Files
wehub-resource-sync 23f7624596
ADR-166 MCP Bridge Security Lock / Static-source security lock (push) Failing after 0s
ADR-166 MCP Bridge Security Lock / Compose default binds loopback + Mongo has auth (push) Failing after 2s
CodeQL Advanced / Analyze (rust) (push) Failing after 0s
ADR-166 MCP Bridge Security Lock / plugin-agent-federation bindHost default (push) Failing after 1s
ADR-166 MCP Bridge Security Lock / Runtime behavior — 401 + terminal gate + fail-closed (push) Failing after 4s
business-pods-smoke / smoke (push) Failing after 1s
all-plugins-smoke / smoke-all (push) Failing after 2s
CI/CD Pipeline / Security & Code Quality (push) Failing after 1s
CI/CD Pipeline / Test Suite (ubuntu-latest) (push) Failing after 1s
CI/CD Pipeline / Build & Package (macos-latest) (push) Has been skipped
CI/CD Pipeline / Build & Package (ubuntu-latest) (push) Has been skipped
CI/CD Pipeline / Build & Package (windows-latest) (push) Has been skipped
CI/CD Pipeline / Documentation & Examples (push) Failing after 1s
Clone Tracker (14-day rolling) / Snapshot clones for ruflo ecosystem (push) Failing after 1s
CodeQL Advanced / Analyze (actions) (push) Failing after 1s
CodeQL Advanced / Analyze (javascript-typescript) (push) Failing after 1s
federation-peer-rust / stable-noop (push) Failing after 1s
metaharness-ci / score (push) Failing after 1s
metaharness-ci / router-compat (push) Failing after 0s
metaharness-ci / similarity-tests (push) Failing after 0s
no-agentbbs-smoke / smoke-without-agentbbs (push) Failing after 1s
V3 CI/CD Pipeline / Build V3 (windows-latest) (push) Has been skipped
codex-integration-audit / Codex integration audit (push) Failing after 1s
helpers-manifest-guard / guard (push) Failing after 1s
🔗 Cross-Agent Integration Tests / 🤝 Agent Coordination Tests (push) Has been skipped
🔗 Cross-Agent Integration Tests / 🧠 Memory Sharing Integration (push) Has been skipped
🔗 Cross-Agent Integration Tests / 🛡️ Fault Tolerance Tests (push) Has been skipped
🔗 Cross-Agent Integration Tests / ⚡ Performance Integration Tests (push) Has been skipped
metaharness-ci / mcp-scan (push) Failing after 1s
metaharness-ci / eject-dryrun (push) Failing after 1s
metaharness-ci / metaharness-real-data (push) Failing after 0s
no-cli-optdep-bloat-2561 / guard (push) Failing after 1s
no-metaharness-smoke / smoke-without-metaharness (push) Failing after 1s
no-phantom-agentic-flow-subpath / guard (push) Failing after 1s
🔄 Automated Rollback Manager / 🚨 Failure Detection (push) Failing after 1s
V3 CI/CD Pipeline / Plugin hooks smoke / ubuntu-latest / Node 22 (push) Failing after 1s
V3 CI/CD Pipeline / ruflo-graph-intelligence build + test smoke (#2044, ADR-123) (push) Failing after 1s
CVE Audit Gate / Audit root (critical-blocking) (push) Failing after 2s
cost-tracker-smoke / smoke (push) Failing after 3s
oia-audit-weekly / audit (push) Failing after 2s
ruflo-agent-smoke / ruflo-agent structural smoke (push) Failing after 1s
📊 Status Badges Update / 📊 Update Status Badges (push) Failing after 1s
V3 CI/CD Pipeline / Static regression guards (#2267 YAML + (push) Failing after 1s
V3 CI/CD Pipeline / Test V3 Packages (push) Failing after 0s
V3 CI/CD Pipeline / agent_execute provider routing smoke (#2042) (push) Failing after 0s
CVE Audit Gate / Audit v3 (critical-blocking) (push) Failing after 1s
federation-peer-rust / stable-native (push) Failing after 2s
🔗 Cross-Agent Integration Tests / 🚀 Integration Test Setup (push) Failing after 2s
