx +1 -1
package/tui/src/components/mcp/types.ts +16 -38
package/tui/src/components/messages/AssistantToolUseMessage.tsx +3 -2
package/tui/src/components/messages/UserCrossSessionMessage.ts +16 -4
package/tui/src/components/messages/UserForkBoilerplateMessage.ts +16 -4
package/tui/src/components/messages/UserGitHubWebhookMessage.ts +16 -4
package/tui/src/components/messages/UserToolResultMessage/utils.tsx +3 -2
package/tui/src/components/permissions/MonitorPermissionRequest/MonitorPermissionRequest.ts +9 -4
package/tui/src/components/permissions/ReviewArtifactPermissionRequest/ReviewArtifactPermissionRequest.ts +9 -4
package/tui/src/components/primitive/DocumentSocraticReviewBlock.tsx +129 -0
package/tui/src/components/primitive/DocumentToolResultCard.tsx +224 -0
package/tui/src/components/primitive/documentSocraticReview.ts +215 -0
package/tui/src/components/primitive/index.tsx +43 -1
package/tui/src/components/primitive/types.ts +137 -0
package/tui/src/components/ui/option.ts +4 -26
package/tui/src/constants/common.ts +0 -2
package/tui/src/constants/prompts.ts +4 -3
package/tui/src/constants/querySource.ts +4 -26
package/tui/src/entrypoints/sdk/controlTypes.ts +26 -48
package/tui/src/entrypoints/sdk/coreTypes.generated.ts +3 -25
package/tui/src/entrypoints/sdk/runtimeTypes.ts +38 -60
package/tui/src/entrypoints/sdk/sdkUtilityTypes.ts +4 -26
package/tui/src/entrypoints/sdk/settingsTypes.generated.ts +3 -25
package/tui/src/entrypoints/sdk/toolTypes.ts +3 -25
package/tui/src/hooks/toolPermission/handlers/interactiveHandler.ts +10 -0
package/tui/src/hooks/useApiKeyVerification.ts +1 -1
package/tui/src/hooks/useVirtualScroll.ts +1 -1
package/tui/src/ink/ink.tsx +33 -14
package/tui/src/ink/reconciler.ts +2 -3
package/tui/src/ink/render-to-screen.ts +30 -10
package/tui/src/ipc/bridge.ts +62 -15
package/tui/src/ipc/bridgeSingleton.ts +5 -1
package/tui/src/ipc/codec.ts +3 -3
package/tui/src/ipc/frames.generated.ts +12 -12
package/tui/src/ipc/llmClient.ts +151 -27
package/tui/src/ipc/schema/frame.schema.json +1 -1
package/tui/src/keybindings/defaultBindings.ts +4 -0
package/tui/src/main.tsx +29 -11
package/tui/src/native-ts/file-index/index.ts +33 -3
package/tui/src/observability/surface.ts +2 -2
package/tui/src/probes/toolRegistryProbe.tsx +3 -1
package/tui/src/projectOnboardingState.ts +7 -6
package/tui/src/query/chatMessageTypes.ts +18 -0
package/tui/src/query/chatMessagesBuilder.ts +1 -1
package/tui/src/query/deps.ts +1 -1
package/tui/src/query/messageGuards.ts +106 -0
package/tui/src/query/publicDataTerminalRepair.ts +384 -0
package/tui/src/query/run.ts +1075 -0
package/tui/src/query/supportBoundary.ts +168 -0
package/tui/src/query/toolResultErrors.ts +103 -0
package/tui/src/query/toolRunner.ts +687 -0
package/tui/src/query/unavailableToolRepair.ts +118 -0
package/tui/src/query.ts +9 -2186
package/tui/src/screens/REPL.tsx +40 -29
package/tui/src/services/api/adapterManifest.ts +4 -0
package/tui/src/services/api/backendChat/events.ts +117 -0
package/tui/src/services/api/backendChat/finalMessage.ts +40 -0
package/tui/src/services/api/backendChat/frame.ts +9 -0
package/tui/src/services/api/backendChat/streaming.ts +430 -0
package/tui/src/services/api/backendChat/types.ts +62 -0
package/tui/src/services/api/backendChat.ts +1 -0
package/tui/src/services/api/client.ts +65 -2
package/tui/src/services/api/errorUtils.ts +5 -5
package/tui/src/services/api/errors.ts +1 -1
package/tui/src/services/api/logging.ts +1 -1
package/tui/src/services/api/ummaya/evidence.ts +194 -0
package/tui/src/services/api/ummaya/messages.ts +255 -0
package/tui/src/services/api/ummaya/nonStreaming.ts +66 -0
package/tui/src/services/api/ummaya/provider.ts +200 -0
package/tui/src/services/api/ummaya/reasoning.ts +24 -0
package/tui/src/services/api/ummaya/request.ts +200 -0
package/tui/src/services/api/ummaya/selectionContext.ts +240 -0
package/tui/src/services/api/ummaya/streaming.ts +365 -0
package/tui/src/services/api/ummaya/streamingPayload.ts +129 -0
package/tui/src/services/api/ummaya/streamingReader.ts +40 -0
package/tui/src/services/api/ummaya/toolSelection.ts +217 -0
package/tui/src/services/api/ummaya/types.ts +110 -0
package/tui/src/services/api/ummaya/usage.ts +30 -0
package/tui/src/services/api/ummaya.ts +26 -418
package/tui/src/services/api/withRetry.ts +1 -1
package/tui/src/services/awaySummary.ts +2 -2
package/tui/src/services/claudeAiLimits.ts +1 -1
package/tui/src/services/compact/autoCompact.ts +1 -1
package/tui/src/services/compact/compact.ts +1 -1
