PyPI - langchain-agentx-python - Versions diffs - 0.1__py3-none-any.whl - Mend

langchain-agentx-python 0.1__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (354) hide show

langchain_agentx/__init__.py +46 -0
langchain_agentx/command/__init__.py +28 -0
langchain_agentx/command/builtin/__init__.py +25 -0
langchain_agentx/command/builtin/clear.py +33 -0
langchain_agentx/command/builtin/compact.py +33 -0
langchain_agentx/command/builtin/memory.py +37 -0
langchain_agentx/command/builtin/reload_plugins.py +42 -0
langchain_agentx/command/context.py +30 -0
langchain_agentx/command/dispatcher.py +183 -0
langchain_agentx/command/registry.py +110 -0
langchain_agentx/command/result.py +25 -0
langchain_agentx/command/types.py +41 -0
langchain_agentx/config/__init__.py +14 -0
langchain_agentx/loop/__init__.py +47 -0
langchain_agentx/loop/config/__init__.py +20 -0
langchain_agentx/loop/config/agent_config.py +66 -0
langchain_agentx/loop/config/agent_loop_config.py +72 -0
langchain_agentx/loop/config/model_context_resolver.py +105 -0
langchain_agentx/loop/config/runtime_settings.py +50 -0
langchain_agentx/loop/config/token_estimator.py +133 -0
langchain_agentx/loop/context/__init__.py +66 -0
langchain_agentx/loop/context/blocking_guard.py +97 -0
langchain_agentx/loop/context/compaction_service.py +60 -0
langchain_agentx/loop/context/message_utils.py +56 -0
langchain_agentx/loop/context/pipeline.py +127 -0
langchain_agentx/loop/context/settings.py +103 -0
langchain_agentx/loop/context/stages/__init__.py +29 -0
langchain_agentx/loop/context/stages/autocompact.py +140 -0
langchain_agentx/loop/context/stages/base.py +32 -0
langchain_agentx/loop/context/stages/collapse.py +76 -0
langchain_agentx/loop/context/stages/microcompact.py +76 -0
langchain_agentx/loop/context/stages/noop.py +33 -0
langchain_agentx/loop/context/stages/snip.py +71 -0
langchain_agentx/loop/context/stages/tool_result_budget.py +69 -0
langchain_agentx/loop/context/types.py +79 -0
langchain_agentx/loop/exit/__init__.py +1 -0
langchain_agentx/loop/exit/exit_logic.py +320 -0
langchain_agentx/loop/exit/reason_codes.py +39 -0
langchain_agentx/loop/graph/__init__.py +5 -0
langchain_agentx/loop/graph/builtin_loop_control.py +197 -0
langchain_agentx/loop/graph/factory.py +1409 -0
langchain_agentx/loop/graph/graph_edges.py +820 -0
langchain_agentx/loop/hook/__init__.py +48 -0
langchain_agentx/loop/hook/async_hook_runner.py +62 -0
langchain_agentx/loop/hook/config.py +280 -0
langchain_agentx/loop/hook/engine.py +321 -0
langchain_agentx/loop/hook/executors/__init__.py +9 -0
langchain_agentx/loop/hook/executors/agent.py +107 -0
langchain_agentx/loop/hook/executors/command.py +230 -0
langchain_agentx/loop/hook/executors/http.py +114 -0
langchain_agentx/loop/hook/executors/prompt.py +92 -0
langchain_agentx/loop/hook/graph_wiring.py +134 -0
langchain_agentx/loop/hook/registry.py +262 -0
langchain_agentx/loop/hook/trust.py +43 -0
langchain_agentx/loop/hook/types.py +110 -0
langchain_agentx/loop/injection/__init__.py +13 -0
langchain_agentx/loop/injection/dedup.py +74 -0
langchain_agentx/loop/loop_abort.py +36 -0
langchain_agentx/loop/model/__init__.py +1 -0
langchain_agentx/loop/model/model_node.py +648 -0
langchain_agentx/loop/model/model_nodes.py +661 -0
langchain_agentx/loop/model/orphan_tool_results.py +38 -0
langchain_agentx/loop/model/retrier.py +307 -0
langchain_agentx/loop/model/retry_bridge.py +58 -0
langchain_agentx/loop/model/retry_events.py +35 -0
langchain_agentx/loop/model/retry_policy.py +56 -0
langchain_agentx/loop/model/schema_and_format.py +153 -0
langchain_agentx/loop/model/tool_and_model_binding.py +227 -0
langchain_agentx/loop/model/tool_call_degradation_corrector.py +443 -0
langchain_agentx/loop/model/tool_transcript_guard.py +225 -0
langchain_agentx/loop/prompt/__init__.py +95 -0
langchain_agentx/loop/prompt/builder.py +61 -0
langchain_agentx/loop/prompt/builtin.py +218 -0
langchain_agentx/loop/prompt/compact.py +408 -0
langchain_agentx/loop/prompt/sections.py +120 -0
langchain_agentx/loop/runtime/__init__.py +19 -0
langchain_agentx/loop/runtime/context.py +34 -0
langchain_agentx/loop/runtime/context_factory.py +107 -0
langchain_agentx/loop/runtime/subagent_execution_paths.py +68 -0
langchain_agentx/loop/subagent/__init__.py +53 -0
langchain_agentx/loop/subagent/async_runner.py +215 -0
langchain_agentx/loop/subagent/context.py +209 -0
langchain_agentx/loop/subagent/fork_worktree_notice.py +25 -0
langchain_agentx/loop/subagent/graph.py +72 -0
langchain_agentx/loop/subagent/orchestrator.py +391 -0
langchain_agentx/loop/subagent/progress.py +30 -0
langchain_agentx/loop/subagent/prompt.py +52 -0
langchain_agentx/loop/subagent/runner.py +504 -0
langchain_agentx/loop/subagent/transcript.py +172 -0
langchain_agentx/memory/__init__.py +2 -0
langchain_agentx/memory/instruction/__init__.py +12 -0
