KeiSeiKit-1.0

keisei/KeiSeiKit-1.0

Fork 0

Commit graph

Author	SHA1	Message	Date
Parfii-bot	e4b64418fc	feat(convergence/u2): capability renames + back-compat aliases Pre-unlock wave U2. Task 3 from CONVERGENCE-PLAN — rename misleading capability names, keep old names as deprecated aliases. Renames: - tools::read-only → tools::deny-tools (mechanism is tool-name denial, not "read-only" metaphor) - tools::cargo-only-bash → tools::bash-allowlist (mechanism is Bash pattern allow-list; cargo-only is one config value) Back-compat via registry.resolve_alias(): - Old dir _capabilities/tools/{read-only,cargo-only-bash}/ retained with capability.toml-only stub: `alias = "<new-name>"` + `deprecated` field - registry.rs loads alias stubs, redirects lookup before dispatch - warn_deprecated_once() emits single-shot stderr per alias per process via OnceLock<Mutex<HashSet>> - Zero breaking change to existing manifests / task.toml referencing old names Rust impl files renamed in place: - gates/tools_read_only.rs → gates/tools_deny_tools.rs (struct DenyTools) - gates/tools_cargo_only_bash.rs → gates/tools_bash_allowlist.rs (struct BashAllowlist) - gates/mod.rs + registry.rs + gate_smoke.rs updated Roles updated (3): read-only.toml, explorer.toml, edit-local.toml — reference new names directly. Tests: kei-agent-runtime 41/41 (was 40, +1 deprecated_aliases_resolve _to_new_names), _assembler 40/40 unchanged (substrate role expansion follows new paths). Docs updated: AGENT-ROLES.md, AGENT-SUBSTRATE-SCHEMA.md, 4 _manifests referencing the old names (comment-only annotations). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-04-23 03:43:40 +08:00
Parfii-bot	dc83cb2117	feat(agent-substrate/phase-2): role matrix — 5 roles + AGENT-ROLES.md 5 _roles/.toml per locked §Initial role inventory: - read-only → tools::read-only + output::report-format + severity-grade - explorer → read-only caps + tools::cargo-only-bash - edit-local → no-git-ops + scope::files-{white,deny}list + quality:: + safety::no-dep-bump + output::report-format - edit-shared → edit-local caps + relaxed SSoT whitelist (task-time param) + escalation tightened to orchestrator-notify - git-ops → spawnable = false, documentation-only All 11 capability names referenced match phase-1 deliverable path _capabilities/<cat>/<slug>/ (cross-ref verified before commit). docs/AGENT-ROLES.md (223 LOC) — human-readable matrix: per-role sections + cross-role capability matrix + explicit non-spawnable-git-ops block. Drift note for orchestrator integration review: edit-local/edit-shared use inline bash-patterns-allowed = ['^cargo( \|$)', '^mkdir( \|$)', '^rm -rf /tmp/'] instead of composing with tools::cargo-only-bash capability (extra patterns not in that atom). Agent footnoted — resolution deferred to post-integration (either parameterize the cap or introduce tools::cargo-plus-basic-bash variant). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-04-23 02:35:52 +08:00

Author

SHA1

Message

Date

Parfii-bot

e4b64418fc

feat(convergence/u2): capability renames + back-compat aliases

Pre-unlock wave U2. Task 3 from CONVERGENCE-PLAN — rename misleading
capability names, keep old names as deprecated aliases.

Renames:
- tools::read-only → tools::deny-tools (mechanism is tool-name denial,
  not "read-only" metaphor)
- tools::cargo-only-bash → tools::bash-allowlist (mechanism is Bash
  pattern allow-list; cargo-only is one config value)

Back-compat via registry.resolve_alias():
- Old dir _capabilities/tools/{read-only,cargo-only-bash}/ retained with
  capability.toml-only stub: `alias = "<new-name>"` + `deprecated` field
- registry.rs loads alias stubs, redirects lookup before dispatch
- warn_deprecated_once() emits single-shot stderr per alias per process
  via OnceLock<Mutex<HashSet>>
- Zero breaking change to existing manifests / task.toml referencing
  old names

Rust impl files renamed in place:
- gates/tools_read_only.rs → gates/tools_deny_tools.rs (struct
  DenyTools)
- gates/tools_cargo_only_bash.rs → gates/tools_bash_allowlist.rs
  (struct BashAllowlist)
- gates/mod.rs + registry.rs + gate_smoke.rs updated

Roles updated (3): read-only.toml, explorer.toml, edit-local.toml —
reference new names directly.

Tests: kei-agent-runtime 41/41 (was 40, +1 deprecated_aliases_resolve
_to_new_names), _assembler 40/40 unchanged (substrate role expansion
follows new paths).

Docs updated: AGENT-ROLES.md, AGENT-SUBSTRATE-SCHEMA.md, 4 _manifests
referencing the old names (comment-only annotations).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-04-23 03:43:40 +08:00

Parfii-bot

dc83cb2117

feat(agent-substrate/phase-2): role matrix — 5 roles + AGENT-ROLES.md

5 _roles/*.toml per locked §Initial role inventory:

- read-only     → tools::read-only + output::report-format + severity-grade
- explorer      → read-only caps + tools::cargo-only-bash
- edit-local    → no-git-ops + scope::files-{white,deny}list + quality::*
                  + safety::no-dep-bump + output::report-format
- edit-shared   → edit-local caps + relaxed SSoT whitelist (task-time param)
                  + escalation tightened to orchestrator-notify
- git-ops       → spawnable = false, documentation-only

All 11 capability names referenced match phase-1 deliverable path
_capabilities/<cat>/<slug>/ (cross-ref verified before commit).

docs/AGENT-ROLES.md (223 LOC) — human-readable matrix: per-role sections
+ cross-role capability matrix + explicit non-spawnable-git-ops block.

Drift note for orchestrator integration review: edit-local/edit-shared
use inline bash-patterns-allowed = ['^cargo( |$)', '^mkdir( |$)',
'^rm -rf /tmp/'] instead of composing with tools::cargo-only-bash
capability (extra patterns not in that atom). Agent footnoted —
resolution deferred to post-integration (either parameterize the cap
or introduce tools::cargo-plus-basic-bash variant).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-04-23 02:35:52 +08:00

2 commits