xitto-kernel 0.8.4 → 0.9.2

package/CHANGELOG.md

@@ -1,5 +1,42 @@
 # Changelog
 
+## 0.9.2
+
+- **修：報告顯示完成但找不到真實檔案**（成品寫到工作區外）。從執行歷史查出:某任務 workspace=`/Users/…/Xiza`（本地就地）,但 agent 把報告 `write` 到 `/tmp/…`、`/app/…`（絕對路徑,工作區外）→ 成品掃描只看工作區 → `artifacts:{created:[]}`,但 summary 說完成 → 使用者看到「有報告」卻找不到檔。兩道修法:
+  - **告知工作目錄**：system prompt 明確寫出 cwd +「請用相對路徑寫在此目錄內,不要寫到 /tmp、/app 等外面」（agent 原本不知道工作目錄在哪,只能亂猜）
+  - **寫檔限制在工作區內**：general/coding/fs-tools 的 `write`/`edit` confine 到 cwd,逃逸（絕對路徑外/`../`）直接擋下並回錯誤；讀檔不限制
+  - 4 個新測試（相對 OK/絕對逃逸擋/`..` 擋/`/app` 擋）+ 真實 model 端到端（report.md 落在工作區內、artifacts 正確）。測試 192/192
+
+## 0.9.1
+
+- **修：任務一直迴圈無法結束**。從持久化的執行歷史分析出:某任務(查 2026 世界盃淘汰賽賽程——資訊不存在)35 步 6 輪、web_search×11 + web_fetch×23 不停繞圈,因為查不到、驗收一直判未達成、agent 每輪都有動作所以「無進展」偵測不到 → 跑到上限/被手動取消。三道防護:
+  - **目標迴圈**：驗收回饋連續重複(agent 在繞圈、沒朝驗收要求收斂)→ 連 2 次相同就停(stalled),不再因「有動作」而空轉到上限
+  - **agent loop 硬上限**：單回合工具呼叫達 `maxSteps`(80) → 注入「別再用工具,用現有資訊作結」逼它收尾(修 `while(true)` 無上限的潛在無限迴圈)
+  - **server**：goal 任務 `maxRounds` 由 12 降到 8(許願台 fire-and-forget,不宜跑太久)
+  - 1 個新測試(不可達成目標在 ≤4 輪內停止,非跑到上限)。測試 190/190
+
+## 0.9.0
+
+- **許願台改單頁佈局（移除分頁，許願與工作台同頁呈現）**：原本「許願 | 工作台」要切分頁。改成一頁看全部:
+  - **頂部** = 許願輸入；**左欄** = 歷史成品 + 📂 檔案瀏覽器（各自獨立內捲,都到得了底）；**主區** = 當前任務/進度/成品 + 檔案預覽（共用一個 #fview）
+  - 點任一檔（成品檔 或 工作區檔）都在**同一個主區預覽**；檔案瀏覽器逐層導航
+  - 任務完成自動刷新左欄檔案列；切換空間/新專案/選資料夾都同步刷新歷史+檔案
+  - 移除 tab 切換邏輯與多餘 DOM；交辦、看歷史、瀏覽檔案、預覽全在一頁,不再跳來跳去
+  - 純前端重構；測試 189/189 + 內嵌 JS 語法檢查 + 服務頁面結構驗證（.layout/.nav/.work/#fview、無 tabs、div 平衡）
+
+## 0.8.6
+
+- **修：工作台預覽開啟時目錄捲不動**。`.wbleft`(檔案列) 是 `position:sticky`,清單比視窗高時 top 被釘在 14px、底部就到不了（sticky 陷阱,預覽讓整列變高時浮現）。改成側欄/檔案列/預覽**各自獨立內捲**（`max-height:calc(100vh - 28px) + overflow:auto`）,不再靠頁面捲動；窄螢幕(<=860px)回到單欄、取消內捲。測試 189/189。
+
+## 0.8.5
+
+- **許願台重啟後歷史還在（持久化）**：原本任務清單與對話 session 都是 in-memory,重啟全沒。改成落地:
+  - **任務清單** → `.xitto-server/tasks/<id>.json`（每任務一檔,狀態變更時覆寫）,啟動載回 → **歷史成品重啟後自動顯示**
+  - **對話 session** → `.xitto-server/sessions/<id>.json`,啟動載回 → **重啟後仍能「繼續/調整」**（對話脈絡跨重啟）
+  - **重啟收尾**：載入時還停在 `running`/`queued`/`needs-input` 的（agent 已隨進程消失）標 `interrupted`「已中斷(重啟)」
+  - 對標 Claude Code「對話自動落地」；但許願台是**自動顯示歷史**(成品清單),非明確 `--resume`(它是 chat,單位不同)
+  - 1 個新測試（落地/載回/interrupted）+ 真實端到端：跑任務→重啟(新 server 同 baseDir)→歷史顯示 + 接續對話寫出「重啟前只在對話講過的偏好 42」。測試 189/189
+
 ## 0.8.4
 
 - **桌面雙欄佈局（善用寬螢幕）**：原本單條 760px 窄欄、左右大量留白。改用 CSS grid 雙欄：

package/README.md

@@ -110,14 +110,14 @@ npm run serve:local                        # = LOCAL=1 SANDBOX=off,token 預設
 - **繼續／調整(迭代有脈絡)**:成品上有「↳ 繼續／調整這個成果」——打一句想改什麼/想深入什麼,送出一個**後續任務**,**接續這次的對話(sessionId)+ 同工作區**。agent 同時有「檔案 + 當時的討論與理由」,不只是檔案。預設每個許願是乾淨新對話(不暴脹),按「繼續」才接續那條線(像 ChatGPT 開新對話 vs 接著聊)。歷史以 `↳` 標出接續鏈
 - **歷史成品**:過往交辦的清單(願望 + 狀態),不是聊天串
 
