feat: add temporal run engine integration

2026-05-13 08:39:19 +09:00
parent 78ebd5ef78
commit aa3033771a
37 changed files with 7338 additions and 224 deletions
--- a/.env.example
+++ b/.env.example
@@ -1,5 +1,6 @@
 DATABASE_URL=postgres://devflow:devflow@127.0.0.1:55432/devflow
 WORKSPACE_ROOT=./data/workspace
 LOG_LEVEL=info
 TEMPORAL_ADDRESS=localhost:7233
 DEVFLOW_POSTGRES_PORT=55432
 DEVFLOW_BACKENDS_JSON=[{"id":"fake","enabled":true}]
--- a/apps/api/package.json
+++ b/apps/api/package.json
@@ -12,6 +12,8 @@
    "@devflow/core": "workspace:*",
    "@devflow/db": "workspace:*",
    "@devflow/run-engine": "workspace:*",
-    "@devflow/session": "workspace:*"
+    "@devflow/session": "workspace:*",
    "@devflow/workflows": "workspace:*",
    "@temporalio/client": "^1.17.1"
  }
 }
--- a/apps/api/src/index.test.ts
+++ b/apps/api/src/index.test.ts
@@ -23,10 +23,11 @@ import {
 } from "@devflow/db";
 import { DbRunEngine } from "@devflow/run-engine";
 import { FakeSessionAdapter, type SessionHandle, SessionManager } from "@devflow/session";
 import type { WorkflowClient, WorkflowHandle } from "@temporalio/client";
 import { and, eq, inArray } from "drizzle-orm";
 import { afterEach, describe, expect, it } from "vitest";
-import { startApi } from "./index.js";
+import { startApi, startM4Api } from "./index.js";
 const databaseUrl =
  process.env.DATABASE_URL ?? "postgres://devflow:devflow@127.0.0.1:55432/devflow";
@@ -74,6 +75,27 @@ class DelayedSendPromptFakeSessionAdapter extends FakeSessionAdapter {
  }
 }
 class FakeWorkflowClient {
  started: { workflowId: string; taskQueue: string; args: unknown[] } | undefined;
  async start(
    _workflow: unknown,
    options: { workflowId: string; taskQueue: string; args: unknown[] },
  ) {
    this.started = {
      workflowId: options.workflowId,
      taskQueue: options.taskQueue,
      args: options.args,
    };
  }
  getHandle(_workflowId: string): Pick<WorkflowHandle, "signal"> {
    return {
      signal: async () => undefined,
    };
  }
 }
 function deferred<T>() {
  let resolve!: (value: T | PromiseLike<T>) => void;
  let reject!: (reason?: unknown) => void;
@@ -166,8 +188,12 @@ describe("startApi", () => {
    return workspaceRoot;
  }
-  function startTestApi(options: Parameters<typeof startApi>[0] = {}) {
+  function startTestM4Api(options: Parameters<typeof startM4Api>[0] = {}) {
-    return startApi({ workspaceRoot: createApiWorkspaceRoot(), ...options });
+    return startM4ApiWhenLockFree({
      workspaceRoot: createApiWorkspaceRoot(),
      maxConcurrentRuns: 100,
      ...options,
    });
  }
  afterEach(async () => {
@@ -242,7 +268,7 @@ describe("startApi", () => {
      state: "READY",
    });
-    const result = await startTestApi({ dbClient: client, recoveryRunIds: [runId] });
+    const result = await startTestM4Api({ dbClient: client, recoveryRunIds: [runId] });
    try {
      expect(result.recovery).toEqual({
        failedSessionIds: [sessionId],
@@ -276,9 +302,15 @@ describe("startApi", () => {
  it("holds the SessionManager singleton lock until stopped", async () => {
    client = createDbClient(databaseUrl);
    const recoveryRunIds = [randomUUID()];
-    const first = await startTestApi({ dbClient: client, recoveryRunIds });
+    const first = await startTestM4Api({ dbClient: client, recoveryRunIds });
    try {
-      await expect(startTestApi({ dbClient: client, recoveryRunIds })).rejects.toMatchObject({
+      await expect(
        startM4Api({
          dbClient: client,
          workspaceRoot: createApiWorkspaceRoot(),
          recoveryRunIds,
        }),
      ).rejects.toMatchObject({
        code: "session_manager_already_running",
      });
    } finally {
@@ -293,7 +325,12 @@ describe("startApi", () => {
    const repoPath = createGitRepo();
    tempRoots.push(repoPath);
-    const api = await startApi({ dbClient: client, workspaceRoot, recoveryRunIds: [] });
+    const api = await startM4ApiWhenLockFree({
      dbClient: client,
      workspaceRoot,
      recoveryRunIds: [],
      maxConcurrentRuns: 100,
    });
    try {
      expect(api.engine).toBeInstanceOf(DbRunEngine);
      const { runId } = await api.engine.startRun({
@@ -313,6 +350,190 @@ describe("startApi", () => {
    }
  });
  it("uses the Temporal RunEngine by default without acquiring the SessionManager lock", async () => {
    client = createDbClient(databaseUrl);
    const first = await startM4ApiWhenLockFree({
      dbClient: client,
      workspaceRoot: createApiWorkspaceRoot(),
      recoveryRunIds: [],
      maxConcurrentRuns: 100,
    });
    const temporalClient = new FakeWorkflowClient();
    try {
      const temporalApi = await startApi({
        dbClient: client,
        temporalClient: temporalClient as unknown as WorkflowClient,
        taskQueue: "devflow-runs-test",
        workspaceRoot: createApiWorkspaceRoot(),
        awaitRunStart: false,
      });
      const runId = randomUUID();
      await temporalApi.engine.startRun({
        runId,
        requirementsMd: "Temporal API should only dispatch workflow commands.",
        repoPath: "/repo",
        baseBranch: "main",
      });
      expect(temporalClient.started).toMatchObject({
        taskQueue: "devflow-runs-test",
        workflowId: `devflow-run:${runId}`,
      });
      await temporalApi.stop();
    } finally {
      await first.stop();
    }
  });
  it("wires Temporal approval replay side effects through the API boundary", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
    const workspaceRoot = createApiWorkspaceRoot();
    const template = (
      await client.db
        .select({ hash: workflowTemplates.hash, id: workflowTemplates.id })
        .from(workflowTemplates)
        .where(eq(workflowTemplates.name, "development"))
        .limit(1)
    )[0];
    if (template === undefined) {
      throw new Error("development template missing");
    }
    const runId = randomUUID();
    const approvalRequestId = randomUUID();
    const clientToken = randomUUID();
    const repoPath = createGitRepo();
    const worktreeRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-api-worktree-")));
    tempRoots.push(repoPath, worktreeRoot);
    runIds.push(runId);
    await client.db.insert(runs).values({
      id: runId,
      templateId: template.id,
      templateHash: template.hash,
      state: "completed",
      repoPath,
      baseBranch: "main",
      worktreeRoot,
      endedAt: new Date(),
      finalReportPath: null,
    });
    await client.db.insert(approvalRequests).values({
      id: approvalRequestId,
      runId,
      gateKey: "spec_approved",
      state: "approved",
      idempotencyKey: `${runId}:spec_approved::1`,
      payload: { replay: true },
    });
    await client.db.insert(approvalDecisions).values({
      approvalRequestId,
      action: "approve",
      idempotencyKey: `${approvalRequestId}:approve:${clientToken}`,
    });
    const temporalApi = await startApi({
      dbClient: client,
      temporalClient: new FakeWorkflowClient() as unknown as WorkflowClient,
      taskQueue: "devflow-runs-test",
      workspaceRoot,
      awaitRunStart: false,
    });
    try {
      await temporalApi.engine.signalApproval(runId, approvalRequestId, "approve", clientToken);
      const [run] = await client.db
        .select({ finalReportPath: runs.finalReportPath })
        .from(runs)
        .where(eq(runs.id, runId));
      expect(run?.finalReportPath).toMatch(/\.report\.md$/);
    } finally {
      await temporalApi.stop();
    }
  });
  it.each([
    { action: "reject" as const, approvalState: "rejected", runState: "failed" },
    { action: "abort" as const, approvalState: "aborted", runState: "aborted" },
  ])(
    "repairs $runState approval replay reports without mutating sessions through the API",
    async ({ action, approvalState, runState }) => {
      client = createDbClient(databaseUrl);
      await seedDevelopmentRegistry(client.db);
      const workspaceRoot = createApiWorkspaceRoot();
      const template = (
        await client.db
          .select({ hash: workflowTemplates.hash, id: workflowTemplates.id })
          .from(workflowTemplates)
          .where(eq(workflowTemplates.name, "development"))
          .limit(1)
      )[0];
      if (template === undefined) {
        throw new Error("development template missing");
      }
      const runId = randomUUID();
      const approvalRequestId = randomUUID();
      const clientToken = randomUUID();
      const sessionId = randomUUID();
      const repoPath = createGitRepo();
      const worktreeRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-api-worktree-")));
      tempRoots.push(repoPath, worktreeRoot);
      runIds.push(runId);
      await client.db.insert(runs).values({
        id: runId,
        templateId: template.id,
        templateHash: template.hash,
        state: runState,
        repoPath,
        baseBranch: "main",
        worktreeRoot,
        endedAt: new Date(),
        finalReportPath: null,
      });
      await client.db.insert(tuiSessions).values({
        id: sessionId,
        runId,
        roleId: "implementer",
        backend: "fake",
        cwd: worktreeRoot,
        state: "READY",
      });
      await client.db.insert(approvalRequests).values({
        id: approvalRequestId,
        runId,
        gateKey: "spec_approved",
        state: approvalState,
        idempotencyKey: `${runId}:spec_approved::1`,
        payload: { replay: true },
      });
      await client.db.insert(approvalDecisions).values({
        approvalRequestId,
        action,
        idempotencyKey: `${approvalRequestId}:${action}:${clientToken}`,
      });
      const temporalApi = await startApi({
        dbClient: client,
        temporalClient: new FakeWorkflowClient() as unknown as WorkflowClient,
        taskQueue: "devflow-runs-test",
        workspaceRoot,
        awaitRunStart: false,
      });
      try {
        await temporalApi.engine.signalApproval(runId, approvalRequestId, action, clientToken);
        const [run] = await client.db
          .select({ finalReportPath: runs.finalReportPath })
          .from(runs)
          .where(eq(runs.id, runId));
        expect(run?.finalReportPath).toMatch(/\.report\.md$/);
        const [session] = await client.db
          .select({ state: tuiSessions.state })
          .from(tuiSessions)
          .where(eq(tuiSessions.id, sessionId));
        expect(session).toEqual({ state: "READY" });
      } finally {
        await temporalApi.stop();
      }
    },
  );
  it("repairs missing terminal final reports during API startup", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
@@ -344,7 +565,12 @@ describe("startApi", () => {
      finalReportPath: null,
    });
-    const api = await startApi({ dbClient: client, workspaceRoot, recoveryRunIds: [runId] });
+    const api = await startM4ApiWhenLockFree({
      dbClient: client,
      workspaceRoot,
      recoveryRunIds: [runId],
      maxConcurrentRuns: 100,
    });
    try {
      expect(api.finalReportRecovery).toEqual([runId]);
      const [run] = await client.db
@@ -359,7 +585,7 @@ describe("startApi", () => {
  it("does not sweep active runs when a second API instance fails the singleton lock", async () => {
    client = createDbClient(databaseUrl);
-    const first = await startTestApi({ dbClient: client, recoveryRunIds: [] });
+    const first = await startTestM4Api({ dbClient: client, recoveryRunIds: [] });
    const templateId = randomUUID();
    const runId = randomUUID();
    const sessionId = randomUUID();
@@ -395,7 +621,11 @@ describe("startApi", () => {
      });
      await expect(
-        startTestApi({ dbClient: client, recoveryRunIds: [runId] }),
+        startM4Api({
          dbClient: client,
          workspaceRoot: createApiWorkspaceRoot(),
          recoveryRunIds: [runId],
        }),
      ).rejects.toMatchObject({
        code: "session_manager_already_running",
      });
@@ -463,7 +693,7 @@ describe("startApi", () => {
      state: "READY",
    });
-    const result = await startTestApi({
+    const result = await startTestM4Api({
      dbClient: client,
      recoveryRunIds: [runId],
      sessionAdapter: adapter,
@@ -491,6 +721,82 @@ describe("startApi", () => {
    expect(events).toEqual([]);
  });
  it("fails CREATED session reservations during SessionManager startup recovery", async () => {
    client = createDbClient(databaseUrl);
    const templateId = randomUUID();
    const runId = randomUUID();
    const sessionId = randomUUID();
    const repoPath = realpathSync(mkdtempSync(join(tmpdir(), "devflow-api-repo-")));
    const worktreeRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-api-worktree-")));
    tempRoots.push(repoPath, worktreeRoot);
    templateIds.push(templateId);
    runIds.push(runId);
    await client.db.insert(workflowTemplates).values({
      id: templateId,
      name: `api-session-created-${templateId}`,
      version: 1,
      hash: "f".repeat(64),
      definition: { name: "api-session-created", version: 1, roles: [], phases: [] },
    });
    await client.db.insert(runs).values({
      id: runId,
      templateId,
      templateHash: "f".repeat(64),
      state: "executing",
      repoPath,
      baseBranch: "main",
      worktreeRoot,
    });
    await client.db.insert(tuiSessions).values({
      id: sessionId,
      runId,
      roleId: "spec_writer",
      backend: "fake",
      cwd: worktreeRoot,
      state: "CREATED",
    });
    const adapter = new ResumeFailsFakeSessionAdapter();
    const manager = new SessionManager({
      dbClient: client,
      adapter,
      recoveryRunIds: [runId],
    });
    const recovery = await initializeManagerWhenLockFree(manager);
    try {
      expect(adapter.resumeAttempts).toBe(3);
      expect(recovery).toEqual({ failedSessionIds: [sessionId], recoveredSessionIds: [] });
    } finally {
      await manager.shutdown();
    }
    const [run] = await client.db
      .select({ pausedFromState: runs.pausedFromState, state: runs.state })
      .from(runs)
      .where(eq(runs.id, runId));
    expect(run).toEqual({ pausedFromState: "executing", state: "paused" });
    const [session] = await client.db
      .select({ recoveryAttempts: tuiSessions.recoveryAttempts, state: tuiSessions.state })
      .from(tuiSessions)
      .where(eq(tuiSessions.id, sessionId));
    expect(session).toEqual({ recoveryAttempts: 1, state: "FAILED_NEEDS_HUMAN" });
    const approvals = await client.db
      .select({ gateKey: approvalRequests.gateKey, state: approvalRequests.state })
      .from(approvalRequests)
      .where(eq(approvalRequests.runId, runId));
    expect(approvals).toEqual([{ gateKey: "session_recovery_required", state: "pending" }]);
    const events = await client.db
      .select({ type: runEvents.type })
      .from(runEvents)
      .where(eq(runEvents.runId, runId))
      .orderBy(runEvents.seq);
    expect(events.map((event) => event.type)).toEqual([
      "session.failed",
      "run.paused",
      "approval.requested",
    ]);
  });
  it("retries transient session resume failures during startup recovery", async () => {
    client = createDbClient(databaseUrl);
    const templateId = randomUUID();
@@ -542,7 +848,7 @@ describe("startApi", () => {
      adapter,
      recoveryRunIds: [runId],
    });
-    const recovery = await manager.initialize();
+    const recovery = await initializeManagerWhenLockFree(manager);
    try {
      expect(adapter.resumeAttempts).toBe(3);
      expect(recovery).toEqual({ failedSessionIds: [], recoveredSessionIds: [sessionId] });
@@ -598,7 +904,7 @@ describe("startApi", () => {
      adapter,
      recoveryRunIds: [runId],
    });
-    const recovery = await manager.initialize();
+    const recovery = await initializeManagerWhenLockFree(manager);
    try {
      expect(adapter.resumeAttempts).toBe(3);
      expect(recovery).toEqual({ failedSessionIds: [sessionId], recoveredSessionIds: [] });
@@ -649,7 +955,7 @@ describe("startApi", () => {
      recoveryRunIds: [],
      shutdownDrainMs: 5_000,
    });
-    await manager.initialize();
+    await initializeManagerWhenLockFree(manager);
    const runId = randomUUID();
    const cwd = realpathSync(mkdtempSync(join(tmpdir(), "devflow-api-session-")));
    tempRoots.push(cwd);
@@ -691,7 +997,7 @@ describe("startApi", () => {
      adapter: new FakeSessionAdapter(),
      recoveryRunIds: [],
    });
-    await expect(nextManager.initialize()).resolves.toEqual({
+    await expect(initializeManagerWhenLockFree(nextManager)).resolves.toEqual({
      failedSessionIds: [],
      recoveredSessionIds: [],
    });
@@ -706,10 +1012,11 @@ describe("startApi", () => {
    tempRoots.push(repoPath);
    const runId = randomUUID();
    runIds.push(runId);
-    const api = await startApi({
+    const api = await startM4ApiWhenLockFree({
      dbClient: client,
      workspaceRoot,
      recoveryRunIds: [],
      maxConcurrentRuns: 100,
      sessionAdapter: new FakeSessionAdapter({ writeDelayMs: 1_000 }),
    });
    const startPromise = api.engine.startRun({
@@ -737,10 +1044,44 @@ describe("startApi", () => {
      adapter: new FakeSessionAdapter(),
      recoveryRunIds: [],
    });
-    await expect(nextManager.initialize()).resolves.toEqual({
+    await expect(initializeManagerWhenLockFree(nextManager)).resolves.toEqual({
      failedSessionIds: [],
      recoveredSessionIds: [],
    });
    await nextManager.shutdown();
  });
 });
 async function startM4ApiWhenLockFree(options: Parameters<typeof startM4Api>[0]) {
  const deadline = Date.now() + 6_000;
  let lastError: unknown;
  while (Date.now() < deadline) {
    try {
      return await startM4Api(options);
    } catch (error) {
      lastError = error;
      if (!(error instanceof DevflowError) || error.code !== "session_manager_already_running") {
        throw error;
      }
      await new Promise((resolveWait) => setTimeout(resolveWait, 50));
    }
  }
  throw lastError;
 }
 async function initializeManagerWhenLockFree(manager: SessionManager) {
  const deadline = Date.now() + 6_000;
  let lastError: unknown;
  while (Date.now() < deadline) {
    try {
      return await manager.initialize();
    } catch (error) {
      lastError = error;
      if (!(error instanceof DevflowError) || error.code !== "session_manager_already_running") {
        throw error;
      }
      await new Promise((resolveWait) => setTimeout(resolveWait, 50));
    }
  }
  throw lastError;
 }
--- a/apps/api/src/index.ts
+++ b/apps/api/src/index.ts
@@ -4,19 +4,22 @@ import { fileURLToPath } from "node:url";
 import { type BackendConfig, getConfig } from "@devflow/core";
 import { DevflowError } from "@devflow/core";
 import { type DbClient, createDbClient } from "@devflow/db";
-import { DbRunEngine, type RunEngine } from "@devflow/run-engine";
+import { DbRunEngine, type RunEngine, readRunStatus } from "@devflow/run-engine";
 import {
  FakeSessionAdapter,
  type SessionAdapter,
  SessionManager,
  type SessionManagerRecoveryResult,
  type SessionRuntime,
 } from "@devflow/session";
 import { TemporalRunEngine, temporalNamespace } from "@devflow/workflows";
 import { Connection, WorkflowClient } from "@temporalio/client";
 import { recoverM4ApiStartup, startM4SessionManager } from "./startup.js";
 export * from "./startup.js";
-export interface StartApiOptions {
+export interface StartM4ApiOptions {
  dbClient?: DbClient;
  workspaceRoot?: string;
  availableBackends?: readonly BackendConfig[];
@@ -24,9 +27,10 @@ export interface StartApiOptions {
  sessionAdapter?: SessionAdapter;
  sessionManager?: SessionManager;
  runEngine?: RunEngine;
  maxConcurrentRuns?: number;
 }
-export interface StartApiResult {
+export interface StartM4ApiResult {
  recovery: Awaited<ReturnType<typeof recoverM4ApiStartup>>;
  sessionRecovery: SessionManagerRecoveryResult;
  sessionManager: SessionManager;
@@ -35,7 +39,32 @@ export interface StartApiResult {
  stop(): Promise<void>;
 }
 export interface StartTemporalApiOptions {
  dbClient?: DbClient;
  temporalClient?: WorkflowClient;
  temporalAddress?: string;
  taskQueue?: string;
  workflowIdPrefix?: string;
  awaitRunStart?: boolean;
  awaitSignals?: boolean;
  availableBackends?: readonly BackendConfig[];
  maxConcurrentRuns?: number;
  workspaceRoot?: string;
 }
 export interface StartTemporalApiResult {
  engine: RunEngine;
  stop(): Promise<void>;
 }
 export type StartApiOptions = StartTemporalApiOptions;
 export type StartApiResult = StartTemporalApiResult;
