hast 0.1.0__tar.gz

hast-0.1.0/.ai/config.yaml

@@ -0,0 +1,2 @@
+test_command: "pytest"
+ai_tool: "claude --dangerously-skip-permissions -p {prompt}"

hast-0.1.0/.ai/feedback/backlog.yaml

@@ -0,0 +1,16 @@
+items:
+- feedback_key: 2adc859ed77bff5f500920bc
+  title: '[workflow_friction] single command should convert feedback into executable
+    goals'
+  summary: manager has to run analyze/backlog/publish and then manually rewrite goals
+  first_seen: '2026-02-14T20:20:25.225068+09:00'
+  last_seen: '2026-02-14T20:20:25.225068+09:00'
+  count: 1
+  max_impact: high
+  avg_confidence: 0.9
+  sample_note_ids:
+  - note-20260214T202025225081+0900-2adc859e
+  status: accepted
+  decision_reason: meets gate (count=1, max_impact=high, avg_confidence=0.9)
+  recommended_change: Add automation to remove manual workaround.
+  owner: manager

hast-0.1.0/.ai/feedback/notes.jsonl

@@ -0,0 +1,3 @@
+{"actual": "manager has to run analyze/backlog/publish and then manually rewrite goals", "category": "workflow_friction", "confidence": 0.9, "evidence_ids": [], "expected": "single command should convert feedback into executable goals", "fingerprint": "2adc859ed77bff5f500920bc", "goal_id": "V1", "impact": "high", "note_id": "note-20260214T202025225081+0900-2adc859e", "phase": "plan", "run_id": null, "source": "worker_explicit", "timestamp": "2026-02-14T20:20:25.225068+09:00", "tool_name": null, "workaround": "manual multi-step loop"}
+{"actual": "auto reported generic allowed-scope error without file list", "category": "workflow_friction", "confidence": 0.9, "evidence_ids": [], "expected": "scope failure should show violating files immediately", "fingerprint": "5c02e0c339dfa34e5bdac1d8", "goal_id": null, "impact": "high", "note_id": "note-20260215T173540555707+0900-5c02e0c3", "phase": null, "run_id": null, "source": "worker_explicit", "timestamp": "2026-02-15T17:35:40.555694+09:00", "tool_name": "codex", "workaround": "open attempt yaml manually to find offending files"}
+{"actual": "dry-run emits very large context pack with full source, causing token/cognitive overload", "category": "workflow_friction", "confidence": 0.86, "evidence_ids": [], "expected": "dry-run should be concise by default", "fingerprint": "3fa8e47b9d83c432599abbab", "goal_id": null, "impact": "medium", "note_id": "note-20260215T174800305531+0900-3fa8e47b", "phase": null, "run_id": null, "source": "worker_explicit", "timestamp": "2026-02-15T17:48:00.305516+09:00", "tool_name": "codex", "workaround": "use head/sed to trim output manually"}

hast-0.1.0/.ai/goals.yaml

@@ -0,0 +1,28 @@
+goals:
+- id: V1
+  title: Dogfooding & Polish
+  status: active
+  children:
+  - id: V1.1
+    title: Improve dry-run mode
+    status: active
+    notes: dry-run은 파일을 수정하지 않으므로 dirty tree와 lock check를 건너뛰어야 함
+    test_files:
+    - tests/test_auto.py
+    allowed_changes:
+    - src/hast/core/auto.py
+- id: PX_2X
+  title: Productivity 2X Program
+  status: active
+  notes: Auto-generated by hast orchestrate.
+  children:
+  - id: PX_2X.1
+    title: Resolve [workflow_friction] single command should convert feedback into
+      executable goals
+    status: active
+    phase: plan
+    owner_agent: architect
+    feedback_key: 2adc859ed77bff5f500920bc
+    notes: 'feedback_key: 2adc859ed77bff5f500920bc\nsummary: manager has to run analyze/backlog/publish
+      and then manually rewrite goals\nrecommended_change: Add automation to remove
+      manual workaround.'

