trusty-mpm 0.9.0

trusty-mpm: unified multi-agent orchestration platform (core, daemon, CLI, TUI, Telegram)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281

//! Idle-session prune policy (issue #1313).
//!
//! Why: paused orchestration sessions leave behind idle SM tmux sessions that
//! consume claude Max rate-limit slots. The cleanup must honor the SM durability
//! lifecycle: a session classified `idle` is STOPPED (transient runtime killed,
//! workspace + record kept → resumable); a session classified `done` is fully
//! DECOMMISSIONED (stop + remove workspace + deregister). Every other verdict —
//! `working`, `blocked-on-permission`, `errored`, `unknown`, or no verdict at
//! all — is LEFT ALONE. Keeping that mapping as a pure function over the verdict
//! string makes the policy trivially testable without a live daemon and is the
//! single source of truth the CLI handler drives.
//! What: the [`PruneAction`] decision enum and the pure [`decide`] mapping from
//! an activity-monitor verdict string to an action, plus [`normalize_verdict`]
//! which canonicalizes the several on-the-wire spellings the daemon emits.
//! Test: `decide_idle_stops`, `decide_done_decommissions`,
//! `decide_working_skips`, `decide_blocked_skips`, `decide_errored_skips`,
//! `decide_no_verdict_skips`, `decide_unknown_skips`, plus the
//! `normalize_verdict_*` cases in the `tests` module below.

/// Sentinel error meaning "the Session Manager could not be reached".
///
/// Why: `prune_idle` runs inside `#[tokio::main]` with a live `reqwest::Client`
/// and (potentially) other async resources; calling `std::process::exit` from
/// there would skip their `Drop` and is a code smell flagged in review. Instead
/// the SM-unavailable condition is modeled as a typed error that propagates up
/// the normal `?` chain to the top-level command boundary (`main`), where no
/// async resources are live and the process can exit cleanly with the documented
/// code. Keeping it a distinct error type (not a generic `anyhow` string) lets
/// `main` downcast and branch precisely on "SM off" vs. any other failure.
/// What: a unit error enum whose single variant carries no payload; `main`
/// downcasts the boxed `anyhow::Error` to it and exits `EXIT_SM_UNAVAILABLE`.
/// Test: `prune_error_is_sm_unavailable` asserts the Display string; the
/// end-to-end exit wiring is covered by `cli_prune_idle_unreachable_exit_code`.
#[derive(Debug, thiserror::Error)]
pub enum PruneError {
    /// The daemon was unreachable / SM is disabled — graceful no-op, exit 75.
    #[error("session manager unavailable (daemon unreachable or SM disabled); nothing to prune")]
    SmUnavailable,
}

/// The teardown action the prune policy selects for one session.
///
/// Why: the prune command must map each session's latest activity verdict to
/// exactly one of three durability-respecting outcomes; an enum makes the
/// decision explicit, exhaustive, and renderable in both the dry-run plan and
/// the JSON output mode.
/// What: `Stop` → runtime-stop (resumable); `Decommission` → full teardown;
/// `Skip` → leave the session untouched (carries the reason for reporting).
/// Test: produced by [`decide`]; asserted across the `decide_*` tests.
#[derive(Debug, Clone, PartialEq, Eq)]
pub enum PruneAction {
    /// Stop the runtime but keep the workspace + record (idle → resumable).
    Stop,
    /// Fully decommission: stop + remove workspace + deregister (done → terminal).
    Decommission,
    /// Leave the session alone; the string explains why (for the plan/report).
    Skip(&'static str),
}

impl PruneAction {
    /// A stable lowercase label for the action, for JSON output and tables.
    ///
    /// Why: programmatic callers (the claude-mpm pause skill) and the human
    /// table both need a consistent verb; deriving it here keeps the wording in
    /// one place rather than scattered across the formatter.
    /// What: returns `"stop"`, `"decommission"`, or `"skip"`.
    /// Test: `action_label_*` in the `tests` module.
    pub fn label(&self) -> &'static str {
        match self {
            PruneAction::Stop => "stop",
            PruneAction::Decommission => "decommission",
            PruneAction::Skip(_) => "skip",
        }
    }