 export async function startApi(options: StartApiOptions = {}): Promise<StartApiResult> {
  return startTemporalApi(options);
 }
 export async function startM4Api(options: StartM4ApiOptions = {}): Promise<StartM4ApiResult> {
  const ownedClient = options.dbClient === undefined;
  const config = ownedClient || options.workspaceRoot === undefined ? getConfig() : undefined;
  const dbClient =
@@ -58,6 +87,9 @@ export async function startApi(options: StartApiOptions = {}): Promise<StartApiR
          ? {}
          : { availableBackends: config.backends }
        : { availableBackends: options.availableBackends }),
      ...(options.maxConcurrentRuns === undefined
        ? {}
        : { maxConcurrentRuns: options.maxConcurrentRuns }),
    });
  try {
@@ -97,6 +129,119 @@ export async function startApi(options: StartApiOptions = {}): Promise<StartApiR
  }
 }
 export async function startTemporalApi(
  options: StartTemporalApiOptions = {},
 ): Promise<StartTemporalApiResult> {
  const ownedClient = options.dbClient === undefined;
  const config =
    options.dbClient === undefined || options.temporalClient === undefined
      ? getConfig()
      : undefined;
  const dbClient =
    options.dbClient ?? createDbClient(config?.DATABASE_URL ?? getConfig().DATABASE_URL);
  const ownedTemporalClient = options.temporalClient === undefined;
  let connection: Connection | undefined;
  let temporalClient: WorkflowClient;
  if (options.temporalClient === undefined) {
    connection = await Connection.connect({
      address: options.temporalAddress ?? config?.TEMPORAL_ADDRESS ?? getConfig().TEMPORAL_ADDRESS,
    });
    temporalClient = new WorkflowClient({ connection, namespace: temporalNamespace });
  } else {
    temporalClient = options.temporalClient;
  }
  const replayValidationWorkspaceRoot =
    options.workspaceRoot ?? config?.WORKSPACE_ROOT ?? getConfig().WORKSPACE_ROOT;
  const replayValidationBackends = options.availableBackends ?? config?.backends;
  const replayValidationMaxConcurrentRuns =
    options.maxConcurrentRuns ?? config?.MAX_CONCURRENT_RUNS;
  const replayValidationEngine = new DbRunEngine({
    db: dbClient.db,
    sessions: dbOnlySessionRuntime(),
    workspaceRoot: replayValidationWorkspaceRoot,
    ...(replayValidationBackends === undefined
      ? {}
      : { availableBackends: replayValidationBackends }),
    ...(replayValidationMaxConcurrentRuns === undefined
      ? {}
      : { maxConcurrentRuns: replayValidationMaxConcurrentRuns }),
  });
  const engine = new TemporalRunEngine({
    client: temporalClient,
    startReplayValidator: {
      validateStartReplay: (input) => replayValidationEngine.validatePreparedRunInput(input),
    },
    approvalSignalReader: {
      readApprovalSignalResult: (runId, approvalRequestId, action, clientToken) =>
        replayValidationEngine.readApprovalSignalResult(
          runId,
          approvalRequestId,
          action,
          clientToken,
        ),
      validateApprovalSignalInput: (runId, approvalRequestId, action, clientToken) =>
        replayValidationEngine.validateApprovalSignalInput(
          runId,
          approvalRequestId,
          action,
          clientToken,
        ),
      replayAppliedApprovalSideEffects: (runId, action) =>
        replayValidationEngine.replayAppliedApprovalSideEffects(runId, action, {
          disposeSessions: false,
        }),
    },
    controlValidator: {
      validateResumeSignalInput: (runId) => replayValidationEngine.validateResumeSignalInput(runId),
    },
    statusReader: {
      getStatus: (runId) => readRunStatus(dbClient.db, runId),
    },
    ...(options.taskQueue === undefined ? {} : { taskQueue: options.taskQueue }),
    ...(options.workflowIdPrefix === undefined
      ? {}
      : { workflowIdPrefix: options.workflowIdPrefix }),
    ...(options.awaitRunStart === undefined ? {} : { awaitRunStart: options.awaitRunStart }),
    ...(options.awaitSignals === undefined ? {} : { awaitSignals: options.awaitSignals }),
  });
  return {
    engine,
    async stop() {
      if (ownedTemporalClient) {
        await connection?.close();
      }
      if (ownedClient) {
        await dbClient.close();
      }
    },
  };
 }
 function dbOnlySessionRuntime(): SessionRuntime {
  const rejectMutation = (operation: string) =>
    Promise.reject(
      new DevflowError("API replay validation cannot mutate TUI sessions", {
        class: "fatal",
        code: "internal_state_corruption",
        recoveryHint: operation,
      }),
    );
  return {
    trackOperation: (operation) => operation,
    start: () => rejectMutation("start"),
    sendPrompt: () => rejectMutation("sendPrompt"),
    probe: () => rejectMutation("probe"),
    resume: () => rejectMutation("resume"),
    rebootstrap: () => rejectMutation("rebootstrap"),
    async *capture() {
      yield await rejectMutation("capture");
    },
    dispose: () => rejectMutation("dispose"),
  };
 }
 if (isDirectEntry(import.meta.url, process.argv)) {
  startApi()
    .then(async (api) => {
--- a/apps/api/tsconfig.json
+++ b/apps/api/tsconfig.json
@@ -10,6 +10,7 @@
    { "path": "../../packages/core" },
    { "path": "../../packages/db" },
    { "path": "../../packages/run-engine" },
-    { "path": "../../packages/session" }
+    { "path": "../../packages/session" },
    { "path": "../../packages/workflows" }
  ]
 }
--- a/apps/cli/src/doctor.test.ts
+++ b/apps/cli/src/doctor.test.ts
@@ -60,6 +60,7 @@ describe("doctor", () => {
        DATABASE_URL: "postgres://devflow:devflow@127.0.0.1:55432/devflow",
        WORKSPACE_ROOT: process.cwd(),
        LOG_LEVEL: "info",
        TEMPORAL_ADDRESS: "localhost:7233",
      },
      nodeVersion: "22.11.0",
    });
@@ -114,6 +115,7 @@ describe("doctor", () => {
        DATABASE_URL: "postgres://devflow:devflow@127.0.0.1:55432/devflow",
        WORKSPACE_ROOT: process.cwd(),
        LOG_LEVEL: "info",
        TEMPORAL_ADDRESS: "localhost:7233",
      },
      nodeVersion: "22.11.0",
    });
--- a/apps/cli/src/doctor.ts
+++ b/apps/cli/src/doctor.ts
@@ -259,7 +259,11 @@ async function checkWorkspaceRoot(config?: Config, configError?: unknown): Promi
 function checkConfig(config?: Config, configError?: unknown): DoctorResult {
  return config
    ? pass("config", "valid", ".env resolved to a valid Config")
-    : fail("config", errorDetail(configError), "Set DATABASE_URL, WORKSPACE_ROOT, and LOG_LEVEL");
+    : fail(
        "config",
        errorDetail(configError),
        "Set DATABASE_URL, WORKSPACE_ROOT, LOG_LEVEL, and TEMPORAL_ADDRESS",
      );
 }
 async function checkOptionalBinary(
--- a/apps/worker/package.json
+++ b/apps/worker/package.json
@@ -0,0 +1,19 @@
 {
  "name": "@devflow/worker",
  "version": "0.0.0",
  "private": true,
  "type": "module",
  "scripts": {
    "build": "tsup src/index.ts --format esm --clean --external @temporalio/worker --external @temporalio/client --external @temporalio/workflow",
    "typecheck": "tsc -p ../../tsconfig.typecheck.json --noEmit",
    "test": "cd ../.. && vitest run --project apps/worker"
  },
  "dependencies": {
    "@devflow/core": "workspace:*",
    "@devflow/db": "workspace:*",
    "@devflow/session": "workspace:*",
    "@devflow/workflows": "workspace:*",
    "@temporalio/client": "^1.17.1",
    "@temporalio/worker": "^1.17.1"
  }
 }
--- a/apps/worker/src/index.test.ts
+++ b/apps/worker/src/index.test.ts
@@ -0,0 +1,275 @@
 import { randomUUID } from "node:crypto";
 import { mkdtempSync, realpathSync, rmSync } from "node:fs";
 import { tmpdir } from "node:os";
 import { join } from "node:path";
 import { DevflowError } from "@devflow/core";
 import {
  type DbClient,
  createDbClient,
  runEvents,
  runs,
  tuiSessions,
  workflowTemplates,
 } from "@devflow/db";
 import { FakeSessionAdapter, type SessionAdapter, type SessionHandle } from "@devflow/session";
 import { eq, inArray } from "drizzle-orm";
 import { afterEach, describe, expect, it } from "vitest";
 import { startWorker } from "./index.js";
 const databaseUrl =
  process.env.DATABASE_URL ?? "postgres://devflow:devflow@127.0.0.1:55432/devflow";
 class ResumeTrackingAdapter extends FakeSessionAdapter {
  resumeAttempts = 0;
  override async resume(handle: SessionHandle): Promise<SessionHandle> {
    this.resumeAttempts += 1;
    return super.resume(handle);
  }
 }
 describe("startWorker", () => {
  let client: DbClient | undefined;
  const runIds: string[] = [];
  const templateIds: string[] = [];
  const tempRoots: string[] = [];
  afterEach(async () => {
    if (client !== undefined) {
      if (runIds.length > 0) {
        await client.db.delete(runs).where(inArray(runs.id, [...runIds]));
      }
      if (templateIds.length > 0) {
        await client.db
          .delete(workflowTemplates)
          .where(inArray(workflowTemplates.id, [...templateIds]));
      }
      await client.close();
      client = undefined;
    }
    for (const root of tempRoots.splice(0)) {
      rmSync(root, { recursive: true, force: true });
    }
    runIds.length = 0;
    templateIds.length = 0;
  });
  it("initializes SessionManager recovery before accepting Temporal work", async () => {
    client = createDbClient(databaseUrl);
    const templateId = randomUUID();
    const runId = randomUUID();
    const sessionId = randomUUID();
    const repoPath = realpathSync(mkdtempSync(join(tmpdir(), "devflow-worker-repo-")));
    const worktreeRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-worker-worktree-")));
    tempRoots.push(repoPath, worktreeRoot);
    templateIds.push(templateId);
    runIds.push(runId);
    await client.db.insert(workflowTemplates).values({
      id: templateId,
      name: `worker-recovery-${templateId}`,
      version: 1,
      hash: "f".repeat(64),
      definition: { name: "worker-recovery", version: 1, roles: [], phases: [] },
    });
    await client.db.insert(runs).values({
      id: runId,
      templateId,
      templateHash: "f".repeat(64),
      state: "executing",
      repoPath,
      baseBranch: "main",
      worktreeRoot,
    });
    await client.db.insert(tuiSessions).values({
      id: sessionId,
      runId,
      roleId: "spec_writer",
      backend: "fake",
      cwd: worktreeRoot,
      state: "BOOTSTRAPPING",
    });
    const adapter = new ResumeTrackingAdapter({
      sessionIdFactory: () => sessionId,
      writeDelayMs: 0,
    });
    await adapter.start({
      runId,
      roleId: "spec_writer",
      backend: "fake",
      cwd: worktreeRoot,
    });
    const worker = await startWorkerWhenLockFree({
      config: {
        DATABASE_URL: databaseUrl,
        LOG_LEVEL: "info",
        TEMPORAL_ADDRESS: "localhost:7233",
        WORKSPACE_ROOT: worktreeRoot,
        MAX_CONCURRENT_RUNS: 4,
        backends: [{ id: "fake", enabled: true }],
      },
      dbClient: client,
      recoveryRunIds: [runId],
      sessionAdapter: adapter,
      connectionFactory: async () => fakeConnection(),
      workerFactory: async () => fakeWorker(),
    });
    try {
      expect(worker.recovery).toEqual({ failedSessionIds: [], recoveredSessionIds: [sessionId] });
      expect(adapter.resumeAttempts).toBe(1);
      const [session] = await client.db
        .select({ state: tuiSessions.state })
        .from(tuiSessions)
        .where(eq(tuiSessions.id, sessionId));
      expect(session).toEqual({ state: "READY" });
      const events = await client.db
        .select({ type: runEvents.type })
        .from(runEvents)
        .where(eq(runEvents.runId, runId))
        .orderBy(runEvents.seq);
      expect(events.map((event) => event.type)).toEqual(["session.created", "session.ready"]);
    } finally {
      await worker.shutdown();
    }
  });
  it("releases acquired resources when SessionManager startup fails", async () => {
    client = createDbClient(databaseUrl);
    const adapter: SessionAdapter = new FakeSessionAdapter();
    const first = await startWorkerWhenLockFree({
      config: {
        DATABASE_URL: databaseUrl,
        LOG_LEVEL: "info",
        TEMPORAL_ADDRESS: "localhost:7233",
        WORKSPACE_ROOT: realpathSync(mkdtempSync(join(tmpdir(), "devflow-worker-workspace-"))),
        MAX_CONCURRENT_RUNS: 4,
        backends: [{ id: "fake", enabled: true }],
      },
      dbClient: client,
      recoveryRunIds: [],
      sessionAdapter: adapter,
      connectionFactory: async () => fakeConnection(),
      workerFactory: async () => fakeWorker(),
    });
    try {
      await expect(
        startWorker({
          config: {
            DATABASE_URL: databaseUrl,
            LOG_LEVEL: "info",
            TEMPORAL_ADDRESS: "localhost:7233",
            WORKSPACE_ROOT: realpathSync(mkdtempSync(join(tmpdir(), "devflow-worker-workspace-"))),
            MAX_CONCURRENT_RUNS: 4,
            backends: [{ id: "fake", enabled: true }],
          },
          dbClient: client,
          recoveryRunIds: [],
          connectionFactory: async () => fakeConnection(),
          workerFactory: async () => fakeWorker(),
        }),
      ).rejects.toMatchObject({ code: "session_manager_already_running" });
    } finally {
      await first.shutdown();
    }
  });
  it("drains SessionManager resources when the Temporal worker run loop stops", async () => {
    client = createDbClient(databaseUrl);
    const workspaceRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-worker-run-")));
    tempRoots.push(workspaceRoot);
    const connection = countingConnection();
    const runtime = countingWorker();
    const worker = await startWorkerWhenLockFree({
      config: {
        DATABASE_URL: databaseUrl,
        LOG_LEVEL: "info",
        TEMPORAL_ADDRESS: "localhost:7233",
        WORKSPACE_ROOT: workspaceRoot,
        MAX_CONCURRENT_RUNS: 4,
        backends: [{ id: "fake", enabled: true }],
      },
      dbClient: client,
      recoveryRunIds: [],
      connectionFactory: async () => connection,
      workerFactory: async () => runtime,
    });
    await worker.run();
    expect(runtime.runs).toBe(1);
    expect(runtime.shutdowns).toBe(1);
    expect(connection.closes).toBe(1);
    const next = await startWorkerWhenLockFree({
      config: {
        DATABASE_URL: databaseUrl,
        LOG_LEVEL: "info",
        TEMPORAL_ADDRESS: "localhost:7233",
        WORKSPACE_ROOT: workspaceRoot,
        MAX_CONCURRENT_RUNS: 4,
        backends: [{ id: "fake", enabled: true }],
      },
      dbClient: client,
      recoveryRunIds: [],
      connectionFactory: async () => fakeConnection(),
      workerFactory: async () => fakeWorker(),
    });
    await next.shutdown();
  });
 });
 function fakeConnection() {
  return {
    close: async () => undefined,
  };
 }
 function fakeWorker() {
  return {
    run: async () => undefined,
    shutdown: () => undefined,
  };
 }
 function countingConnection() {
  return {
    closes: 0,
    async close() {
      this.closes += 1;
    },
  };
 }
 function countingWorker() {
  return {
    runs: 0,
    shutdowns: 0,
    async run() {
      this.runs += 1;
    },
    shutdown() {
      this.shutdowns += 1;
    },
  };
 }
 async function startWorkerWhenLockFree(options: Parameters<typeof startWorker>[0]) {
  const deadline = Date.now() + 6_000;
  let lastError: unknown;
  while (Date.now() < deadline) {
    try {
      return await startWorker(options);
    } catch (error) {
      lastError = error;
      if (!(error instanceof DevflowError) || error.code !== "session_manager_already_running") {
        throw error;
      }
      await new Promise((resolveWait) => setTimeout(resolveWait, 50));
    }
  }
  throw lastError;
 }
--- a/apps/worker/src/index.ts
+++ b/apps/worker/src/index.ts
@@ -0,0 +1,127 @@
 import { fileURLToPath } from "node:url";
 import { type Config, DevflowError, getConfig } from "@devflow/core";
 import { type DbClient, createDbClient } from "@devflow/db";
 import { FakeSessionAdapter, type SessionAdapter, SessionManager } from "@devflow/session";
 import { NativeConnection, Worker } from "@temporalio/worker";
 import { createDevflowActivities, temporalTaskQueue } from "@devflow/workflows";
 interface WorkerConnection {
  close(): Promise<void>;
 }
 interface WorkerRuntime {
  run(): Promise<void>;
  shutdown(): void | Promise<void>;
 }
 export interface StartWorkerOptions {
  config?: Config;
  dbClient?: DbClient;
  sessionAdapter?: SessionAdapter;
  recoveryRunIds?: readonly string[];
  temporalAddress?: string;
  taskQueue?: string;
  connectionFactory?: (options: { address: string }) => Promise<WorkerConnection>;
  workerFactory?: (options: Parameters<typeof Worker.create>[0]) => Promise<WorkerRuntime>;
 }
 export async function startWorker(options: StartWorkerOptions = {}) {
  const config = options.config ?? getConfig();
  const ownedClient = options.dbClient === undefined;
  const dbClient = options.dbClient ?? createDbClient(config.DATABASE_URL);
  const sessionManager = new SessionManager({
    dbClient,
    adapter: options.sessionAdapter ?? new FakeSessionAdapter(),
    ...(options.recoveryRunIds === undefined ? {} : { recoveryRunIds: options.recoveryRunIds }),
  });
  let connection: WorkerConnection | undefined;
  let worker: WorkerRuntime | undefined;
  try {
    const recovery = await sessionManager.initialize();
    connection = await (options.connectionFactory ?? NativeConnection.connect)({
      address: options.temporalAddress ?? config.TEMPORAL_ADDRESS,
    });
    worker = await (options.workerFactory ?? Worker.create)({
      activities: createDevflowActivities({
        db: dbClient.db,
        sessions: sessionManager,
        workspaceRoot: config.WORKSPACE_ROOT,
        availableBackends: config.backends,
        maxConcurrentRuns: config.MAX_CONCURRENT_RUNS,
      }),
      connection: connection as NativeConnection,
      namespace: "devflow",
      taskQueue: options.taskQueue ?? temporalTaskQueue,
      workflowsPath: fileURLToPath(
        new URL("../../../packages/workflows/src/workflow.ts", import.meta.url),
      ),
    });
    const startedWorker = worker;
    const startedConnection = connection;
    if (startedWorker === undefined || startedConnection === undefined) {
      throw new DevflowError("Temporal worker failed to initialize", {
        class: "fatal",
        code: "internal_state_corruption",
      });
    }
    let shutdownPromise: Promise<void> | undefined;
    const shutdown = () => {
      shutdownPromise ??= (async () => {
        await Promise.resolve(startedWorker.shutdown());
        await sessionManager.shutdown();
        await startedConnection.close();
        if (ownedClient) {
          await dbClient.close();
        }
      })();
      return shutdownPromise;
    };
    return {
      recovery,
      async run() {
        try {
          await startedWorker.run();
        } finally {
          await shutdown();
        }
      },
      shutdown,
    };
  } catch (error) {
    if (worker !== undefined) {
      await Promise.resolve(worker.shutdown()).catch(() => undefined);
    }
    if (connection !== undefined) {
      await connection.close().catch(() => undefined);
    }
    await sessionManager.shutdown().catch(() => undefined);
    if (ownedClient) {
      await dbClient.close().catch(() => undefined);
    }
    throw error;
  }
 }
 if (process.argv[1] === fileURLToPath(import.meta.url)) {
  startWorker()
    .then(async (worker) => {
      const requestShutdown = () => {
        void worker.shutdown().catch((error: unknown) => {
          console.error(error);
          process.exitCode = 2;
        });
      };
      process.once("SIGINT", requestShutdown);
      process.once("SIGTERM", requestShutdown);
      await worker.run();
    })
    .catch((error: unknown) => {
      console.error(error);
      process.exitCode =
        error instanceof DevflowError && error.code === "session_manager_already_running" ? 3 : 2;
    });
 }
--- a/apps/worker/tsconfig.json
+++ b/apps/worker/tsconfig.json
@@ -0,0 +1,15 @@
 {
  "extends": "../../tsconfig.base.json",
  "compilerOptions": {
    "rootDir": "src",
    "outDir": "dist",
    "types": ["node", "vitest"]
  },
  "include": ["src/**/*.ts"],
  "references": [
    { "path": "../../packages/core" },
    { "path": "../../packages/db" },
    { "path": "../../packages/session" },
    { "path": "../../packages/workflows" }
  ]
 }
--- a/docs/plan.md
+++ b/docs/plan.md
@@ -1,4 +1,4 @@
-# Devflow Implementation Plan v3 r9
+# Devflow Implementation Plan v3 r12
 ## 0. Document Status
@@ -16,6 +16,9 @@
 - r7 applies CC-21 through CC-23.