langchain_agentx/memory/instruction/loader.py +325 -0
langchain_agentx/memory/instruction/resolver.py +24 -0
langchain_agentx/memory/instruction/runtime.py +83 -0
langchain_agentx/memory/instruction/sections.py +83 -0
langchain_agentx/memory/instruction/types.py +59 -0
langchain_agentx/memory/memdir/__init__.py +77 -0
langchain_agentx/memory/memdir/age.py +36 -0
langchain_agentx/memory/memdir/agent_memory.py +380 -0
langchain_agentx/memory/memdir/extractor.py +309 -0
langchain_agentx/memory/memdir/loader.py +187 -0
langchain_agentx/memory/memdir/paths.py +63 -0
langchain_agentx/memory/memdir/recall.py +45 -0
langchain_agentx/memory/memdir/runtime.py +43 -0
langchain_agentx/memory/memdir/scan.py +135 -0
langchain_agentx/memory/memdir/types.py +104 -0
langchain_agentx/memory/session/__init__.py +76 -0
langchain_agentx/memory/session/compact_bridge.py +208 -0
langchain_agentx/memory/session/prompts.py +172 -0
langchain_agentx/memory/session/session_memory.py +282 -0
langchain_agentx/observability/__init__.py +67 -0
langchain_agentx/observability/evaluation/__init__.py +17 -0
langchain_agentx/observability/evaluation/checkers/__init__.py +18 -0
langchain_agentx/observability/evaluation/checkers/base.py +34 -0
langchain_agentx/observability/evaluation/checkers/compaction.py +38 -0
langchain_agentx/observability/evaluation/checkers/degradation.py +50 -0
langchain_agentx/observability/evaluation/checkers/exit_quality.py +42 -0
langchain_agentx/observability/evaluation/checkers/session_memory.py +45 -0
langchain_agentx/observability/evaluation/checkers/tool_behavior.py +53 -0
langchain_agentx/observability/evaluation/retention_scheduler.py +67 -0
langchain_agentx/observability/evaluation/service.py +102 -0
langchain_agentx/observability/evaluation/state.py +32 -0
langchain_agentx/observability/evaluation/store.py +258 -0
langchain_agentx/observability/events/__init__.py +15 -0
langchain_agentx/observability/events/langchain_agentx_event_adapter.py +832 -0
langchain_agentx/observability/logging/__init__.py +15 -0
langchain_agentx/observability/logging/debug_burst.py +95 -0
langchain_agentx/observability/logging/logging_config.py +178 -0
langchain_agentx/observability/logging/logging_contract.py +65 -0
langchain_agentx/observability/replay/__init__.py +35 -0
langchain_agentx/observability/replay/cli.py +91 -0
langchain_agentx/observability/replay/service.py +83 -0
langchain_agentx/observability/replay/store.py +278 -0
langchain_agentx/observability/replay/ui.py +47 -0
langchain_agentx/observability/trace/__init__.py +25 -0
langchain_agentx/observability/trace/collector.py +560 -0
langchain_agentx/observability/trace/event_emitter.py +183 -0
langchain_agentx/observability/trace/hook_event_emitter.py +49 -0
langchain_agentx/observability/trace/models.py +144 -0
langchain_agentx/observability/trace/sqlite_store.py +873 -0
langchain_agentx/observability/trace/trace_callback.py +295 -0
langchain_agentx/observability/trace/trace_lifecycle_collector.py +114 -0
langchain_agentx/plugin/__init__.py +26 -0
langchain_agentx/plugin/builtin.py +53 -0
langchain_agentx/plugin/config.py +113 -0
langchain_agentx/plugin/loader.py +386 -0
langchain_agentx/plugin/manifest.py +154 -0
langchain_agentx/plugin/registries.py +211 -0
langchain_agentx/plugin/types.py +142 -0
langchain_agentx/provider/__init__.py +27 -0
langchain_agentx/provider/anthropic.py +121 -0
langchain_agentx/provider/compatible_chat_openai.py +86 -0
langchain_agentx/provider/env.py +45 -0
langchain_agentx/provider/model_profile.py +156 -0
langchain_agentx/provider/openai.py +89 -0
langchain_agentx/session/__init__.py +17 -0
langchain_agentx/session/agent_session.py +320 -0
langchain_agentx/session/conversation_factory.py +87 -0
langchain_agentx/session/conversation_recovery.py +156 -0
langchain_agentx/session/conversation_session.py +198 -0
langchain_agentx/session/factory.py +143 -0
langchain_agentx/session/protocol.py +25 -0
langchain_agentx/task_runtime/__init__.py +113 -0
langchain_agentx/task_runtime/core/__init__.py +51 -0
langchain_agentx/task_runtime/core/ids.py +33 -0
langchain_agentx/task_runtime/core/interfaces.py +115 -0
langchain_agentx/task_runtime/core/notification_priority.py +19 -0
langchain_agentx/task_runtime/core/types.py +136 -0
langchain_agentx/task_runtime/integrations/__init__.py +33 -0
langchain_agentx/task_runtime/integrations/loop_adapter.py +91 -0
langchain_agentx/task_runtime/integrations/loop_integration.py +61 -0
langchain_agentx/task_runtime/integrations/prefetch_providers.py +108 -0
langchain_agentx/task_runtime/integrations/provider_factory.py +103 -0
langchain_agentx/task_runtime/integrations/queued_command_provider.py +184 -0
langchain_agentx/task_runtime/integrations/sqlite_queued_command_provider.py +338 -0
