mirror of https://github.com/Memo-2023/mana-monorepo.git synced 2026-05-14 23:21:08 +02:00

History

Till JS 507af32bcc docs(plans): spec for per-Space destructive-tools opt-in Bau-Plan für die M1-Polish-Lücke: heute lehnt evaluatePolicy() jeden destructive-Call ab weil settingsFor() hardcoded { allowDestructive: [] } zurückgibt. In POLICY_MODE=enforce würde das alle User von destructive Tools aussperren. Bisher kein Problem — es gibt keine destructive Tools in der Registry. Sobald das erste kommt, greift dieser Plan. Kernentscheidungen: - Scope: per-SPACE, nicht per-User. Passt zum Space-scoped-data model; ein Admin opt-in'd, alle Members des Spaces profitieren. - Authority: Server-authoritative. Nicht in Dexie. JWT-gated PUT, Role-Check (nur owner/admin dürfen ändern), RLS. - Storage: eigene Tabelle mana_spaces.space_policy_preferences plus append-only space_policy_audit für Diff-Tracking. NICHT JSON-Column auf spaces — typisiert, indexierbar, mehr Raum für spätere per-Space-Rate-Limits etc. - Fail-closed: wenn mana-mcp apps-api nicht erreicht, wird destructive geblockt. 30s TTL-Cache, kurz genug für Revoke-Speed. - Acknowledgement enforced at API: PUT verlangt acknowledged:true wenn neue Tools zur Liste. Anti-Click-Through by construction. Inkludiert: - Schema + RLS (Postgres) - GET/PUT/audit-GET + interner service-key-GET - SpacePolicyClient-Pattern in mana-mcp (wie MasterKeyClient) - UI /s/:space/settings/ai-policy mit Audit-Section - Metriken-Erweiterung (policy-changes counter) - Rollout-Reihenfolge + Tests + offene Fragen Bau-Trigger: erster PR der ein Tool mit policyHint:'destructive' in die Registry bringt. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>		2026-04-23 18:39:56 +02:00
..
agent-loop-improvements-m1.md	docs(plans): agent-loop plan reflects M1 shipped + M2 core shipped	2026-04-23 18:12:58 +02:00
ai-mission-key-grant.md	feat(ai): Mission Grant rollout gating — flag, alerts, runbook, user docs	2026-04-15 14:02:47 +02:00
articles-homepage.md	feat(articles): M9 workbench homepage — 4-tab shell + QuickAdd + StatsView	2026-04-22 17:50:38 +02:00
articles-module.md	feat(articles): M8 highlights view + stats + dashboard widget	2026-04-22 14:12:18 +02:00
broadcast-module.md	docs(broadcast): plan newsletter / broadcast module	2026-04-20 19:32:53 +02:00
data-export-v2.md	feat(backup): client-driven v2 snapshot export, drop server-side backup	2026-04-22 18:46:29 +02:00
destructive-tools-opt-in.md	docs(plans): spec for per-Space destructive-tools opt-in	2026-04-23 18:39:56 +02:00
event-discovery.md	feat(events): add Event Discovery — Phase 1 + 2	2026-04-18 15:30:46 +02:00
invoices-module.md	docs(invoices): mark all milestones done, list Phase-2/3 open items	2026-04-20 18:23:02 +02:00
library-module.md	feat(library): M3 — progress tracking (pages, episodes, issues) + restart	2026-04-17 13:17:22 +02:00
mail-module-plan.md	docs(mail): add TODO checklist for remaining Phase 1-4 work	2026-04-13 20:46:00 +02:00
mana-mcp-and-personas.md	feat(personas): M5.a — Playwright visual suite scaffold	2026-04-23 14:33:06 +02:00
mana-research-service.md	feat(research): Phase 3a — 4 sync research agents	2026-04-17 15:06:12 +02:00
me-images-and-reference-generation.md	docs(plans): me-images M1-M5 status + new wardrobe plan	2026-04-23 15:08:45 +02:00
me-images-space-scope-migration.md	refactor(profile,tool-registry): flip meImages from user-scoped to space-scoped (v40)	2026-04-23 18:09:57 +02:00
multi-agent-workbench.md	docs: flesh out Multi-Agent plan shipping log + Team Workbench forward plan	2026-04-15 22:17:04 +02:00
news-research-module.md	docs: flesh out Multi-Agent plan shipping log + Team Workbench forward plan	2026-04-15 22:17:04 +02:00
per-space-vs-user-global-tags.md	docs(plans): per-Space vs user-global tags — decision deferred	2026-04-22 15:32:15 +02:00
planner-function-calling.md	docs(plans): mark shared-llm tool-call integration as deferred	2026-04-20 18:36:07 +02:00
README.md	docs: update tool coverage table + server-side research + templates	2026-04-16 12:35:40 +02:00
scene-scope-empty-state.md	docs(workbench): plan for scene-scope empty state	2026-04-18 16:23:13 +02:00
shared-space-smoketest.md	feat(spaces): end-to-end shared-space sync (membership lookup + plaintext)	2026-04-20 20:46:53 +02:00
social-relay-module.md	feat(spaces): add space types + module allowlist as multi-tenancy foundation	2026-04-20 15:57:57 +02:00
space-scoped-data-model.md	docs(plans): point at-rest-sweep row at the restored commit	2026-04-22 22:43:19 +02:00
spaces-foundation.md	feat(spaces): migrate calendar module to scoped-db wrapper (pilot)	2026-04-20 16:42:10 +02:00
team-workbench.md	docs: flesh out Multi-Agent plan shipping log + Team Workbench forward plan	2026-04-15 22:17:04 +02:00
tipps-module.md	Create tipps-module.md	2026-04-22 14:21:57 +02:00
wardrobe-module.md	docs(plans): wardrobe is space-scoped, allow in all six space types	2026-04-23 15:23:10 +02:00
website-builder.md	feat(wardrobe): module foundation — garments + outfits space-scoped data layer (M1)	2026-04-23 18:27:37 +02:00
workbench-cards-migration.md	docs(plans): revise workbench-cards plan for cards-for-workflows rule	2026-04-22 15:05:48 +02:00
workbench-templates.md	feat(templates): generalise to WorkbenchTemplate + ship Calmness pilot (T1)	2026-04-16 01:07:41 +02:00