package/tui/src/services/lsp/types.ts +8 -30
package/tui/src/services/tips/types.ts +6 -28
package/tui/src/services/tokenEstimation.ts +1 -1
package/tui/src/services/toolRegistry/bootGuard.ts +5 -5
package/tui/src/services/toolUseSummary/toolUseSummaryGenerator.ts +1 -1
package/tui/src/services/tools/toolExecution.ts +94 -1
package/tui/src/store/pendingPermissionSlot.ts +1 -1
package/tui/src/store/session-store.ts +10 -36
package/tui/src/stubs/any-stub.ts +15 -10
package/tui/src/stubs/color-diff-napi.ts +37 -23
package/tui/src/stubs/globals.d.ts +3 -3
package/tui/src/stubs/macro-preload.ts +23 -12
package/tui/src/tools/AdapterTool/AdapterTool.ts +1207 -714
package/tui/src/tools/AdapterTool/routeDiagnostics.ts +75 -0
package/tui/src/tools/AgentTool/AgentTool.tsx +84 -1371
package/tui/src/tools/AgentTool/agentToolHandoff.ts +114 -0
package/tui/src/tools/AgentTool/agentToolPartialResult.ts +16 -0
package/tui/src/tools/AgentTool/agentToolProgress.ts +32 -0
package/tui/src/tools/AgentTool/agentToolResolver.ts +161 -0
package/tui/src/tools/AgentTool/agentToolResult.ts +163 -0
package/tui/src/tools/AgentTool/agentToolUtils.ts +14 -686
package/tui/src/tools/AgentTool/asyncAgentLifecycle.ts +208 -0
package/tui/src/tools/AgentTool/asyncLifecycle.ts +153 -0
package/tui/src/tools/AgentTool/backgroundedCompletion.ts +126 -0
package/tui/src/tools/AgentTool/backgroundedLifecycle.ts +174 -0
package/tui/src/tools/AgentTool/foregroundBackground.ts +83 -0
package/tui/src/tools/AgentTool/foregroundDrain.tsx +133 -0
package/tui/src/tools/AgentTool/foregroundFinalize.ts +98 -0
package/tui/src/tools/AgentTool/foregroundLifecycle.tsx +237 -0
package/tui/src/tools/AgentTool/foregroundProgress.tsx +169 -0
package/tui/src/tools/AgentTool/foregroundTask.ts +89 -0
package/tui/src/tools/AgentTool/forkSubagent.ts +1 -12
package/tui/src/tools/AgentTool/forkSubagentGate.ts +34 -0
package/tui/src/tools/AgentTool/launchRouting.ts +203 -0
package/tui/src/tools/AgentTool/lifecycle.ts +244 -0
package/tui/src/tools/AgentTool/mcpRouting.ts +73 -0
package/tui/src/tools/AgentTool/orchestrationSupport.ts +70 -0
package/tui/src/tools/AgentTool/permissions.ts +39 -0
package/tui/src/tools/AgentTool/promptSetup.ts +181 -0
package/tui/src/tools/AgentTool/remoteRouting.ts +62 -0
package/tui/src/tools/AgentTool/resultMapping.ts +116 -0
package/tui/src/tools/AgentTool/resumeAgent.ts +39 -107
package/tui/src/tools/AgentTool/resumeAgentHelpers.ts +140 -0
package/tui/src/tools/AgentTool/runAgent.ts +1 -1
package/tui/src/tools/AgentTool/runtimeConfig.ts +57 -0
package/tui/src/tools/AgentTool/schemas.ts +196 -0
package/tui/src/tools/AgentTool/sourceVerificationPropagation.ts +263 -0
package/tui/src/tools/AgentTool/worktreeLifecycle.ts +105 -0
package/tui/src/tools/AskUserQuestionTool/AskUserQuestionTool.tsx +174 -202
package/tui/src/tools/BashTool/BashTool.tsx +71 -1072
package/tui/src/tools/BashTool/bashCommandHelpers.ts +12 -12
package/tui/src/tools/BashTool/bashPermissions/astPreflight.ts +173 -0
package/tui/src/tools/BashTool/bashPermissions/classifierChecks.ts +199 -0
package/tui/src/tools/BashTool/bashPermissions/compoundGuards.ts +53 -0
package/tui/src/tools/BashTool/bashPermissions/constants.ts +99 -0
package/tui/src/tools/BashTool/bashPermissions/index.ts +38 -0
package/tui/src/tools/BashTool/bashPermissions/legacyMisparsing.ts +62 -0
package/tui/src/tools/BashTool/bashPermissions/main.ts +135 -0
package/tui/src/tools/BashTool/bashPermissions/normalizedCommands.ts +33 -0
package/tui/src/tools/BashTool/bashPermissions/operatorFlow.ts +98 -0
package/tui/src/tools/BashTool/bashPermissions/permissionChecks.ts +200 -0
package/tui/src/tools/BashTool/bashPermissions/prefixSuggestions.ts +88 -0
package/tui/src/tools/BashTool/bashPermissions/promptClassifierRules.ts +125 -0
package/tui/src/tools/BashTool/bashPermissions/ruleDelegates.ts +19 -0
package/tui/src/tools/BashTool/bashPermissions/ruleMatching.ts +145 -0
package/tui/src/tools/BashTool/bashPermissions/sandboxAutoAllow.ts +75 -0
package/tui/src/tools/BashTool/bashPermissions/subcommandFlow.ts +205 -0
package/tui/src/tools/BashTool/bashPermissions/subcommandGuards.ts +73 -0
package/tui/src/tools/BashTool/bashPermissions/subcommandResultHelpers.ts +116 -0
package/tui/src/tools/BashTool/bashPermissions/types.ts +26 -0
package/tui/src/tools/BashTool/bashPermissions/wrapperStripping.ts +139 -0
package/tui/src/tools/BashTool/bashPermissions.ts +26 -2621
package/tui/src/tools/BashTool/call.ts +202 -0
package/tui/src/tools/BashTool/callLoader.ts +35 -0