langchain_agentx/task_runtime/integrations/tool_use_summary_provider.py +254 -0
langchain_agentx/task_runtime/orchestrator/__init__.py +5 -0
langchain_agentx/task_runtime/orchestrator/runtime.py +386 -0
langchain_agentx/task_runtime/output/__init__.py +5 -0
langchain_agentx/task_runtime/output/sink.py +64 -0
langchain_agentx/task_runtime/policy/__init__.py +11 -0
langchain_agentx/task_runtime/policy/withhold_visibility.py +32 -0
langchain_agentx/task_runtime/queue/__init__.py +5 -0
langchain_agentx/task_runtime/queue/in_memory.py +55 -0
langchain_agentx/task_runtime/skill_prefetch/__init__.py +4 -0
langchain_agentx/task_runtime/skill_prefetch/attachments.py +46 -0
langchain_agentx/task_runtime/skill_prefetch/models.py +37 -0
langchain_agentx/task_runtime/skill_prefetch/provider.py +344 -0
langchain_agentx/task_runtime/store/__init__.py +6 -0
langchain_agentx/task_runtime/store/in_memory.py +81 -0
langchain_agentx/task_runtime/store/sqlite_store.py +281 -0
langchain_agentx/task_runtime/tasks/__init__.py +76 -0
langchain_agentx/task_runtime/tasks/ai_analysis/__init__.py +15 -0
langchain_agentx/task_runtime/tasks/ai_analysis/base.py +41 -0
langchain_agentx/task_runtime/tasks/ai_analysis/evaluation.py +67 -0
langchain_agentx/task_runtime/tasks/ai_analysis/registry.py +36 -0
langchain_agentx/task_runtime/tasks/ai_analysis/scheduler.py +70 -0
langchain_agentx/task_runtime/tasks/base/__init__.py +6 -0
langchain_agentx/task_runtime/tasks/base/contracts.py +24 -0
langchain_agentx/task_runtime/tasks/custom/__init__.py +7 -0
langchain_agentx/task_runtime/tasks/custom/executor.py +60 -0
langchain_agentx/task_runtime/tasks/custom/notification.py +7 -0
langchain_agentx/task_runtime/tasks/custom/semantics.py +13 -0
langchain_agentx/task_runtime/tasks/custom/spec.py +33 -0
langchain_agentx/task_runtime/tasks/dream_task/__init__.py +15 -0
langchain_agentx/task_runtime/tasks/dream_task/executor.py +61 -0
langchain_agentx/task_runtime/tasks/dream_task/notification.py +19 -0
langchain_agentx/task_runtime/tasks/dream_task/semantics.py +13 -0
langchain_agentx/task_runtime/tasks/dream_task/spec.py +35 -0
langchain_agentx/task_runtime/tasks/dream_task/state.py +17 -0
langchain_agentx/task_runtime/tasks/in_process_teammate/__init__.py +12 -0
langchain_agentx/task_runtime/tasks/in_process_teammate/executor.py +36 -0
langchain_agentx/task_runtime/tasks/in_process_teammate/notification.py +25 -0
langchain_agentx/task_runtime/tasks/in_process_teammate/semantics.py +13 -0
langchain_agentx/task_runtime/tasks/in_process_teammate/spec.py +63 -0
langchain_agentx/task_runtime/tasks/local_agent/__init__.py +14 -0
langchain_agentx/task_runtime/tasks/local_agent/executor.py +33 -0
langchain_agentx/task_runtime/tasks/local_agent/notification.py +21 -0
langchain_agentx/task_runtime/tasks/local_agent/runner.py +43 -0
langchain_agentx/task_runtime/tasks/local_agent/semantics.py +13 -0
langchain_agentx/task_runtime/tasks/local_agent/spec.py +31 -0
langchain_agentx/task_runtime/tasks/local_bash/__init__.py +13 -0
langchain_agentx/task_runtime/tasks/local_bash/executor.py +95 -0
langchain_agentx/task_runtime/tasks/local_bash/notification.py +22 -0
langchain_agentx/task_runtime/tasks/local_bash/semantics.py +13 -0
langchain_agentx/task_runtime/tasks/local_bash/spec.py +55 -0
langchain_agentx/task_runtime/tasks/remote_agent/__init__.py +19 -0
langchain_agentx/task_runtime/tasks/remote_agent/backend.py +76 -0
langchain_agentx/task_runtime/tasks/remote_agent/executor.py +37 -0
langchain_agentx/task_runtime/tasks/remote_agent/notification.py +22 -0
langchain_agentx/task_runtime/tasks/remote_agent/semantics.py +13 -0
langchain_agentx/task_runtime/tasks/remote_agent/spec.py +34 -0
langchain_agentx/task_runtime/tasks/trace_cleanup/__init__.py +19 -0
langchain_agentx/task_runtime/tasks/trace_cleanup/bootstrap.py +95 -0
langchain_agentx/task_runtime/tasks/trace_cleanup/executor.py +66 -0
langchain_agentx/task_runtime/tasks/trace_cleanup/scheduler.py +169 -0
langchain_agentx/tool_runtime/__init__.py +90 -0
langchain_agentx/tool_runtime/adapter.py +365 -0
langchain_agentx/tool_runtime/base.py +319 -0
langchain_agentx/tool_runtime/errors.py +190 -0
langchain_agentx/tool_runtime/identical_call_cache.py +110 -0
langchain_agentx/tool_runtime/loader.py +195 -0
langchain_agentx/tool_runtime/models.py +260 -0
langchain_agentx/tool_runtime/permission_context.py +78 -0
langchain_agentx/tool_runtime/pipeline.py +621 -0
langchain_agentx/tool_runtime/policy.py +447 -0
langchain_agentx/tool_runtime/registry.py +81 -0
langchain_agentx/tool_runtime/resolvers/__init__.py +27 -0
langchain_agentx/tool_runtime/resolvers/agent_session.py +125 -0
langchain_agentx/tool_runtime/resolvers/background.py +32 -0
langchain_agentx/tool_runtime/resolvers/base.py +20 -0
langchain_agentx/tool_runtime/resolvers/conversation.py +22 -0
