0be354a920
Single-commit clean baseline after security scrub of niche-tells, project codenames, internal jargon, and contributor-email leaks. Contents: - 100 Rust crates (_primitives/_rust/) - 37 agent manifests (_manifests/) + generated specs (_generated/) - 67 user-invocable skills (skills/) - 33 hooks (hooks/) - Composition blocks (_blocks/) - Documentation (docs/, README.md) - TS adapter packages (_ts_packages/) - Assembler (_assembler/) - Roles (_roles/) - Templates (_templates/) - Forgejo CI (.forgejo/) Author: Denis Parfionovich <info@greendragon.info> License: see LICENSE.
39 lines
1.1 KiB
TOML
39 lines
1.1 KiB
TOML
[role]
|
|
name = "read-only"
|
|
display-name = "explorer (read-only analyst)"
|
|
description = "Read-only agent: inspects code, emits structured report with severity grades. No shell, no edits, no git."
|
|
spawnable = true
|
|
# Read-only + severity-grade default maps to critic; architect-flavoured tasks
|
|
# should override this per task via claude-subagent-type in task.toml.
|
|
claude-subagent-type = "critic"
|
|
|
|
[capabilities]
|
|
# Ordered list — text.md fragments concatenated in this order.
|
|
# v0.17 rename: `tools::read-only` → `tools::deny-tools` (alias still honored).
|
|
required = [
|
|
"tools::deny-tools",
|
|
"output::report-format",
|
|
"output::severity-grade",
|
|
]
|
|
|
|
[tools]
|
|
# Tool allowlist — anything not in this list is denied
|
|
allowed = ["Read", "Glob", "Grep", "WebFetch"]
|
|
# No Bash → no bash-patterns-allowed
|
|
bash-patterns-allowed = []
|
|
|
|
[escalation]
|
|
policy = "ask-via-return"
|
|
|
|
[taxonomy]
|
|
kingdom = "role"
|
|
mechanism = "compose"
|
|
domain = "agent"
|
|
layer = "agent-substrate"
|
|
stage = "design-time"
|
|
stability = "stable"
|
|
language = "toml"
|
|
|
|
[lineage]
|
|
creator = "ag-orchestrator-human"
|
|
created = "2026-04-23"
|