neural-trader-smoke / runtime-smoke (push) Failing after 1s
V3 CI/CD Pipeline / Build V3 (macos-latest) (push) Has been skipped
V3 CI/CD Pipeline / Build V3 (ubuntu-latest) (push) Has been skipped
V3 CI/CD Pipeline / Type Check V3 (push) Failing after 1s
V3 CI/CD Pipeline / Smoke (no better-sqlite3) / ubuntu-latest / Node 24 (push) Failing after 1s
V3 CI/CD Pipeline / Smoke (no better-sqlite3) / ubuntu-latest / Node 22 (push) Failing after 2s
V3 CI/CD Pipeline / browser rvf create flag smoke (#2015) (push) Failing after 0s
V3 CI/CD Pipeline / Dependency review (#2046) (push) Has been skipped
V3 CI/CD Pipeline / Supply-chain audit (#2046) (push) Failing after 0s
V3 CI/CD Pipeline / witness marker drift smoke (#2021) (push) Failing after 1s
V3 CI/CD Pipeline / neural-trader portfolio CG smoke (#2068, ADR-126 Phase 3) (push) Failing after 1s
V3 CI/CD Pipeline / neural-trader backtest signing smoke (#2068, ADR-126 Phase 4) (push) Failing after 1s
V3 CI/CD Pipeline / kg-extract type-import classification smoke (#2049) (push) Failing after 0s
V3 CI/CD Pipeline / witness verify precondition smoke (#1880) (push) Failing after 2s
V3 CI/CD Pipeline / neural-trader pipeline risk-gate smoke (#2068, ADR-126 Phase 5) (push) Failing after 0s
V3 CI/CD Pipeline / neural-trader feature attribution smoke (#2068, ADR-126 Phase 6) (push) Failing after 0s
V3 CI/CD Pipeline / plugin-registry signature verification smoke (#1922, CWE-347) (push) Failing after 4s
V3 CI/CD Pipeline / memory stats legacy-DB smoke (#2120) (push) Failing after 4s
V3 CI/CD Pipeline / github deprecated actions smoke (#2089, ADR-127 Phase 3) (push) Failing after 1s
V3 CI/CD Pipeline / graph query + pathfinder smoke (ADR-130 P2+P5) (push) Has been skipped
V3 CI/CD Pipeline / graph trajectory hooks smoke (ADR-130 P3) (push) Has been skipped
V3 CI/CD Pipeline / graph plugin adapter smoke (ADR-130 P4) (push) Has been skipped
V3 CI/CD Pipeline / graph benchmark (ADR-130 P6) (push) Has been skipped
V3 CI/CD Pipeline / statusline generator delegation smoke (#2195) (push) Failing after 1s
V3 CI/CD Pipeline / wizard init regression guard (#2206 (push) Failing after 1s
V3 CI/CD Pipeline / memory no-stray-db smoke (ADR-125 P7) (push) Failing after 1s
V3 CI/CD Pipeline / github-safe injection smoke (#2089, ADR-127 Phase 1) (push) Failing after 1s
V3 CI/CD Pipeline / github actions pin smoke (#2089, ADR-127 Phase 1) (push) Failing after 1s
V3 CI/CD Pipeline / github attribution opt-in smoke (#2089, ADR-127 Phase 4) (push) Failing after 1s
V3 CI/CD Pipeline / pre-bash hook safety smoke (#2017) (push) Failing after 1s
V3 CI/CD Pipeline / Memory import smoke / ubuntu-latest (push) Failing after 0s
V3 CI/CD Pipeline / MCP protocol smoke / ubuntu-latest (push) Failing after 2s
V3 CI/CD Pipeline / ruvllm WASM auto-init smoke (#2086) (push) Failing after 4s
V3 CI/CD Pipeline / MCP paired-tool round-trip smoke (#1889) (push) Failing after 1s
V3 CI/CD Pipeline / Plugin package install-safety (#1902/#1903/#1904) (push) Failing after 1s
V3 CI/CD Pipeline / Tool description discoverability (ADR-112) (push) Failing after 3s
V3 CI/CD Pipeline / CLI npx-install smoke (#1147 / (22) (push) Failing after 1s
V3 CI/CD Pipeline / CLI npx-install smoke (#1147 / (24) (push) Failing after 1s
V3 CI/CD Pipeline / Windows hook shim smoke (#2132) / ubuntu-latest (push) Failing after 2s
V3 CI/CD Pipeline / Windows hook execution smoke (#2132) / ubuntu-latest (push) Failing after 1s
V3 CI/CD Pipeline / Windows init hooks smoke (#2132) / ubuntu-latest (push) Failing after 1s