langchain_agentx/tool_runtime/resolvers/workflow.py +73 -0
langchain_agentx/tool_runtime/session_store.py +132 -0
langchain_agentx/tool_runtime/smoke_test_runtime.py +294 -0
langchain_agentx/tool_runtime/state_bridge.py +164 -0
langchain_agentx/tools/__init__.py +26 -0
langchain_agentx/tools/agent/__init__.py +9 -0
langchain_agentx/tools/agent/backend.py +53 -0
langchain_agentx/tools/agent/built_in/__init__.py +19 -0
langchain_agentx/tools/agent/built_in/agentx_guide.py +65 -0
langchain_agentx/tools/agent/built_in/explore.py +80 -0
langchain_agentx/tools/agent/built_in/general.py +57 -0
langchain_agentx/tools/agent/built_in/plan.py +89 -0
langchain_agentx/tools/agent/built_in/statusline_setup.py +64 -0
langchain_agentx/tools/agent/built_in/verification.py +120 -0
langchain_agentx/tools/agent/builtin_subagent_loader.py +89 -0
langchain_agentx/tools/agent/cwd_resolution.py +119 -0
langchain_agentx/tools/agent/limits.py +26 -0
langchain_agentx/tools/agent/loader.py +270 -0
langchain_agentx/tools/agent/models.py +85 -0
langchain_agentx/tools/agent/prompt.py +120 -0
langchain_agentx/tools/agent/registry/__init__.py +18 -0
langchain_agentx/tools/agent/registry/config.py +29 -0
langchain_agentx/tools/agent/registry/registry.py +47 -0
langchain_agentx/tools/agent/scope.py +137 -0
langchain_agentx/tools/agent/tool.py +256 -0
langchain_agentx/tools/bash/__init__.py +9 -0
langchain_agentx/tools/bash/ast_security.py +571 -0
langchain_agentx/tools/bash/backend.py +1447 -0
langchain_agentx/tools/bash/bash_hardening.py +734 -0
langchain_agentx/tools/bash/bash_runtime_contract.py +41 -0
langchain_agentx/tools/bash/cwd_reporter.py +95 -0
langchain_agentx/tools/bash/limits.py +71 -0
langchain_agentx/tools/bash/mode_validation.py +282 -0
langchain_agentx/tools/bash/models.py +131 -0
langchain_agentx/tools/bash/observability.py +148 -0
langchain_agentx/tools/bash/output_utils.py +200 -0
langchain_agentx/tools/bash/path_security.py +2429 -0
langchain_agentx/tools/bash/prompt.py +68 -0
langchain_agentx/tools/bash/read_only_validation.py +589 -0
langchain_agentx/tools/bash/result_presenter.py +324 -0
langchain_agentx/tools/bash/sandbox_decision.py +133 -0
langchain_agentx/tools/bash/security.py +311 -0
langchain_agentx/tools/bash/sed_edit_parser.py +243 -0
langchain_agentx/tools/bash/sed_validation.py +163 -0
langchain_agentx/tools/bash/semantics.py +111 -0
langchain_agentx/tools/bash/session_manager.py +205 -0
langchain_agentx/tools/bash/session_runtime.py +290 -0
langchain_agentx/tools/bash/shell_locator.py +191 -0
langchain_agentx/tools/bash/task_runtime.py +91 -0
langchain_agentx/tools/bash/tool.py +939 -0
langchain_agentx/tools/bash/windows_shell_quoting.py +45 -0
langchain_agentx/tools/glob/__init__.py +9 -0
langchain_agentx/tools/glob/models.py +57 -0
langchain_agentx/tools/glob/pagination.py +30 -0
langchain_agentx/tools/glob/prompt.py +24 -0
langchain_agentx/tools/glob/rg_list_backend.py +139 -0
langchain_agentx/tools/glob/rg_pattern.py +44 -0
langchain_agentx/tools/glob/tool.py +327 -0
langchain_agentx/tools/grep/__init__.py +7 -0
langchain_agentx/tools/grep/backend.py +375 -0
langchain_agentx/tools/grep/models.py +127 -0
langchain_agentx/tools/grep/prompt.py +30 -0
langchain_agentx/tools/grep/rg_subprocess_controller.py +114 -0
langchain_agentx/tools/grep/tool.py +475 -0
langchain_agentx/tools/read/__init__.py +9 -0
langchain_agentx/tools/read/backend.py +415 -0
langchain_agentx/tools/read/limits.py +67 -0
langchain_agentx/tools/read/models.py +156 -0
langchain_agentx/tools/read/prompt.py +73 -0
langchain_agentx/tools/read/tool.py +494 -0
langchain_agentx/tools/ripgrep_plugin_exclusions.py +137 -0
langchain_agentx/tools/skill/__init__.py +4 -0
langchain_agentx/tools/skill/argument_substitution.py +80 -0
langchain_agentx/tools/skill/loader.py +196 -0
langchain_agentx/tools/skill/models.py +88 -0
langchain_agentx/tools/skill/policy.py +80 -0
langchain_agentx/tools/skill/prompt.py +35 -0
langchain_agentx/tools/skill/tool.py +222 -0
langchain_agentx/utils/__init__.py +0 -0
langchain_agentx/utils/cwd.py +124 -0
langchain_agentx/utils/host_platform.py +112 -0
langchain_agentx/utils/path_hierarchy.py +48 -0
langchain_agentx/utils/path_user_input.py +66 -0
langchain_agentx/utils/rg_executable.py +18 -0
langchain_agentx/utils/subprocess_text.py +101 -0
langchain_agentx/utils/temp_paths.py +77 -0
langchain_agentx/utils/unc_path.py +25 -0
langchain_agentx/utils/win_reserved_paths.py +51 -0
langchain_agentx/workflow/__init__.py +7 -0
langchain_agentx/workflow/base.py +97 -0
langchain_agentx/workflow/batch.py +55 -0
langchain_agentx/workflow/dag.py +54 -0
langchain_agentx/workspace/__init__.py +13 -0
langchain_agentx/workspace/config.py +140 -0
langchain_agentx/workspace/path_key_normalizer.py +30 -0
langchain_agentx/workspace/resolver.py +74 -0