 - r8 applies CC-24 through CC-26.
 - r9 applies CC-27 through CC-28.
 - r10 applies CC-29 through CC-31.
 - r11 applies CC-32.
 - r12 applies CC-33 through CC-35.
 ## 1. Stack Decisions
@@ -1206,6 +1209,9 @@ Replay rules:
 - `phase.started.payload.repair === true` marks that attempt as the single allowed repair attempt. Replaying that attempt MUST use repair instructions, `prompt.repaired`, and must not start a third attempt.
 - Repair replay from `running` may reuse an existing `READY` / bootstrapped session even if `last_prompt_hash` still contains the previous attempt's prompt hash; current-attempt prompt send has not happened yet.
 - If phase state is `running`, existing artifact files are never accepted unless the current prompt event (`prompt.sent` or `prompt.repaired`) for the current dedup key is already recorded. Replay without prompt proof treats existing files as stale.
 - If phase state is `running`, session state is `BUSY`, and `last_prompt_hash` matches the current prompt but the matching prompt event is missing, replay waits for the artifact with the current file signature as the baseline. This preserves idempotency without validating a stale pre-existing artifact.
 - Baseline-protected waits must not synthesize durable prompt proof before the wait finishes. If replay crashes or is cancelled before validation, the next replay must still treat the existing artifact as baseline/stale unless real prompt proof already exists.
 - If phase state is `validating` and no artifact row exists yet, replay re-reads and validates the current `expectedArtifactPath` instead of treating the state as corruption.
 - If phase state is `validating` and artifact rows already exist for the same phase/path/schema, replay may reuse only an artifact row created at or after the current session `last_prompt_at`; older rows are treated as stale previous-attempt outputs and the file is revalidated.
 - Session bootstrap DB row/state changes and `session.created` / `session.ready` events are written in one DB transaction after adapter start succeeds.
@@ -1328,22 +1334,31 @@ interface RunEngine {
 Activities:
- `lockBindings(input)`
+- M5 compatibility activity surface:
- `generatePhasePlan(runId, phaseKey, attempt)`
+  - `prepareRunActivity(input)`
- `sendPromptToSession(sessionId, envelope)`
+  - `lockBindingsActivity(runId)`
- `waitForArtifact(sessionId, expectedPath, expectedSchema, timeoutMs)`
+  - `failRunActivity(runId, reason)`
- `validateArtifact(artifactPath, expectedSchema)`
+  - `advanceRunActivity(runId)`
- `recordEvent(runId, type, payload)`
+  - `signalApprovalActivity(runId, approvalRequestId, action, clientToken, comment?)`
- `requestApproval(runId, gateKey, phaseId, payload, idempotencyKey)`
+  - `pauseRunActivity(runId)`
- `runCommand(kind, argv, cwd, env)`
+  - `resumeRunActivity(runId)`
- `composeFinalReport(runId)`
+  - `abortRunActivity(runId, reason)`
  - `getStatusActivity(runId)`
  - `isRunTerminalActivity(runId)`
  - `composeFinalReportActivity(runId)`
 - `advanceRunActivity` is the M5 parity wrapper over M4 phase advancement. It may internally perform prompt send, artifact wait/validation, event recording, and approval request creation through the same DB/idempotency contracts already locked in sections 8 through 14.
 - The granular activity split (`sendPromptToSession`, `waitForArtifact`, `validateArtifact`, `recordEvent`, `requestApproval`, `runCommand`) is deferred to a later hardening ADR. It is not an M5 acceptance gate.
 - Prompt/session mutation still occurs only inside worker-hosted activities through SessionManager. M5+ API code never mutates `SessionAdapter` directly.
 Retry policy:
 - Default: max attempts 3, exponential backoff start 1s, max 30s.
- `requestApproval`: max attempts 1.
+- `composeFinalReportActivity`: max attempts 1.
- `composeFinalReport`: max attempts 1.
+- Activity-level failures serialize `DevflowError`; non-recoverable Devflow errors are rethrown as non-retryable Temporal failures.
- `sendPromptToSession`: max attempts 2; further retry belongs to engine recovery.
+- `advanceRunActivity` is cancellation-aware and idempotent by DB state, event idempotency keys, prompt dedup keys, and artifact content keys.
 - Already-applied approval signal replay repairs missing final reports for every terminal run state: `completed`, `failed`, and `aborted`, regardless of whether the replayed approval action was `approve`, `request_changes`, `reject`, or `abort`.
 - API-side already-applied approval replay is report-repair only. It must not call `SessionAdapter` mutation methods; reject/abort session disposal belongs to the worker/session-manager path that originally applies the decision.
 - If a workflow closes before the API observes an approval signal result, closed-workflow settlement must first verify the requested decision was applied, then replay approval side effects, then wait for the terminal report.
 ### 15.3 Hard Constraints
@@ -1746,6 +1761,13 @@ M5+:
 | CC-26 | Session bootstrap state/events could diverge | session row/state and `session.created` / `session.ready` events are committed in one DB transaction |
 | CC-27 | `validating` replay could reuse stale previous-attempt artifact rows | artifact-row replay requires `artifact.created_at >= tui_sessions.last_prompt_at`; otherwise the file is revalidated |
 | CC-28 | repair `running` replay rejected existing READY sessions with previous attempt prompt hash | current-attempt repair prompt is considered unsent, so replay may reuse the session and send `prompt.repaired` |
 | CC-29 | API Temporal approval replay omitted M4 approval side-effect repair | API approval signal reader now wires `replayAppliedApprovalSideEffects`, so already-applied terminal approval replays can repair missing final reports |
 | CC-30 | `running` replay could validate stale artifacts without prompt proof | `running` replay requires matching prompt event proof; BUSY replay without prompt event uses current artifact signature as baseline and ignores stale files |
 | CC-31 | M5 activity list over-specified granular activities not implemented by the M4 parity adapter | M5 locks the compatibility activity wrapper surface; granular activity split is deferred to a later hardening ADR |
 | CC-32 | Already-applied `approve` / `request_changes` replay repaired missing reports for `completed` / `failed` but missed `aborted` | approval replay side-effect repair now composes missing final reports for all terminal states |
 | CC-33 | API-side already-applied `reject` / `abort` replay tried to dispose sessions through DB-only replay validation runtime | API replay side effects are report-repair only; worker-side decision application owns session disposal |
 | CC-34 | Closed-workflow approval settlement waited for reports but did not replay approval side effects | settlement now verifies the requested decision, replays side effects, then waits for the terminal report |
 | CC-35 | Baseline-protected BUSY replay recorded synthetic prompt proof before the baseline wait was durable | baseline replay no longer records synthetic prompt events; replay without real prompt proof keeps treating existing files as stale |
 ### Future Open Questions
--- a/packages/core/src/config.test.ts
+++ b/packages/core/src/config.test.ts
@@ -17,6 +17,7 @@ describe("config loader", () => {
        "DATABASE_URL=postgres://env:env@localhost:5432/env",
        "WORKSPACE_ROOT=workspace",
        "LOG_LEVEL=warn",
        "TEMPORAL_ADDRESS=localhost:7233",
      ].join("\n"),
    );
    writeFileSync(join(root, ".env.local"), "LOG_LEVEL=debug\n");
@@ -44,6 +45,7 @@ describe("config loader", () => {
        DATABASE_URL: "postgres://devflow:devflow@localhost:5432/devflow",
        WORKSPACE_ROOT: workspace,
        LOG_LEVEL: "info",
        TEMPORAL_ADDRESS: "localhost:7233",
      },
    });
@@ -66,6 +68,7 @@ describe("config loader", () => {
        DATABASE_URL: "postgres://devflow:devflow@localhost:5432/devflow",
        WORKSPACE_ROOT: workspace,
        LOG_LEVEL: "info",
        TEMPORAL_ADDRESS: "localhost:7233",
        PATH: binDir,
        DEVFLOW_BACKENDS_JSON: JSON.stringify([{ id: "codex", enabled: true }]),
      },
@@ -90,6 +93,7 @@ describe("config loader", () => {
        DATABASE_URL: "postgres://devflow:devflow@localhost:5432/devflow",
        WORKSPACE_ROOT: workspace,
        LOG_LEVEL: "info",
        TEMPORAL_ADDRESS: "localhost:7233",
        PATH: emptyBin,
        DEVFLOW_BACKENDS_JSON: JSON.stringify([{ id: "codex", enabled: true }]),
      },
@@ -125,6 +129,23 @@ describe("config loader", () => {
    expect((caught as DevflowError).cause).toBeDefined();
  });
  it("requires TEMPORAL_ADDRESS at M5", () => {
    const root = mkdtempSync(join(tmpdir(), "devflow-config-"));
    const workspace = join(root, "workspace");
    mkdirSync(workspace);
    expect(() =>
      loadConfigFromSources({
        cwd: root,
        env: {
          DATABASE_URL: "postgres://devflow:devflow@localhost:5432/devflow",
          WORKSPACE_ROOT: workspace,
          LOG_LEVEL: "info",
        },
      }),
    ).toThrow(DevflowError);
  });
  it("classifies malformed backend JSON as invalid config", () => {
    const root = mkdtempSync(join(tmpdir(), "devflow-config-"));
    const workspace = join(root, "workspace");
@@ -137,6 +158,7 @@ describe("config loader", () => {
          DATABASE_URL: "postgres://devflow:devflow@localhost:5432/devflow",
          WORKSPACE_ROOT: workspace,
          LOG_LEVEL: "info",
          TEMPORAL_ADDRESS: "localhost:7233",
          DEVFLOW_BACKENDS_JSON: "{",
        },
      }),
@@ -154,6 +176,7 @@ describe("config loader", () => {
        DATABASE_URL: "postgres://devflow:devflow@localhost:5432/devflow",
        WORKSPACE_ROOT: workspace,
        LOG_LEVEL: "info",
        TEMPORAL_ADDRESS: "localhost:7233",
      },
    });
--- a/packages/core/src/config.ts
+++ b/packages/core/src/config.ts
@@ -20,7 +20,7 @@ const RawConfigSchema = z.object({
  DATABASE_URL: z.string().min(1),
  WORKSPACE_ROOT: z.string().min(1),
  LOG_LEVEL: LogLevel,
-  TEMPORAL_ADDRESS: z.string().optional(),
+  TEMPORAL_ADDRESS: z.string().min(1),
  MAX_CONCURRENT_RUNS: z.coerce.number().int().positive().default(4),
  backends: z.array(BackendConfig).default([{ id: "fake", enabled: true }]),
 });
--- a/packages/run-engine/src/engine.test.ts
+++ b/packages/run-engine/src/engine.test.ts
@@ -2,6 +2,7 @@ import { execFileSync } from "node:child_process";
 import { randomUUID } from "node:crypto";
 import {
  existsSync,
  mkdirSync,
  mkdtempSync,
  readFileSync,
  realpathSync,
@@ -84,6 +85,15 @@ class PausesAfterPromptAcceptedFakeAdapter extends FakeSessionAdapter {
  }
 }
 class DisposeCountingFakeAdapter extends FakeSessionAdapter {
  disposeCalls = 0;
  override async dispose(handle: Parameters<FakeSessionAdapter["dispose"]>[0]): Promise<void> {
    this.disposeCalls += 1;
    await super.dispose(handle);
  }
 }
 describe("DbRunEngine", () => {
  let client: DbClient | undefined;
  const runIds: string[] = [];
@@ -129,6 +139,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -281,6 +292,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -357,6 +369,118 @@ describe("DbRunEngine", () => {
    });
  });
  it("validates a prepared run replay without accepting changed start inputs", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
    const workspaceRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-engine-workspace-")));
    const repoPath = createGitRepo();
    tempRoots.push(workspaceRoot, repoPath);
    const engine = new DbRunEngine({
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      maxConcurrentRuns: 100,
      workspaceRoot,
    });
    const runId = randomUUID();
    const input = {
      runId,
      requirementsMd: "Validate replayed Temporal start input.",
      repoPath,
      baseBranch: "main",
      scenarios: { spec: "ok" },
    };
    await engine.prepareRun(input);
    runIds.push(runId);
    await expect(engine.validatePreparedRunInput(input)).resolves.toBeUndefined();
    await expect(
      engine.validatePreparedRunInput({
        ...input,
        scenarios: { spec: "timeout" },
      }),
    ).rejects.toMatchObject({ code: "internal_state_corruption" });
  });
  it("rejects prepared run replay when the persisted worktree path is only a partial directory", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
    const workspaceRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-engine-workspace-")));
    const repoPath = createGitRepo();
    tempRoots.push(workspaceRoot, repoPath);
    const engine = new DbRunEngine({
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      maxConcurrentRuns: 100,
      workspaceRoot,
    });
    const runId = randomUUID();
    const input = {
      runId,
      requirementsMd: "Reject partial worktree replay.",
      repoPath,
      baseBranch: "main",
    };
    await engine.prepareRun(input);
    runIds.push(runId);
    const [run] = await client.db
      .select({ worktreeRoot: runs.worktreeRoot })
      .from(runs)
      .where(eq(runs.id, runId));
    expect(run).toBeDefined();
    if (run === undefined) {
      throw new Error("prepared run missing");
    }
    rmSync(run.worktreeRoot, { recursive: true, force: true });
    mkdirSync(run.worktreeRoot, { recursive: true });
    await expect(engine.prepareRun(input)).rejects.toMatchObject({
      code: "workspace_permissions",
    });
  });
  it("rejects prepared run replay when the persisted worktree belongs to another repo", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
    const workspaceRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-engine-workspace-")));
    const repoPath = createGitRepo();
    tempRoots.push(workspaceRoot, repoPath);
    const engine = new DbRunEngine({
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      maxConcurrentRuns: 100,
      workspaceRoot,
    });
    const runId = randomUUID();
    const input = {
      runId,
      requirementsMd: "Reject a replayed worktree that belongs to a different repo.",
      repoPath,
      baseBranch: "main",
    };
    await engine.prepareRun(input);
    runIds.push(runId);
    const [run] = await client.db
      .select({ worktreeRoot: runs.worktreeRoot })
      .from(runs)
      .where(eq(runs.id, runId));
    expect(run).toBeDefined();
    if (run === undefined) {
      throw new Error("prepared run missing");
    }
    rmSync(run.worktreeRoot, { recursive: true, force: true });
    mkdirSync(run.worktreeRoot, { recursive: true });
    execFileSync("git", ["init", "-b", `devflow/${runId}/main`], {
      cwd: run.worktreeRoot,
      stdio: "ignore",
    });
    await expect(engine.prepareRun(input)).rejects.toMatchObject({
      code: "workspace_permissions",
    });
  });
  it("enforces the configured maximum concurrent active runs", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
@@ -418,6 +542,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -456,7 +581,7 @@ describe("DbRunEngine", () => {
    expect((await engine.getStatus(runId)).run.state).toBe("awaiting_approval");
  });
-  it("resumes an active phase that observed a manual pause mid-mutation", async () => {
+  it("repairs an active phase that paused after prompt acceptance but before prompt proof", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
    const workspaceRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-engine-workspace-")));
@@ -466,6 +591,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new PausesAfterPromptAcceptedFakeAdapter(client.db)),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -488,7 +614,7 @@ describe("DbRunEngine", () => {
    const resumed = await engine.getStatus(runId);
    expect(resumed.run.state).toBe("awaiting_approval");
    expect(resumed.phases.find((phase) => phase.phaseKey === "spec")).toMatchObject({
-      attempts: 1,
+      attempts: 2,
      state: "awaiting_approval",
    });
    expect(pendingApproval(resumed, "spec_approved")).toBeDefined();
@@ -504,6 +630,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -567,6 +694,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -614,6 +742,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -650,6 +779,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -686,6 +816,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -736,6 +867,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -815,6 +947,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -871,6 +1004,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -937,6 +1071,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -983,6 +1118,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -1025,6 +1161,7 @@ describe("DbRunEngine", () => {
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
@@ -1051,6 +1188,127 @@ describe("DbRunEngine", () => {
      code: "approval_conflict",
    });
  });
  it("does not treat a client token suffix as an approval replay", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
    const workspaceRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-engine-workspace-")));
    const repoPath = createGitRepo();
    tempRoots.push(workspaceRoot, repoPath);
    const engine = new DbRunEngine({
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
    const { runId } = await engine.startRun({
      requirementsMd: "Check approval token suffix handling.",
      repoPath,
      baseBranch: "main",
    });
    runIds.push(runId);
    const [request] = await client.db
      .select({ id: approvalRequests.id })
      .from(approvalRequests)
      .where(and(eq(approvalRequests.runId, runId), eq(approvalRequests.state, "pending")));
    expect(request).toBeDefined();
    if (request === undefined) {
      throw new Error("approval request missing");
    }
    await engine.signalApproval(runId, request.id, "approve", "prefix:shared-token");
    await expect(
      engine.signalApproval(runId, request.id, "approve", "shared-token"),
    ).rejects.toMatchObject({
      code: "approval_conflict",
    });
  });
  it("replays terminal approval disposal side effects for duplicate decisions", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
    const workspaceRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-engine-workspace-")));
    const repoPath = createGitRepo();
    tempRoots.push(workspaceRoot, repoPath);
    const adapter = new DisposeCountingFakeAdapter({ writeDelayMs: 0 });
    const engine = new DbRunEngine({
      db: client.db,
      sessions: sessionRuntime(client.db, adapter),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
    const { runId } = await engine.startRun({
      requirementsMd: "Reject and replay disposal.",
      repoPath,
      baseBranch: "main",
    });