package/tui/src/tools/BashTool/commandClassification.ts +151 -0
package/tui/src/tools/BashTool/commandClassificationLoader.ts +40 -0
package/tui/src/tools/BashTool/cwdReset.ts +33 -0
package/tui/src/tools/BashTool/lineTruncation.ts +11 -0
package/tui/src/tools/BashTool/modeValidation.ts +13 -1
package/tui/src/tools/BashTool/outputPersistence.ts +42 -0
package/tui/src/tools/BashTool/permissionClassification.ts +66 -0
package/tui/src/tools/BashTool/permissionLoader.ts +44 -0
package/tui/src/tools/BashTool/resultLoader.ts +29 -0
package/tui/src/tools/BashTool/resultMapping.ts +83 -0
package/tui/src/tools/BashTool/sandboxPolicy.ts +79 -0
package/tui/src/tools/BashTool/schemas.ts +65 -0
package/tui/src/tools/BashTool/sedEditExecution.ts +59 -0
package/tui/src/tools/BashTool/shellExecution.tsx +245 -0
package/tui/src/tools/BashTool/shellOutputUtils.ts +85 -0
package/tui/src/tools/BashTool/shellPermissionGauntlet.ts +97 -0
package/tui/src/tools/BashTool/uiLoader.ts +37 -0
package/tui/src/tools/BriefTool/upload.ts +1 -1
package/tui/src/tools/CalculatorTool/parser.ts +2 -2
package/tui/src/tools/DocumentPrimitive/DocumentPrimitive.ts +262 -0
package/tui/src/tools/DocumentPrimitive/dispatchNormalization.ts +270 -0
package/tui/src/tools/DocumentPrimitive/documentDestinationPath.ts +18 -0
package/tui/src/tools/DocumentPrimitive/documentMutationGuard.ts +22 -0
package/tui/src/tools/DocumentPrimitive/documentPatchNormalization.ts +248 -0
package/tui/src/tools/DocumentPrimitive/documentSourceVerification.ts +245 -0
package/tui/src/tools/DocumentPrimitive/documentSourceVerificationFields.ts +103 -0
package/tui/src/tools/DocumentPrimitive/modelVisibleOutput.ts +40 -0
package/tui/src/tools/DocumentPrimitive/prompt.ts +35 -0
package/tui/src/tools/FileEditTool/FileEditTool.ts +9 -507
package/tui/src/tools/FileEditTool/call.ts +228 -0
package/tui/src/tools/FileEditTool/validateInput.ts +196 -0
package/tui/src/tools/FileReadTool/imageProcessor.ts +13 -0
package/tui/src/tools/FileWriteTool/FileWriteTool.ts +7 -300
package/tui/src/tools/FileWriteTool/call.ts +223 -0
package/tui/src/tools/FileWriteTool/validateInput.ts +80 -0
package/tui/src/tools/ListMcpResourcesTool/ListMcpResourcesTool.ts +19 -3
package/tui/src/tools/LookupPrimitive/LookupPrimitive.ts +25 -32
package/tui/src/tools/LookupPrimitive/prompt.ts +0 -2
package/tui/src/tools/MCPTool/trustPolicy.ts +118 -0
package/tui/src/tools/McpAuthTool/McpAuthTool.ts +21 -3
package/tui/src/tools/NotebookEditTool/NotebookEditTool.ts +7 -326
package/tui/src/tools/NotebookEditTool/call.ts +254 -0
package/tui/src/tools/NotebookEditTool/notebookModel.ts +51 -0
package/tui/src/tools/NotebookEditTool/validateInput.ts +142 -0
package/tui/src/tools/PowerShellTool/PowerShellTool.tsx +46 -937
package/tui/src/tools/PowerShellTool/acceptEditsCommandValidation.ts +162 -0
package/tui/src/tools/PowerShellTool/call.ts +179 -0
package/tui/src/tools/PowerShellTool/callLoader.ts +37 -0
package/tui/src/tools/PowerShellTool/commandClassification.ts +86 -0
package/tui/src/tools/PowerShellTool/modeValidation.ts +25 -332
package/tui/src/tools/PowerShellTool/outputPersistence.ts +42 -0
package/tui/src/tools/PowerShellTool/permissionClassification.ts +28 -0
package/tui/src/tools/PowerShellTool/resultLoader.ts +31 -0
package/tui/src/tools/PowerShellTool/resultMapping.ts +75 -0
package/tui/src/tools/PowerShellTool/schemas.ts +40 -0
package/tui/src/tools/PowerShellTool/shellExecution.tsx +258 -0
package/tui/src/tools/PowerShellTool/symlinkModeValidation.ts +44 -0
package/tui/src/tools/PowerShellTool/uiLoader.ts +37 -0
package/tui/src/tools/PowerShellTool/validation.ts +39 -0
package/tui/src/tools/ReadMcpResourceTool/ReadMcpResourceTool.ts +19 -3
package/tui/src/tools/ResolveLocationPrimitive/ResolveLocationPrimitive.ts +1 -11
package/tui/src/tools/ResolveLocationPrimitive/prompt.ts +2 -6
package/tui/src/tools/SkillTool/SkillTool.ts +2 -2
package/tui/src/tools/SubmitPrimitive/SubmitPrimitive.ts +27 -10
package/tui/src/tools/TaskCreateTool/TaskCreateTool.ts +16 -2
package/tui/src/tools/TaskGetTool/TaskGetTool.ts +23 -3
package/tui/src/tools/TaskListTool/TaskListTool.ts +22 -4
package/tui/src/tools/TaskOutputTool/TaskOutputTool.tsx +46 -547
package/tui/src/tools/TaskOutputTool/lookup.ts +216 -0
package/tui/src/tools/TaskOutputTool/render.tsx +257 -0
package/tui/src/tools/TaskOutputTool/schemas.ts +55 -0
package/tui/src/tools/TaskOutputTool/serialization.ts +36 -0
package/tui/src/tools/TaskStopTool/TaskStopTool.ts +10 -0
package/tui/src/tools/TaskUpdateTool/TaskUpdateTool.ts +14 -364