langchain_agentx/workspace/validators.py +41 -0
langchain_agentx_python-0.1.dist-info/LICENSE +201 -0
langchain_agentx_python-0.1.dist-info/METADATA +513 -0
langchain_agentx_python-0.1.dist-info/RECORD +354 -0
langchain_agentx_python-0.1.dist-info/WHEEL +5 -0
langchain_agentx_python-0.1.dist-info/top_level.txt +1 -0

langchain_agentx/tool_runtime/pipeline.py ADDED Viewed

@@ -0,0 +1,621 @@
+"""
+runtime/pipeline.py — 工具执行管道与输出大小管控
+职责：
+    ToolOutputManager：工具输出大小管控，超限时截断并持久化到文件，
+    向模型提供摘要 + overflow_file 路径，防止超大输出膨胀 context window。
+    ToolExecutorPipeline：统一编排工具生命周期的 10 步执行顺序，
+    处理所有短路场景（schema 错误、validate 失败、权限拒绝、执行异常），
+    确保始终返回结构化的 ToolResultEnvelope。
+    PermissionAskInterrupt：check_permissions 返回 ask 且处于交互模式时抛出，
+    由 LangGraph checkpointer + HumanInTheLoopMiddleware 捕获并弹出人机确认。
+    headless=True 时 ask 自动降级为 deny，不抛异常。
+与 CC 对比：
+    CC 的 maxResultSizeChars 方案：当工具输出超过阈值时，将完整内容写入文件，
+    Claude 收到 preview + 文件路径。本框架 ToolOutputManager 实现等价逻辑。
+    CC 中 Read 工具将 maxResultSizeChars 设为 Infinity（自带分页），
+    对应本框架 RuntimeTool.never_truncate=True。
+    CC 中工具执行由 ToolNode 直接调用工具函数，异常处理分散在各工具内。
+    本框架将完整生命周期收敛到 ToolExecutorPipeline，工具只需实现业务逻辑。
+    CC 中 headless/print 模式通过 shouldAvoidPermissionPrompts=True 使 ask→deny。
+    本框架等价实现：ToolExecutorPipeline(headless=True) 时 ask 结果直接转 blocked。
+    同参重复调用：
+        RuntimeTool.dedupe_identical_calls=True 时，在权限通过后、invoke 前查询
+        IdenticalCallMemo；命中则直接返回带 Hint 的 ToolResultEnvelope（不执行 invoke），
+        作为“软提示防重复”策略的执行层硬约束替代。
+"""
+from __future__ import annotations
+import asyncio
+import logging
+import os
+import time
+from typing import Any
+from pydantic import ValidationError
+from .base import RuntimeTool
+from .errors import (
+    blocked_envelope,
+    exception_to_envelope,
+    validation_error_envelope,
+)
+from .identical_call_cache import (
+    IdenticalCallMemo,
+    dedup_cache_key,
+    envelope_with_dedup_notice,
+)
+from .models import AuthorizationDecision, ToolExecutionContext, ToolResultEnvelope
+from .resolvers import PermissionResolver
+from langchain_agentx.observability.replay.store import OBS_SCHEMA_VERSION
+from langchain_agentx.observability.logging import (
+    ObservabilityLoggerAdapter,
+    build_log_context,
+)
+logger = logging.getLogger(__name__)
+# ---------------------------------------------------------------------------
+# PermissionAskInterrupt
+# ---------------------------------------------------------------------------
+class PermissionAskInterrupt(Exception):
+    """
+    已废弃（v2）：
+        ask 分支迁移为 permission_resolver 回调，不再使用异常承载常态控制流。
+    保留该类型仅用于兼容历史导入；新代码不应再 raise/catch 此异常。
+    """
+    def __init__(
+        self,
+        tool_name: str,
+        ask_prompt: str | None,
+        decision: "AuthorizationDecision",
+    ) -> None:
+        self.tool_name = tool_name
+        self.ask_prompt = ask_prompt
+        self.decision = decision
+        super().__init__(f"[{tool_name}] requires user permission: {ask_prompt or 'confirm to proceed'}")
+# ---------------------------------------------------------------------------
+# ToolOutputManager
+# Named Spec: 工具输出大小管控器
+# 对应 CC maxResultSizeChars 方案
+# ---------------------------------------------------------------------------
+class ToolOutputManager:
+    """
+    工具输出大小管控器。
+    当 envelope 的文本输出超过 max_result_size_chars 时：
+    1. 将完整内容写入 overflow_dir/<tool_call_id>.txt
+    2. 截断 payload 到前 N 字符
+    3. 设置 envelope.truncated = True
+    4. 设置 envelope.overflow_file = 持久化路径
+    5. 在 summary 中追加 "[Full result saved to: <path>]"
+    对应 CC：
+        maxResultSizeChars — 本框架 max_result_size_chars
+        Infinity（Read 工具）— 本框架 RuntimeTool.never_truncate=True
+    """
+    DEFAULT_MAX_CHARS = 20_000
+    OVERFLOW_DIR = ".agent_tool_output"
+    def __init__(
+        self,
+        max_result_size_chars: int = DEFAULT_MAX_CHARS,
+        overflow_dir: str = OVERFLOW_DIR,
+    ) -> None:
+        self._max_chars = max_result_size_chars
+        self._overflow_dir = overflow_dir
+    def truncate_if_needed(
+        self,
+        envelope: ToolResultEnvelope,
+        tool: RuntimeTool,
+        tool_call_id: str | None = None,
+    ) -> ToolResultEnvelope:
+        """
+        检查 envelope 输出大小，超限时截断并持久化。
+        never_truncate=True 的工具（如 ReadRuntimeTool）直接原样返回。
+        """
+        if tool.never_truncate:
+            return envelope
+        max_chars = tool.max_result_size_chars
+        # 将 payload 序列化为文本估算大小
+        text = self._envelope_to_text(envelope)
+        if len(text) <= max_chars:
+            return envelope
+        # 超限：持久化完整内容
+        overflow_path = self._persist(text, tool_call_id)
+        # 截断 payload
+        truncated_text = text[:max_chars]
+        truncated_summary = (
+            envelope.summary
+            + f"\n[Output truncated at {max_chars} chars."