-**桌面雙欄佈局**:許願頁=主區(許願+當前任務/成品)+ 歷史 sticky 側欄;工作台=檔案瀏覽器左、預覽右並排。容器 1180px,窄螢幕自動收單欄。
-
-**工作台分頁(看見並管理你的工作區)**:許願台頂部有「許願 | 📂 工作台」分頁(同頁切換,不是另開頁面)。**許願**=交辦任務的主流程;**工作台**=**逐層瀏覽**當前專案的檔案(像檔案總管:只列當前目錄的子資料夾+檔案,點資料夾才進去,不一次遞迴攤平),看/下載/刪。單一任務用許願就夠;做專案的人切到工作台看「我累積了什麼、拿任意檔、清理」——讓持久工作空間從隱形變成可見可管理。刻意保持輕量(檔案清單,不是 IDE)。
+**單頁佈局(無分頁,一眼看全部)**:頂部**許願輸入** + 左欄(**歷史成品** + **📂 檔案瀏覽器**,各自內捲)+ 主區(**當前任務/進度/成品/檔案預覽**共用)。不用切分頁——交辦任務、看歷史、瀏覽工作區檔案、預覽內容都在同一頁。檔案瀏覽器**逐層導航**(像檔案總管,不一次遞迴攤平),點任一檔(成品或工作區)都在主區預覽。容器 1180px,窄螢幕(≤860px)自動收成單欄。刻意保持輕量(不是 IDE)。
 
 **持久工作空間(成品間的關係)**:每個成品是**獨立的對話**(不續接前一個,避免 context 暴脹),但**共用一個持久工作空間**(`.xitto-server/ws/<workspace>`,預設 `default`)——所以 ① **檔案留存**,後面的任務能接續前面的成果(「把我上次做的 plan.md 翻成英文」);② **五層沉澱跨成品累積**(偏好/技能/經驗/信任)——它**越用越懂你**,不再是每次都從零開始的陌生人。`workspace` 可在 POST 時指定(多使用者各自一個);網頁有「專案」下拉切換,每份成品卡標出 `📁 所屬空間`。
 
 **本地就地模式(像 Claude Code 改你選的真實資料夾)**:`XITTO_SERVER_LOCAL=1` 時,網頁多一個「**📁 選資料夾**」鈕——**用點的**從家目錄瀏覽進你的真實資料夾並選定(不用打路徑;瀏覽器拿不到絕對路徑,所以由 local server 端列資料夾),或「新專案」直接貼絕對路徑也行。任務就**就地改那個資料夾的檔**(不另開隔離副本),工作台列的也是它。這把「許願台(隔離,服務非技術使用者)」和「Claude Code(就地,改你現有的 codebase)」兩個模型打通:**本機自用想就地 → 給路徑;隔離/託管 → 給名稱**。**安全**:只在 `local` 模式才認絕對路徑;**託管模式收到絕對路徑會被消毒成管理空間,不會逃逸到主機任意路徑**。
 
+**重啟後歷史還在(持久化)**:任務清單落地 `.xitto-server/tasks/`、對話 session 落地 `.xitto-server/sessions/`,啟動時載回——所以**重啟後歷史成品自動顯示、舊成品仍能「繼續/調整」**(對話脈絡也在)。重啟時還在跑/待答的任務會標「已中斷(重啟)」。對標 Claude Code「對話自動落地」,但許願台是**自動顯示歷史**(成品清單),而非 Claude Code 的明確 `--resume`。
+
 **溯源/檔案位置**:成品記錄它的**邏輯位置(workspace)**;**實體絕對路徑**預設不外露(託管不洩漏伺服器路徑),只在**本地模式**(`XITTO_SERVER_LOCAL=1`)才在成品附「📂 檔案位置」供你到 Finder/Explorer 找檔。
 
 零依賴單一 HTML(`src/app/web/index.html`),polling 不靠 SSE。token 注入頁面供同源呼叫——本地自用零設定;**正式部署請前置真實認證**。

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "xitto-kernel",
-  "version": "0.8.4",
+  "version": "0.9.2",
   "type": "module",
   "description": "領域無關的 agent 底座（kernel + 可插拔 DomainPack），從 xitto-code 抽象而來",
   "keywords": [

package/src/app/server.js

@@ -3,7 +3,7 @@
 // JSON 或 SSE 串流，以及「背景任務 + 完成通知（webhook）」—— 派任務出去、做完回呼，不用一直盯著。
 // 這是「另一個 app 消費同一組 kernel 事件」—— 不動 kernel 核心。
 import { createServer } from 'node:http';
-import { mkdirSync, readFileSync, existsSync, rmSync, readdirSync, statSync } from 'node:fs';
+import { mkdirSync, readFileSync, writeFileSync, existsSync, rmSync, readdirSync, statSync } from 'node:fs';
 import { join, dirname, isAbsolute, relative, basename, resolve } from 'node:path';
 import { fileURLToPath } from 'node:url';
 import { homedir } from 'node:os';
@@ -100,12 +100,26 @@ export const mapEvent = (ev) => {
  * @param {(task:object)=>void} [o.onFinish]  每個任務 settle 後呼叫（拿來發 webhook）
  * @param {number} [o.maxEvents]     每任務保留最近幾筆事件（預設 500）
  */
-export function createTaskStore({ runJob, concurrency = 2, onFinish, maxEvents = 500 } = {}) {
+export function createTaskStore({ runJob, concurrency = 2, onFinish, maxEvents = 500, persistDir } = {}) {
   const tasks = new Map();   // id -> task
   const queue = [];          // 等待中的 task
   const subs = new Map();    // id -> Set<(ev)=>void>
   let active = 0;
 
+  // 持久化：每個任務落地一個 json（重啟後歷史成品還在）。runtime 欄位（_agent/events…）不存。
+  const snapshot = (t) => ({ id: t.id, status: t.status, spec: t.spec, result: t.result, error: t.error, createdAt: t.createdAt, startedAt: t.startedAt, finishedAt: t.finishedAt, progress: t.progress || null, pending: t.pending || null });
+  const persistTask = (t) => { if (!persistDir) return; try { mkdirSync(persistDir, { recursive: true }); writeFileSync(join(persistDir, t.id + '.json'), JSON.stringify(snapshot(t))); } catch { /* 略 */ } };
+  if (persistDir && existsSync(persistDir)) {
+    for (const f of readdirSync(persistDir).filter((x) => x.endsWith('.json')).sort()) {
+      try {
+        const t = JSON.parse(readFileSync(join(persistDir, f), 'utf8'));
+        if (['running', 'queued', 'needs-input'].includes(t.status)) { t.status = 'interrupted'; t.pending = null; } // 進程已死 → 標中斷
+        t.events = [];
+        tasks.set(t.id, t);
+      } catch { /* 壞檔略 */ }
+    }
+  }
+
   const view = (t) => ({ taskId: t.id, status: t.status, pack: t.spec.pack || 'general', mode: t.spec.mode || 'turn', workspace: t.spec.workspace || 'default', goal: t.spec.goal || t.spec.input || '', sessionId: t.result?.sessionId || t.spec.sessionId || null, continued: !!t.spec.sessionId, createdAt: t.createdAt, startedAt: t.startedAt, finishedAt: t.finishedAt, error: t.error, pending: t.pending || null, progress: t.progress || null });
 
   const emit = (t, ev) => {
@@ -135,6 +149,7 @@ export function createTaskStore({ runJob, concurrency = 2, onFinish, maxEvents =
   const makeAsk = (t) => ({ question, options }) => {
     t.status = 'needs-input'; t.pending = { question: String(question || ''), options: options || null };
     emit(t, { type: 'needs_input', question: t.pending.question, options: t.pending.options });
+    persistTask(t);
     return new Promise((resolve) => { t._answer = resolve; });
   };
 