package/tui/src/tools/TaskUpdateTool/completion.ts +62 -0
package/tui/src/tools/TaskUpdateTool/schemas.ts +62 -0
package/tui/src/tools/TaskUpdateTool/serialization.ts +46 -0
package/tui/src/tools/TaskUpdateTool/statusUpdate.ts +247 -0
package/tui/src/tools/TodoWriteTool/TodoWriteTool.ts +21 -2
package/tui/src/tools/ToolSearchTool/ToolSearchTool.ts +21 -302
package/tui/src/tools/ToolSearchTool/ccSupportTools.ts +223 -0
package/tui/src/tools/ToolSearchTool/descriptionCache.ts +50 -0
package/tui/src/tools/ToolSearchTool/keywordSearch.ts +216 -0
package/tui/src/tools/ToolSearchTool/prompt.ts +10 -4
package/tui/src/tools/ToolSearchTool/resultMapping.ts +30 -0
package/tui/src/tools/ToolSearchTool/schemas.ts +30 -0
package/tui/src/tools/ToolSearchTool/searchPool.ts +47 -0
package/tui/src/tools/ToolSearchTool/supportIntentHints.ts +140 -0
package/tui/src/tools/TranslateTool/TranslateTool.ts +1 -1
package/tui/src/tools/VerifyPrimitive/VerifyPrimitive.ts +2 -1
package/tui/src/tools/WebFetchTool/WebFetchTool.ts +43 -138
package/tui/src/tools/WebFetchTool/call.ts +227 -0
package/tui/src/tools/WebFetchTool/resolvedAddressSafety.ts +78 -0
package/tui/src/tools/WebFetchTool/sourceVerification.ts +204 -0
package/tui/src/tools/WebFetchTool/types.ts +23 -0
package/tui/src/tools/WebFetchTool/urlSafety.ts +181 -0
package/tui/src/tools/WebFetchTool/utils.ts +1 -1
package/tui/src/tools/WebSearchTool/UI.tsx +0 -1
package/tui/src/tools/WebSearchTool/WebSearchTool.ts +9 -313
package/tui/src/tools/WebSearchTool/call.ts +33 -0
package/tui/src/tools/WebSearchTool/responseMapping.ts +190 -0
package/tui/src/tools/WebSearchTool/resultBlock.ts +47 -0
package/tui/src/tools/WebSearchTool/schemas.ts +47 -0
package/tui/src/tools/WebSearchTool/toolSchema.ts +12 -0
package/tui/src/tools/WorkspaceToolAdapter/WorkspaceToolAdapter.ts +79 -0
package/tui/src/tools/WorkspaceToolAdapter/allowedRootPolicy.ts +85 -0
package/tui/src/tools/WorkspaceToolAdapter/documentFormatGuards.ts +73 -0
package/tui/src/tools/WorkspaceToolAdapter/inputNormalization.ts +105 -0
package/tui/src/tools/WorkspaceToolAdapter/mcpExposurePolicy.ts +64 -0
package/tui/src/tools/WorkspaceToolAdapter/toolDefFactory.ts +215 -0
package/tui/src/tools/WorkspaceToolAdapter/toolNames.ts +6 -0
package/tui/src/tools/WorkspaceToolAdapter/workspacePolicy.ts +15 -0
package/tui/src/tools/_shared/dispatchPrimitive.ts +6 -6
package/tui/src/tools/_shared/documentChangeToPatch.ts +125 -0
package/tui/src/tools/_shared/documentDispatchArguments.ts +87 -0
package/tui/src/tools/_shared/documentPrimitiveTimeout.ts +13 -0
package/tui/src/tools/_shared/documentToolResultRender.ts +98 -0
package/tui/src/tools/_shared/pendingCallRegistry.ts +1 -6
package/tui/src/tools/_shared/rootPrimitiveInput.ts +1 -0
package/tui/src/tools/_shared/toolChoiceRepair/documentCompletionPatterns.ts +58 -0
package/tui/src/tools/_shared/toolChoiceRepair/documentCompletionPrompt.ts +271 -0
package/tui/src/tools/_shared/toolChoiceRepair/documentRepair.ts +452 -0
package/tui/src/tools/_shared/toolChoiceRepair/messageAccess.ts +80 -0
package/tui/src/tools/_shared/toolChoiceRepair/publicDataRepair.ts +92 -0
package/tui/src/tools/_shared/toolChoiceRepair/supportRepair.ts +135 -0
package/tui/src/tools/_shared/toolChoiceRepair.ts +55 -860
package/tui/src/tools/shared/mockDisclaimer.ts +1 -1
package/tui/src/tools.ts +39 -190
package/tui/src/types/fileSuggestion.ts +4 -26
package/tui/src/types/generated/events_mono/claude_code/v1/claude_code_internal_event.ts +186 -148
package/tui/src/types/generated/events_mono/common/v1/auth.ts +25 -11
package/tui/src/types/generated/events_mono/growthbook/v1/growthbook_experiment_event.ts +47 -30
package/tui/src/types/generated/google/protobuf/timestamp.ts +21 -7
package/tui/src/types/message.ts +80 -102
package/tui/src/types/messageQueueTypes.ts +6 -28
package/tui/src/types/notebook.ts +16 -38
package/tui/src/types/statusLine.ts +4 -26
package/tui/src/types/tools.ts +24 -46
package/tui/src/types/utils.ts +6 -28
package/tui/src/upstreamproxy/relay.ts +7 -3
package/tui/src/upstreamproxy/upstreamproxy.ts +1 -1
package/tui/src/utils/assistantMessageFactories.ts +9 -3
package/tui/src/utils/auth.ts +129 -139
package/tui/src/utils/bash/ast.ts +23 -23
package/tui/src/utils/bash/bashParser.ts +5 -5
package/tui/src/utils/billing.ts +1 -1
package/tui/src/utils/collapseReadSearch.ts +3 -3
package/tui/src/utils/cronTasks.ts +1 -1
package/tui/src/utils/execFileNoThrow.ts +1 -1
package/tui/src/utils/filePersistence/types.ts +16 -38