+            + f" Full result saved to: {overflow_path}]"
+        )
+        return ToolResultEnvelope(
+            status=envelope.status,
+            tool_name=envelope.tool_name,
+            summary=truncated_summary,
+            payload=truncated_text,
+            artifacts=envelope.artifacts,
+            hints=envelope.hints,
+            meta=envelope.meta,
+            error=envelope.error,
+            truncated=True,
+            overflow_file=overflow_path,
+        )
+    def _envelope_to_text(self, envelope: ToolResultEnvelope) -> str:
+        """将 envelope payload 转为文本用于大小估算。"""
+        if envelope.payload is None:
+            return envelope.summary
+        if isinstance(envelope.payload, str):
+            return envelope.payload
+        # dict payload：简单序列化
+        import json
+        try:
+            return json.dumps(envelope.payload, ensure_ascii=False)
+        except Exception:
+            return str(envelope.payload)
+    def _persist(self, text: str, tool_call_id: str | None) -> str:
+        """将完整内容写入 overflow_dir，返回文件路径。"""
+        os.makedirs(self._overflow_dir, exist_ok=True)
+        filename = f"{tool_call_id or int(time.time() * 1000)}.txt"
+        path = os.path.join(self._overflow_dir, filename)
+        with open(path, "w", encoding="utf-8") as f:
+            f.write(text)
+        return path
+# ---------------------------------------------------------------------------
+# ToolExecutorPipeline
+# Named Spec: 工具执行管道
+# ---------------------------------------------------------------------------
+class ToolExecutorPipeline:
+    """
+    工具执行管道，统一编排工具生命周期的 10 步执行顺序。
+    执行顺序：
+        1.  normalize_input      — 输入预处理
+        2.  schema parse         — Pydantic 校验，失败 → error envelope
+        3.  validate_input       — 语义校验，失败 → error envelope（模型可重试）
+        4.  check_permissions    — 权限控制：
+                                   · deny  → blocked envelope（不可绕过）
+                                   · ask + headless=True  → blocked envelope（ask 降级）
+                                   · ask + headless=False → 抛 PermissionAskInterrupt
+        5.  before_invoke        — 执行前钩子
+        6.  invoke / ainvoke     — 核心业务，异常 → error envelope
+        7.  after_invoke         — 执行后钩子（状态写入、审计）
+        8.  state_bridge.update  — 状态桥接（如有）
+        9.  present              — 结果呈现 → ToolResultEnvelope
+        10. output_manager       — 输出大小管控
+    headless 模式（API 调用、CI、批处理）：
+        - check_permissions 返回 ask 时自动降级为 deny（不等待人工确认）
+        - 对应 CC 的 shouldAvoidPermissionPrompts=True / isNonInteractiveSession=True
+    交互模式（headless=False，默认）：
+        - check_permissions 返回 ask 时抛出 PermissionAskInterrupt
+        - 由 LangGraph checkpointer + HumanInTheLoopMiddleware 捕获
+    pipeline 不负责：
+        - 将 envelope 映射为 LangChain tool return（由 LangChainAdapter 负责）
+        - 决定 ToolNode 路由
+        - 管理 agent loop
+    """
+    _ASK_HEADLESS_DENY_MSG = (
+        "Operation requires interactive user approval, "
+        "which is not available in headless/non-interactive mode."
+    )
+    _ASK_SYNC_DENY_MSG = (
+        "Synchronous pipeline does not support interactive permission ask. "
+        "Use async pipeline with permission_resolver or run in headless mode."
+    )
+    def __init__(
+        self,
+        *,
+        output_manager: ToolOutputManager | None = None,
+        headless: bool = False,
+        identical_call_memo: IdenticalCallMemo | None = None,
+        permission_resolver: PermissionResolver | None = None,
+    ) -> None:
+        self._output_manager = output_manager or ToolOutputManager()
+        self._headless = headless
+        self._identical_call_memo = identical_call_memo if identical_call_memo is not None else IdenticalCallMemo()
+        self._permission_resolver = permission_resolver
+    def run(
+        self,
+        *,
+        tool: RuntimeTool,
+        raw_input: dict[str, Any],
+        ctx: ToolExecutionContext,
+    ) -> ToolResultEnvelope:
+        """同步执行完整 pipeline，始终返回 ToolResultEnvelope。"""
+        log = ObservabilityLoggerAdapter(
+            logger,
+            build_log_context(
+                run_id=getattr(ctx, "run_id", None),
+                session_id=getattr(ctx, "thread_id", None),
+                tool_call_id=getattr(ctx, "tool_call_id", None),
+                agent_id=getattr(ctx, "agent_id", None),
+            ).as_extra(),
+        )
+        log.info("tool pipeline run start tool=%s", tool.name)
+        try:
+            out = self._run(tool=tool, raw_input=raw_input, ctx=ctx)
+            log.info("tool pipeline run done tool=%s status=%s", tool.name, out.status)
+            return out
+        except Exception as exc:
+            log.error("tool pipeline run failed tool=%s err=%s", tool.name, exc)
+            return exception_to_envelope(exc, tool.name)
+    def set_permission_resolver(self, resolver: PermissionResolver | None) -> None:
+        """运行时更新 permission_resolver。"""
+        self._permission_resolver = resolver
+    async def arun(
+        self,
+        *,
+        tool: RuntimeTool,
+        raw_input: dict[str, Any],
+        ctx: ToolExecutionContext,
+    ) -> ToolResultEnvelope:
+        """异步执行完整 pipeline，始终返回 ToolResultEnvelope。"""
+        log = ObservabilityLoggerAdapter(
+            logger,
+            build_log_context(
+                run_id=getattr(ctx, "run_id", None),
+                session_id=getattr(ctx, "thread_id", None),
+                tool_call_id=getattr(ctx, "tool_call_id", None),
+                agent_id=getattr(ctx, "agent_id", None),
+            ).as_extra(),
+        )
+        log.info("tool pipeline arun start tool=%s", tool.name)
+        try:
+            out = await self._arun(tool=tool, raw_input=raw_input, ctx=ctx)
+            log.info("tool pipeline arun done tool=%s status=%s", tool.name, out.status)
+            return out
+        except Exception as exc:
+            log.error("tool pipeline arun failed tool=%s err=%s", tool.name, exc)
