bellman bf533d77a7 task: approval token chain ... Add a runtime approval-token ledger so policy-blocked actions can require scoped owner grants, consume one-time tokens, reject replay, and retain delegation traceability.\n\nConstraint: Task 3 scope is the G004 approval-token chain for runtime event/report contract families.\nRejected: Extending the existing permission prompt path directly | the token contract can be tested independently without changing live tool authorization behavior.\nConfidence: high\nScope-risk: narrow\nDirective: Keep approval grants scoped to policy/action/repo/branch before wiring them into external execution paths.\nTested: cargo check --manifest-path rust/Cargo.toml --workspace; cargo test --manifest-path rust/crates/runtime/Cargo.toml; cargo test --manifest-path rust/crates/runtime/Cargo.toml approval_token -- --nocapture\nNot-tested: cargo clippy --manifest-path rust/crates/runtime/Cargo.toml --all-targets -- -D warnings is blocked by pre-existing warnings in compact.rs, file_ops.rs, policy_engine.rs, and sandbox.rs.		2026-05-14 18:07:03 +09:00
..
api	fix: REPL display, /compact panic, identity leak, DeepSeek reasoning, thinking blocks	2026-05-06 15:32:34 +09:00
commands	fix(skills): route help flags to local dispatch + fix push_output_block test arity	2026-05-06 15:41:25 +09:00
compat-harness	feat: ultraclaw droid batch — ROADMAP #41 test isolation + #50 PowerShell permissions	2026-04-12 03:06:24 +09:00
mock-anthropic-service	fix: REPL display, /compact panic, identity leak, DeepSeek reasoning, thinking blocks	2026-05-06 15:32:34 +09:00
plugins	Keep poisoned test locks from cascading across unrelated regressions	2026-04-12 13:52:41 +00:00
runtime	task: approval token chain	2026-05-14 18:07:03 +09:00
rusty-claude-cli	omx(team): auto-checkpoint worker-4 [unknown]	2026-05-14 17:51:53 +09:00
telemetry	feat: anthropic SDK header matching + request profile	2026-04-01 05:55:25 +00:00
tools	omx(team): auto-checkpoint worker-2 [unknown]	2026-05-14 17:46:10 +09:00