package/tui/src/utils/forkedAgent.ts +1 -1
package/tui/src/utils/gracefulShutdown.ts +4 -4
package/tui/src/utils/heapDumpService.ts +12 -8
package/tui/src/utils/hooks/apiQueryHookHelper.ts +1 -1
package/tui/src/utils/hooks/execPromptHook.ts +1 -1
package/tui/src/utils/hooks/skillImprovement.ts +1 -1
package/tui/src/utils/mcp/dateTimeParser.ts +1 -1
package/tui/src/utils/messages.ts +18 -0
package/tui/src/utils/migrateSessions.ts +3 -3
package/tui/src/utils/model/model.ts +6 -6
package/tui/src/utils/permissions/yoloClassifier.ts +1 -1
package/tui/src/utils/plugins/headlessPluginInstall.ts +1 -1
package/tui/src/utils/plugins/mcpPluginIntegration.ts +1 -1
package/tui/src/utils/plugins/mcpbHandler.ts +1 -1
package/tui/src/utils/plugins/pluginLoader.ts +8 -8
package/tui/src/utils/protectedNamespace.ts +5 -3
package/tui/src/utils/rawJsonToolCall.ts +242 -0
package/tui/src/utils/ripgrep.ts +16 -7
package/tui/src/utils/sessionTitle.ts +1 -1
package/tui/src/utils/settings/permissionValidation.ts +14 -2
package/tui/src/utils/shell/prefix.ts +1 -1
package/tui/src/utils/sideQuery.ts +1 -1
package/tui/src/utils/systemThemeWatcher.ts +13 -3
package/tui/src/utils/teleport.tsx +1 -1
package/uv.lock +400 -14
package/tui/src/services/api/claude.ts +0 -3540
package/tui/src/tools/_shared/directPublicDataGuard.ts +0 -362
package/tui/src/tools/_shared/kmaAnalysisGuard.ts +0 -197
package/tui/src/tools/_shared/kmaAviationGuard.ts +0 -70
package/tui/src/tools/_shared/nmcAedGuard.ts +0 -234
package/tui/src/tools/_shared/protectedCheckGuard.ts +0 -207
package/tui/src/tools/_shared/textToolCallGuard.ts +0 -91

package/src/ummaya/evidence/runner.py CHANGED Viewed

@@ -9,211 +9,36 @@ service channels, LLM providers, or observability backends.
 from __future__ import annotations
 import argparse
-from collections.abc import Mapping, Sequence
+import json
 from pathlib import Path
-from typing import Literal, cast
-import yaml
-from pydantic import BaseModel, ConfigDict, Field, ValidationError
-from ummaya.evidence.models import EvidenceGate, RunEvidence
-from ummaya.evidence.task_registry import EvidenceDatasetRef, load_task_registry
-_REPO_ROOT = Path(__file__).resolve().parents[3]
-_DEFAULT_SCENARIO_PATH = _REPO_ROOT / "evidence/scenarios/national_ax_citizen_requests_v1.yaml"
-_DEFAULT_TASK_REGISTRY_PATH = _REPO_ROOT / "evidence/registry.yaml"
-_DEFAULT_DATASET_REF = "ummaya/national-ax-core@local"
-_BANNED_MODEL_VISIBLE_KEYS = frozenset(
-    {
-        "adapter_id",
-        "tool_id",
-        "expected_tool_id",
-        "fixture_refs",
-        "fixture_ref",
-        "current_adapter_id",
-    }
+from ummaya.evidence.dataset_contract import (
+    DEFAULT_DATASET_REF,
+    DEFAULT_SCENARIO_PATH,
+    DEFAULT_TASK_REGISTRY_PATH,
+    EvidenceContractError,
+    resolve_repo_path,
 )
-_REQUIRED_DOMAINS = frozenset(
-    {
-        "tax",
-        "civil_affairs",
-        "payments",
-        "utilities",
-        "identity",
-        "welfare",
-        "healthcare",
-        "housing",
-        "mobility",
-        "business",
-        "labor",
-        "education",
-        "safety",
-        "immigration",
-        "legal",
-        "personal_data",
-    }
+from ummaya.evidence.dataset_contract import (
+    parse_dataset as _parse_dataset,
 )
-class EvidenceContractError(ValueError):
-    """Raised when a scenario dataset violates the Evidence Fabric contract."""
-class ExpectedStep(BaseModel):
-    """One expected public-service loop step in a scenario."""
-    model_config = ConfigDict(frozen=True, extra="forbid")
-    primitive: str
-    purpose: str
-class PermissionRequirements(BaseModel):
-    """Permission requirements attached to a citizen scenario."""
-    model_config = ConfigDict(frozen=True, extra="allow")
-    identity_assurance: str
-    user_confirmations: tuple[str, ...] = Field(default_factory=tuple)
-    sensitive_data: tuple[str, ...] = Field(default_factory=tuple)
-class Scenario(BaseModel):
-    """Minimum scenario shape needed by Evidence Fabric v2."""
-    model_config = ConfigDict(frozen=True, extra="allow")
-    id: str
-    priority: str = "P2"
-    lifecycle_domain: str
-    request_ko: str
-    expected_ax_chain: tuple[ExpectedStep, ...]
-    permission_requirements: PermissionRequirements
-class ScenarioDataset(BaseModel):
-    """Versioned citizen-demand scenario dataset."""
-    model_config = ConfigDict(frozen=True, extra="allow")
-    version: int
-    dataset_id: str
-    coverage_domains: tuple[str, ...]
-    scenarios: tuple[Scenario, ...]