    runIds.push(runId);
    const request = pendingApproval(await engine.getStatus(runId), "spec_approved");
    const clientToken = randomUUID();
    await engine.signalApproval(runId, request.id, "reject", clientToken);
    expect(adapter.disposeCalls).toBe(1);
    await engine.signalApproval(runId, request.id, "reject", clientToken);
    expect(adapter.disposeCalls).toBe(2);
    await engine.replayAppliedApprovalSideEffects(runId, "reject");
    expect(adapter.disposeCalls).toBe(3);
  });
  it("repairs missing aborted final reports during applied approval replay", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
    const workspaceRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-engine-workspace-")));
    const repoPath = createGitRepo();
    const worktreeRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-engine-worktree-")));
    tempRoots.push(workspaceRoot, repoPath, worktreeRoot);
    const [template] = await client.db
      .select({ hash: workflowTemplates.hash, id: workflowTemplates.id })
      .from(workflowTemplates)
      .where(eq(workflowTemplates.name, "development"))
      .limit(1);
    if (template === undefined) {
      throw new Error("development template missing");
    }
    const runId = randomUUID();
    runIds.push(runId);
    await client.db.insert(runs).values({
      id: runId,
      templateId: template.id,
      templateHash: template.hash,
      state: "aborted",
      repoPath,
      baseBranch: "main",
      worktreeRoot,
      endedAt: new Date(),
      finalReportPath: null,
    });
    const engine = new DbRunEngine({
      db: client.db,
      sessions: sessionRuntime(client.db, new FakeSessionAdapter({ writeDelayMs: 0 })),
      workspaceRoot,
      maxConcurrentRuns: 100,
    });
    await engine.replayAppliedApprovalSideEffects(runId, "approve");
    const [run] = await client.db
      .select({ finalReportPath: runs.finalReportPath })
      .from(runs)
      .where(eq(runs.id, runId));
    expect(run?.finalReportPath).toMatch(/\.report\.md$/);
    if (run?.finalReportPath === null || run?.finalReportPath === undefined) {
      throw new Error("final report was not repaired");
    }
    expect(
      JSON.parse(
        readFileSync(run.finalReportPath.replace(/\.report\.md$/, ".report.json"), "utf8"),
      ),
    ).toMatchObject({ runId, status: "aborted" });
  });
 });
 function pendingApproval(status: Awaited<ReturnType<DbRunEngine["getStatus"]>>, gateKey: string) {
--- a/packages/run-engine/src/engine.ts
+++ b/packages/run-engine/src/engine.ts
@@ -1,6 +1,6 @@
 import { execFile } from "node:child_process";
 import { createHash, randomUUID } from "node:crypto";
-import { realpathSync } from "node:fs";
+import { existsSync, realpathSync } from "node:fs";
 import { mkdir, readFile, rename, writeFile } from "node:fs/promises";
 import { dirname, join, relative, resolve } from "node:path";
 import { promisify } from "node:util";
@@ -14,6 +14,7 @@ import {
  Persona,
  Template,
  bindTemplatePersonas,
  canonicalize,
  hash,
  validateArtifact,
 } from "@devflow/core";
@@ -92,6 +93,8 @@ export interface DbRunEngineOptions {
    timeoutMs?: number;
    pollIntervalMs?: number;
    stableMs?: number;
    signal?: AbortSignal;
    onPoll?: () => void;
  };
 }
@@ -183,16 +186,48 @@ export class DbRunEngine implements RunEngine {
  }
  async startRun(input: RunStartInput): Promise<{ runId: string }> {
    const runId = input.runId ?? randomUUID();
    const runInput = { ...input, runId };
    await this.prepareRun(runInput);
    try {
      await this.lockBindingsForRun(runInput);
      await this.advanceRunUntilBlocked(runId, { failureReason: "start_run_failed" });
    } catch (error) {
      if (await this.shouldPreserveHumanGateRun(runId, error)) {
        return { runId };
      }
      await this.markRunFailedIfActive(runId, "start_run_failed");
      throw error;
    }
    return { runId };
  }
  async prepareRun(input: RunStartInput): Promise<{ runId: string }> {
    const runId = input.runId ?? randomUUID();
    const templateName = input.templateName ?? "development";
    const templateVersion = input.templateVersion ?? 1;
    const repoPath = canonicalExistingPath(input.repoPath);
    const worktreeRoot = await this.resolveWorktreeRoot(runId, input.worktreeRoot);
    const templateRecord = await this.loadTemplate(templateName, templateVersion);
    const worktreeRoot = await this.resolveWorktreeRoot(runId, input.worktreeRoot);
    const inputExtra = storeEngineMetadata(input.extra, input.scenarios, input.overrides);
    const existing = await this.existingRunForPrepare(runId);
    if (existing !== undefined) {
      this.assertPreparedRunMatches(runId, existing, {
        repoPath,
        baseBranch: input.baseBranch,
        templateHash: templateRecord.hash,
        worktreeRoot,
        requirementsMd: input.requirementsMd,
        objective: input.objective ?? null,
        extra: inputExtra,
      });
      await this.ensureGitWorktree(repoPath, input.baseBranch, runId, existing.worktreeRoot);
      return { runId };
    }
    const template = Template.parse(templateRecord.definition);
    const personaRecords = await this.loadPersonas();
    const personas = personaRecords.map((row) => Persona.parse(row.definition));
    const inputExtra = storeEngineMetadata(input.extra, input.scenarios);
    const inputHash = hash({
      templateHash: templateRecord.hash,
      bindings: [],
@@ -262,25 +297,100 @@ export class DbRunEngine implements RunEngine {
      throw error;
    }
-    try {
+    return { runId };
-      await this.lockBindings(
+  }
  async validatePreparedRunInput(input: RunStartInput): Promise<void> {
    const runId = input.runId;
    if (runId === undefined) {
      throw new DevflowError("Run id is required to validate a prepared run", {
        class: "fatal",
        code: "internal_state_corruption",
      });
    }
    const templateName = input.templateName ?? "development";
    const templateVersion = input.templateVersion ?? 1;
    const existing = await this.existingRunForPrepare(runId);
    if (existing === undefined) {
      throw runNotFound(runId);
    }
    const templateRecord = await this.loadTemplate(templateName, templateVersion);
    this.assertPreparedRunMatches(runId, existing, {
      repoPath: canonicalExistingPath(input.repoPath),
      baseBranch: input.baseBranch,
      templateHash: templateRecord.hash,
      worktreeRoot: this.expectedWorktreeRoot(runId, input.worktreeRoot),
      requirementsMd: input.requirementsMd,
      objective: input.objective ?? null,
      extra: storeEngineMetadata(input.extra, input.scenarios, input.overrides),
    });
  }
  async lockBindingsForRun(input: RunStartInput): Promise<void> {
    const runId = input.runId;
    if (runId === undefined) {
      throw new DevflowError("Run id is required to lock bindings", {
        class: "fatal",
        code: "internal_state_corruption",
      });
    }
    const [run] = await this.db
      .select({ state: runs.state, templateHash: runs.templateHash })
      .from(runs)
      .where(eq(runs.id, runId))
      .limit(1);
    if (run === undefined) {
      throw runNotFound(runId);
    }
    if (run.state !== "created") {
      return;
    }
    const templateName = input.templateName ?? "development";
    const templateVersion = input.templateVersion ?? 1;
    const templateRecord = await this.loadTemplate(templateName, templateVersion);
    if (templateRecord.hash !== run.templateHash) {
      throw new DevflowError("Run template hash does not match binding input", {
        class: "fatal",
        code: "internal_state_corruption",
        runId,
-        template,
+      });
-        templateRecord.hash,
+    }
-        personaRecords,
+    const template = Template.parse(templateRecord.definition);
-        personas,
+    const personaRecords = await this.loadPersonas();
-        input,
+    const personas = personaRecords.map((row) => Persona.parse(row.definition));
    await this.lockBindings(runId, template, templateRecord.hash, personaRecords, personas, input);
  }
  async failRunIfActive(runId: string, reason: string): Promise<void> {
    await this.markRunFailedIfActive(runId, reason);
  }
  async advanceRunUntilBlocked(
    runId: string,
    options: { resumeActivePhase?: boolean; failureReason?: string } = {},
  ): Promise<RunStatus> {
    try {
      await this.advanceRun(
        runId,
        options.resumeActivePhase === undefined
          ? {}
          : { resumeActivePhase: options.resumeActivePhase },
      );
      await this.advanceRun(runId);
    } catch (error) {
-      if (await this.shouldPreserveHumanGateRun(runId, error)) {
+      if (error instanceof DevflowError && error.code === "activity_cancelled") {
-        return { runId };
+        throw error;
      }
-      await this.markRunFailedIfActive(runId, "start_run_failed");
+      if (await this.shouldPreserveHumanGateRun(runId, error)) {
        return this.getStatus(runId);
      }
      await this.markRunFailedIfActive(runId, options.failureReason ?? "advance_run_failed");
      throw error;
    }
-    return { runId };
+    return this.getStatus(runId);
  }
  private async lockStartAttempt(
@@ -359,6 +469,66 @@ export class DbRunEngine implements RunEngine {
    await this.composeFinalReportBestEffort(runId, "aborted");
  }
  async signalApprovalForWorkflow(
    runId: string,
    approvalRequestId: string,
    action: ApprovalDecisionActionValue,
    clientToken: string,
    comment?: string,
  ): Promise<void> {
    const parsedAction = ApprovalDecisionAction.parse(action);
    await this.recordApprovalDecision(runId, approvalRequestId, parsedAction, clientToken, comment);
  }
  async validateApprovalSignalInput(
    runId: string,
    approvalRequestId: string,
    action: ApprovalDecisionActionValue,
    clientToken: string,
  ): Promise<"pending" | "applied"> {
    const parsedAction = ApprovalDecisionAction.parse(action);
    return this.readApprovalSignalState(runId, approvalRequestId, parsedAction, clientToken, {
      allowPending: true,
      allowReplayBeforeStateChecks: true,
    });
  }
  async readApprovalSignalResult(
    runId: string,
    approvalRequestId: string,
    action: ApprovalDecisionActionValue,
    clientToken: string,
  ): Promise<"pending" | "applied"> {
    const parsedAction = ApprovalDecisionAction.parse(action);
    return this.readApprovalSignalState(runId, approvalRequestId, parsedAction, clientToken, {
      allowPending: true,
      allowReplayBeforeStateChecks: true,
      requireOwnDecisionWhenResolved: true,
    });
  }
  async replayAppliedApprovalSideEffects(
    runId: string,
    action: ApprovalDecisionActionValue,
    options: { disposeSessions?: boolean } = {},
  ): Promise<void> {
    const parsedAction = ApprovalDecisionAction.parse(action);
    const shouldDisposeSessions = options.disposeSessions ?? true;
    if (shouldDisposeSessions && parsedAction === "reject") {
      await this.disposeSessions(await this.sessionIdsForRun(runId));
    } else if (shouldDisposeSessions && parsedAction === "abort") {
      await this.disposeSessions(await this.sessionIdsForRun(runId));
    }
    const status = await this.getStatus(runId);
    if (isTerminalRunState(status.run.state)) {
      await this.composeFinalReportBestEffort(
        runId,
        status.run.state as "completed" | "failed" | "aborted",
      );
    }
  }
  async pauseRun(runId: string): Promise<void> {
    const eventRepository = new RunEventRepository(this.db);
    await this.db.transaction(async (tx) => {
@@ -389,6 +559,45 @@ export class DbRunEngine implements RunEngine {
  async resumeRun(runId: string): Promise<void> {
    const eventRepository = new RunEventRepository(this.db);
    const shouldAdvance = await this.resumeRunState(runId, eventRepository);
    if (shouldAdvance) {
      try {
        await this.advanceRun(runId, { resumeActivePhase: true });
      } catch (error) {
        if (await this.shouldPreserveHumanGateRun(runId, error)) {
          return;
        }
        await this.markRunFailedIfActive(runId, "resume_advance_failed");
        throw error;
      }
    }
  }
  async validateResumeSignalInput(runId: string): Promise<void> {
    await this.db.transaction(async (tx) => {
      const [run] = await lockRun(tx, runId);
      if (run === undefined) {
        throw runNotFound(runId);
      }
      if (run.state !== "paused") {
        return;
      }
      if (await hasPendingHumanRequiredGate(tx, runId)) {
        throw approvalConflict(runId, "pending human-required gate must be resolved first");
      }
    });
  }
  async resumeRunForWorkflow(runId: string): Promise<void> {
    const eventRepository = new RunEventRepository(this.db);
    await this.resumeRunState(runId, eventRepository);
  }
  private async resumeRunState(
    runId: string,
    eventRepository: RunEventRepository,
  ): Promise<boolean> {
    let shouldAdvance = false;
    await this.db.transaction(async (tx) => {
      const [run] = await lockRun(tx, runId);
@@ -413,17 +622,7 @@ export class DbRunEngine implements RunEngine {
      shouldAdvance = nextState === "executing" || nextState === "planning";
    });
-    if (shouldAdvance) {
+    return shouldAdvance;
      try {
        await this.advanceRun(runId, { resumeActivePhase: true });
      } catch (error) {
        if (await this.shouldPreserveHumanGateRun(runId, error)) {
          return;
        }
        await this.markRunFailedIfActive(runId, "resume_advance_failed");
        throw error;
      }
    }
  }
  async abortRun(runId: string, reason: string): Promise<void> {
@@ -464,73 +663,7 @@ export class DbRunEngine implements RunEngine {
  }
  async getStatus(runId: string): Promise<RunStatus> {
-    const [run] = await this.db
+    return readRunStatus(this.db, runId);
      .select({
        id: runs.id,
        state: runs.state,
        repoPath: runs.repoPath,
        baseBranch: runs.baseBranch,
        worktreeRoot: runs.worktreeRoot,
        currentPhaseId: runs.currentPhaseId,
        finalReportPath: runs.finalReportPath,
        startedAt: runs.startedAt,
        endedAt: runs.endedAt,
      })
      .from(runs)
      .where(eq(runs.id, runId))
      .limit(1);
    if (run === undefined) {
      throw runNotFound(runId);
    }
    const [phases, approvals, eventsTail] = await Promise.all([
      this.db
        .select({
          id: runPhases.id,
          phaseKey: runPhases.phaseKey,
          seq: runPhases.seq,
          state: runPhases.state,
          attempts: runPhases.attempts,
        })
        .from(runPhases)
        .where(eq(runPhases.runId, runId))
        .orderBy(asc(runPhases.seq)),
      this.db
        .select({
          id: approvalRequests.id,
          phaseId: approvalRequests.phaseId,
          gateKey: approvalRequests.gateKey,
          state: approvalRequests.state,
        })
        .from(approvalRequests)
        .where(eq(approvalRequests.runId, runId))
        .orderBy(asc(approvalRequests.createdAt)),
      this.db
        .select({
          id: runEvents.id,
          seq: runEvents.seq,
          type: runEvents.type,
          payload: runEvents.payload,
          ts: runEvents.ts,
        })
        .from(runEvents)
        .where(eq(runEvents.runId, runId))
        .orderBy(desc(runEvents.seq))
        .limit(20),
    ]);
    return {
      run,
      phases,
      approvals,
      eventsTail: eventsTail.reverse().map((event) => ({
        id: event.id.toString(),
        seq: event.seq.toString(),
        type: event.type,
        payload: event.payload,
        ts: event.ts,
      })),
    };
  }
  private async lockBindings(
@@ -563,7 +696,7 @@ export class DbRunEngine implements RunEngine {
      objective: input.objective ?? null,
      repoPath: canonicalExistingPath(input.repoPath),
      baseBranch: input.baseBranch,
-      extra: storeEngineMetadata(input.extra, input.scenarios),
+      extra: storeEngineMetadata(input.extra, input.scenarios, input.overrides),
    });
    await this.db.transaction(async (tx) => {
@@ -872,6 +1005,9 @@ export class DbRunEngine implements RunEngine {
        if (existingDecision.action !== action) {
          throw approvalConflict(runId, "client token already used for a different action");
        }
        if (action === "abort" || action === "reject") {
          sessionsToDispose = await sessionIdsForRun(tx, runId);
        }
        return { replayed: true };
      }
      if (isTerminalRunState(run.state)) {
@@ -989,6 +1125,81 @@ export class DbRunEngine implements RunEngine {
    return result;
  }
  private async readApprovalSignalState(
    runId: string,
    approvalRequestId: string,
    action: ApprovalDecisionActionValue,
    clientToken: string,
    options: {
      allowPending: boolean;
      allowReplayBeforeStateChecks: boolean;
      requireOwnDecisionWhenResolved?: boolean;
    },
  ): Promise<"pending" | "applied"> {
    return this.db.transaction(async (tx) => {
      const [run] = await lockRun(tx, runId);
      if (run === undefined) {
        throw runNotFound(runId);
      }
      await tx.execute(
        sql`SELECT 1 FROM ${approvalRequests} WHERE ${approvalRequests.id} = ${approvalRequestId} FOR UPDATE`,
      );
      const [request] = await tx
        .select({
          id: approvalRequests.id,
          phaseId: approvalRequests.phaseId,
          state: approvalRequests.state,
        })
        .from(approvalRequests)
        .where(and(eq(approvalRequests.id, approvalRequestId), eq(approvalRequests.runId, runId)))
        .limit(1);
      if (request === undefined) {
        throw new DevflowError("Approval request does not exist", {
          class: "human_required",
          code: "approval_not_found",
          runId,
        });
      }
      const existingDecision = await existingDecisionForToken(tx, approvalRequestId, clientToken);
      if (existingDecision !== undefined) {
        if (existingDecision.action !== action) {
          throw approvalConflict(runId, "client token already used for a different action");
        }
        if (options.allowReplayBeforeStateChecks) {
          return "applied";
        }
      }
      if (request.state !== "pending") {
        if (options.requireOwnDecisionWhenResolved === true) {
          throw approvalConflict(runId, `approval_state=${request.state}`);
        }
        throw approvalConflict(runId, `approval_state=${request.state}`);
      }
      if (!options.allowPending) {
        throw approvalConflict(runId, "approval decision has not been applied");
      }
      if (isTerminalRunState(run.state)) {
        throw approvalConflict(runId, `run_state=${run.state}`);