hast-0.1.0/.ai/handoffs/2026-02-10_150000.md

@@ -0,0 +1,39 @@
+---
+timestamp: "2026-02-10T15:00:00+09:00"
+status: complete
+goal_id: "V1"
+---
+
+## Done
+- hast context에 git 변경 요약(Recent Changes), 코드 구조(Code Overview) 섹션 추가
+- AST 기반 코드 분석 모듈(codetools.py): 구조 스냅샷, import 맵, impact 분석, 복잡도 체크
+- auto 프롬프트에 핸드오프 템플릿 pre-fill (goal_id, timestamp, 섹션 구조)
+- evaluate()에 복잡도 경고 (파일 400줄, 클래스 15메서드, __init__ 20속성)
+- hast init으로 프로젝트에 .ai/ 세팅, goals.yaml 작성
+
+## Key Decisions
+- code_overview는 max_context_bytes 트리밍 시 가장 먼저 제거 (참조 정보이므로)
+- 복잡도 위반은 경고만 (stderr), 실패 처리 아님
+- git_summary에 since_commit 없으면 최근 10개 커밋 표시
+- codetools는 Python AST만 지원 (언어 무관 설계이지만 시작은 Python)
+
+## Changed Files
+- src/hast/utils/codetools.py (신규, +206)
+- src/hast/utils/git.py (+51)
+- src/hast/core/context.py (+69)
+- src/hast/core/auto.py (+35)
+- tests/test_codetools.py (신규, +173)
+- tests/test_context.py (+75)
+- tests/test_auto.py (+45)
+
+## Next
+dogfooding에서 발견된 이슈 수정:
+1. Code Overview에서 test 파일 제외 (소스만 표시)
+2. dataclass를 "(0 methods)" 대신 fields 표시
+3. hast auto --dry-run이 dirty tree에서도 동작하도록
+4. context.py 452줄 → 리팩토링으로 400줄 이하로
+
+## Context Files
+1. src/hast/utils/codetools.py
+2. src/hast/core/context.py
+3. src/hast/core/auto.py

hast-0.1.0/.ai/handoffs/2026-02-10_181051.md

@@ -0,0 +1,24 @@
+---
+timestamp: "2026-02-10T18:10:51+0900"
+status: complete
+goal_id: "V1.2"
+---
+
+## Done
+dry-run 모드가 dirty tree에서도 에러 없이 동작하도록 수정. run_auto()에서 dry_run일 때 _acquire_lock() 호출 전에 분기하여 프롬프트만 출력하고 리턴.
+
+## Key Decisions
+- dry_run 분기를 lock 취득 전으로 이동: dry-run은 읽기 전용이므로 lock도 dirty check도 불필요
+- goal 로딩과 선택은 dry_run에서도 필요하므로 lock 밖으로 추출
+- 기존 non-dry-run 경로는 변경 없음 (lock + dirty check 유지)
+
+## Changed Files
+ src/hast/core/auto.py | 19 +++++++++++--------
+ tests/test_auto.py    | 37 +++++++++++++++++++++++++++++++++++++
+
+## Next
+V1.3 또는 다음 active goal 진행
+
+## Context Files
+- src/hast/core/auto.py
+- tests/test_auto.py