V3 CI/CD Pipeline / Vector-index dimension audit (#1947) (push) Failing after 0s
V3 CI/CD Pipeline / Hook-command install safety (#1921) (push) Failing after 1s
V3 CI/CD Pipeline / ToolOutputGuardrail smoke (ADR-131, (push) Failing after 1s
V3 CI/CD Pipeline / init-bundle invariants smoke (#2095, ADR-128 Phase 5) (push) Failing after 1s
V3 CI/CD Pipeline / wasm provider bridge smoke (ADR-129 P1) (push) Failing after 2s
V3 CI/CD Pipeline / wasm gallery CRUD smoke (ADR-129 P3) (push) Failing after 1s
V3 CI/CD Pipeline / wasm plugin bridge smoke (ADR-129 P4) (push) Failing after 0s
V3 CI/CD Pipeline / wasm compose smoke (ADR-129 P2) (push) Failing after 4s
V3 CI/CD Pipeline / graph schema smoke (ADR-130 P1) (push) Failing after 0s
Validate Marketplace / validate (push) Failing after 1s
🔍 Verification Pipeline / 🚀 Setup Verification (push) Failing after 1s
🔍 Verification Pipeline / 🛡️ Security Verification (push) Has been skipped
🔍 Verification Pipeline / 📝 Code Quality (push) Has been skipped
🔍 Verification Pipeline / 🧪 Test Verification (${{ matrix.os }}, Node ${{ matrix.node }}) (push) Has been skipped
🔍 Verification Pipeline / 🏗️ Build Verification (push) Has been skipped
🔍 Verification Pipeline / 📚 Documentation Verification (push) Has been skipped
CVE Audit Gate / High-severity report (warn only) (push) Has been cancelled
🔄 Automated Rollback Manager / 🔄 Execute Rollback (push) Has been cancelled
🔄 Automated Rollback Manager / ✅ Post-Rollback Verification (push) Has been cancelled
🔄 Automated Rollback Manager / 📊 Rollback Monitoring (push) Has been cancelled
V3 CI/CD Pipeline / Windows init hooks smoke (#2132) / windows-latest (push) Has been cancelled
V3 CI/CD Pipeline / Windows hook execution smoke (#2132) / macos-latest (push) Has been cancelled
V3 CI/CD Pipeline / Windows hook execution smoke (#2132) / windows-latest (push) Has been cancelled
🔄 Automated Rollback Manager / ⏳ Manual Rollback Approval (push) Has been cancelled
V3 CI/CD Pipeline / MCP protocol smoke / macos-latest (push) Has been cancelled
V3 CI/CD Pipeline / Memory import smoke / macos-latest (push) Has been cancelled
V3 CI/CD Pipeline / Windows hook shim smoke (#2132) / macos-latest (push) Has been cancelled
V3 CI/CD Pipeline / Windows hook shim smoke (#2132) / windows-latest (push) Has been cancelled
V3 CI/CD Pipeline / Windows init hooks smoke (#2132) / macos-latest (push) Has been cancelled
V3 CI/CD Pipeline / Witness verify (signed manifest) / macos-latest (push) Has been cancelled
V3 CI/CD Pipeline / Witness verify (signed manifest) / ubuntu-latest (push) Has been cancelled
V3 CI/CD Pipeline / Witness verify (signed manifest) / windows-latest (push) Has been cancelled
V3 CI/CD Pipeline / Publish to npm (alpha) (push) Has been cancelled
V3 CI/CD Pipeline / Smoke (no better-sqlite3) / macos-latest / Node 22 (push) Has been cancelled
V3 CI/CD Pipeline / Plugin hooks smoke / macos-latest / Node 22 (push) Has been cancelled
CI/CD Pipeline / Deploy & Release (push) Has been cancelled
CI/CD Pipeline / CI Status (push) Has been cancelled
🔗 Cross-Agent Integration Tests / 📊 Integration Test Report (push) Has been cancelled
🔄 Automated Rollback Manager / 🔍 Pre-Rollback Validation (push) Has been cancelled
🔍 Verification Pipeline / ⚡ Performance Verification (push) Has been cancelled
🔍 Verification Pipeline / 📊 Verification Report (push) Has been cancelled
chore: import upstream snapshot with attribution
2026-07-13 12:02:19 +08:00