      }
      if (run.state !== "awaiting_approval" && run.state !== "paused") {
        throw approvalConflict(runId, `run_state=${run.state}`);
      }
      if (run.state === "paused") {
        const resolvesHumanRequiredGate =
          (action === "reject" || action === "abort") &&
          (request.phaseId === null ||
            (await isHumanRequiredApprovalPhase(tx, runId, request.phaseId)));
        if (!resolvesHumanRequiredGate) {
          throw approvalConflict(runId, "paused runs must be resumed before approval decisions");
        }
      }
      return "pending";
    });
  }
  private async composeFinalReport(
    runId: string,
    status: "completed" | "failed" | "aborted",
@@ -1553,6 +1764,28 @@ export class DbRunEngine implements RunEngine {
    runId: string,
    requestedWorktreeRoot?: string,
  ): Promise<string> {
    const { runRoot, worktreeRoot } = this.expectedWorktreeRootParts(runId, requestedWorktreeRoot);
    await mkdir(runRoot, { recursive: true });
    const canonicalRunRoot = realpathSync(runRoot);
    await mkdir(dirname(worktreeRoot), { recursive: true });
    if (!isPathInsideOrEqual(worktreeRoot, canonicalRunRoot)) {
      throw new DevflowError("Resolved worktree root escaped the run workspace root", {
        class: "fatal",
        code: "workspace_permissions",
        recoveryHint: worktreeRoot,
      });
    }
    return worktreeRoot;
  }
  private expectedWorktreeRoot(runId: string, requestedWorktreeRoot?: string): string {
    return this.expectedWorktreeRootParts(runId, requestedWorktreeRoot).worktreeRoot;
  }
  private expectedWorktreeRootParts(
    runId: string,
    requestedWorktreeRoot?: string,
  ): { runRoot: string; worktreeRoot: string } {
    const runRoot = join(this.workspaceRoot, runId);
    const worktreeRoot = requestedWorktreeRoot ?? join(runRoot, "main");
    if (!isPathInsideOrEqual(resolve(worktreeRoot), resolve(runRoot))) {
@@ -1562,18 +1795,8 @@ export class DbRunEngine implements RunEngine {
        recoveryHint: worktreeRoot,
      });
    }
    await mkdir(runRoot, { recursive: true });
    const canonicalRunRoot = realpathSync(runRoot);
    const resolvedWorktreeRoot = resolve(worktreeRoot);
-    await mkdir(dirname(resolvedWorktreeRoot), { recursive: true });
+    return { runRoot: resolve(runRoot), worktreeRoot: resolvedWorktreeRoot };
    if (!isPathInsideOrEqual(resolvedWorktreeRoot, canonicalRunRoot)) {
      throw new DevflowError("Resolved worktree root escaped the run workspace root", {
        class: "fatal",
        code: "workspace_permissions",
        recoveryHint: resolvedWorktreeRoot,
      });
    }
    return resolvedWorktreeRoot;
  }
  private async createGitWorktree(
@@ -1601,11 +1824,165 @@ export class DbRunEngine implements RunEngine {
    }
  }
  private async ensureGitWorktree(
    repoPath: string,
    baseBranch: string,
    runId: string,
    worktreeRoot: string,
  ): Promise<string> {
    if (existsSync(worktreeRoot)) {
      return validateExistingGitWorktree(repoPath, baseBranch, runId, worktreeRoot);
    }
    return this.createGitWorktree(repoPath, baseBranch, runId, worktreeRoot);
  }
  private async existingRunForPrepare(runId: string): Promise<
    | {
        repoPath: string;
        baseBranch: string;
        templateHash: string;
        worktreeRoot: string;
        requirementsMd: string;
        objective: unknown;
        extra: unknown;
      }
    | undefined
  > {
    const [run] = await this.db
      .select({
        repoPath: runs.repoPath,
        baseBranch: runs.baseBranch,
        templateHash: runs.templateHash,
        worktreeRoot: runs.worktreeRoot,
        requirementsMd: runInputs.requirementsMd,
        objective: runInputs.objective,
        extra: runInputs.extra,
      })
      .from(runs)
      .innerJoin(runInputs, eq(runInputs.runId, runs.id))
      .where(eq(runs.id, runId))
      .limit(1);
    return run;
  }
  private assertPreparedRunMatches(
    runId: string,
    existing: {
      repoPath: string;
      baseBranch: string;
      templateHash: string;
      worktreeRoot: string;
      requirementsMd: string;
      objective: unknown;
      extra: unknown;
    },
    expected: {
      repoPath: string;
      baseBranch: string;
      templateHash: string;
      worktreeRoot: string;
      requirementsMd: string;
      objective: unknown;
      extra: unknown;
    },
  ): void {
    if (
      existing.repoPath !== expected.repoPath ||
      existing.baseBranch !== expected.baseBranch ||
      existing.templateHash !== expected.templateHash ||
      existing.worktreeRoot !== expected.worktreeRoot ||
      existing.requirementsMd !== expected.requirementsMd ||
      canonicalize(existing.objective ?? null) !== canonicalize(expected.objective ?? null) ||
      canonicalize(existing.extra ?? {}) !== canonicalize(expected.extra ?? {})
    ) {
      throw new DevflowError("Existing run does not match replayed start input", {
        class: "fatal",
        code: "internal_state_corruption",
        runId,
      });
    }
  }
  private async disposeSessions(sessionIds: readonly string[]): Promise<void> {
    await Promise.all(
      sessionIds.map((sessionId) => this.sessions.dispose({ sessionId }).catch(() => undefined)),
    );
  }
  private async sessionIdsForRun(runId: string): Promise<string[]> {
    return sessionIdsForRun(this.db, runId);
  }
 }
 export async function readRunStatus(db: Database, runId: string): Promise<RunStatus> {
  const [run] = await db
    .select({
      id: runs.id,
      state: runs.state,
      repoPath: runs.repoPath,
      baseBranch: runs.baseBranch,
      worktreeRoot: runs.worktreeRoot,
      currentPhaseId: runs.currentPhaseId,
      finalReportPath: runs.finalReportPath,
      startedAt: runs.startedAt,
      endedAt: runs.endedAt,
    })
    .from(runs)
    .where(eq(runs.id, runId))
    .limit(1);
  if (run === undefined) {
    throw runNotFound(runId);
  }
  const [phases, approvals, eventsTail] = await Promise.all([
    db
      .select({
        id: runPhases.id,
        phaseKey: runPhases.phaseKey,
        seq: runPhases.seq,
        state: runPhases.state,
        attempts: runPhases.attempts,
      })
      .from(runPhases)
      .where(eq(runPhases.runId, runId))
      .orderBy(asc(runPhases.seq)),
    db
      .select({
        id: approvalRequests.id,
        phaseId: approvalRequests.phaseId,
        gateKey: approvalRequests.gateKey,
        state: approvalRequests.state,
      })
      .from(approvalRequests)
      .where(eq(approvalRequests.runId, runId))
      .orderBy(asc(approvalRequests.createdAt)),
    db
      .select({
        id: runEvents.id,
        seq: runEvents.seq,
        type: runEvents.type,
        payload: runEvents.payload,
        ts: runEvents.ts,
      })
      .from(runEvents)
      .where(eq(runEvents.runId, runId))
      .orderBy(desc(runEvents.seq))
      .limit(20),
  ]);
  return {
    run,
    phases,
    approvals,
    eventsTail: eventsTail.reverse().map((event) => ({
      id: event.id.toString(),
      seq: event.seq.toString(),
      type: event.type,
      payload: event.payload,
      ts: event.ts,
    })),
  };
 }
 export interface M4ProcessRestartSweepOptions {
@@ -2023,7 +2400,21 @@ async function existingDecisionForToken(
    })
    .from(approvalDecisions)
    .where(eq(approvalDecisions.approvalRequestId, approvalRequestId));
-  return decisions.find((decision) => decision.idempotencyKey.endsWith(`:${clientToken}`));
+  return decisions.find((decision) => {
    const prefix = `${approvalRequestId}:${decision.action}:`;
    if (!decision.idempotencyKey.startsWith(prefix)) {
      return false;
    }
    return decision.idempotencyKey.slice(prefix.length) === clientToken;
  });
 }
 async function sessionIdsForRun(db: TransactionDb | Database, runId: string): Promise<string[]> {
  const sessions = await db
    .select({ id: tuiSessions.id })
    .from(tuiSessions)
    .where(eq(tuiSessions.runId, runId));
  return sessions.map((session) => session.id);
 }
 function approvalStateForAction(action: ApprovalDecisionActionValue) {
@@ -2167,10 +2558,12 @@ function invalidPhasePlan(runId: string, index: number): DevflowError {
 function storeEngineMetadata(
  extra: Record<string, unknown> | undefined,
  scenarios: Record<string, FakePhaseScenario> | undefined,
  overrides?: Partial<BindingOverrides>,
 ): Record<string, unknown> {
  return {
    ...(extra ?? {}),
    devflowM4: {
      overrides: overrides ?? {},
      scenarios: scenarios ?? {},
    },
  };
@@ -2251,6 +2644,74 @@ function gitChildEnv(): NodeJS.ProcessEnv {
  return env;
 }
 async function validateExistingGitWorktree(
  repoPath: string,
  baseBranch: string,
  runId: string,
  worktreeRoot: string,
 ): Promise<string> {
  try {
    const canonicalWorktreeRoot = realpathSync(worktreeRoot);
    const { stdout: topLevelStdout } = await execFileAsync(
      "git",
      ["-C", canonicalWorktreeRoot, "rev-parse", "--show-toplevel"],
      { env: gitChildEnv(), maxBuffer: 1024 * 1024 },
    );
    const gitTopLevel = realpathSync(topLevelStdout.trim());
    if (gitTopLevel !== canonicalWorktreeRoot) {
      throw new Error(`expected ${canonicalWorktreeRoot}; got ${gitTopLevel}`);
    }
    const expectedBranch = `devflow/${runId}/main`;
    const { stdout: branchStdout } = await execFileAsync(
      "git",
      ["-C", canonicalWorktreeRoot, "branch", "--show-current"],
      { env: gitChildEnv(), maxBuffer: 1024 * 1024 },
    );
    const branch = branchStdout.trim();
    if (branch !== expectedBranch) {
      throw new Error(`expected branch ${expectedBranch}; got ${branch}`);
    }
    const { stdout: commonDirStdout } = await execFileAsync(
      "git",
      ["-C", canonicalWorktreeRoot, "rev-parse", "--git-common-dir"],
      { env: gitChildEnv(), maxBuffer: 1024 * 1024 },
    );
    const { stdout: repoCommonDirStdout } = await execFileAsync(
      "git",
      ["-C", repoPath, "rev-parse", "--git-common-dir"],
      { env: gitChildEnv(), maxBuffer: 1024 * 1024 },
    );
    const canonicalRepoGitDir = realpathSync(resolve(repoPath, repoCommonDirStdout.trim()));
    const canonicalCommonDir = realpathSync(resolve(canonicalWorktreeRoot, commonDirStdout.trim()));
    if (!isPathInsideOrEqual(canonicalCommonDir, canonicalRepoGitDir)) {
      throw new Error(
        `expected git common dir under ${canonicalRepoGitDir}; got ${canonicalCommonDir}`,
      );
    }
    const { stdout: worktreeListStdout } = await execFileAsync(
      "git",
      ["-C", repoPath, "worktree", "list", "--porcelain"],
      { env: gitChildEnv(), maxBuffer: 1024 * 1024 },
    );
    const registeredWorktrees = worktreeListStdout
      .split("\n")
      .filter((line) => line.startsWith("worktree "))
      .map((line) => realpathSync(line.slice("worktree ".length)));
    if (!registeredWorktrees.includes(canonicalWorktreeRoot)) {
      throw new Error(`${canonicalWorktreeRoot} is not registered to ${repoPath}`);
    }
    return canonicalWorktreeRoot;
  } catch (cause) {
    throw new DevflowError("Existing worktree root is not a valid git worktree", {
      class: "human_required",
      code: "workspace_permissions",
      runId,
      recoveryHint: `worktree=${worktreeRoot};repo=${repoPath};base=${baseBranch}`,
      cause,
    });
  }
 }
 const gitLocalEnvKeys = [
  "GIT_ALTERNATE_OBJECT_DIRECTORIES",
  "GIT_CONFIG",
--- a/packages/run-engine/src/fake-phase-harness.test.ts
+++ b/packages/run-engine/src/fake-phase-harness.test.ts
@@ -1,8 +1,16 @@
 import { randomUUID } from "node:crypto";
-import { mkdirSync, mkdtempSync, realpathSync, rmSync, symlinkSync, writeFileSync } from "node:fs";
+import {
  mkdirSync,
  mkdtempSync,
  readFileSync,
  realpathSync,
  rmSync,
  symlinkSync,
  writeFileSync,
 } from "node:fs";
 import { tmpdir } from "node:os";
 import { dirname, join } from "node:path";
-import { eq, inArray } from "drizzle-orm";
+import { and, eq, inArray } from "drizzle-orm";
 import { afterEach, describe, expect, it } from "vitest";
 import { DevflowError, hash } from "@devflow/core";
@@ -190,6 +198,35 @@ class AcceptedThenTransientFakeAdapter extends FakeSessionAdapter {
  }
 }
 class SendCountingFakeAdapter extends FakeSessionAdapter {
  sendAttempts = 0;
  override async sendPrompt(
    handle: SessionHandle,
    envelope: Parameters<FakeSessionAdapter["sendPrompt"]>[1],
  ): Promise<{ promptId: string }> {
    this.sendAttempts += 1;
    return super.sendPrompt(handle, envelope);
  }
 }
 class StartObservesPersistedSessionFakeAdapter extends FakeSessionAdapter {
  observedSessionRowsBeforeStart: number | undefined;
  constructor(private readonly db: DbClient["db"]) {
    super({ writeDelayMs: 0 });
  }
  override async start(input: StartInput): Promise<SessionHandle> {
    const sessions = await this.db
      .select({ id: tuiSessions.id })
      .from(tuiSessions)
      .where(and(eq(tuiSessions.runId, input.runId), eq(tuiSessions.roleId, input.roleId)));
    this.observedSessionRowsBeforeStart = sessions.length;
    return super.start(input);
  }
 }
 class CaptureCursorFakeAdapter extends FakeSessionAdapter {
  capturedFromSeq: bigint | undefined;
@@ -793,7 +830,7 @@ describe("runSingleFakePhase", () => {
    ]);
  });
-  it("resumes a running phase when prompt delivery succeeded before prompt.sent was recorded", async () => {
+  it("does not trust a running phase artifact when prompt.sent was not recorded", async () => {
    const { db, phaseId, runId } = await createRunAndPhase("executing", "running", 1);
    await recordPhaseStarted(db, runId, phaseId);
    const worktreeRoot = realpathSync(
@@ -803,7 +840,7 @@ describe("runSingleFakePhase", () => {
    const expectedArtifactPath = join(worktreeRoot, "artifacts", "spec.json");
    const instructions = "Scenario: ok\nWrite the development specification.";
    const sessionId = randomUUID();
-    const adapter = new FakeSessionAdapter({
+    const adapter = new SendCountingFakeAdapter({
      sessionIdFactory: () => sessionId,
      writeDelayMs: 0,
    });
@@ -864,6 +901,7 @@ describe("runSingleFakePhase", () => {
    });
    expect(result.artifactValid).toBe(true);
    expect(adapter.sendAttempts).toBe(2);
    await expectRunCompleted(db, runId);
    const events = await db
@@ -871,12 +909,448 @@ describe("runSingleFakePhase", () => {
      .from(runEvents)
      .where(eq(runEvents.runId, runId))
      .orderBy(runEvents.seq);
-    expect(events.map((event) => event.type)).toContain("prompt.sent");
+    expect(events.map((event) => event.type)).not.toContain("prompt.sent");
    expect(events.map((event) => event.type)).toContain("prompt.repaired");
    expect(events.map((event) => event.type).filter((type) => type === "phase.started")).toEqual([
      "phase.started",
      "phase.started",
    ]);
  });
  it("waits on a BUSY prompt with no prompt event instead of resending it", async () => {
    const { db, phaseId, runId } = await createRunAndPhase("executing", "running", 1);
    await recordPhaseStarted(db, runId, phaseId);
    const worktreeRoot = realpathSync(
      mkdtempSync(join(tmpdir(), "devflow-fake-phase-pre-send-replay-")),
    );
    tempRoots.push(worktreeRoot);
    const expectedArtifactPath = join(worktreeRoot, "artifacts", "spec.json");
    const instructions = "Scenario: ok\nWrite the development specification.";
    const sessionId = randomUUID();
    const adapter = new SendCountingFakeAdapter({
      sessionIdFactory: () => sessionId,
      writeDelayMs: 0,
    });
    await adapter.start({
      runId,
      roleId: "implementer",
      backend: "fake",
      cwd: worktreeRoot,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
    });
    const dedupKey = hash({
      attempt: 1,
      expectedArtifact: expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      instructions,
      phaseKey: "implement",
      roleId: "implementer",
      runId,
    });
    await db.insert(tuiSessions).values({
      id: sessionId,
      runId,
      roleId: "implementer",
      backend: "fake",
      cwd: worktreeRoot,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      lastPromptHash: dedupKey,
      lastPromptAt: new Date(),
      state: "BUSY",
    });
    const result = await runSingleFakePhase({
      adapter,
      db,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      instructions,
      phaseId,
      phaseKey: "implement",
      roleId: "implementer",
      runId,
      worktreeRoot,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
      uuidFactory: () => "00000000-0000-4000-8000-000000000041",
    });
    expect(result.artifactValid).toBe(true);
    expect(adapter.sendAttempts).toBe(1);
    await expectRunCompleted(db, runId);
    const events = await db
      .select({ type: runEvents.type })
      .from(runEvents)
      .where(eq(runEvents.runId, runId))
      .orderBy(runEvents.seq);
    expect(events.map((event) => event.type)).not.toContain("prompt.sent");
    expect(events.map((event) => event.type)).toContain("prompt.repaired");
  });
  it("restarts a bootstrapping phantom session instead of sending to it", async () => {
    const { db, phaseId, runId } = await createRunAndPhase("executing", "running", 1);
    await recordPhaseStarted(db, runId, phaseId);
    const worktreeRoot = realpathSync(
      mkdtempSync(join(tmpdir(), "devflow-fake-phase-bootstrapping-replay-")),
    );
    tempRoots.push(worktreeRoot);
    const expectedArtifactPath = join(worktreeRoot, "artifacts", "spec.json");
    const sessionId = randomUUID();
    await db.insert(tuiSessions).values({
      id: sessionId,
      runId,
      roleId: "implementer",
      backend: "fake",
      cwd: worktreeRoot,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      state: "BOOTSTRAPPING",
    });
    const adapter = new SendCountingFakeAdapter({ writeDelayMs: 0 });
    const result = await runSingleFakePhase({
      adapter,
      db,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      instructions: "Scenario: ok\nWrite the development specification.",
      phaseId,
      phaseKey: "implement",
      roleId: "implementer",
      runId,
      worktreeRoot,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
      uuidFactory: () => "00000000-0000-4000-8000-000000000042",
    });
    expect(result).toMatchObject({ artifactValid: true, sessionId });
    expect(adapter.sendAttempts).toBe(1);
    await expectRunCompleted(db, runId);
  });
  it("persists the session row only after adapter start succeeds", async () => {
    const { db, phaseId, runId } = await createRunAndPhase();
    const worktreeRoot = realpathSync(
      mkdtempSync(join(tmpdir(), "devflow-fake-phase-session-post-start-")),
    );
    tempRoots.push(worktreeRoot);