hast-0.1.0/.ai/plan_note.md

@@ -0,0 +1,72 @@
+# Codex Tool-Improvement Plan Note
+
+## Intent
+- Primary objective of this Codex session: improve hast itself for LLM operators.
+- If a task does not improve operator throughput, safety, or cognitive load, deprioritize it.
+- Interpersonal preference: call assistant "Frost" and use informal Korean tone (banmal) by default.
+
+## Session Start Protocol (always)
+- Step 0: Read this note first.
+- Step 1: Inspect latest friction signals (.ai/feedback/backlog.yaml, recent no-progress attempts, scope violations).
+- Step 2: Pick one smallest high-leverage fix that can be validated by tests.
+- Step 3: Ship the fix with explicit guardrails and low-risk rollout.
+
+## Improvement Priorities
+- P1: Question queue + resume loop (workers ask instead of repeating no-progress retries).
+- P2: Strict write boundary enforcement with narrow generated-file exceptions only.
+- P3: Retry strategy by failure class (scope/env/spec/test) instead of blind retries.
+- P4: Low-token session handoff format (focus pack + JSON outputs + explicit next action).
+- P5: Telemetry -> backlog -> publish pipeline with explicit human/manager trigger.
+
+## Decision Heuristics
+- Prefer smaller diff with clear verification over broad refactor.
+- If ambiguity blocks progress, ask a concrete multiple-choice question.
+- Keep safety invariants stronger than speed.
+
+## Claude Code Friction Log
+- [High] Scope exceptions for auto-generated files are too manual.
+  - Symptom: pre-commit updates (docs/ARCHITECTURE.md, core/protocols.py, .codemap.json) trigger out-of-scope failures.
+  - Direction: keep global allowlist in config (always_allow_changes) with narrow patterns.
+- [High] Scope failure diagnosis is not explicit enough.
+  - Symptom: "changes outside allowed scope" without immediate violating-file list in operator-facing output.
+  - Direction: print violating file paths directly in failure reason/summary.
+- [Medium] Clean-tree enforcement is too strict for .ai operational artifacts.
+  - Symptom: init/run artifacts create dirty state and force extra commit churn.
+  - Direction: treat operational .ai generated files as ignored/non-blocking by default where safe.
+- [Medium] Recovery after failed attempt is too manual.
+  - Symptom: blocked -> re-activate -> commit hygiene -> rerun is multi-step.
+  - Direction: add one-command recovery path (scope fix + retry flow).
+- [Low] Non-interactive runs still produce clarification questions from worker model.
+  - Symptom: worker asks questions and makes no edits -> no-progress.
+  - Direction: strengthen non-interactive execution contract in context/prompt and add ask-via-queue behavior.
+
+## Claude Design-Support Ideas (Classified)
+- [Accepted / Done] Global generated-file exceptions.
+  - Idea: config-level always-allowed list for pre-commit generated files.
+  - Decision: completed via `always_allow_changes` + gate/auto integration.
+- [Accepted / Next] `hast explore` for design-question analysis.
+  - Idea: codebase impact map + candidate approaches + trade-off report before auto.
+  - Why accepted: expands hast from "mechanical execution" to "design support".
+  - Guardrail: read-only command, no file writes by default.
+- [Accepted / Next] plan intelligence for decision-aware decomposition.
+  - Idea: classify goals into `auto_eligible` vs `decision_required`, mark blocked_by decision.
+  - Why accepted: lowers operator cognitive load and prevents blind auto retries.
+- [Accepted / Next] failure -> learning assist loop.
+  - Idea: on failure, suggest decision ticket creation and prerequisite-goal insertion.
+  - Why accepted: converts dead-end failures into explicit next actions.
+  - Guardrail: suggestion-first; no automatic mutation of goal graph without confirmation.
+- [Accepted with Constraints / Later] stronger decision spike with code-level prototypes.
+  - Idea: compare alternatives by real diffs/tests/impact in structured table.
+  - Why partially deferred: high implementation/safety cost without strict isolation.
+  - Prerequisite: robust per-alternative sandbox/worktree isolation and deterministic scoring.
+
+## Execution Queue (Design Support Track)
+- [Done] Q1: Add `hast explore` (read-only) with JSON + markdown report output.
+- [Done] Q2: Extend `hast plan` with `auto_eligible`, `decision_required`, `blocked_by` annotations.
+- [Done] Q3: Add failure-assist prompts in auto (`create decision?`, `add prerequisite goal?`).
+- [Done] Q4: Upgrade decision spike comparator with diff-aware ranking and surfaced metrics.
+- [Done] Q5: Add spike comparator policy (`spike_policy.yaml`) for deterministic defaults + optional duration tie-break.
+- [Done] Q5.1: Add one-line winner explanation surfaced in spike summary/CLI/JSON/evidence.
+- [Done] Q5.2: Keep default reason short (`why:<code>`) and expose structured comparison + opt-in `--explain` detail.
+- [Done] Q6: Add guarded auto-accept for decision spike (`--accept-if-*`) with conservative checks and explicit skip reasons.
+- [Done] Q7: Add bundled security gate policy (`security_policy.yaml`) with gitleaks/semgrep/trivy|grype checks and missing-tool policy.

hast-0.1.0/.ai/policies/execution_queue_policy.yaml

@@ -0,0 +1,4 @@
+version: v1
+default_lease_ttl_minutes: 30
+max_lease_ttl_minutes: 240
+max_active_claims_per_worker: 1

hast-0.1.0/.ai/policies/feedback_policy.yaml

@@ -0,0 +1,18 @@
+version: v1
+enabled: true
+promotion:
+  min_frequency: 3
+  min_confidence: 0.6
+  auto_promote_impact: high
+dedup:
+  strategy: fingerprint_v1
+publish:
+  enabled: false
+  backend: codeberg
+  repository: ""
+  token_env: CODEBERG_TOKEN
+  base_url: https://codeberg.org
+  labels:
+    - bot-reported
+    - hast-feedback
+  min_status: accepted

hast-0.1.0/.ai/policies/model_routing.yaml

@@ -0,0 +1,9 @@
+version: v1
+defaults:
+  normal: worker
+  high_risk: architect
+rules:
+  - when_phase: plan
+    use: architect
+  - when_phase: adversarial
+    use: tester

hast-0.1.0/.ai/policies/observability_policy.yaml

@@ -0,0 +1,8 @@
+version: v1
+thresholds:
+  min_goal_runs: 5
+  first_pass_success_rate_min: 0.40
+  block_rate_max: 0.35
+  security_incident_rate_max: 0.20
+  claim_collision_rate_max: 0.15
+  mttr_minutes_max: 180

hast-0.1.0/.ai/policies/retry_policy.yaml

@@ -0,0 +1,13 @@
+version: v1
+default_max_retries: 3
+no_repeat_same_classification: true
+max_retries_by_classification:
+  spec-ambiguous: 1
+  test-defect: 2
+  impl-defect: 3
+  env-flaky: 2
+  dep-build: 1
+  security: 0
+actions:
+  exceed_limit: block
+  no_repeat_same: escalate