-def _load_yaml_mapping(path: Path) -> Mapping[str, object]:
-    if not path.exists():
-        raise EvidenceContractError(f"scenario dataset not found: {path}")
-    loaded = yaml.safe_load(path.read_text(encoding="utf-8"))
-    if not isinstance(loaded, Mapping):
-        raise EvidenceContractError(f"scenario dataset must be a mapping: {path}")
-    return cast(Mapping[str, object], loaded)
-def _find_banned_keys(value: object, path: str = "$") -> tuple[str, ...]:
-    if isinstance(value, Mapping):
-        hits: list[str] = []
-        for key, nested in value.items():
-            key_text = str(key)
-            nested_path = f"{path}.{key_text}"
-            if key_text in _BANNED_MODEL_VISIBLE_KEYS:
-                hits.append(nested_path)
-            hits.extend(_find_banned_keys(nested, nested_path))
-        return tuple(hits)
-    if isinstance(value, Sequence) and not isinstance(value, str | bytes | bytearray):
-        hits = []
-        for index, nested in enumerate(value):
-            hits.extend(_find_banned_keys(nested, f"{path}[{index}]"))
-        return tuple(hits)
-    return ()
-def _parse_dataset(path: Path) -> ScenarioDataset:
-    raw = _load_yaml_mapping(path)
-    banned = _find_banned_keys(raw)
-    if banned:
-        raise EvidenceContractError(
-            "model-visible scenario dataset contains banned implementation keys: "
-            + ", ".join(banned)
-        )
-    try:
-        return ScenarioDataset.model_validate(raw)
-    except ValidationError as exc:
-        raise EvidenceContractError(str(exc)) from exc
-def _gate(
-    name: Literal["contract", "scenario", "observability", "adversarial", "ux", "live_canary"],
-    status: Literal["pass", "fail", "skip"],
-    summary: str,
-    check_ids: tuple[str, ...],
-) -> EvidenceGate:
-    return EvidenceGate(name=name, status=status, summary=summary, check_ids=check_ids)
-def _build_gates(dataset: ScenarioDataset) -> tuple[EvidenceGate, ...]:
-    covered_domains = set(dataset.coverage_domains)
-    missing_domains = tuple(sorted(_REQUIRED_DOMAINS - covered_domains))
-    scenario_domains = {scenario.lifecycle_domain for scenario in dataset.scenarios}
-    uncovered_scenario_domains = tuple(sorted(scenario_domains - covered_domains))
-    scenario_status: Literal["pass", "fail"] = (
-        "pass" if not missing_domains and not uncovered_scenario_domains else "fail"
-    )
-    scenario_summary = (
-        "all required citizen infrastructure domains are covered"
-        if scenario_status == "pass"
-        else "missing coverage: " + ", ".join(missing_domains + uncovered_scenario_domains)
-    )
-    return (
-        _gate(
-            "contract",
-            "pass",
-            "dataset is versioned, typed, and free of model-visible implementation keys",
-            ("dataset-schema", "task-registry", "no-adapter-leakage"),
-        ),
-        _gate(
-            "scenario",
-            scenario_status,
-            scenario_summary,
-            ("coverage-domains", "scenario-shape"),
-        ),
-        _gate(
-            "observability",
-            "pass",
-            "RunEvidence carries trace join keys for OTEL/Langfuse correlation",
-            ("trace-join-keys",),
-        ),
-        _gate(
-            "adversarial",
-            "pass",
-            "adapter IDs, fixture references, and expected tool IDs are rejected before scoring",
-            ("reward-hack-surface", "hidden-implementation-leakage"),
-        ),
-        _gate(
-            "ux",
-            "skip",
-            "UX frame artifacts are attached by interactive runners, not by dataset validation",
-            ("ux-artifact-slot",),
-        ),
-        _gate(
-            "live_canary",
-            "skip",
-            "live public-service checks are manual-only and excluded from CI",
-            ("no-live-ci",),
-        ),
-    )
-def _resolve_repo_path(path: Path) -> Path:
-    return path if path.is_absolute() else _REPO_ROOT / path
+from ummaya.evidence.document_viewer_ux import DocumentViewerUxArtifact
+from ummaya.evidence.gates import build_gates
+from ummaya.evidence.models import RunEvidence
+from ummaya.evidence.output_payload import build_evidence_output_payload
+from ummaya.evidence.route_contracts import (
+    route_selection_assertions as _route_selection_assertions,
+)
+from ummaya.evidence.route_contracts import (
+    route_trace_records as _route_trace_records,
+)
+from ummaya.evidence.task_registry import EvidenceDatasetRef, load_task_registry
+from ummaya.evidence.tool_layer import build_tool_layer_events
 def _resolve_task_dataset(
     *,
-    dataset: ScenarioDataset,
+    dataset_id: str,
     scenario_path: Path,
     task_registry_path: Path | None,
     dataset_ref: str,
@@ -222,12 +47,12 @@ def _resolve_task_dataset(
         return None, None
     registry = load_task_registry(task_registry_path)
     task_dataset = registry.resolve_dataset(dataset_ref)
-    if task_dataset.dataset_id != dataset.dataset_id:
+    if task_dataset.dataset_id != dataset_id:
         raise EvidenceContractError(
             f"task registry dataset_id {task_dataset.dataset_id!r} does not match "
-            f"scenario dataset_id {dataset.dataset_id!r}"
+            f"scenario dataset_id {dataset_id!r}"
         )
-    if _resolve_repo_path(task_dataset.scenario_path) != _resolve_repo_path(scenario_path):
+    if resolve_repo_path(task_dataset.scenario_path) != resolve_repo_path(scenario_path):
         raise EvidenceContractError(
             f"task registry scenario_path {task_dataset.scenario_path} does not match "
             f"run scenario_path {scenario_path}"
@@ -237,20 +62,21 @@ def _resolve_task_dataset(
 def run_dataset(
     *,
-    scenario_path: Path = _DEFAULT_SCENARIO_PATH,
+    scenario_path: Path = DEFAULT_SCENARIO_PATH,
     source_ref: str = "local",
-    task_registry_path: Path | None = _DEFAULT_TASK_REGISTRY_PATH,
-    dataset_ref: str = _DEFAULT_DATASET_REF,
+    task_registry_path: Path | None = DEFAULT_TASK_REGISTRY_PATH,
+    dataset_ref: str = DEFAULT_DATASET_REF,
 ) -> RunEvidence:
     """Validate a scenario dataset and return a typed evidence document."""