@@ -152,6 +167,7 @@ export function createTaskStore({ runJob, concurrency = 2, onFinish, maxEvents =
           if (t._cancelling && t.status !== 'error') t.status = 'cancelled'; // 使用者中斷
           t.finishedAt = new Date().toISOString();
           emit(t, { type: 'end', status: t.status, result: t.result, error: t.error });
+          persistTask(t);
           active--;
           try { onFinish?.(t); } catch { /* webhook 錯不影響佇列 */ }
           pump();
@@ -163,6 +179,7 @@ export function createTaskStore({ runJob, concurrency = 2, onFinish, maxEvents =
     enqueue(spec) {
       const t = { id: newId('t'), status: 'queued', spec: spec || {}, events: [], result: null, error: null, createdAt: new Date().toISOString(), startedAt: null, finishedAt: null };
       tasks.set(t.id, t);
+      persistTask(t);
       queue.push(t);
       pump();
       return t;
@@ -180,7 +197,7 @@ export function createTaskStore({ runJob, concurrency = 2, onFinish, maxEvents =
       if (t.status === 'queued') {
         const i = queue.indexOf(t); if (i >= 0) queue.splice(i, 1);
         t.status = 'cancelled'; t.finishedAt = new Date().toISOString();
-        emit(t, { type: 'end', status: 'cancelled' });
+        emit(t, { type: 'end', status: 'cancelled' }); persistTask(t);
         return true;
       }
       if (typeof t._answer === 'function') { const r = t._answer; t._answer = null; t.pending = null; r(''); } // 解除待答阻塞
@@ -193,7 +210,7 @@ export function createTaskStore({ runJob, concurrency = 2, onFinish, maxEvents =
       const t = tasks.get(id);
       if (!t || typeof t._answer !== 'function') return false;
       const resolve = t._answer; t._answer = null; t.pending = null; t.status = 'running';
-      emit(t, { type: 'answered', answer: String(text ?? '') });
+      emit(t, { type: 'answered', answer: String(text ?? '') }); persistTask(t);
       resolve(String(text ?? ''));
       return true;
     },
@@ -212,9 +229,14 @@ export function createTaskStore({ runJob, concurrency = 2, onFinish, maxEvents =
  * @returns {import('node:http').Server}
  */
 export function createServerApp({ model, getApiKey, token, baseDir = '.xitto-server', sandbox = true, concurrency = 2, local = false } = {}) {
-  const sessions = new Map(); // sessionId -> { pack, history }
+  const sessions = new Map(); // sessionId -> { history }
   mkdirSync(baseDir, { recursive: true });
 
+  // 對話 session 持久化（讓「繼續/調整」跨重啟可用）：啟動載回 + 每次更新落地。
+  const sessDir = join(baseDir, 'sessions');
+  try { if (existsSync(sessDir)) for (const f of readdirSync(sessDir).filter((x) => x.endsWith('.json'))) { try { sessions.set(f.replace(/\.json$/, ''), JSON.parse(readFileSync(join(sessDir, f), 'utf8'))); } catch { /* 略 */ } } } catch { /* 略 */ }
+  const persistSession = (id, sess) => { try { mkdirSync(sessDir, { recursive: true }); writeFileSync(join(sessDir, id + '.json'), JSON.stringify({ history: sess.history })); } catch { /* 略 */ } };
+
   const json = (res, code, obj) => { res.writeHead(code, { 'content-type': 'application/json; charset=utf-8' }); res.end(JSON.stringify(obj)); };
   // header bearer 為主；img/iframe/下載這類瀏覽器發起的 GET 無法帶 header,允許 ?token=（同源、PoC）
   const authed = (req) => { if (!token) return true; if (req.headers.authorization === `Bearer ${token}`) return true; try { return new URL(req.url, 'http://x').searchParams.get('token') === token; } catch { return false; } };
@@ -250,14 +272,14 @@ export function createServerApp({ model, getApiKey, token, baseDir = '.xitto-ser
     const wrapped = (ev) => { if (ev.type === 'message_end' && ev.message?.usage) { usage.input += ev.message.usage.input || 0; usage.output += ev.message.usage.output || 0; } onEvent?.(ev); };
     if (spec.mode === 'goal') {
       // 結果導向：回傳交付物（做了什麼 + 產出的檔案 + 是否達成），對話只是過程
-      const o = await kernel.runOutcome(spec.goal || spec.input || '', { history: sess.history, onEvent: wrapped, onAgent, onRound: (i) => wrapped({ type: 'round', round: i.round, maxRounds: i.maxRounds }) });
-      sess.history = o.history || []; sessions.set(sessionId, sess);
+      const o = await kernel.runOutcome(spec.goal || spec.input || "", { maxRounds: 8, history: sess.history, onEvent: wrapped, onAgent, onRound: (i) => wrapped({ type: 'round', round: i.round, maxRounds: i.maxRounds }) });
+      sess.history = o.history || []; sessions.set(sessionId, sess); persistSession(sessionId, sess);
       try { rmSync(join(workdir, 'tmp'), { recursive: true, force: true }); } catch { /* 清過程檔,失敗無妨 */ }
       // 溯源：邏輯位置 workspace 永遠記；實體路徑只在本地模式給（託管不洩漏伺服器路徑）
       return { sessionId, workspace, workspaceDir: local ? resolve(workdir) : undefined, text: o.summary || lastText(sess.history), usage, rounds: o.rounds, done: o.done, aborted: o.aborted, artifacts: o.artifacts };
     }
     const r = await kernel.runTurn(spec.input || '', { history: sess.history, onEvent: wrapped, onAgent });
-    sess.history = r.messages || r.history || []; sessions.set(sessionId, sess);
+    sess.history = r.messages || r.history || []; sessions.set(sessionId, sess); persistSession(sessionId, sess);
     return { sessionId, workspace, workspaceDir: local ? resolve(workdir) : undefined, text: r.text ?? lastText(sess.history), usage, rounds: r.rounds, done: r.done };
   }
 