+            return exception_to_envelope(exc, tool.name)
+    # ---- 内部实现 ----
+    def _run(
+        self,
+        *,
+        tool: RuntimeTool,
+        raw_input: dict[str, Any],
+        ctx: ToolExecutionContext,
+    ) -> ToolResultEnvelope:
+        # Step 1: normalize_input
+        normalized = tool.normalize_input(raw_input, ctx)
+        # Step 2: schema parse
+        parsed_data, schema_error = self._parse_schema(tool, normalized)
+        if schema_error is not None:
+            return schema_error
+        # Step 3: validate_input
+        validation = tool.validate_input(parsed_data, ctx)
+        if not validation.ok:
+            return validation_error_envelope(
+                tool.name,
+                validation.message or "Input validation failed.",
+                code=validation.code,
+            )
+        # Step 4: check_permissions
+        auth = tool.check_permissions(parsed_data, ctx)
+        if auth.behavior == "deny":
+            logger.warning("tool permission denied tool=%s policy_id=%s", tool.name, auth.policy_id)
+            env = blocked_envelope(
+                tool.name,
+                auth.message or "Permission denied.",
+                policy_id=auth.policy_id,
+            )
+            self._attach_runtime_observability(
+                env,
+                ctx=ctx,
+                events=[
+                    {"event": "permission_checked", "behavior": "deny", "policy_id": auth.policy_id},
+                ],
+                decision_trace=(auth.metadata or {}).get("decision_trace"),
+            )
+            return env
+        if auth.behavior == "ask":
+            logger.warning(
+                "tool permission requires ask tool=%s headless=%s policy_id=%s",
+                tool.name,
+                self._headless,
+                auth.policy_id,
+            )
+            env = blocked_envelope(
+                tool.name,
+                self._ASK_HEADLESS_DENY_MSG if self._headless else self._ASK_SYNC_DENY_MSG,
+                policy_id=auth.policy_id,
+            )
+            self._attach_runtime_observability(
+                env,
+                ctx=ctx,
+                events=[
+                    {"event": "permission_checked", "behavior": "ask_sync_denied", "policy_id": auth.policy_id},
+                ],
+                decision_trace=(auth.metadata or {}).get("decision_trace"),
+            )
+            return env
+        # allow：可能有 updated_input（策略层路径规范化回写）
+        if auth.updated_input:
+            parsed_data = auth.updated_input
+        dedup_key: str | None = None
+        if getattr(tool, "dedupe_identical_calls", False):
+            dedup_key = dedup_cache_key(ctx, tool.name, parsed_data)
+            cached = self._identical_call_memo.get(dedup_key)
+            if cached is not None:
+                out = envelope_with_dedup_notice(cached, ctx=ctx)
+                self._attach_runtime_observability(
+                    out,
+                    ctx=ctx,
+                    events=[
+                        {"event": "identical_call_dedup", "behavior": "cache_hit"},
+                    ],
+                    decision_trace=(auth.metadata or {}).get("decision_trace"),
+                )
+                return self._output_manager.truncate_if_needed(
+                    out, tool, ctx.tool_call_id
+                )
+        # Step 5: before_invoke
+        tool.before_invoke(parsed_data, ctx)
+        # Step 6: invoke
+        result = tool.invoke(parsed_data, ctx)
+        # Step 7: after_invoke
+        tool.after_invoke(parsed_data, result, ctx)
+        # Step 9: present
+        envelope = tool.present(parsed_data, result, ctx)
+        self._attach_runtime_observability(
+            envelope,
+            ctx=ctx,
+            events=[
+                {"event": "permission_checked", "behavior": "allow", "policy_id": auth.policy_id},
+                {"event": "invoke_completed", "tool_name": tool.name},
+            ],
+            decision_trace=(auth.metadata or {}).get("decision_trace"),
+        )
+        # Step 10: output_manager
+        final = self._output_manager.truncate_if_needed(
+            envelope, tool, ctx.tool_call_id
+        )
+        if dedup_key is not None:
+            self._identical_call_memo.put(dedup_key, final)
+        return final
+    async def _arun(
+        self,
+        *,
+        tool: RuntimeTool,
+        raw_input: dict[str, Any],
+        ctx: ToolExecutionContext,
+    ) -> ToolResultEnvelope:
+        # Step 1: normalize_input
+        normalized = tool.normalize_input(raw_input, ctx)
+        # Step 2: schema parse
+        parsed_data, schema_error = self._parse_schema(tool, normalized)
+        if schema_error is not None:
+            return schema_error
+        # Step 3: validate_input
+        validation = tool.validate_input(parsed_data, ctx)
+        if not validation.ok:
+            return validation_error_envelope(
+                tool.name,
+                validation.message or "Input validation failed.",
+                code=validation.code,
+            )
+        # Step 4: check_permissions（支持异步 policy）
+        if tool._policy is not None and hasattr(tool._policy, "aauthorize"):
+            auth = await tool._policy.aauthorize(
+                tool_name=tool.name, input_data=parsed_data, ctx=ctx
+            )
+        else:
+            auth = tool.check_permissions(parsed_data, ctx)
+        if auth.behavior == "deny":
+            logger.warning("tool permission denied tool=%s policy_id=%s", tool.name, auth.policy_id)
+            env = blocked_envelope(
+                tool.name,
+                auth.message or "Permission denied.",
+                policy_id=auth.policy_id,
+            )
+            self._attach_runtime_observability(
+                env,
+                ctx=ctx,
+                events=[
+                    {"event": "permission_checked", "behavior": "deny", "policy_id": auth.policy_id},