README.md

Plans

Design + rollout plans, grouped by topic. Plans are long-form docs with baked-in decisions, phasing, open questions, and (when shipped) a history section with commit refs.

AI / Workbench roadmap

The Mana AI Workbench has evolved in three successive planned waves — each one laying foundations the next one relies on:

  User hat einen Companion (v0 — shipped before these docs)
        │
        ▼
  AI Missions + Proposals + Policy + Revert
        │
        ▼
  Mission Key-Grants  ←  ai-mission-key-grant.md  ✅
    (encrypted inputs decryptable by the server runner)
        │
        ▼
  Multi-Agent Workbench  ←  multi-agent-workbench.md  ✅
    (named agents, per-agent policy/memory/budget,
     identity-aware Actor, scene→agent lens)
        │
        ▼
  Team Workbench  ←  team-workbench.md  📝 (not started)
    (multi-user + shared AI context,
     admin lens on team members)

Plan	Status	Scope
`ai-mission-key-grant.md`	✅ Shipped	Per-mission RSA-wrapped key grant so `mana-ai` can decrypt allowlisted encrypted records when user opts in.
`multi-agent-workbench.md`	✅ Shipped	Identity-aware Actor + named AI agents owning missions + per-agent policy + scene lens. 28 tools across 11 modules including server-side web-research.
`workbench-templates.md`	✅ T1 Shipped	Generalised templates: 3 agent-templates + 3 non-AI workbench starter-kits. Seed-handler registry for per-module data seeding.
`team-workbench.md`	📝 Forward-looking	TeamSpace with membership, team-encrypted records, admin lens on team members. Reuses Actor.principalId + key-wrapping patterns from the two above.

Cross-references:

Architecture narrative: docs/architecture/COMPANION_BRAIN_ARCHITECTURE.md §20 (AI Workbench base), §21 (Mission Grants), §22 (Multi-Agent), §23 (Reasoning Loop + Research + Debug)
Non-plan ideas backlog: docs/future/AI_AGENTS_IDEAS.md
Service-internal notes: services/mana-ai/CLAUDE.md
Webapp-internal notes: apps/mana/CLAUDE.md → "AI Workbench" section

Other plans

Plan	Topic
`mail-module-plan.md`	Mail module — IMAP/SMTP integration
`news-research-module.md`	News + research pipeline