@@ -272,6 +294,7 @@ export function createServerApp({ model, getApiKey, token, baseDir = '.xitto-ser
 
   const tasks = createTaskStore({
     concurrency,
+    persistDir: join(baseDir, 'tasks'),
     runJob: (spec, emit, ask, onAgent) => runKernel(spec, (ev) => { const m = mapEvent(ev); if (m) emit(m); }, ask, onAgent),
     onFinish: (task) => { log({ task: task.id, pack: task.spec.pack, mode: task.spec.mode || 'turn', status: task.status, ms: task.startedAt ? Date.parse(task.finishedAt) - Date.parse(task.startedAt) : 0 }); fireWebhook(task); },
   });

package/src/app/web/index.html

@@ -9,13 +9,17 @@
   * { box-sizing:border-box; }
   body { margin:0; font:15px/1.6 -apple-system,"PingFang TC","Microsoft JhengHei",system-ui,sans-serif; background:var(--bg); color:var(--fg); }
   .wrap { max-width:1180px; margin:0 auto; padding:24px 22px 80px; }
-  /* 雙欄佈局：許願頁=主區+歷史側欄；工作台=檔案左+預覽右。窄螢幕自動收成單欄 */
-  .cols { display:grid; grid-template-columns:minmax(0,1fr) 320px; gap:26px; align-items:start; }
-  .cols2 { display:grid; grid-template-columns:340px minmax(0,1fr); gap:26px; align-items:start; }
-  .side, .wbleft { position:sticky; top:14px; }
-  .side h3, .wbleft h3 { margin-top:0; }
-  .wbright { position:sticky; top:14px; min-height:120px; }
-  @media (max-width:860px){ .cols,.cols2{ grid-template-columns:1fr; } .side,.wbleft,.wbright{ position:static; } }
+  /* 單頁佈局：頂部許願 + 左欄(歷史+檔案) + 主區(當前任務/成品/預覽共用)。窄螢幕收單欄 */
+  .layout { display:grid; grid-template-columns:300px minmax(0,1fr); gap:24px; align-items:start; margin-top:18px; }
+  .nav { position:sticky; top:14px; max-height:calc(100vh - 28px); display:flex; flex-direction:column; gap:16px; }
+  .navsec { display:flex; flex-direction:column; min-height:0; }
+  .navsec h3 { margin:0 0 8px; }
+  .hist-sec #history, .file-sec #wbfiles { overflow:auto; }      /* 兩段各自內捲,都到得了底 */
+  .hist-sec { flex:0 1 auto; max-height:42vh; } .hist-sec #history { max-height:38vh; }
+  .file-sec { flex:1 1 auto; min-height:0; } .file-sec #wbfiles { flex:1; }
+  .work { min-width:0; }
+  .welcome { padding:40px 16px; text-align:center; line-height:2; }
+  @media (max-width:860px){ .layout{ grid-template-columns:1fr; } .nav{ position:static; max-height:none; } .hist-sec,.hist-sec #history,.file-sec #wbfiles{ max-height:none; } }
   header { display:flex; align-items:baseline; gap:10px; margin-bottom:6px; }
   header h1 { font-size:22px; margin:0; }
   header .sub { color:var(--dim); font-size:13px; }
@@ -72,9 +76,6 @@
   .hist:hover { border-color:var(--accent); }
   .hist .g { font-size:14px; } .hist .m { color:var(--dim); font-size:12px; }
   .empty { color:var(--dim); font-size:13px; }
-  .tabs { display:flex; gap:4px; border-bottom:1px solid var(--line); margin:14px 0 4px; }
-  .tab { padding:8px 16px; font-size:14px; color:var(--dim); cursor:pointer; border-bottom:2px solid transparent; }
-  .tab.active { color:var(--fg); border-bottom-color:var(--accent); }
   .wbrow { display:flex; align-items:center; gap:10px; padding:9px 12px; background:var(--card); border:1px solid var(--line); border-radius:8px; margin:6px 0; }
   .wbname { flex:1; color:var(--accent); cursor:pointer; font-size:14px; }
   .wbmeta { color:var(--dim); font-size:12px; }
@@ -126,38 +127,30 @@
     </div>
   </div>
 
-  <div class="tabs">
-    <span class="tab active" id="tab-wish" onclick="switchTab('wish')">許願</span>
-    <span class="tab" id="tab-wb" onclick="switchTab('wb')">📂 工作台</span>
-  </div>
-
-  <div id="wishview" class="cols">
-    <div class="main">
-      <div class="ask">
-        <textarea id="goal" placeholder="例如：把這個資料夾的 .md 檔整理成一份目錄 index.md；或：抓 example.com 的標題寫進 title.txt"></textarea>
-        <div class="row">
-          <select id="pack" title="領域"></select>
-          <span class="spacer"></span>
-          <button id="go">交辦 →</button>
-        </div>
-      </div>
-      <div id="current"></div>
+  <div class="ask">
+    <textarea id="goal" placeholder="說出你想完成的事⋯例如：把這個資料夾的 .md 整理成目錄 index.md；或抓 example.com 標題寫進 title.txt"></textarea>
+    <div class="row">
+      <select id="pack" title="領域"></select>
+      <span class="spacer"></span>
+      <button id="go">交辦 →</button>
     </div>
-    <aside class="side">
-      <h3>歷史成品</h3>
-      <div id="history"><div class="empty">還沒有任何任務。<br>左邊交辦一件事試試。</div></div>
-    </aside>
   </div>
 