    /// True when the action mutates the fleet (i.e. is not a skip).
    ///
    /// Why: the handler counts how many sessions it would actually touch and
    /// the dry-run / live summary both need that count; centralizing the
    /// predicate avoids re-matching the enum at every call site.
    /// What: returns `false` for `Skip`, `true` otherwise.
    /// Test: `is_actionable_*` in the `tests` module.
    pub fn is_actionable(&self) -> bool {
        !matches!(self, PruneAction::Skip(_))
    }
}

/// Canonicalize an activity-monitor verdict string to a comparable token.
///
/// Why: the daemon emits the verdict via `format!("{:?}", state).to_lowercase()`,
/// so `BlockedOnPermission` becomes `"blockedonpermission"` (no separators),
/// while the issue and humans write `blocked-on-permission` /
/// `blocked_on_permission`. Normalizing away separators and case lets one
/// `decide` match every spelling without a brittle exact-string compare.
/// What: lowercases the input and removes ASCII `-`, `_`, and whitespace,
/// returning the collapsed token (e.g. `"blocked-on-permission"` → `"blockedonpermission"`).
/// Test: `normalize_verdict_strips_separators`, `normalize_verdict_lowercases`.
pub fn normalize_verdict(verdict: &str) -> String {
    verdict
        .chars()
        .filter(|c| !matches!(c, '-' | '_') && !c.is_whitespace())
        .flat_map(|c| c.to_lowercase())
        .collect()
}

/// Map a session's latest activity verdict to a [`PruneAction`] (pure policy).
///
/// Why: this is the locked teardown policy (issue #1313, decided with Bob
/// 2026-06-16) expressed as a single pure function — the testable heart of the
/// prune command. Sessions with no verdict yet are represented by `None` and
/// must be skipped, exactly like the indeterminate `unknown` verdict, so that
/// the cleanup never touches a session whose state it cannot positively
/// classify.
/// What: `Some("idle")` → `Stop`; `Some("done")` → `Decommission`; every other
/// verdict (`working`, any `blocked*`, `errored`, `unknown`, or an unrecognized
/// label) and `None` → `Skip` with a human reason. Matching runs over the
/// [`normalize_verdict`] token so separator/case variants all resolve.
/// Test: `decide_idle_stops`, `decide_done_decommissions`, `decide_working_skips`,
/// `decide_blocked_skips`, `decide_errored_skips`, `decide_unknown_skips`,
/// `decide_no_verdict_skips`, `decide_unrecognized_skips`.
pub fn decide(verdict: Option<&str>) -> PruneAction {
    let Some(raw) = verdict else {
        return PruneAction::Skip("no verdict yet");
    };
    match normalize_verdict(raw).as_str() {
        "idle" => PruneAction::Stop,
        "done" => PruneAction::Decommission,
        "working" => PruneAction::Skip("working"),
        "blockedonpermission" => PruneAction::Skip("blocked on permission"),
        "errored" => PruneAction::Skip("errored"),
        "unknown" | "" => PruneAction::Skip("unknown / no classifier"),
        _ => PruneAction::Skip("unrecognized verdict"),
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    /// Why: the headline policy guarantee — an `idle` session is stopped
    /// (resumable), never decommissioned.
    /// What: asserts `decide(Some("idle")) == Stop`.
    /// Test: this test.
    #[test]
    fn decide_idle_stops() {
        assert_eq!(decide(Some("idle")), PruneAction::Stop);
    }

    /// Why: a finished (`done`) session reclaims its workspace via full teardown.
    /// What: asserts `decide(Some("done")) == Decommission`.
    /// Test: this test.
    #[test]
    fn decide_done_decommissions() {
        assert_eq!(decide(Some("done")), PruneAction::Decommission);
    }

    /// Why: an actively working session must never be touched.
    /// What: asserts `working` maps to a non-actionable `Skip`.
    /// Test: this test.
    #[test]
    fn decide_working_skips() {
        let action = decide(Some("working"));
        assert!(matches!(action, PruneAction::Skip(_)));
        assert!(!action.is_actionable());
    }