     dataset = _parse_dataset(scenario_path)
     task_registry_id, task_dataset = _resolve_task_dataset(
-        dataset=dataset,
+        dataset_id=dataset.dataset_id,
         scenario_path=scenario_path,
         task_registry_path=task_registry_path,
         dataset_ref=dataset_ref,
     )
+    traces = _route_trace_records(dataset)
     return RunEvidence(
         source_ref=source_ref,
         dataset_id=dataset.dataset_id,
@@ -260,7 +86,10 @@ def run_dataset(
         task_ids=tuple(task.task_id for task in task_dataset.tasks) if task_dataset else (),
         scenario_count=len(dataset.scenarios),
         scenario_ids=tuple(scenario.id for scenario in dataset.scenarios),
-        gates=_build_gates(dataset),
+        route_trace_records=traces,
+        route_selection_assertions=_route_selection_assertions(dataset, traces),
+        tool_layer_events=build_tool_layer_events(traces),
+        gates=build_gates(dataset),
     )
@@ -271,7 +100,7 @@ def main() -> None:
     parser.add_argument(
         "--scenarios",
         type=Path,
-        default=_DEFAULT_SCENARIO_PATH,
+        default=DEFAULT_SCENARIO_PATH,
         help="Path to the Evidence Fabric scenario dataset.",
     )
     parser.add_argument(
@@ -282,19 +111,39 @@ def main() -> None:
     parser.add_argument(
         "--task-registry",
         type=Path,
-        default=_DEFAULT_TASK_REGISTRY_PATH,
+        default=DEFAULT_TASK_REGISTRY_PATH,
         help="Path to the Harbor-style Evidence Fabric task registry.",
     )
     parser.add_argument(
         "--dataset-ref",
-        default=_DEFAULT_DATASET_REF,
+        default=DEFAULT_DATASET_REF,
         help="Harbor-style dataset ref to resolve from the task registry.",
     )
     parser.add_argument(
-        "--out",
+        "--out", type=Path, default=Path(".evidence/run.json"), help="Output JSON path."
+    )
+    parser.add_argument(
+        "--document-viewer-html",
         type=Path,
-        default=Path(".evidence/run.json"),
-        help="Output JSON path.",
+        action="append",
+        default=None,
+        help="Local document viewer HTML path to capture as a Playwright UX artifact.",
+    )
+    parser.add_argument(
+        "--document-viewer-ux-out-dir",
+        type=Path,
+        default=None,
+        help="Directory for Playwright document viewer PNG artifacts.",
+    )
+    parser.add_argument(
+        "--document-viewer-correlation-id",
+        default=None,
+        help="Correlation ID to attach when the viewer manifest does not carry one.",
+    )
+    parser.add_argument(
+        "--document-viewer-diff-id",
+        default=None,
+        help="Document diff ID to attach when the viewer manifest does not carry one.",
     )
     args = parser.parse_args()
@@ -305,4 +154,24 @@ def main() -> None:
         dataset_ref=args.dataset_ref,
     )
     args.out.parent.mkdir(parents=True, exist_ok=True)
-    args.out.write_text(evidence.model_dump_json(indent=2), encoding="utf-8")
+    ux_out_dir = args.document_viewer_ux_out_dir or args.out.parent / "ux-artifacts"
+    document_viewer_ux_artifacts: list[DocumentViewerUxArtifact] = []
+    document_viewer_html_paths = tuple(args.document_viewer_html or ())
+    if document_viewer_html_paths:
+        from ummaya.evidence.document_viewer_ux import capture_document_viewer_ux_artifact
+        for viewer_html_path in document_viewer_html_paths:
+            document_viewer_ux_artifacts.append(
+                capture_document_viewer_ux_artifact(
+                    viewer_html_path=viewer_html_path,
+                    output_dir=ux_out_dir,
+                    source_ref=args.source_ref,
+                    correlation_id=args.document_viewer_correlation_id,
+                    document_diff_id=args.document_viewer_diff_id,
+                )
+            )
+    payload = build_evidence_output_payload(
+        evidence,
+        document_viewer_ux_artifacts=tuple(document_viewer_ux_artifacts),
+    )
+    args.out.write_text(json.dumps(payload, ensure_ascii=False, indent=2), encoding="utf-8")

package/src/ummaya/evidence/source_provenance.py ADDED Viewed

@@ -0,0 +1,246 @@
+# SPDX-License-Identifier: Apache-2.0
+from __future__ import annotations
+from datetime import datetime
+from typing import Literal, Self
+from pydantic import BaseModel, ConfigDict, Field, field_validator, model_validator
+from pydantic_core import PydanticCustomError
+from ummaya.evidence.source_provenance_redaction import (
+    PromptInjectionState,
+    RedactionCategory,
+    detect_prompt_injection,
+    ordered_redaction_categories,
+    redact_source_text,
+    redact_source_url,
+    redaction_categories_for_text,
+)
+from ummaya.tools.routing.schema import sha256, unique
+SourceKind = Literal["web", "mcp", "agent", "file"]
+SourceUseState = Literal["used", "blocked"]
+SourceTrust = Literal["trusted", "untrusted"]
+SynthesisState = Literal[
+    "eligible_for_synthesis",
+    "blocked_pending_user_approval",
+    "blocked_untrusted",
+    "blocked_missing_source",
+]
+DocumentAuthoringState = Literal[
+    "approved_for_document",
+    "blocked_pending_user_approval",
+    "blocked_untrusted",
+    "blocked_missing_source",
+]
+class SourceRedactionMetadata(BaseModel):
+    model_config = ConfigDict(frozen=True, extra="forbid")
+    redacted: bool
+    categories: tuple[RedactionCategory, ...] = Field(default_factory=tuple)
+    raw_private_document_stored: Literal[False] = False
+    secret_values_stored: Literal[False] = False
+    pii_values_stored: Literal[False] = False
+    @model_validator(mode="after")
+    def _categories_match_redacted_flag(self) -> Self:
+        if self.redacted and not self.categories:
+            raise PydanticCustomError(
+                "source_provenance_missing_redaction_categories",
+                "redacted provenance requires redaction categories",
+            )
+        if not self.redacted and self.categories:
+            raise PydanticCustomError(
+                "source_provenance_unexpected_redaction_categories",
+                "unredacted provenance cannot carry redaction categories",
+            )
+        return self
+class SourceProvenanceRecord(BaseModel):
+    model_config = ConfigDict(frozen=True, extra="forbid")
+    source_kind: SourceKind
+    source_url: str | None