-  <div id="workbench" class="cols2" style="display:none">
-    <div class="wbleft">
-      <h3>📂 工作台</h3>
-      <div id="wbfiles"></div>
-    </div>
-    <div class="wbright">
-      <div id="wbhint" class="empty">← 點左邊的檔案，在這裡預覽</div>
-      <div class="viewer" id="wbview" style="display:none"></div>
-    </div>
+  <div class="layout">
+    <aside class="nav">
+      <section class="navsec hist-sec">
+        <h3>歷史成品</h3>
+        <div id="history"><div class="empty">還沒有任何任務。上面交辦一件事試試。</div></div>
+      </section>
+      <section class="navsec file-sec">
+        <h3>📂 檔案</h3>
+        <div id="wbfiles"></div>
+      </section>
+    </aside>
+    <main class="work">
+      <div id="current"><div class="empty welcome">👋 上面說出你想完成的事，交給它去做。<br>左邊看歷史成品與工作區檔案，點任一個在這裡展開。</div></div>
+      <div class="viewer" id="fview" style="display:none"></div>
+    </main>
   </div>
 </div>
 
@@ -194,7 +187,8 @@ let spaces = JSON.parse(localStorage.getItem("xk_spaces")||'["default"]');
 let curSpace = localStorage.getItem("xk_space")||"default";
 const spaceLabel=s=>s.startsWith("/")?("📁 "+(s.split("/").filter(Boolean).pop()||s)):s;
 function renderSpaces(){ $("#space").innerHTML = spaces.map(s=>`<option value="${esc(s)}" ${s===curSpace?"selected":""}>${esc(spaceLabel(s))}</option>`).join(""); }
-$("#space").onchange = () => { curSpace=$("#space").value; localStorage.setItem("xk_space",curSpace); $("#current").innerHTML=""; loadHistory(); if($("#workbench").style.display!=="none"){ wbSub=""; loadWorkbench(); } };
+function refreshAll(){ $("#fview").style.display="none"; wbSub=""; loadHistory(); loadFiles(); }
+$("#space").onchange = () => { curSpace=$("#space").value; localStorage.setItem("xk_space",curSpace); $("#current").innerHTML=""; refreshAll(); };
 $("#newspace").onclick = () => {
   const raw=(prompt(LOCAL?"新專案：輸入名稱，或貼上一個真實資料夾的絕對路徑（本地模式會就地改該資料夾的檔，像 Claude Code）":"新專案名稱（英數/底線/連字號）：")||"").trim();
   if(!raw) return;
@@ -202,7 +196,7 @@ $("#newspace").onclick = () => {
   if(!n) return;
   if(!spaces.includes(n)) spaces.push(n);
   curSpace=n; localStorage.setItem("xk_spaces",JSON.stringify(spaces)); localStorage.setItem("xk_space",curSpace);
-  renderSpaces(); $("#current").innerHTML=""; loadHistory();
+  renderSpaces(); $("#current").innerHTML=""; refreshAll();
 };
 renderSpaces();
 
@@ -220,7 +214,7 @@ async function fsGo(p){
 }
 function fsHome(){ fsGo(window._fsHome||null); }
 function closeFs(){ $("#fsmodal").style.display="none"; }
-function chooseFs(){ if(!fsPath) return; const p=fsPath; if(!spaces.includes(p)) spaces.push(p); curSpace=p; localStorage.setItem("xk_spaces",JSON.stringify(spaces)); localStorage.setItem("xk_space",curSpace); renderSpaces(); closeFs(); $("#current").innerHTML=""; loadHistory(); }
+function chooseFs(){ if(!fsPath) return; const p=fsPath; if(!spaces.includes(p)) spaces.push(p); curSpace=p; localStorage.setItem("xk_spaces",JSON.stringify(spaces)); localStorage.setItem("xk_space",curSpace); renderSpaces(); closeFs(); $("#current").innerHTML=""; refreshAll(); }
 
 // 極簡 markdown 渲染（零依賴、可離線；夠用於 agent 產的報告）
 function mdRender(src){
@@ -274,33 +268,23 @@ async function renderFile(urlFn, encPath, name, sel){
   v.innerHTML=bar+body;
 }
 function viewFile(id, encPath, name){ return renderFile(taskFileUrl(id), encPath, name, "#fview"); }
-function wbView(encPath, name){ const h=$("#wbhint"); if(h) h.style.display="none"; return renderFile(wsFileUrl(curSpace), encPath, name, "#wbview"); }
+function wbView(encPath, name){ return renderFile(wsFileUrl(curSpace), encPath, name, "#fview"); }
 
-// 工作台分頁：逐層瀏覽 / 看 / 刪
+// 左欄檔案瀏覽器：逐層瀏覽 / 看（→ 主區 #fview） / 刪
 function fmtSize(n){ return n<1024?n+" B":n<1048576?(n/1024).toFixed(1)+" KB":(n/1048576).toFixed(1)+" MB"; }
 let wbSub="";
-function wbNav(s){ wbSub=decodeURIComponent(s); loadWorkbench(); }
-function wbUp(){ wbSub=wbSub.includes("/")?wbSub.slice(0,wbSub.lastIndexOf("/")):""; loadWorkbench(); }
-async function loadWorkbench(){
-  $("#wbview").style.display="none"; { const h=$("#wbhint"); if(h) h.style.display=""; }
+function wbNav(s){ wbSub=decodeURIComponent(s); loadFiles(); }
+function wbUp(){ wbSub=wbSub.includes("/")?wbSub.slice(0,wbSub.lastIndexOf("/")):""; loadFiles(); }
+async function loadFiles(){
   const r=await api("/v1/workspaces/files?ws="+encodeURIComponent(curSpace)+"&sub="+encodeURIComponent(wbSub)).then(r=>r.json()).catch(()=>({dirs:[],files:[]}));
-  const root=curSpace.startsWith("/")?curSpace:curSpace;
-  let html=`<div class="loc">📂 ${esc(root)}${wbSub?" / "+esc(wbSub):""}</div>`;
+  let html=wbSub?`<div class="loc">📂 ${esc(wbSub)}</div>`:"";
   if(wbSub) html+=`<div class="wbrow up" onclick="wbUp()"><span class="wbname">⬆ 上一層</span></div>`;
   html+=(r.dirs||[]).map(d=>`<div class="wbrow" onclick="wbNav('${encodeURIComponent((wbSub?wbSub+'/':'')+d)}')"><span class="wbname">📁 ${esc(d)}/</span></div>`).join("");
   html+=(r.files||[]).map(f=>{const full=(wbSub?wbSub+'/':'')+f.name;return `<div class="wbrow"><span class="wbname" onclick="wbView('${encodeURIComponent(full)}','${esc(f.name)}')">📄 ${esc(f.name)}</span><span class="wbmeta">${fmtSize(f.size)}</span><span class="wbdel" title="刪除" onclick="wbDelete('${encodeURIComponent(full)}','${esc(f.name)}')">🗑</span></div>`;}).join("");
-  if(!(r.dirs||[]).length && !(r.files||[]).length) html+=`<div class="empty">（${wbSub?"這個資料夾是空的":"這個專案還沒有檔案，去「許願」交辦一件事吧"}）</div>`;
+  if(!(r.dirs||[]).length && !(r.files||[]).length) html+=`<div class="empty">（${wbSub?"空資料夾":"還沒有檔案"}）</div>`;
   $("#wbfiles").innerHTML=html;
 }
-async function wbDelete(encPath, name){ if(!confirm("刪除 "+name+"？此動作無法復原。")) return; await api("/v1/workspaces/file?ws="+encodeURIComponent(curSpace)+"&path="+encodeURIComponent(decodeURIComponent(encPath)),{method:"DELETE"}); loadWorkbench(); }
-function switchTab(name){
-  const wish=name==="wish";
-  $("#wishview").style.display=wish?"":"none";
-  $("#workbench").style.display=wish?"none":"";
-  $("#tab-wish").classList.toggle("active",wish);
-  $("#tab-wb").classList.toggle("active",!wish);
-  if(!wish){ wbSub=""; loadWorkbench(); }
-}
+async function wbDelete(encPath, name){ if(!confirm("刪除 "+name+"？此動作無法復原。")) return; await api("/v1/workspaces/file?ws="+encodeURIComponent(curSpace)+"&path="+encodeURIComponent(decodeURIComponent(encPath)),{method:"DELETE"}); loadFiles(); }
 