hast-0.1.0/.ai/policies/risk_policy.yaml

@@ -0,0 +1,32 @@
+version: v1
+max_score: 100
+success_base_score: 15
+sensitive_path_weight: 20
+security_failed_check_bonus: 15
+security_missing_tool_bonus: 5
+security_expired_ignore_bonus: 10
+security_force_block_on_failed_checks: true
+security_force_block_on_missing_tools: false
+block_threshold: 95
+rollback_threshold: 80
+base_score_by_classification:
+  spec-ambiguous: 55
+  test-defect: 45
+  impl-defect: 40
+  env-flaky: 35
+  dep-build: 70
+  security: 90
+phase_weights:
+  plan: 5
+  implement: 10
+  bdd-red: 10
+  bdd-green: 15
+  gate: 20
+  merge: 25
+  legacy: 10
+sensitive_path_patterns:
+  - "src/**/auth*.py"
+  - "src/**/security*.py"
+  - ".github/workflows/*"
+  - "pyproject.toml"
+  - "requirements*.txt"

hast-0.1.0/.ai/policies/security_policy.yaml

@@ -0,0 +1,19 @@
+version: v1
+enabled: false
+fail_on_missing_tools: false
+audit_file: ".ai/security/audit.jsonl"
+dependency_scanner_mode: either
+gitleaks_enabled: true
+gitleaks_command: "gitleaks detect --no-git --source ."
+semgrep_enabled: true
+semgrep_command: "semgrep scan --config auto --error"
+trivy_enabled: true
+trivy_command: "trivy fs --severity HIGH,CRITICAL --exit-code 1 ."
+grype_enabled: true
+grype_command: "grype . --fail-on high"
+# ignore_rules:
+#   - id: "SG-001"
+#     checks: ["semgrep"]
+#     pattern: "known false positive pattern"
+#     reason: "tracked in SEC-123"
+#     expires_on: "2026-12-31"

hast-0.1.0/.ai/policies/spike_policy.yaml

@@ -0,0 +1,4 @@
+version: v1
+prefer_lower_diff_lines: true
+prefer_lower_changed_files: true
+include_duration_tiebreaker: false

hast-0.1.0/.ai/policies/transition_policy.yaml

@@ -0,0 +1,7 @@
+version: v1
+states:
+  - planned
+  - red_verified
+  - green_verified
+  - review_ready
+  - merged

hast-0.1.0/.ai/rules.md

@@ -0,0 +1,9 @@
+# .ai/rules.md
+
+## Verification
+- Run tests before committing
+- Commit only after tests pass
+
+## Commit Format
+{type}({goal_id}): {description}
+types: feat, fix, refactor, test, docs, chore

hast-0.1.0/.ai/schemas/decision_evidence.schema.yaml

@@ -0,0 +1,31 @@
+version: decision_evidence.v1
+type: jsonl_row
+required:
+  - timestamp
+  - event_type
+  - decision_id
+  - goal_id
+  - winner_id
+  - winner_eligible
+  - winner_score
+  - ranking
+  - classification
+  - action_taken
+properties:
+  timestamp: "ISO-8601 datetime string"
+  event_type: "decision_evaluation"
+  decision_id: "Decision ticket id"
+  goal_id: "Related goal id"
+  decision_file: "Path to decision file"
+  question: "Decision question text"
+  winner_id: "Selected alternative id"
+  winner_eligible: "Boolean threshold pass/fail"
+  winner_score: "Weighted score (0-100)"
+  ranking: "List of alternatives with score/eligibility"
+  status: "Decision status at logging time"
+  classification: "decision-accepted | decision-blocked"
+  action_taken: "advance | escalate"
+  actor: "Who evaluated the decision"
+  run_id: "Optional .ai/runs/<run_id> link"
+  evidence_refs: "Optional refs to spike/test evidence"
+  schema_version: "decision_evidence.v1"

hast-0.1.0/.ai/sessions/20260215T173031+0900_codex_V1.1.brief.md

@@ -0,0 +1,17 @@
+# Focus Brief (codex)
+
+## Launch
+`codex exec .ai/sessions/20260215T173031+0900_codex_V1.1.prompt.txt`
+
+## Prompt File
+`.ai/sessions/20260215T173031+0900_codex_V1.1.prompt.txt`
+
+## Goal
+- id: `V1.1`
+- title: Improve dry-run mode
+- phase: `legacy`
+- uncertainty: `unknown`
+- allowed changes:
+  - `src/hast/core/auto.py`
+- test files:
+  - `tests/test_auto.py`