+    local_evidence_handle: str | None
+    title: str | None
+    description: str | None
+    tool_id: str = Field(min_length=1)
+    observed_at: datetime
+    state: SourceUseState
+    citation_id: str = Field(min_length=1)
+    provenance_id: str = Field(min_length=1)
+    trust: SourceTrust
+    prompt_injection: PromptInjectionState = "not_detected"
+    redaction: SourceRedactionMetadata
+    @field_validator(
+        "source_url",
+        "local_evidence_handle",
+        "title",
+        "description",
+        "tool_id",
+        "citation_id",
+        "provenance_id",
+    )
+    @classmethod
+    def _reject_unredacted_sensitive_value(cls, value: str | None) -> str | None:
+        if value is not None and redaction_categories_for_text(value):
+            raise PydanticCustomError(
+                "source_provenance_unredacted_sensitive_value",
+                "source provenance contains unredacted sensitive value",
+            )
+        return value
+    @model_validator(mode="after")
+    def _requires_source_handle_and_label(self) -> Self:
+        if self.source_url is None and self.local_evidence_handle is None:
+            raise PydanticCustomError(
+                "source_provenance_missing_source",
+                "source provenance requires source_url or local_evidence_handle",
+            )
+        if self.title is None and self.description is None:
+            raise PydanticCustomError(
+                "source_provenance_missing_label",
+                "source provenance requires title or description when available",
+            )
+        return self
+class SourceProvenanceDecision(BaseModel):
+    model_config = ConfigDict(frozen=True, extra="forbid")
+    decision_id: str = Field(min_length=1)
+    provenance_ids: tuple[str, ...] = Field(min_length=1)
+    synthesis_state: SynthesisState
+    document_authoring_state: DocumentAuthoringState
+    requires_user_approval: bool
+    approved_by_user: bool
+    rationale: str = Field(min_length=1)
+    @model_validator(mode="after")
+    def _document_approval_requires_user_approval(self) -> Self:
+        if self.document_authoring_state == "approved_for_document" and (
+            self.requires_user_approval or not self.approved_by_user
+        ):
+            raise PydanticCustomError(
+                "source_provenance_document_approval_missing_user_approval",
+                "approved document authoring requires completed user approval",
+            )
+        return self
+class SourceProvenanceLedger(BaseModel):
+    model_config = ConfigDict(frozen=True, extra="forbid")
+    schema_version: Literal["source_provenance_ledger.v1"] = "source_provenance_ledger.v1"
+    ledger_id: str = Field(min_length=1)
+    records: tuple[SourceProvenanceRecord, ...] = Field(min_length=1)
+    decisions: tuple[SourceProvenanceDecision, ...] = Field(default_factory=tuple)
+    @model_validator(mode="after")
+    def _decisions_reference_known_provenance_ids(self) -> Self:
+        known_ids = {record.provenance_id for record in self.records}
+        if len(known_ids) != len(self.records):
+            raise PydanticCustomError(
+                "source_provenance_duplicate_ids",
+                "source provenance ledger contains duplicate provenance ids",
+            )
+        unknown_ids = tuple(
+            unique(
+                provenance_id
+                for decision in self.decisions
+                for provenance_id in decision.provenance_ids
+                if provenance_id not in known_ids
+            )
+        )
+        if unknown_ids:
+            raise PydanticCustomError(
+                "source_provenance_unknown_ids",
+                "unknown provenance ids: " + ", ".join(unknown_ids),
+            )
+        return self
+def build_source_provenance_record(
+    *,
+    source_kind: SourceKind,
+    tool_id: str,
+    source_url: str | None,
+    local_evidence_handle: str | None,
+    title: str | None,
+    description: str | None,
+    observed_at: datetime,
+    state: SourceUseState,
+    trust: SourceTrust,
+    citation_id: str,
+) -> SourceProvenanceRecord:
+    redacted_url, url_categories = redact_source_url(source_url)
+    redacted_handle, handle_categories = redact_source_text(local_evidence_handle)
+    redacted_title, title_categories = redact_source_text(title)
+    redacted_description, description_categories = redact_source_text(description)
+    categories = ordered_redaction_categories(
+        (
+            *url_categories,
+            *handle_categories,
+            *title_categories,
+            *description_categories,
+        )
+    )
+    prompt_injection_text_parts = (
+        title or "",
+        description or "",
+        source_url or "",
+        local_evidence_handle or "",
+    )
+    return SourceProvenanceRecord(
+        source_kind=source_kind,
+        source_url=redacted_url,
+        local_evidence_handle=redacted_handle,
+        title=redacted_title,
+        description=redacted_description,
+        tool_id=tool_id,
+        observed_at=observed_at,
+        state=state,
+        citation_id=citation_id,
+        provenance_id=stable_source_provenance_id(
+            source_kind=source_kind,
+            tool_id=tool_id,
+            source_url=redacted_url,
+            local_evidence_handle=redacted_handle,
+            citation_id=citation_id,
+        ),
+        trust=trust,
+        prompt_injection=detect_prompt_injection(
+            "\n".join(part for part in prompt_injection_text_parts if part)
+        ),
+        redaction=SourceRedactionMetadata(
+            redacted=bool(categories),
+            categories=categories,
+            raw_private_document_stored=False,
+            secret_values_stored=False,
+            pii_values_stored=False,
+        ),
+    )
+def stable_source_provenance_id(
+    *,
+    source_kind: SourceKind,
+    tool_id: str,
+    source_url: str | None,
+    local_evidence_handle: str | None,
+    citation_id: str,
+) -> str:
+    digest = sha256(
+        {
+            "citation_id": citation_id,
+            "local_evidence_handle": local_evidence_handle,
+            "source_kind": source_kind,
+            "source_url": source_url,
+            "tool_id": tool_id,
+        }
+    )
+    return f"prov-{digest[:24]}"