    /// Why: a session blocked on a human permission decision must be left for
    /// the operator; verify every spelling the daemon/issue might emit maps to
    /// skip.
    /// What: asserts the Debug-lowercased wire form and the hyphen/underscore
    /// human forms all skip.
    /// Test: this test.
    #[test]
    fn decide_blocked_skips() {
        for spelling in [
            "blockedonpermission",
            "blocked-on-permission",
            "blocked_on_permission",
            "Blocked On Permission",
        ] {
            assert!(
                matches!(decide(Some(spelling)), PruneAction::Skip(_)),
                "spelling {spelling:?} should skip"
            );
        }
    }

    /// Why: an errored session may need inspection; it must not be reaped.
    /// What: asserts `errored` skips.
    /// Test: this test.
    #[test]
    fn decide_errored_skips() {
        assert!(matches!(decide(Some("errored")), PruneAction::Skip(_)));
    }

    /// Why: `unknown` means the classifier could not positively label the
    /// session (e.g. no OpenRouter key) — treat it exactly like no verdict.
    /// What: asserts `unknown` skips.
    /// Test: this test.
    #[test]
    fn decide_unknown_skips() {
        assert!(matches!(decide(Some("unknown")), PruneAction::Skip(_)));
    }

    /// Why: a session with no activity verdict yet must be left alone.
    /// What: asserts `None` skips with the "no verdict yet" reason.
    /// Test: this test.
    #[test]
    fn decide_no_verdict_skips() {
        assert_eq!(decide(None), PruneAction::Skip("no verdict yet"));
    }

    /// Why: defense-in-depth — any future/unrecognized verdict label must fail
    /// safe to skip rather than accidentally tear down a session.
    /// What: asserts a novel label skips.
    /// Test: this test.
    #[test]
    fn decide_unrecognized_skips() {
        assert!(matches!(
            decide(Some("compacting")),
            PruneAction::Skip("unrecognized verdict")
        ));
    }

    /// Why: the JSON/table renderers depend on stable verbs.
    /// What: asserts each action's label.
    /// Test: this test.
    #[test]
    fn action_label_is_stable() {
        assert_eq!(PruneAction::Stop.label(), "stop");
        assert_eq!(PruneAction::Decommission.label(), "decommission");
        assert_eq!(PruneAction::Skip("x").label(), "skip");
    }

    /// Why: the actionable-count logic must treat only stop/decommission as
    /// mutating.
    /// What: asserts the `is_actionable` predicate per variant.
    /// Test: this test.
    #[test]
    fn is_actionable_distinguishes_skip() {
        assert!(PruneAction::Stop.is_actionable());
        assert!(PruneAction::Decommission.is_actionable());
        assert!(!PruneAction::Skip("x").is_actionable());
    }

    /// Why: separator collapsing is what lets the wire/human spellings unify.
    /// What: asserts hyphens, underscores, and whitespace are removed.
    /// Test: this test.
    #[test]
    fn normalize_verdict_strips_separators() {
        assert_eq!(
            normalize_verdict("blocked-on_permission"),
            "blockedonpermission"
        );
        assert_eq!(
            normalize_verdict("blocked on permission"),
            "blockedonpermission"
        );
    }

    /// Why: case must not affect the decision.
    /// What: asserts mixed case lowercases.
    /// Test: this test.
    #[test]
    fn normalize_verdict_lowercases() {
        assert_eq!(normalize_verdict("IDLE"), "idle");
        assert_eq!(normalize_verdict("Done"), "done");
    }

    /// Why: `prune_idle` returns this typed error so `main` can downcast and exit
    /// 75 instead of `process::exit`-ing inside an async fn; the Display string is
    /// what an operator sees on stderr, so it must stay clear and stable.
    /// What: asserts the `SmUnavailable` Display message.
    /// Test: this test.
    #[test]
    fn prune_error_is_sm_unavailable() {
        let msg = PruneError::SmUnavailable.to_string();
        assert!(msg.contains("session manager unavailable"), "{msg}");
        assert!(msg.contains("nothing to prune"), "{msg}");
    }
}