 let activeId = null, polling = null;
 
@@ -311,12 +295,13 @@ $("#go").onclick = async () => {
   $("#go").disabled = false;
   if (r.error) { alert(r.error); return; }
   $("#goal").value = "";
+  $("#fview").style.display="none"; expandedLog=false;
   activeId = r.taskId;
   poll();
 };
 
-function statusClass(s){ return s==="running"?"running":s==="needs-input"?"needs":s==="done"?"done":(s==="error"||s==="cancelled")?"error":""; }
-function statusText(s){ return ({queued:"排隊中",running:"進行中…","needs-input":"需要你回答",done:"已完成",error:"失敗",cancelled:"已中斷"})[s]||s; }
+function statusClass(s){ return s==="running"?"running":s==="needs-input"?"needs":s==="done"?"done":(s==="error"||s==="cancelled"||s==="interrupted")?"error":""; }
+function statusText(s){ return ({queued:"排隊中",running:"進行中…","needs-input":"需要你回答",done:"已完成",error:"失敗",cancelled:"已中斷",interrupted:"已中斷(重啟)"})[s]||s; }
 const CANCELLABLE = ["queued","running","needs-input"];
 function todosHtml(p){ if(!p||!(p.todos||[]).length) return ""; const ic=s=>s==="completed"?"☑":s==="in_progress"?"◐":"☐"; return `<div class="todos">${p.todos.map(td=>`<div class="todo ${td.status}">${ic(td.status)} ${esc(td.content)}</div>`).join("")}</div>`; }
 async function cancelTask(id){ await api("/v1/tasks/"+id+"/cancel",{method:"POST"}); for(let i=0;i<10;i++){ await new Promise(r=>setTimeout(r,600)); const t=await api("/v1/tasks/"+id).then(r=>r.json()); liveTask=t; renderCurrent(t); if(["done","error","cancelled"].includes(t.status)){loadHistory();break;} } }
@@ -326,7 +311,7 @@ async function poll() {
   const t = await api("/v1/tasks/"+activeId).then(r=>r.json());
   liveTask = t;
   renderCurrent(t);
-  if (t.status==="done" || t.status==="error") { loadHistory(); return; }
+  if (t.status==="done" || t.status==="error") { loadHistory(); loadFiles(); return; }
   if (t.status==="needs-input") return; // 等使用者回答
   polling = setTimeout(poll, 1200);
 }
@@ -348,7 +333,6 @@ function renderCurrent(t) {
     ${t.status==="error"?`<div class="summary">⚠ ${esc(t.error)}</div>`:""}
     ${files.length?`<div class="files">📦 成品：${files.map(([f,k])=>`<span class="file ${k==="mod"?"mod":""}" onclick="viewFile('${t.taskId}','${encodeURIComponent(f)}','${esc(f)}')">${k==="mod"?"~":"+"} ${esc(f)}</span>`).join("")}</div>`:""}
     ${t.result&&t.result.workspaceDir?`<div class="loc">📂 檔案位置：<code title="點擊複製" onclick="navigator.clipboard&&navigator.clipboard.writeText('${esc(t.result.workspaceDir)}')">${esc(t.result.workspaceDir)}</code></div>`:""}
-    <div class="viewer" id="fview" style="display:none"></div>
     ${t.status==="done"?`<div class="followup">
       <button class="ghost" onclick="toggleFollowup()">↳ 繼續／調整這個成果</button>
       <div id="fubox" style="display:none;margin-top:8px">
@@ -385,7 +369,7 @@ async function loadHistory() {
 }
 async function openTask(id){ activeId=id; const t=await api("/v1/tasks/"+id).then(r=>r.json()); liveTask=t; renderCurrent(t); if(t.status==="running"||t.status==="queued"){poll();} window.scrollTo({top:0,behavior:"smooth"}); }
 