    const expectedArtifactPath = join(worktreeRoot, "artifacts", "spec.json");
    const adapter = new StartObservesPersistedSessionFakeAdapter(db);
    const result = await runSingleFakePhase({
      adapter,
      db,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      instructions: "Scenario: ok\nWrite the development specification.",
      phaseId,
      phaseKey: "implement",
      roleId: "implementer",
      runId,
      worktreeRoot,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
    expect(result.artifactValid).toBe(true);
    expect(adapter.observedSessionRowsBeforeStart).toBe(0);
    const sessions = await db
      .select({ id: tuiSessions.id, state: tuiSessions.state })
      .from(tuiSessions)
      .where(eq(tuiSessions.runId, runId));
    expect(sessions).toEqual([{ id: result.sessionId, state: "READY" }]);
  });
  it("does not validate a stale artifact from a running READY replay without prompt proof", async () => {
    const { db, phaseId, runId } = await createRunAndPhase("executing", "running", 1);
    await recordPhaseStarted(db, runId, phaseId);
    const worktreeRoot = realpathSync(
      mkdtempSync(join(tmpdir(), "devflow-fake-phase-ready-stale-")),
    );
    tempRoots.push(worktreeRoot);
    const expectedArtifactPath = join(worktreeRoot, "artifacts", "spec.json");
    const sessionId = randomUUID();
    const adapter = new SendCountingFakeAdapter({
      sessionIdFactory: () => sessionId,
      writeDelayMs: 0,
    });
    await adapter.start({
      sessionId,
      runId,
      roleId: "implementer",
      backend: "fake",
      cwd: worktreeRoot,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
    });
    await db.insert(tuiSessions).values({
      id: sessionId,
      runId,
      roleId: "implementer",
      backend: "fake",
      cwd: worktreeRoot,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      state: "READY",
    });
    mkdirSync(dirname(expectedArtifactPath), { recursive: true });
    writeFileSync(
      expectedArtifactPath,
      JSON.stringify({
        summary: "Stale development specification",
        requirements: [{ id: "REQ-STALE", description: "This file predates prompt proof" }],
        acceptanceCriteria: ["This artifact must not be accepted"],
        risks: [],
      }),
    );
    const result = await runSingleFakePhase({
      adapter,
      db,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      instructions: "Scenario: ok\nWrite the development specification.",
      phaseId,
      phaseKey: "implement",
      roleId: "implementer",
      runId,
      worktreeRoot,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
    expect(result.artifactValid).toBe(true);
    expect(adapter.sendAttempts).toBe(1);
    const artifact = JSON.parse(readFileSync(expectedArtifactPath, "utf8")) as { summary: string };
    expect(artifact.summary).toBe("Fake development specification");
  });
  it("does not validate a stale artifact from a running BUSY replay without prompt proof", async () => {
    const { db, phaseId, runId } = await createRunAndPhase("executing", "running", 1);
    await recordPhaseStarted(db, runId, phaseId);
    const worktreeRoot = realpathSync(
      mkdtempSync(join(tmpdir(), "devflow-fake-phase-busy-stale-")),
    );
    tempRoots.push(worktreeRoot);
    const expectedArtifactPath = join(worktreeRoot, "artifacts", "spec.json");
    const instructions =
      "Scenario: timeout\nRepair-Scenario: timeout\nDo not accept stale artifact content.";
    const sessionId = randomUUID();
    const dedupKey = hash({
      attempt: 1,
      expectedArtifact: expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      instructions,
      phaseKey: "implement",
      roleId: "implementer",
      runId,
    });
    const adapter = new FakeSessionAdapter({
      sessionIdFactory: () => sessionId,
      writeDelayMs: 0,
    });
    await adapter.start({
      sessionId,
      runId,
      roleId: "implementer",
      backend: "fake",
      cwd: worktreeRoot,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
    });
    await db.insert(tuiSessions).values({
      id: sessionId,
      runId,
      roleId: "implementer",
      backend: "fake",
      cwd: worktreeRoot,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      lastPromptHash: dedupKey,
      lastPromptAt: new Date(),
      state: "BUSY",
    });
    mkdirSync(dirname(expectedArtifactPath), { recursive: true });
    writeFileSync(
      expectedArtifactPath,
      JSON.stringify({
        summary: "Stale development specification",
        requirements: [{ id: "REQ-STALE", description: "This file predates prompt proof" }],
        acceptanceCriteria: ["This artifact must not be accepted"],
        risks: [],
      }),
    );
    await expect(
      runSingleFakePhase({
        adapter,
        db,
        expectedArtifactPath,
        expectedSchema: "dev/spec@1",
        instructions,
        phaseId,
        phaseKey: "implement",
        roleId: "implementer",
        runId,
        worktreeRoot,
        wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 10 },
      }),
    ).rejects.toMatchObject({ code: "artifact_timeout_exhausted" });
    await expectRunPaused(db, runId);
    const artifactRows = await db.select().from(artifacts).where(eq(artifacts.runId, runId));
    expect(artifactRows).toEqual([]);
  });
  it("does not turn a baseline-protected BUSY replay into durable prompt proof", async () => {
    const { db, phaseId, runId } = await createRunAndPhase("executing", "awaiting_artifact", 1);
    await recordPhaseStarted(db, runId, phaseId);
    const worktreeRoot = realpathSync(
      mkdtempSync(join(tmpdir(), "devflow-fake-phase-busy-baseline-durable-")),
    );
    tempRoots.push(worktreeRoot);
    const expectedArtifactPath = join(worktreeRoot, "artifacts", "spec.json");
    const instructions =
      "Scenario: timeout\nRepair-Scenario: timeout\nDo not persist synthetic prompt proof.";
    const sessionId = randomUUID();
    const dedupKey = hash({
      attempt: 1,
      expectedArtifact: expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      instructions,
      phaseKey: "implement",
      roleId: "implementer",
      runId,
    });
    const adapter = new FakeSessionAdapter({
      sessionIdFactory: () => sessionId,
      writeDelayMs: 0,
    });
    await adapter.start({
      sessionId,
      runId,
      roleId: "implementer",
      backend: "fake",
      cwd: worktreeRoot,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
    });
    await db.insert(tuiSessions).values({
      id: sessionId,
      runId,
      roleId: "implementer",
      backend: "fake",
      cwd: worktreeRoot,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      lastPromptHash: dedupKey,
      lastPromptAt: new Date(),
      state: "BUSY",
    });
    mkdirSync(dirname(expectedArtifactPath), { recursive: true });
    writeFileSync(
      expectedArtifactPath,
      JSON.stringify({
        summary: "STALE accepted by replay",
        requirements: [{ id: "REQ-STALE", description: "This file predates prompt proof" }],
        acceptanceCriteria: ["This artifact must not be accepted"],
        risks: [],
      }),
    );
    await db.insert(runEvents).values({
      runId,
      phaseId,
      seq: 2n,
      type: "artifact.expected",
      payload: { path: expectedArtifactPath, schemaId: "dev/spec@1", attempt: 1 },
      idempotencyKey: `artifact.expected:${phaseId}:1:${expectedArtifactPath}`,
    });
    await expect(
      runSingleFakePhase({
        adapter,
        db,
        expectedArtifactPath,
        expectedSchema: "dev/spec@1",
        instructions,
        phaseId,
        phaseKey: "implement",
        roleId: "implementer",
        runId,
        worktreeRoot,
        wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 10 },
      }),
    ).rejects.toMatchObject({ code: "artifact_timeout_exhausted" });
    await expectRunPaused(db, runId);
    const artifactRows = await db.select().from(artifacts).where(eq(artifacts.runId, runId));
    expect(artifactRows).toEqual([]);
    const promptEvents = await db
      .select({ type: runEvents.type })
      .from(runEvents)
      .where(eq(runEvents.runId, runId));
    expect(promptEvents.map((event) => event.type)).not.toContain("prompt.sent");
  });
  it("does not fail the run when artifact wait is cancelled for workflow signal handling", async () => {
    const { db, phaseId, runId } = await createRunAndPhase();
    const worktreeRoot = realpathSync(
      mkdtempSync(join(tmpdir(), "devflow-fake-phase-cancelled-wait-")),
    );
    tempRoots.push(worktreeRoot);
    const expectedArtifactPath = join(worktreeRoot, "artifacts", "spec.json");
    const controller = new AbortController();
    let abortScheduled = false;
    await expect(
      runSingleFakePhase({
        adapter: new FakeSessionAdapter({ writeDelayMs: 0 }),
        db,
        expectedArtifactPath,
        expectedSchema: "dev/spec@1",
        instructions: "Scenario: timeout\nWait until the workflow signal cancels this activity.",
        phaseId,
        phaseKey: "implement",
        roleId: "implementer",
        runId,
        worktreeRoot,
        wait: {
          pollIntervalMs: 1,
          stableMs: 0,
          timeoutMs: 500,
          signal: controller.signal,
          onPoll: () => {
            if (!abortScheduled) {
              abortScheduled = true;
              setTimeout(() => controller.abort(new Error("workflow signal arrived")), 0);
            }
          },
        },
      }),
    ).rejects.toMatchObject({ code: "activity_cancelled" });
    const [run] = await db.select({ state: runs.state }).from(runs).where(eq(runs.id, runId));
    const [phase] = await db
      .select({ state: runPhases.state })
      .from(runPhases)
      .where(eq(runPhases.id, phaseId));
    const [session] = await db
      .select({ lastCaptureSeq: tuiSessions.lastCaptureSeq })
      .from(tuiSessions)
      .where(eq(tuiSessions.runId, runId));
    expect(run?.state).toBe("executing");
    expect(phase?.state).toBe("awaiting_artifact");
    expect(session?.lastCaptureSeq).toBeGreaterThan(0n);
    const events = await db
      .select({ type: runEvents.type })
      .from(runEvents)
      .where(eq(runEvents.runId, runId))
      .orderBy(runEvents.seq);
    expect(events.map((event) => event.type)).not.toContain("phase.failed");
    expect(events.map((event) => event.type)).not.toContain("run.failed");
  });
  it("requests a human gate when existing session resume exhausts retries", async () => {
    const { db, phaseId, runId } = await createRunAndPhase();
    const worktreeRoot = realpathSync(
@@ -933,8 +1407,9 @@ describe("runSingleFakePhase", () => {
    tempRoots.push(worktreeRoot);
    const expectedArtifactPath = join(worktreeRoot, "artifacts", "spec.json");
    const adapter = new SendCountingFakeAdapter({ writeDelayMs: 0 });
    const result = await runSingleFakePhase({
-      adapter: new FakeSessionAdapter({ writeDelayMs: 0 }),
+      adapter,
      db,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
@@ -1001,8 +1476,9 @@ describe("runSingleFakePhase", () => {
      }),
    );
    const adapter = new SendCountingFakeAdapter({ writeDelayMs: 0 });
    const result = await runSingleFakePhase({
-      adapter: new FakeSessionAdapter({ writeDelayMs: 0 }),
+      adapter,
      db,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
@@ -1016,6 +1492,7 @@ describe("runSingleFakePhase", () => {
    });
    expect(result).toMatchObject({ artifactValid: true, promptId, sessionId });
    expect(adapter.sendAttempts).toBe(0);
    await expectRunCompleted(db, runId);
    const events = await db
@@ -1023,7 +1500,7 @@ describe("runSingleFakePhase", () => {
      .from(runEvents)
      .where(eq(runEvents.runId, runId))
      .orderBy(runEvents.seq);
-    expect(events.map((event) => event.type)).not.toContain("prompt.sent");
+    expect(events.map((event) => event.type)).toContain("prompt.sent");
    expect(events.map((event) => event.type)).toContain("artifact.expected");
    expect(events.map((event) => event.type)).toContain("artifact.validated");
  });
@@ -1384,6 +1861,77 @@ describe("runSingleFakePhase", () => {
    expect(events.filter((event) => event.type === "phase.started")).toHaveLength(1);
  });
  it("does not validate a stale prior artifact before a repair prompt is sent", async () => {
    const { db, phaseId, runId } = await createRunAndPhase("executing", "running", 2);
    await recordPhaseStarted(db, runId, phaseId, 2, true);
    const worktreeRoot = realpathSync(
      mkdtempSync(join(tmpdir(), "devflow-fake-phase-repair-stale-running-")),
    );
    tempRoots.push(worktreeRoot);
    const expectedArtifactPath = join(worktreeRoot, "artifacts", "spec.json");
    mkdirSync(dirname(expectedArtifactPath), { recursive: true });
    writeFileSync(expectedArtifactPath, JSON.stringify({ fake: "stale-invalid" }));
    const instructions =
      "Scenario: invalid\nRepair-Scenario: ok\nWrite the development specification.";
    const priorPromptId = hash({
      attempt: 1,
      expectedArtifact: expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      instructions,
      phaseKey: "implement",
      roleId: "implementer",
      runId,
    });
    const sessionId = randomUUID();
    const adapter = new SendCountingFakeAdapter({
      sessionIdFactory: () => sessionId,
      writeDelayMs: 0,
    });
    await adapter.start({
      runId,
      roleId: "implementer",
      backend: "fake",
      cwd: worktreeRoot,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
    });
    await db.insert(tuiSessions).values({
      id: sessionId,
      runId,
      roleId: "implementer",
      backend: "fake",
      cwd: worktreeRoot,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      lastPromptHash: priorPromptId,
      lastPromptAt: new Date(),
      state: "READY",
    });
    const result = await runSingleFakePhase({
      adapter,
      db,
      expectedArtifactPath,
      expectedSchema: "dev/spec@1",
      instructions,
      phaseId,
      phaseKey: "implement",
      roleId: "implementer",
      runId,
      worktreeRoot,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
      uuidFactory: () => "00000000-0000-4000-8000-000000000043",
    });
    expect(result.artifactValid).toBe(true);
    expect(adapter.sendAttempts).toBe(1);
    const invalidArtifacts = await db
      .select({ valid: artifacts.valid })
      .from(artifacts)
      .where(and(eq(artifacts.runId, runId), eq(artifacts.valid, false)));
    expect(invalidArtifacts).toEqual([]);
  });
  it("resumes a repair attempt while awaiting its artifact", async () => {
    const { db, phaseId, runId } = await createRunAndPhase("executing", "awaiting_artifact", 2);
    await recordPhaseStarted(db, runId, phaseId, 2, true);
@@ -1758,8 +2306,11 @@ describe("runSingleFakePhase", () => {
      .where(eq(approvalRequests.runId, runId));
    expect(approval).toEqual({ gateKey: "backend_unavailable", state: "pending" });
-    const sessions = await db.select().from(tuiSessions).where(eq(tuiSessions.runId, runId));
+    const sessions = await db
-    expect(sessions).toEqual([]);
+      .select({ state: tuiSessions.state })
      .from(tuiSessions)
      .where(eq(tuiSessions.runId, runId));
    expect(sessions).toEqual([{ state: "FAILED_NEEDS_HUMAN" }]);
    const events = await db
      .select({ type: runEvents.type })
@@ -1770,6 +2321,7 @@ describe("runSingleFakePhase", () => {
      "phase.started",
      "phase.failed",
      "run.paused",
      "session.failed",
      "approval.requested",
    ]);
  });
@@ -1829,6 +2381,7 @@ describe("runSingleFakePhase", () => {
      "phase.started",
      "phase.failed",
      "run.failed",
      "session.failed",
    ]);
  });
--- a/packages/run-engine/src/fake-phase-harness.ts
+++ b/packages/run-engine/src/fake-phase-harness.ts
@@ -35,6 +35,8 @@ export interface FakePhaseWaitOptions {
  timeoutMs?: number;
  pollIntervalMs?: number;
  stableMs?: number;
  signal?: AbortSignal;
  onPoll?: () => void;
 }
 interface ArtifactWaitOptions extends FakePhaseWaitOptions {
@@ -63,6 +65,7 @@ export type RunSingleFakePhaseInput = RunSingleFakePhaseBaseInput &
  ({ sessions: SessionRuntime; adapter?: never } | { adapter: SessionAdapter; sessions?: never });
 type CanonicalRunSingleFakePhaseInput = RunSingleFakePhaseBaseInput & {
  reserveSessionId?: () => string;
  sessions: SessionRuntime;
 };
@@ -81,11 +84,17 @@ const sendPromptRetryBudget = 2;
 const terminalRunStates = ["completed", "failed", "aborted"] as const;
 const phaseMutationRunStates = ["executing", "planning"] as const;
 interface SessionIdReservable {
  reserveSessionId(): string;
 }
 interface PhaseEntry {
  attempt: number;
  continueArtifactWait: boolean;
  continueValidation: boolean;
  artifactBaselineSignature?: string | undefined;
  promptId?: string;
  recordPromptEventOnReplay?: boolean;
  repairAttemptUsed: boolean;
  replayedOutcome?: ArtifactOutcome;
  resumedPrompt: boolean;
@@ -106,8 +115,19 @@ function canonicalizeRunSingleFakePhaseInput(
    "sessions" in input && input.sessions !== undefined
      ? input.sessions
      : new SessionManager({ db: input.db, adapter: input.adapter });
  const adapter = "adapter" in input ? input.adapter : undefined;
  const reserveSessionId =
    adapter !== undefined && isSessionIdReservable(adapter)
      ? () => adapter.reserveSessionId()
      : undefined;
-  return { ...input, expectedArtifactPath, sessions, worktreeRoot };
+  return {
    ...input,
    expectedArtifactPath,
    ...(reserveSessionId === undefined ? {} : { reserveSessionId }),
    sessions,
    worktreeRoot,
  };
 }
 function canonicalizePathAgainstWorktree(
@@ -140,6 +160,15 @@ function canonicalizePossiblyMissingPath(path: string): string {
  return resolve(realpathSync(current), ...missingSegments);
 }
 function isSessionIdReservable(
  adapter: SessionAdapter,
 ): adapter is SessionAdapter & SessionIdReservable {
  return (
    "reserveSessionId" in adapter &&
    typeof (adapter as Partial<SessionIdReservable>).reserveSessionId === "function"
  );
 }
 export async function runSingleFakePhase(
  rawInput: RunSingleFakePhaseInput,
 ): Promise<RunSingleFakePhaseResult> {
@@ -184,10 +213,14 @@ export async function runSingleFakePhase(
  } else if (phaseEntry.continueArtifactWait) {
    promptId = requirePhaseEntryPromptId(input, phaseEntry, "Artifact wait replay");
    promptDedupKeyForIdle = promptId;
-    promptSend = { promptId, artifactBaselineSignature: undefined };
+    if (phaseEntry.recordPromptEventOnReplay === true) {
      await recordPromptEventIfMissing(input, eventRepository, promptEventType, envelope);