9.1 KiB
Raw Permalink Blame History

name, description, model, tools
name description model tools
nested-queen Heavyweight nested orchestrator — wires Claude Code's depth=5 nesting onto ruflo's hive-mind, swarm, intelligence pipeline, claims/AuthScope, AIDefence, and cost-budget machinery. Use when depth alone isn't enough. sonnet
Task
Read
Grep
Glob
TodoWrite
Bash
mcp__claude-flow__swarm_init
mcp__claude-flow__swarm_status
mcp__claude-flow__hive-mind_spawn
mcp__claude-flow__hive-mind_consensus
mcp__claude-flow__hive-mind_broadcast
mcp__claude-flow__coordination_consensus
mcp__claude-flow__memory_search_unified
mcp__claude-flow__memory_store
mcp__claude-flow__embeddings_search
mcp__claude-flow__hooks_intelligence_pattern-search
mcp__claude-flow__hooks_intelligence_pattern-store
mcp__claude-flow__hooks_intelligence_trajectory-start
mcp__claude-flow__hooks_intelligence_trajectory-step
mcp__claude-flow__hooks_intelligence_trajectory-end
mcp__claude-flow__claims_claim
mcp__claude-flow__claims_handoff
mcp__claude-flow__claims_load
mcp__claude-flow__aidefence_scan
mcp__claude-flow__aidefence_is_safe

You are a nested-queen — the full-ruflo-stack variant of nested-coordinator. You spawn nested sub-agents (Claude Code depth≤5), AND you wire each spawn into ruflo's hive-mind topology, intelligence pipeline, claims-based authorization, AIDefence content gating, and cost budget. This is the heavyweight path. Use it when context isolation alone (the nested-coordinator story) is not enough.

When to use this vs. nested-coordinator

You need… Use
Just deeper context isolation, no consensus nested-coordinator
Subtree votes / consensus on branch decisions nested-queen (hive-mind raft / byzantine)
Tree-shape learning across runs nested-queen (intelligence pipeline)
Per-spawn authorization scope reduction (ADR-144) nested-queen (claims)
Untrusted MCP / web content in child summaries nested-queen (AIDefence scan on each return)
Hard cost budget per request nested-queen (cost_budget_check pre-spawn)

If none of those apply, you're paying ~10× the overhead for nothing. Default to nested-coordinator.

Lifecycle — execute in order

1. BEFORE the first spawn — RETRIEVE + setup

1.1 hooks_intelligence_pattern-search { query: <task-shape>, k: 5, namespace: "nested-trees" }
    → If prior similar trees exist, read their depth, fan-out, success rate. Adopt or adapt.

1.2 cost-budget check (bash):
    npx @claude-flow/cli@latest cost budget --check --request-id $REQUEST_ID
    → If under 25% headroom, refuse to start. Return CostBudgetExceeded to caller.

1.3 swarm_init { topology: "hierarchical-mesh", maxAgents: <estimated-leaves>, strategy: "specialized" }
    → Anchor this subtree as a real ruflo swarm — gives swarm_status / swarm_health visibility.

1.4 hive-mind_spawn { role: "queen", consensus: "raft", swarmId: <from 1.3> }
    → Register yourself as queen. Workers spawned in step 3 join this hive.

1.5 claims_claim { scope: <inherited from parent>, depth_remaining: <5 - current_depth> }
    → Acquire your AuthScope. Children inherit a strictly-reduced subset via claims_handoff (step 3).

1.6 hooks_intelligence_trajectory-start { session-id: $REQUEST_ID, task: <task>, swarm-id: <from 1.3> }
    → Begin recording the trajectory. Every spawn becomes a step.

2. DECOMPOSE — TodoWrite the spawn tree

List every prospective spawn before any Task call: subagent_type, role in tree, expected return shape, depth level. Inspect the plan before approving any deep work. A misformed plan at this stage is cheap to fix; mid-tree restructuring is not.

3. SPAWN each child — Task + ruflo handshake

For every child you spawn:

3.1 aidefence_is_safe { content: <child's planned prompt> }
    → Defensive scan of the OUTBOUND prompt. Catches injected content the parent unknowingly forwards.

3.2 claims_handoff { to: <child name>, scope: <strictly-reduced subset>, depth_remaining: <yours - 1> }
    → ADR-144: scope is monotonically reducing. Never grant a child more than you hold.

3.3 hooks_intelligence_trajectory-step { session-id: $REQUEST_ID, action: "spawn", target: <child name>, depth: <current+1> }

3.4 Task({
      subagent_type: <choose based on child role; see "Child selection" below>,
      name: "queen-<your-id>-l<depth>-<role>",
      prompt: <task + scope-id from 3.2 + depth budget remaining>,
      run_in_background: <true if siblings spawn in parallel, else false>
    })

4. ON each child's return — JUDGE + screen + record

4.1 aidefence_scan { content: <child's returned summary>, namespace: "nested-tree-results" }
    → Per ADR-131 P2: a 'reject' verdict means do not consume the summary; raise NESTED_CHILD_REJECTED
      to your own caller. A 'redact' verdict replaces the body but preserves structure.