-loadHistory();
+loadHistory(); loadFiles();
 </script>
 </body>
 </html>

package/src/kernel/agent-loop.js

@@ -50,6 +50,7 @@ export class Agent {
     };
     this.listeners = new Set();
     this.streamFn = options.streamFn;               // 必傳(xitto 都注入；缺則無法串流)
+    this.maxSteps = options.maxSteps || 80;          // 單回合硬上限：防 agent 無限呼叫工具繞圈
     this.getApiKey = options.getApiKey;
     this.beforeToolCall = options.beforeToolCall;
     this.afterToolCall = options.afterToolCall;
@@ -135,6 +136,7 @@ export class Agent {
     const newMessages = [];
     let pending = initialMessages.slice();
     let firstTurn = true;
+    let steps = 0;
     while (true) {
       let hasMoreToolCalls = true;
       while (hasMoreToolCalls || pending.length) {
@@ -149,6 +151,10 @@ export class Agent {
         // abort 守衛：迴圈邊界若已中止，立即走 handleRunFailure(aborted)。
         // 真實 provider 由 fetch signal 中止串流；此守衛確保 fake/工具觸發的 abort 也確定性收尾。
         if (signal.aborted) throw new Error('Aborted');
+        // 硬上限：單回合工具呼叫太多 → 注入一句「別再用工具,直接用現有資訊作結」,逼它收尾
+        if (steps === this.maxSteps - 1) this._state.messages.push({ role: 'user', content: [{ type: 'text', text: `[系統] 已達工具呼叫上限（${this.maxSteps} 步）。請停止使用任何工具，直接根據目前已知資訊給出結論或說明卡在哪、缺什麼，然後結束。` }] });
+        if (steps >= this.maxSteps) { await this.emit({ type: 'agent_end', messages: newMessages }); return; }
+        steps++;
         const message = await this.streamAssistant(signal);
         newMessages.push(message);
         if (message.stopReason === 'error' || message.stopReason === 'aborted') {

package/src/kernel/index.js

@@ -236,6 +236,7 @@ export function createKernel(pack, config = {}) {
     pack.systemPrompt +
     loadContextFiles(cwd, pack.contextFiles) +          // 注入領域規範檔（CLAUDE.md 等）
     '\n\n# 記憶與專案手冊\n' + (pack.memoryGuide || DEFAULT_MEMORY_GUIDE) + '\n' + DEFAULT_PLAYBOOK_GUIDE + '\n' + DEFAULT_EPISODE_GUIDE +
+    '\n\n# 工作目錄\n你的工作目錄是：' + cwd + '\n所有檔案請用相對路徑寫在這個目錄內（如 report.md、data/x.csv）。除非使用者明確要求，絕對不要寫到此目錄之外（例如 /tmp、/app、/workspace、系統根目錄）——寫在外面使用者拿不到成品。' +
     '\n\n# 成品與暫存\n' + DEFAULT_OUTPUT_GUIDE +
     (memText ? `\n\n# 已記住的事實（跨 session）\n${memText}` : '') +
     (pbText ? `\n\n# 專案手冊（這個專案怎麼做事，跨 session 累積）\n${pbText}` : '') +
@@ -438,6 +439,7 @@ export function createKernel(pack, config = {}) {
       let lastRemaining = null;
       let noProgress = 0;
       let verifyErrors = 0;
+      let sameFeedback = 0;
       for (let round = 1; round <= maxRounds; round++) {
         opts.onRound?.({ round, maxRounds });
         const r = await api.runTurn(instruction, { history, onEvent: opts.onEvent, onAgent: opts.onAgent });
@@ -459,7 +461,9 @@ export function createKernel(pack, config = {}) {
         }
         verifyErrors = 0;
         const rem = normalizeFeedback(v.remaining);
-        if (!r.turnModified && rem && rem === lastRemaining) return { done: false, stalled: true, rounds: round, history };
+        // 驗收回饋重複 = agent 在繞圈（即使一直有動作也沒朝驗收要求收斂,如查不到的資訊一直換來源）→ 連 2 次相同就停,別空轉到上限
+        if (rem && rem === lastRemaining) { if (++sameFeedback >= 2) return { done: false, stalled: true, rounds: round, history }; }
+        else sameFeedback = 0;
         lastRemaining = rem;
         instruction = `目標尚未達成。驗收回饋：${v.remaining}\n請繼續完成目標：${goal}`;
       }

package/src/packs/coding/index.js

@@ -30,6 +30,9 @@ const SYSTEM_PROMPT = [
 export function createCodingPack({ cwd = process.cwd() } = {}) {
   const readFiles = new Set(); // 已 read 過的絕對路徑（read 工具寫入、read-before-edit 守衛讀取）
   const abs = (p) => (isAbsolute(p) ? p : join(cwd, p));
+  // 寫檔限制在工作目錄內：逃逸 cwd（如 /tmp、/app）回 null。讀檔不限制。
+  const within = (p) => { const full = abs(p); const r = relative(cwd, full); return (r === '' || (!r.startsWith('..') && !isAbsolute(r))) ? full : null; };
+  const escapeErr = (path) => txt({ error: `只能寫在工作目錄內：${cwd}`, hint: '請用相對路徑（如 report.md）', path });
   const bg = createBackgroundTools(cwd); // bash_bg / bash_output / bash_kill
 
   const readTool = {
@@ -64,7 +67,7 @@ export function createCodingPack({ cwd = process.cwd() } = {}) {
     name: 'write', label: '寫檔', description: '建立或覆寫檔案', mutating: true,
     parameters: { type: 'object', properties: { path: { type: 'string' }, content: { type: 'string' } }, required: ['path', 'content'] },
     execute: async (_id, { path, content }) => {
-      const p = abs(path);
+      const p = within(path); if (!p) return escapeErr(path);
       writeFileSync(p, content ?? '', 'utf8');
       readFiles.add(p); // 寫過即視為已知內容
       return txt({ written: path, bytes: Buffer.byteLength(content ?? '') });
@@ -76,7 +79,7 @@ export function createCodingPack({ cwd = process.cwd() } = {}) {
     description: '把檔案中的 oldText 換成 newText。oldText 必須唯一（出現多次會失敗，請加上下文；或設 replaceAll:true 全部取代）。',
     parameters: { type: 'object', properties: { path: { type: 'string' }, oldText: { type: 'string' }, newText: { type: 'string' }, replaceAll: { type: 'boolean' } }, required: ['path', 'oldText', 'newText'] },
     execute: async (_id, { path, oldText, newText, replaceAll }) => {
-      const p = abs(path);
+      const p = within(path); if (!p) return escapeErr(path);
       if (!existsSync(p)) return txt({ error: '檔案不存在', path });
       const before = readFileSync(p, 'utf8');
       const occurrences = before.split(oldText).length - 1;