    }
    promptSend = { promptId, artifactBaselineSignature: phaseEntry.artifactBaselineSignature };
  } else if (phaseEntry.continueValidation) {
    promptId = requirePhaseEntryPromptId(input, phaseEntry, "Artifact validation replay");
    promptDedupKeyForIdle = promptId;
    await recordPromptEventIfMissing(input, eventRepository, promptEventType, envelope);
  } else {
    try {
      promptSend = await sendPromptAndRecord(
@@ -250,6 +283,10 @@ export async function runSingleFakePhase(
        await captureTranscript(input, handle);
        throw error;
      }
      if (isActivityCancelled(error)) {
        await captureTranscript(input, handle);
        throw error;
      }
      if (!isDevflowErrorWithCode(error, "artifact_timeout_exhausted")) {
        await failRunAndDisposeSession(
          input,
@@ -415,6 +452,10 @@ export async function runSingleFakePhase(
          await captureTranscript(input, handle);
          throw repairError;
        }
        if (isActivityCancelled(repairError)) {
          await captureTranscript(input, handle);
          throw repairError;
        }
        if (!isDevflowErrorWithCode(repairError, "artifact_timeout_exhausted")) {
          await failRunAndDisposeSession(
            input,
@@ -565,6 +606,10 @@ export async function runSingleFakePhase(
        await captureTranscript(input, handle);
        throw error;
      }
      if (isActivityCancelled(error)) {
        await captureTranscript(input, handle);
        throw error;
      }
      if (!isDevflowErrorWithCode(error, "artifact_timeout_exhausted")) {
        await failRunAndDisposeSession(
          input,
@@ -711,13 +756,31 @@ async function enterInitialPhase(
      };
    }
    if (["CREATED", "BOOTSTRAPPING", "READY"].includes(session.state)) {
      const promptEventAlreadyRecorded = await promptEventExists(
        input,
        phaseStart.repairAttemptUsed ? "prompt.repaired" : "prompt.sent",
        envelope.dedupKey,
      );
      if (
        promptEventAlreadyRecorded &&
        (await artifactSignature(input.expectedArtifactPath)) !== undefined
      ) {
        return {
          attempt: phase.attempts,
          continueArtifactWait: false,
          continueValidation: true,
          promptId: envelope.dedupKey,
          repairAttemptUsed: phaseStart.repairAttemptUsed,
          resumedPrompt: true,
          handle: { sessionId: session.id },
        };
      }
      return {
        attempt: phase.attempts,
        continueArtifactWait: false,
        continueValidation: false,
        repairAttemptUsed: phaseStart.repairAttemptUsed,
        resumedPrompt: false,
        handle: { sessionId: session.id },
      };
    }
    if (
@@ -726,10 +789,29 @@ async function enterInitialPhase(
      session.expectedArtifactPath === input.expectedArtifactPath &&
      session.expectedSchema === input.expectedSchema
    ) {
      if (
        !(await promptEventExists(
          input,
          phaseStart.repairAttemptUsed ? "prompt.repaired" : "prompt.sent",
          envelope.dedupKey,
        ))
      ) {
        return {
          attempt: phase.attempts,
          continueArtifactWait: true,
          continueValidation: false,
          artifactBaselineSignature: await artifactSignature(input.expectedArtifactPath),
          promptId: envelope.dedupKey,
          repairAttemptUsed: phaseStart.repairAttemptUsed,
          resumedPrompt: true,
          handle: { sessionId: session.id },
        };
      }
      return {
        attempt: phase.attempts,
-        continueArtifactWait: false,
+        continueArtifactWait: true,
        continueValidation: false,
        promptId: session.lastPromptHash,
        repairAttemptUsed: phaseStart.repairAttemptUsed,
        resumedPrompt: true,
        handle: { sessionId: session.id },
@@ -764,11 +846,21 @@ async function enterInitialPhase(
      session.expectedArtifactPath === input.expectedArtifactPath &&
      session.expectedSchema === input.expectedSchema
    ) {
      const currentPromptEventExists = await promptEventExists(
        input,
        phaseStart.repairAttemptUsed ? "prompt.repaired" : "prompt.sent",
        envelope.dedupKey,
      );
      const artifactWaitEventExists = await artifactExpectedEventExists(input, phase.attempts);
      return {
        attempt: phase.attempts,
        continueArtifactWait: true,
        continueValidation: false,
        ...(currentPromptEventExists || !artifactWaitEventExists
          ? {}
          : { artifactBaselineSignature: await artifactSignature(input.expectedArtifactPath) }),
        promptId: session.lastPromptHash,
        recordPromptEventOnReplay: !currentPromptEventExists && !artifactWaitEventExists,
        repairAttemptUsed: phaseStart.repairAttemptUsed,
        resumedPrompt: true,
        handle: { sessionId: session.id },
@@ -1166,6 +1258,19 @@ async function failPhaseAndRequestGate(
      }
      if (sessionId !== undefined) {
        await tx
          .insert(tuiSessions)
          .values({
            id: sessionId,
            runId: input.runId,
            roleId: input.roleId,
            backend: "fake",
            cwd: input.worktreeRoot,
            expectedArtifactPath: input.expectedArtifactPath,
            expectedSchema: input.expectedSchema,
            state: "FAILED_NEEDS_HUMAN",
          })
          .onConflictDoNothing({ target: tuiSessions.id });
        await tx
          .update(tuiSessions)
          .set({ state: "FAILED_NEEDS_HUMAN" })
@@ -1437,15 +1542,22 @@ async function startSessionAndRecord(
  eventRepository: RunEventRepository,
  attempt: number,
 ): Promise<SessionHandle> {
-  const existingHandle = await resumeExistingSessionAndRecord(input, eventRepository, attempt);
+  const existingSession = await sessionForRole(input);
-  if (existingHandle !== undefined) {
+  if (
-    return existingHandle;
+    existingSession !== undefined &&
    !["CREATED", "BOOTSTRAPPING"].includes(existingSession.state)
  ) {
    const existingHandle = await resumeExistingSessionAndRecord(input, eventRepository, attempt);
    if (existingHandle !== undefined) {
      return existingHandle;
    }
  }
  const sessionId = existingSession?.id ?? input.reserveSessionId?.() ?? randomUUID();
  let handle: SessionHandle | undefined;
  let sessionRowPersisted = false;
  try {
    handle = await input.sessions.start({
      sessionId,
      runId: input.runId,
      roleId: input.roleId,
      backend: "fake",
@@ -1454,10 +1566,18 @@ async function startSessionAndRecord(
      expectedSchema: input.expectedSchema,
    });
    const startedHandle = handle;
-    let sessionInsertConflicted = false;
+    if (startedHandle.sessionId !== sessionId) {
      throw new DevflowError("Session adapter did not honor reserved session id", {
        class: "fatal",
        code: "internal_state_corruption",
        runId: input.runId,
        phaseId: input.phaseId,
        recoveryHint: `expected=${sessionId};actual=${startedHandle.sessionId}`,
      });
    }
    await input.db.transaction(async (tx) => {
      await assertRunCanMutatePhaseInTransaction(input, tx);
-      const insertedSession = await tx
+      await tx
        .insert(tuiSessions)
        .values({
          id: startedHandle.sessionId,
@@ -1467,14 +1587,9 @@ async function startSessionAndRecord(
          cwd: input.worktreeRoot,
          expectedArtifactPath: input.expectedArtifactPath,
          expectedSchema: input.expectedSchema,
-          state: "CREATED",
+          state: "BOOTSTRAPPING",
        })
-        .onConflictDoNothing({ target: [tuiSessions.runId, tuiSessions.roleId] })
+        .onConflictDoNothing({ target: tuiSessions.id });
        .returning({ id: tuiSessions.id });
      if (insertedSession[0] === undefined) {
        sessionInsertConflicted = true;
        return;
      }
      await eventRepository.appendInTransaction(tx, {
        runId: input.runId,
        phaseId: input.phaseId,
@@ -1498,21 +1613,6 @@ async function startSessionAndRecord(
        idempotencyKey: `session.ready:${startedHandle.sessionId}:0`,
      });
    });
    if (sessionInsertConflicted) {
      await input.sessions.dispose(startedHandle).catch(() => undefined);
      handle = undefined;
      const existingHandle = await resumeExistingSessionAndRecord(input, eventRepository, attempt);
      if (existingHandle !== undefined) {
        return existingHandle;
      }
      throw new DevflowError("Concurrent fake session insert conflicted without an existing row", {
        class: "fatal",
        code: "internal_state_corruption",
        runId: input.runId,
        phaseId: input.phaseId,
      });
    }
    sessionRowPersisted = true;
    return startedHandle;
  } catch (error) {
    if (handle !== undefined) {
@@ -1531,19 +1631,35 @@ async function startSessionAndRecord(
        "session_start_failed",
        gateError.code,
        { errorCode: error.code, recoveryHint: gateError.recoveryHint },
-        sessionRowPersisted ? handle?.sessionId : undefined,
+        sessionId,
      );
      throw gateError;
    }
    await failPhaseAndRun(input, eventRepository, attempt, "session_start_failed");
-    if (sessionRowPersisted && handle !== undefined) {
+    await markSessionFailedNeedsHuman(input, eventRepository, sessionId);
-      await markSessionFailedNeedsHuman(input, eventRepository, handle.sessionId);
+    if (handle !== undefined) {
      await input.sessions.dispose(handle).catch(() => undefined);
    }
    throw error;
  }
 }
 async function sessionForRole(input: CanonicalRunSingleFakePhaseInput): Promise<
  | {
      id: string;
      state: string;
    }
  | undefined
 > {
  const [session] = await input.db
    .select({ id: tuiSessions.id, state: tuiSessions.state })
    .from(tuiSessions)
    .where(and(eq(tuiSessions.runId, input.runId), eq(tuiSessions.roleId, input.roleId)))
    .limit(1);
  return session;
 }
 async function resumeExistingSessionAndRecord(
  input: CanonicalRunSingleFakePhaseInput,
  eventRepository: RunEventRepository,
@@ -1709,6 +1825,14 @@ async function sendPromptAndRecord(
  type: "prompt.sent" | "prompt.repaired",
  options: SendPromptAndRecordOptions = {},
 ): Promise<PromptSendRecord> {
  await input.db.transaction(async (tx) => {
    await assertRunCanMutatePhaseInTransaction(input, tx);
  });
  const artifactBaselineSignature =
    options.captureArtifactBaseline === false
      ? undefined
      : await artifactSignature(input.expectedArtifactPath);
  await input.db.transaction(async (tx) => {
    await assertRunCanMutatePhaseInTransaction(input, tx);
    await tx
@@ -1730,11 +1854,6 @@ async function sendPromptAndRecord(
      idempotencyKey: `session.busy:${handle.sessionId}:${envelope.dedupKey}`,
    });
  });
  const artifactBaselineSignature =
    options.captureArtifactBaseline === false
      ? undefined
      : await artifactSignature(input.expectedArtifactPath);
  const prompt = await sendPromptWithRetry(input.sessions, handle, envelope);
  await input.db.transaction(async (tx) => {
    await assertRunCanMutatePhaseInTransaction(input, tx);
@@ -1750,6 +1869,66 @@ async function sendPromptAndRecord(
  return { promptId: prompt.promptId, artifactBaselineSignature };
 }
 async function recordPromptEventIfMissing(
  input: CanonicalRunSingleFakePhaseInput,
  eventRepository: RunEventRepository,
  type: "prompt.sent" | "prompt.repaired",
  envelope: PromptEnvelope,
 ): Promise<void> {
  await input.db.transaction(async (tx) => {
    await assertRunCanMutatePhaseInTransaction(input, tx);
    await eventRepository.appendInTransaction(tx, {
      runId: input.runId,
      phaseId: input.phaseId,
      type,
      payload: { roleId: input.roleId, dedupKey: envelope.dedupKey },
      idempotencyKey: `${type}:${envelope.dedupKey}`,
    });
  });
 }
 async function promptEventExists(
  input: CanonicalRunSingleFakePhaseInput,
  type: "prompt.sent" | "prompt.repaired",
  dedupKey: string,
 ): Promise<boolean> {
  const [event] = await input.db
    .select({ id: runEvents.id })
    .from(runEvents)
    .where(
      and(
        eq(runEvents.runId, input.runId),
        eq(runEvents.phaseId, input.phaseId),
        eq(runEvents.type, type),
        eq(runEvents.idempotencyKey, `${type}:${dedupKey}`),
      ),
    )
    .limit(1);
  return event !== undefined;
 }
 async function artifactExpectedEventExists(
  input: CanonicalRunSingleFakePhaseInput,
  attempt: number,
 ): Promise<boolean> {
  const [event] = await input.db
    .select({ id: runEvents.id })
    .from(runEvents)
    .where(
      and(
        eq(runEvents.runId, input.runId),
        eq(runEvents.phaseId, input.phaseId),
        eq(runEvents.type, "artifact.expected"),
        eq(
          runEvents.idempotencyKey,
          `artifact.expected:${input.phaseId}:${attempt}:${input.expectedArtifactPath}`,
        ),
      ),
    )
    .limit(1);
  return event !== undefined;
 }
 async function sendPromptWithRetry(
  sessions: SessionRuntime,
  handle: { sessionId: string },
@@ -2163,6 +2342,19 @@ async function markSessionFailedNeedsHuman(
  eventRepository: RunEventRepository,
  sessionId: string,
 ) {
  await input.db
    .insert(tuiSessions)
    .values({
      id: sessionId,
      runId: input.runId,
      roleId: input.roleId,
      backend: "fake",
      cwd: input.worktreeRoot,
      expectedArtifactPath: input.expectedArtifactPath,
      expectedSchema: input.expectedSchema,
      state: "FAILED_NEEDS_HUMAN",
    })
    .onConflictDoNothing({ target: tuiSessions.id });
  await input.db
    .update(tuiSessions)
    .set({ state: "FAILED_NEEDS_HUMAN" })
@@ -2223,12 +2415,14 @@ async function waitForArtifact(path: string, options: ArtifactWaitOptions = {}):
  let stableSince: number | undefined;
  while (Date.now() <= deadline) {
    throwIfAborted(options.signal);
    options.onPoll?.();
    try {
      const signature = await artifactSignature(path);
      if (signature === undefined || signature === ignoreInitialSignature) {
        lastSignature = undefined;
        stableSince = undefined;
-        await sleep(pollIntervalMs);
+        await sleep(pollIntervalMs, options.signal);
        continue;
      }
      if (lastSignature === signature) {
@@ -2259,7 +2453,7 @@ async function waitForArtifact(path: string, options: ArtifactWaitOptions = {}):
        });
      }
    }
-    await sleep(pollIntervalMs);
+    await sleep(pollIntervalMs, options.signal);
  }
  throw new DevflowError("Timed out waiting for fake phase artifact", {
@@ -2427,6 +2621,10 @@ function isDevflowErrorWithCode(error: unknown, code: string): error is DevflowE
  return error instanceof DevflowError && error.code === code;
 }
 function isActivityCancelled(error: unknown): error is DevflowError {
  return isDevflowErrorWithCode(error, "activity_cancelled");
 }
 function isRunStateChanged(error: unknown): error is DevflowError {
  return isDevflowErrorWithCode(error, "run_state_changed");
 }
@@ -2523,8 +2721,37 @@ async function captureTranscript(
  });
 }
-function sleep(ms: number): Promise<void> {
+function sleep(ms: number, signal?: AbortSignal): Promise<void> {
-  return new Promise((resolve) => setTimeout(resolve, ms));
+  if (signal === undefined) {
    return new Promise((resolve) => setTimeout(resolve, ms));
  }
  throwIfAborted(signal);
  return new Promise((resolve, reject) => {
    const timeout = setTimeout(() => {
      signal.removeEventListener("abort", onAbort);
      resolve();
    }, ms);
    const onAbort = () => {
      clearTimeout(timeout);
      reject(activityCancelledError(signal.reason));
    };
    signal.addEventListener("abort", onAbort, { once: true });
  });
 }
 function throwIfAborted(signal?: AbortSignal): void {
  if (signal?.aborted) {
    throw activityCancelledError(signal.reason);
  }
 }
 function activityCancelledError(cause: unknown): DevflowError {
  return new DevflowError("Activity was cancelled before artifact wait completed", {
    class: "recoverable",
    code: "activity_cancelled",
    cause,
  });
 }
 function isNodeError(error: unknown): error is NodeJS.ErrnoException {
--- a/packages/session/src/adapter.ts
+++ b/packages/session/src/adapter.ts
@@ -11,6 +11,7 @@ export interface SessionAdapter {
 }
 export interface StartInput {
  sessionId?: string;
  runId: string;
  roleId: string;
  backend: Backend;
--- a/packages/session/src/fake.ts
+++ b/packages/session/src/fake.ts
@@ -54,6 +54,10 @@ export class FakeSessionAdapter implements SessionAdapter {
    this.now = options.now ?? (() => new Date());
  }
  reserveSessionId(): string {
    return this.sessionIdFactory();
  }
  async start(input: StartInput): Promise<SessionHandle> {
    if (input.backend !== "fake") {
      throw new DevflowError("FakeSessionAdapter only supports the fake backend", {
@@ -63,7 +67,7 @@ export class FakeSessionAdapter implements SessionAdapter {
      });
    }
-    const handle: SessionHandle = { sessionId: this.sessionIdFactory() };
+    const handle: SessionHandle = { sessionId: input.sessionId ?? this.sessionIdFactory() };
    const record: FakeSessionRecord = {
      handle,
      runId: input.runId,
--- a/packages/session/src/manager.ts
+++ b/packages/session/src/manager.ts
@@ -6,7 +6,7 @@ import {
  runs,
  tuiSessions,
 } from "@devflow/db";
-import { and, eq, inArray, ne, notInArray, sql } from "drizzle-orm";
+import { and, eq, inArray, notInArray, sql } from "drizzle-orm";
 import type {
  ProbeResult,
@@ -196,11 +196,11 @@ export class SessionManager implements SessionRuntime {
      .where(
        this.recoveryRunIds === undefined
          ? and(
-              ne(tuiSessions.state, "FAILED_NEEDS_HUMAN"),
+              notInArray(tuiSessions.state, [...nonRecoverableSessionStates]),
              notInArray(runs.state, [...terminalRunStates]),
            )
          : and(
-              ne(tuiSessions.state, "FAILED_NEEDS_HUMAN"),
+              notInArray(tuiSessions.state, [...nonRecoverableSessionStates]),
              notInArray(runs.state, [...terminalRunStates]),
              inArray(tuiSessions.runId, [...this.recoveryRunIds]),
            ),
@@ -218,6 +218,7 @@ export class SessionManager implements SessionRuntime {
      try {
        const resumed = await this.resumeWithRetry(handle);
        this.handles.set(resumed.sessionId, resumed);
        await this.markStartupRecoverySucceeded(session, resumed);
        recoveredSessionIds.push(resumed.sessionId);
      } catch (error) {
        await this.markRecoveryFailed(session, error);
@@ -228,6 +229,59 @@ export class SessionManager implements SessionRuntime {
    return { recoveredSessionIds, failedSessionIds };
  }
  private async markStartupRecoverySucceeded(
    session: {