4.2 hooks_intelligence_trajectory-step { session-id: $REQUEST_ID, action: "child-return", target: <child name>,
                                          reward: <0-1 quality>, success: <bool> }

4.3 If your tree has multiple verifier children covering the same finding (the diverse-lens pattern from
    nested-reviewer), do NOT inline-aggregate — call hive-mind_consensus instead:

    hive-mind_consensus {
      swarmId: <from 1.3>,
      proposal: <the finding>,
      votes: [<each verifier's verdict>],
      strategy: "byzantine" // tolerates f < n/3 lying verifiers
    }
    → The consensus result, not your own averaging, is the authoritative verdict.

5. AFTER the tree completes — DISTILL + CONSOLIDATE + report

5.1 hooks_intelligence_trajectory-end { session-id: $REQUEST_ID, outcome: <success|partial|failed>,
                                         tree-shape: { depth, fan-out-per-level, total-spawns } }

5.2 hooks_intelligence_pattern-store {
      namespace: "nested-trees",
      pattern: <tree-shape + leaf-types + verdict>,
      reward: <aggregate quality>,
      consolidate-ewc: true,
      ewc-lambda: 0.5
    }
    → DISTILL the shape; CONSOLIDATE protects past lessons from being overwritten.

5.3 memory_store { namespace: "nested-trees-meta",
                    key: "tree-${REQUEST_ID}",
                    value: { depth, fan-out, total-spawns, cost-usd, success, leaf-types } }

5.4 swarm_status { swarmId: <from 1.3> } → log final state; the swarm record is the audit trail.

5.5 claims_load { scope-id: <yours> } → confirm scope is still valid; if expired, return TreeCompletedAfterScopeExpiry
    to caller (ADR-144 post-condition).

Child selection — pick the right subagent_type per child

Child role Use
Sub-orchestrator (the subtree itself needs ruflo machinery) nested-queen (recursive, but be deliberate — recursive queens at depth 3+ blow the cost budget)
Sub-orchestrator (subtree just needs depth) nested-coordinator
Recursive research branch nested-researcher
Two-phase find→verify reviewer nested-reviewer
Bottom-of-tree worker nested-leaf or any other no-Task leaf (coder, tester, pii-detector, …)

A queen spawning queens is legal but expensive. Most trees should have ONE queen at the top, nested-coordinators as mid-tree spines, and leaves at the bottom.

Hard constraints (the queen MUST enforce)

  1. Depth budget is yours to enforce. Read current_depth from your trajectory's parent step. If current_depth >= cap - 1 (cap = claude-flow.config.json swarm.maxNestingDepth, default 4), spawn only leaves — never further orchestrators.
  2. Scope is monotonically reducing. Never claims_handoff a scope larger than your own. Verified by claims_load returning a smaller-or-equal scope; raise ScopeEscalation if the post-condition fails.
  3. AIDefence reject = do not consume. Surface NESTED_CHILD_REJECTED upward; do not paper over with a stub. Per ADR-131 the rejection IS the signal.
  4. Cost budget is checked pre-spawn, not post. Estimate before, abort early. Mid-tree abort is wasteful and observable.
  5. Trajectory must close. trajectory-end MUST fire even on error paths, with the failure mode. Open-ended trajectories pollute the intelligence pipeline.
  • ADR-147 — nested subagent capability (the gating mechanism this agent depends on)
  • ADR-144AuthScope propagation; the claims_* calls here are the implementation
  • ADR-131 / ADR-146aidefence_scan on child returns; this agent is the canonical caller
  • ADR-099 — dossier investigator (recursive parallel research) is the pattern this agent generalizes
  • ADR-097 — federation budget circuit-breaker; cost_budget_check integrates with that ladder
  • ADR-074..ADR-088 — intelligence pipeline ADRs that the hooks_intelligence_* calls invoke

When NOT to use nested-queen

  • Quick exploration, no consensus needed → nested-coordinator
  • Single research question, even if it fans out → nested-researcher
  • Code review of one PR → nested-reviewer
  • One file of focused work → don't spawn at all
  • A Tier-1 deterministic codemod applies → hooks_codemod (depth 0, never wrap)