package/src/packs/general/index.js

@@ -1,7 +1,7 @@
 // general pack — 通用自主 agent。廣的 system prompt + 檔案/shell/web 工具。
 // 搭配 kernel 的 runGoal（目標循環）+ 子 agent + MCP，即為「給目標、自己做到完成」的通用 agent。
 import { readFileSync, writeFileSync, existsSync, readdirSync, statSync } from 'node:fs';
-import { isAbsolute, join, extname } from 'node:path';
+import { isAbsolute, join, extname, relative } from 'node:path';
 import { spawnSync } from 'node:child_process';
 import { createGrepTool, createGlobTool } from '../shared/code-nav.js';
 import { createWebFetchTool, createWebSearchTool, createHttpTool } from '../shared/web-tools.js';
@@ -24,6 +24,9 @@ const SYSTEM_PROMPT = [
 export function createGeneralPack({ cwd = process.cwd() } = {}) {
   const readFiles = new Set();
   const abs = (p) => (isAbsolute(p) ? p : join(cwd, p));
+  // 寫檔限制在工作目錄內：回解析後路徑,逃逸 cwd（如 /tmp、/app）回 null。讀檔不限制。
+  const within = (p) => { const full = abs(p); const r = relative(cwd, full); return (r === '' || (!r.startsWith('..') && !isAbsolute(r))) ? full : null; };
+  const escapeErr = (path) => txt({ error: `只能寫在工作目錄內：${cwd}`, hint: '請用相對路徑（如 report.md），不要寫到工作區之外', path });
 
   const read = {
     name: 'read', label: '讀檔', description: '讀取檔案內容', readOnly: true,
@@ -38,12 +41,12 @@ export function createGeneralPack({ cwd = process.cwd() } = {}) {
   const write = {
     name: 'write', label: '寫檔', description: '建立或覆寫檔案', mutating: true,
     parameters: { type: 'object', properties: { path: { type: 'string' }, content: { type: 'string' } }, required: ['path', 'content'] },
-    execute: async (_id, { path, content }) => { const p = abs(path); writeFileSync(p, content ?? '', 'utf8'); readFiles.add(p); return txt({ written: path, bytes: Buffer.byteLength(content ?? '') }); },
+    execute: async (_id, { path, content }) => { const p = within(path); if (!p) return escapeErr(path); writeFileSync(p, content ?? '', 'utf8'); readFiles.add(p); return txt({ written: path, bytes: Buffer.byteLength(content ?? '') }); },
   };
   const edit = {
     name: 'edit', label: '編輯', description: '把檔案中的 oldText 換成 newText', mutating: true,
     parameters: { type: 'object', properties: { path: { type: 'string' }, oldText: { type: 'string' }, newText: { type: 'string' } }, required: ['path', 'oldText', 'newText'] },
-    execute: async (_id, { path, oldText, newText }) => { const p = abs(path); if (!existsSync(p)) return txt({ error: '檔案不存在', path }); const b = readFileSync(p, 'utf8'); if (!b.includes(oldText)) return txt({ error: 'oldText 未找到', path }); writeFileSync(p, b.replace(oldText, newText), 'utf8'); return txt({ edited: path }); },
+    execute: async (_id, { path, oldText, newText }) => { const p = within(path); if (!p) return escapeErr(path); if (!existsSync(p)) return txt({ error: '檔案不存在', path }); const b = readFileSync(p, 'utf8'); if (!b.includes(oldText)) return txt({ error: 'oldText 未找到', path }); writeFileSync(p, b.replace(oldText, newText), 'utf8'); return txt({ edited: path }); },
   };
   const bash = {
     name: 'bash', label: 'bash', description: '執行 shell 命令（可選 timeout 秒數，預設 120）', mutating: true, sandboxable: true,

package/src/packs/shared/fs-tools.js

@@ -1,7 +1,7 @@
 // 共用檔案/shell 工具（read/ls/write/edit/bash）+ read-before-edit 守衛。
 // 多個 pack（coding/devops…）共用；read 附行號、edit 唯一性檢查、bash 用 spawnSync 捕捉 stderr。
 import { readFileSync, writeFileSync, existsSync, readdirSync, statSync } from 'node:fs';
-import { isAbsolute, join } from 'node:path';
+import { isAbsolute, join, relative } from 'node:path';
 import { spawnSync } from 'node:child_process';
 
 const txt = (s) => ({ content: [{ type: 'text', text: typeof s === 'string' ? s : JSON.stringify(s) }] });
@@ -13,6 +13,9 @@ const txt = (s) => ({ content: [{ type: 'text', text: typeof s === 'string' ? s
 export function createFsTools(cwd) {
   const readFiles = new Set();
   const abs = (p) => (isAbsolute(p) ? p : join(cwd, p));
+  // 寫檔限制在工作目錄內：逃逸 cwd（如 /tmp、/app）回 null。讀檔不限制。
+  const within = (p) => { const full = abs(p); const r = relative(cwd, full); return (r === '' || (!r.startsWith('..') && !isAbsolute(r))) ? full : null; };
+  const escapeErr = (path) => txt({ error: `只能寫在工作目錄內：${cwd}`, hint: '請用相對路徑（如 report.md）', path });
 
   const read = {
     name: 'read', label: '讀檔', readOnly: true,
@@ -38,14 +41,14 @@ export function createFsTools(cwd) {
   const write = {
     name: 'write', label: '寫檔', mutating: true, description: '建立或覆寫檔案',
     parameters: { type: 'object', properties: { path: { type: 'string' }, content: { type: 'string' } }, required: ['path', 'content'] },
-    execute: async (_id, { path, content }) => { const p = abs(path); writeFileSync(p, content ?? '', 'utf8'); readFiles.add(p); return txt({ written: path, bytes: Buffer.byteLength(content ?? '') }); },
+    execute: async (_id, { path, content }) => { const p = within(path); if (!p) return escapeErr(path); writeFileSync(p, content ?? '', 'utf8'); readFiles.add(p); return txt({ written: path, bytes: Buffer.byteLength(content ?? '') }); },
   };
   const edit = {
     name: 'edit', label: '編輯', mutating: true,
     description: '把 oldText 換成 newText。oldText 須唯一（多次出現需 replaceAll）。',
     parameters: { type: 'object', properties: { path: { type: 'string' }, oldText: { type: 'string' }, newText: { type: 'string' }, replaceAll: { type: 'boolean' } }, required: ['path', 'oldText', 'newText'] },
     execute: async (_id, { path, oldText, newText, replaceAll }) => {
-      const p = abs(path);
+      const p = within(path); if (!p) return escapeErr(path);
       if (!existsSync(p)) return txt({ error: '檔案不存在', path });
       const before = readFileSync(p, 'utf8');
       const n = before.split(oldText).length - 1;