+                ],
+                decision_trace=(auth.metadata or {}).get("decision_trace"),
+            )
+            return env
+        if auth.behavior == "ask":
+            logger.warning(
+                "tool permission requires ask tool=%s headless=%s policy_id=%s",
+                tool.name,
+                self._headless,
+                auth.policy_id,
+            )
+            if self._headless or self._permission_resolver is None:
+                env = blocked_envelope(
+                    tool.name,
+                    self._ASK_HEADLESS_DENY_MSG,
+                    policy_id=auth.policy_id,
+                )
+                self._attach_runtime_observability(
+                    env,
+                    ctx=ctx,
+                    events=[
+                        {"event": "permission_checked", "behavior": "ask_auto_denied", "policy_id": auth.policy_id},
+                    ],
+                    decision_trace=(auth.metadata or {}).get("decision_trace"),
+                )
+                return env
+            allowed = await self._permission_resolver(tool.name, auth.ask_prompt)
+            if not allowed:
+                env = blocked_envelope(
+                    tool.name,
+                    auth.ask_prompt or "User rejected the operation.",
+                    policy_id=auth.policy_id,
+                )
+                self._attach_runtime_observability(
+                    env,
+                    ctx=ctx,
+                    events=[
+                        {
+                            "event": "permission_checked",
+                            "behavior": "ask_rejected_by_resolver",
+                            "policy_id": auth.policy_id,
+                        },
+                    ],
+                    decision_trace=(auth.metadata or {}).get("decision_trace"),
+                )
+                return env
+        if auth.updated_input:
+            parsed_data = auth.updated_input
+        dedup_key: str | None = None
+        if getattr(tool, "dedupe_identical_calls", False):
+            dedup_key = dedup_cache_key(ctx, tool.name, parsed_data)
+            cached = self._identical_call_memo.get(dedup_key)
+            if cached is not None:
+                out = envelope_with_dedup_notice(cached, ctx=ctx)
+                self._attach_runtime_observability(
+                    out,
+                    ctx=ctx,
+                    events=[
+                        {"event": "identical_call_dedup", "behavior": "cache_hit"},
+                    ],
+                    decision_trace=(auth.metadata or {}).get("decision_trace"),
+                )
+                return self._output_manager.truncate_if_needed(
+                    out, tool, ctx.tool_call_id
+                )
+        # Step 5: before_invoke
+        tool.before_invoke(parsed_data, ctx)
+        # Step 6: ainvoke
+        result = await tool.ainvoke(parsed_data, ctx)
+        # Step 7: after_invoke
+        tool.after_invoke(parsed_data, result, ctx)
+        # Step 9: present
+        envelope = tool.present(parsed_data, result, ctx)
+        self._attach_runtime_observability(
+            envelope,
+            ctx=ctx,
+            events=[
+                {"event": "permission_checked", "behavior": "allow", "policy_id": auth.policy_id},
+                {"event": "invoke_completed", "tool_name": tool.name},
+            ],
+            decision_trace=(auth.metadata or {}).get("decision_trace"),
+        )
+        # Step 10: output_manager
+        final = self._output_manager.truncate_if_needed(
+            envelope, tool, ctx.tool_call_id
+        )
+        if dedup_key is not None:
+            self._identical_call_memo.put(dedup_key, final)
+        return final
+    @staticmethod
+    def _parse_schema(
+        tool: RuntimeTool,
+        data: dict[str, Any],
+    ) -> tuple[dict[str, Any], ToolResultEnvelope | None]:
+        """
+        用 tool.input_model 做 Pydantic schema 解析。
+        成功返回 (parsed_dict, None)，失败返回 ({}, error_envelope)。
+        """
+        try:
+            parsed = tool.input_model.model_validate(data)
+            return parsed.model_dump(), None
+        except ValidationError as exc:
+            detail = "; ".join(
+                f"{'.'.join(str(l) for l in e['loc'])}: {e['msg']}"
+                for e in exc.errors()
+            )
+            envelope = validation_error_envelope(
+                tool.name,
+                f"Input schema error: {detail}",
+                code="INPUT_SCHEMA_ERROR",
+            )
+            return {}, envelope
+        except Exception as exc:
+            return {}, exception_to_envelope(exc, tool.name)
+    @staticmethod
+    def _attach_runtime_observability(
+        envelope: ToolResultEnvelope,
+        *,
+        ctx: ToolExecutionContext,
+        events: list[dict[str, Any]],
+        decision_trace: list[dict[str, Any]] | None = None,
+    ) -> None:
+        meta = dict(envelope.meta or {})
+        obs = meta.get("observability")
+        if not isinstance(obs, dict):
+            obs = {
+                "schema_version": OBS_SCHEMA_VERSION,
+                "trace_context": {
+                    "thread_id": ctx.thread_id,
+                    "run_id": ctx.run_id,
+                    "tool_call_id": ctx.tool_call_id,
+                    "tool_name": ctx.tool_name,
+                },
+                "scenario": "runtime_pipeline",
+                "events": [],
+            }
+        merged_events = list(obs.get("events", []))
+        start_seq = len(merged_events)
+        for i, ev in enumerate(events, start=1):
+            merged_events.append({"seq": start_seq + i, **ev})
+        obs["events"] = merged_events
+        meta["observability"] = obs
+        if decision_trace:
+            meta.setdefault("decision_trace", decision_trace)
+        if ctx.tool_call_id:
+            meta.setdefault("tool_call_id", ctx.tool_call_id)
+        envelope.meta = meta