      id: string;
      runId: string;
      roleId: string;
      backend: string;
      recoveryAttempts: number;
      state: string;
    },
    handle: SessionHandle,
  ): Promise<void> {
    if (this.db === undefined || !["CREATED", "BOOTSTRAPPING"].includes(session.state)) {
      return;
    }
    const eventRepository = new RunEventRepository(this.db);
    const sessionUpdate: {
      state: "READY";
      lastKnownPanePid?: number;
      tmuxSession?: string;
      tmuxWindow?: string;
    } = { state: "READY" };
    if (handle.pid !== undefined) {
      sessionUpdate.lastKnownPanePid = handle.pid;
    }
    if (handle.tmuxSession !== undefined) {
      sessionUpdate.tmuxSession = handle.tmuxSession;
    }
    if (handle.tmuxWindow !== undefined) {
      sessionUpdate.tmuxWindow = handle.tmuxWindow;
    }
    await this.db.transaction(async (tx) => {
      await tx.update(tuiSessions).set(sessionUpdate).where(eq(tuiSessions.id, session.id));
      await eventRepository.appendInTransaction(tx, {
        runId: session.runId,
        type: "session.created",
        payload: { sessionId: session.id, roleId: session.roleId, backend: session.backend },
        idempotencyKey: `session.created:${session.id}`,
      });
      await eventRepository.appendInTransaction(tx, {
        runId: session.runId,
        type: "session.ready",
        payload: {
          sessionId: session.id,
          roleId: session.roleId,
          recoveryAttempts: session.recoveryAttempts,
        },
        idempotencyKey: `session.ready:${session.id}:${session.recoveryAttempts}`,
      });
    });
  }
  private async markRecoveryFailed(
    session: {
      id: string;
@@ -380,6 +434,7 @@ export class SessionManager implements SessionRuntime {
 }
 const terminalRunStates = ["completed", "failed", "aborted"] as const;
 const nonRecoverableSessionStates = ["FAILED_NEEDS_HUMAN"] as const;
 function isTerminalRunState(state: string): state is (typeof terminalRunStates)[number] {
  return terminalRunStates.includes(state as (typeof terminalRunStates)[number]);
--- a/packages/workflows/package.json
+++ b/packages/workflows/package.json
@@ -0,0 +1,27 @@
 {
  "name": "@devflow/workflows",
  "version": "0.0.0",
  "private": true,
  "type": "module",
  "main": "./dist/index.cjs",
  "module": "./dist/index.js",
  "types": "./dist/index.d.ts",
  "scripts": {
    "build": "tsup src/index.ts --format esm,cjs --clean && tsc -p tsconfig.build.json",
    "typecheck": "tsc -p ../../tsconfig.typecheck.json --noEmit",
    "test": "cd ../.. && vitest run --project packages/workflows"
  },
  "dependencies": {
    "@devflow/core": "workspace:*",
    "@devflow/db": "workspace:*",
    "@devflow/run-engine": "workspace:*",
    "@devflow/session": "workspace:*",
    "@temporalio/activity": "^1.17.1",
    "@temporalio/client": "^1.17.1",
    "@temporalio/worker": "^1.17.1",
    "@temporalio/workflow": "^1.17.1"
  },
  "devDependencies": {
    "@temporalio/testing": "^1.17.1"
  }
 }
--- a/packages/workflows/src/activities.test.ts
+++ b/packages/workflows/src/activities.test.ts
@@ -0,0 +1,310 @@
 import { execFileSync } from "node:child_process";
 import { randomUUID } from "node:crypto";
 import { existsSync, mkdtempSync, realpathSync, rmSync, writeFileSync } from "node:fs";
 import { tmpdir } from "node:os";
 import { join, resolve } from "node:path";
 import { loadPersonaFiles, loadTemplateFiles } from "@devflow/core";
 import {
  type DbClient,
  agentPersonas,
  approvalDecisions,
  approvalRequests,
  createDbClient,
  runs,
  workflowTemplates,
 } from "@devflow/db";
 import { FakeSessionAdapter, SessionManager } from "@devflow/session";
 import { ApplicationFailure } from "@temporalio/activity";
 import { eq, inArray } from "drizzle-orm";
 import { afterEach, describe, expect, it } from "vitest";
 import { createDevflowActivities } from "./activities.js";
 const databaseUrl =
  process.env.DATABASE_URL ?? "postgres://devflow:devflow@127.0.0.1:55432/devflow";
 describe("createDevflowActivities", () => {
  let client: DbClient | undefined;
  const runIds: string[] = [];
  const tempRoots: string[] = [];
  afterEach(async () => {
    if (client !== undefined) {
      if (runIds.length > 0) {
        const requests = await client.db
          .select({ id: approvalRequests.id })
          .from(approvalRequests)
          .where(inArray(approvalRequests.runId, [...runIds]));
        if (requests.length > 0) {
          await client.db.delete(approvalDecisions).where(
            inArray(
              approvalDecisions.approvalRequestId,
              requests.map((request) => request.id),
            ),
          );
        }
        await client.db
          .delete(approvalRequests)
          .where(inArray(approvalRequests.runId, [...runIds]));
        await client.db.delete(runs).where(inArray(runs.id, [...runIds]));
      }
      await client.close();
      client = undefined;
    }
    for (const root of tempRoots.splice(0)) {
      rmSync(root, { recursive: true, force: true });
    }
    runIds.length = 0;
  });
  it("preserves M4 fake development run behavior through worker activities", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
    const workspaceRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-workflows-workspace-")));
    const repoPath = createGitRepo();
    tempRoots.push(workspaceRoot, repoPath);
    const activities = createDevflowActivities({
      db: client.db,
      sessions: new SessionManager({
        db: client.db,
        adapter: new FakeSessionAdapter({ writeDelayMs: 0 }),
      }),
      workspaceRoot,
      maxConcurrentRuns: 100,
      wait: { pollIntervalMs: 1, stableMs: 0, timeoutMs: 500 },
    });
    const input = {
      requirementsMd: "Run through the M5 worker activity surface.",
      repoPath,
      baseBranch: "main",
      scenarios: {
        spec: "ok",
        phase_plan: "ok",
      },
    };
    const { runId } = await activities.prepareRunActivity(input);
    runIds.push(runId);
    await activities.lockBindingsActivity({ ...input, runId });
    await activities.advanceRunActivity({ runId });
    let status = await activities.getStatusActivity(runId);
    expect(status.run.state).toBe("awaiting_approval");
    expect(status.approvals).toMatchObject([{ gateKey: "spec_approved", state: "pending" }]);
    await activities.signalApprovalActivity({
      runId,
      approvalRequestId: pendingApprovalId(status, "spec_approved"),
      action: "approve",
      clientToken: randomUUID(),
    });
    await activities.advanceRunActivity({ runId });
    status = await activities.getStatusActivity(runId);
    await activities.signalApprovalActivity({
      runId,
      approvalRequestId: pendingApprovalId(status, "phase_plan_approved"),
      action: "approve",
      clientToken: randomUUID(),
    });
    await activities.advanceRunActivity({ runId });
    status = await activities.getStatusActivity(runId);
    expect(status.run.state).toBe("completed");
    expect(status.run.finalReportPath).toMatch(/\.report\.md$/);
    expect(existsSync(status.run.finalReportPath ?? "")).toBe(true);
  });
  it("prepares a run idempotently when Temporal replays the same activity", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
    const workspaceRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-workflows-workspace-")));
    const repoPath = createGitRepo();
    tempRoots.push(workspaceRoot, repoPath);
    const activities = createDevflowActivities({
      db: client.db,
      sessions: new SessionManager({
        db: client.db,
        adapter: new FakeSessionAdapter({ writeDelayMs: 0 }),
      }),
      workspaceRoot,
      maxConcurrentRuns: 100,
    });
    const runId = randomUUID();
    const input = {
      runId,
      requirementsMd: "Replay-safe prepare should return the same run.",
      repoPath,
      baseBranch: "main",
    };
    await expect(activities.prepareRunActivity(input)).resolves.toEqual({ runId });
    await expect(activities.prepareRunActivity(input)).resolves.toEqual({ runId });
    const rows = await client.db.select({ id: runs.id }).from(runs).where(eq(runs.id, runId));
    expect(rows).toEqual([{ id: runId }]);
    runIds.push(runId);
  });
  it("rejects a prepare replay with the same run id but different inputs", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
    const workspaceRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-workflows-workspace-")));
    const repoPath = createGitRepo();
    tempRoots.push(workspaceRoot, repoPath);
    const activities = createDevflowActivities({
      db: client.db,
      sessions: new SessionManager({
        db: client.db,
        adapter: new FakeSessionAdapter({ writeDelayMs: 0 }),
      }),
      workspaceRoot,
      maxConcurrentRuns: 100,
    });
    const runId = randomUUID();
    const input = {
      runId,
      requirementsMd: "Original run requirements.",
      repoPath,
      baseBranch: "main",
      scenarios: { spec: "ok" },
    };
    await expect(activities.prepareRunActivity(input)).resolves.toEqual({ runId });
    await expectDevflowActivityFailure(
      activities.prepareRunActivity({
        ...input,
        requirementsMd: "Changed requirements must not be accepted as replay.",
      }),
      "internal_state_corruption",
    );
    await expectDevflowActivityFailure(
      activities.prepareRunActivity({
        ...input,
        scenarios: { spec: "timeout" },
      }),
      "internal_state_corruption",
    );
    runIds.push(runId);
  });
  it("can fail an active prepared run when lock binding cannot complete", async () => {
    client = createDbClient(databaseUrl);
    await seedDevelopmentRegistry(client.db);
    const workspaceRoot = realpathSync(mkdtempSync(join(tmpdir(), "devflow-workflows-workspace-")));
    const repoPath = createGitRepo();
    tempRoots.push(workspaceRoot, repoPath);
    const activities = createDevflowActivities({
      db: client.db,
      sessions: new SessionManager({
        db: client.db,
        adapter: new FakeSessionAdapter({ writeDelayMs: 0 }),
      }),
      workspaceRoot,
      maxConcurrentRuns: 100,
    });
    const input = {
      requirementsMd: "Binding should fail when no backend is enabled.",
      repoPath,
      baseBranch: "main",
      overrides: { roles: { spec_writer: { persona: "missing-persona" } } },
    };
    const { runId } = await activities.prepareRunActivity(input);
    runIds.push(runId);
    await expectDevflowActivityFailure(
      activities.lockBindingsActivity({ ...input, runId }),
      "no_eligible_persona",
    );
    await activities.failRunActivity({ runId, reason: "lock_bindings_failed" });
    const [run] = await client.db
      .select({ state: runs.state })
      .from(runs)
      .where(eq(runs.id, runId));
    expect(run).toEqual({ state: "failed" });
  });
 });
 function pendingApprovalId(
  status: Awaited<ReturnType<ReturnType<typeof createDevflowActivities>["getStatusActivity"]>>,
  gateKey: string,
 ) {
  const approval = status.approvals.find(
    (candidate) => candidate.gateKey === gateKey && candidate.state === "pending",
  );
  expect(approval).toBeDefined();
  if (approval === undefined) {
    throw new Error(`${gateKey} approval missing`);
  }
  return approval.id;
 }
 function createGitRepo(): string {
  const repoPath = realpathSync(mkdtempSync(join(tmpdir(), "devflow-workflows-repo-")));
  execFileSync("git", ["init", "-b", "main"], { cwd: repoPath, stdio: "ignore" });
  writeFileSync(join(repoPath, "README.md"), "# Workflows fixture\n");
  execFileSync("git", ["add", "README.md"], { cwd: repoPath, stdio: "ignore" });
  execFileSync(
    "git",
    [
      "-c",
      "user.name=Devflow Test",
      "-c",
      "user.email=devflow@example.test",
      "commit",
      "-m",
      "initial",
    ],
    { cwd: repoPath, stdio: "ignore" },
  );
  return repoPath;
 }
 async function expectDevflowActivityFailure(operation: Promise<unknown>, code: string) {
  try {
    await operation;
  } catch (error) {
    expect(error).toBeInstanceOf(ApplicationFailure);
    const failure = error as ApplicationFailure;
    expect(failure.type).toBe("DevflowError");
    expect(failure.nonRetryable).toBe(true);
    expect(failure.details?.[0]).toMatchObject({ code });
    return;
  }
  throw new Error(`Expected Devflow activity failure ${code}`);
 }
 async function seedDevelopmentRegistry(db: DbClient["db"]) {
  const [templateEntry] = loadTemplateFiles(resolve("docs/schemas/templates")).filter(
    (entry) => entry.name === "development" && entry.version === 1,
  );
  if (templateEntry === undefined) {
    throw new Error("development@1 template fixture is missing");
  }
  await db
    .insert(workflowTemplates)
    .values({
      name: templateEntry.name,
      version: templateEntry.version,
      hash: templateEntry.hash,
      definition: templateEntry.definition,
    })
    .onConflictDoUpdate({
      target: [workflowTemplates.name, workflowTemplates.version],
      set: { hash: templateEntry.hash, definition: templateEntry.definition },
    });
  for (const personaEntry of loadPersonaFiles(resolve("docs/schemas/personas"))) {
    await db
      .insert(agentPersonas)
      .values({
        name: personaEntry.name,
        version: personaEntry.version,
        hash: personaEntry.hash,
        definition: personaEntry.definition,
      })
      .onConflictDoNothing({ target: [agentPersonas.name, agentPersonas.version] });
  }
 }
--- a/packages/workflows/src/activities.ts
+++ b/packages/workflows/src/activities.ts
@@ -0,0 +1,166 @@
 import { type BackendConfig, DevflowError } from "@devflow/core";
 import type { DbClient } from "@devflow/db";
 import { DbRunEngine, type RunStartInput, type RunStatus } from "@devflow/run-engine";
 import type { SessionRuntime } from "@devflow/session";
 import { ApplicationFailure, CancelledFailure, Context } from "@temporalio/activity";
 import type { AbortSignalPayload, ApprovalSignalPayload, RunSignalPayload } from "./types.js";
 type Database = DbClient["db"];
 export interface DevflowActivityDependencies {
  db: Database;
  sessions: SessionRuntime;
  workspaceRoot: string;
  availableBackends?: readonly BackendConfig[];
  maxConcurrentRuns?: number;
  wait?: {
    timeoutMs?: number;
    pollIntervalMs?: number;
    stableMs?: number;
  };
 }
 export interface DevflowActivities {
  prepareRunActivity(input: RunStartInput): Promise<{ runId: string }>;
  lockBindingsActivity(input: RunStartInput): Promise<void>;
  failRunActivity(input: { runId: string; reason: string }): Promise<void>;
  advanceRunActivity(input: { runId: string; resumeActivePhase?: boolean }): Promise<RunStatus>;
  signalApprovalActivity(payload: ApprovalSignalPayload): Promise<void>;
  pauseRunActivity(payload: RunSignalPayload): Promise<void>;
  resumeRunActivity(payload: RunSignalPayload): Promise<void>;
  abortRunActivity(payload: AbortSignalPayload): Promise<void>;
  getStatusActivity(runId: string): Promise<RunStatus>;
  isRunTerminalActivity(runId: string): Promise<boolean>;
  composeFinalReportActivity(runId: string): Promise<void>;
 }
 export function createDevflowActivities(
  dependencies: DevflowActivityDependencies,
 ): DevflowActivities {
  const makeEngine = () => {
    const activityWait = withTemporalActivityCancellation(dependencies.wait);
    return new DbRunEngine({
      db: dependencies.db,
      sessions: dependencies.sessions,
      workspaceRoot: dependencies.workspaceRoot,
      ...(dependencies.availableBackends === undefined
        ? {}
        : { availableBackends: dependencies.availableBackends }),
      ...(dependencies.maxConcurrentRuns === undefined
        ? {}
        : { maxConcurrentRuns: dependencies.maxConcurrentRuns }),
      ...(activityWait === undefined ? {} : { wait: activityWait }),
    });
  };
  return {
    prepareRunActivity(input) {
      return runActivity(makeEngine().prepareRun(input));
    },
    lockBindingsActivity(input) {
      return runActivity(makeEngine().lockBindingsForRun(input));
    },
    failRunActivity(input) {
      return runActivity(makeEngine().failRunIfActive(input.runId, input.reason));
    },
    advanceRunActivity(input) {
      return runActivity(
        makeEngine().advanceRunUntilBlocked(input.runId, {
          ...(input.resumeActivePhase === undefined
            ? {}
            : { resumeActivePhase: input.resumeActivePhase }),
          failureReason: "temporal_advance_failed",
        }),
      );
    },
    signalApprovalActivity(payload) {
      return runActivity(
        makeEngine().signalApprovalForWorkflow(
          payload.runId,
          payload.approvalRequestId,
          payload.action,
          payload.clientToken,
          payload.comment,
        ),
      );
    },
    pauseRunActivity(payload) {
      return runActivity(makeEngine().pauseRun(payload.runId));
    },
    resumeRunActivity(payload) {
      return runActivity(makeEngine().resumeRunForWorkflow(payload.runId));
    },
    abortRunActivity(payload) {
      return runActivity(makeEngine().abortRun(payload.runId, payload.reason));
    },
    getStatusActivity(runId) {
      return runActivity(makeEngine().getStatus(runId));
    },
    async isRunTerminalActivity(runId) {
      const status = await runActivity(makeEngine().getStatus(runId));
      return ["completed", "failed", "aborted"].includes(status.run.state);
    },
    async composeFinalReportActivity(runId) {
      await runActivity(makeEngine().recoverMissingFinalReports({ runIds: [runId] }));
    },
  };
 }
 async function runActivity<T>(operation: Promise<T>): Promise<T> {
  try {
    return await operation;
  } catch (error) {
    throw toTemporalActivityFailure(error);
  }
 }
 function toTemporalActivityFailure(error: unknown): unknown {
  if (isActivityCancelled(error)) {
    return new CancelledFailure("activity_cancelled", [], error as Error);
  }
  if (error instanceof DevflowError) {
    return ApplicationFailure.create({
      message: error.message,
      type: "DevflowError",
      nonRetryable: error.class !== "recoverable",
      details: [
        {
          class: error.class,
          code: error.code,
          ...(error.runId === undefined ? {} : { runId: error.runId }),
          ...(error.phaseId === undefined ? {} : { phaseId: error.phaseId }),
          ...(error.recoveryHint === undefined ? {} : { recoveryHint: error.recoveryHint }),
        },
      ],
    });
  }
  return error;
 }
 function withTemporalActivityCancellation(wait: DevflowActivityDependencies["wait"]) {
  const context = currentActivityContext();
  if (context === undefined) {
    return wait;
  }
  return {
    ...wait,
    signal: context.cancellationSignal,
    onPoll: () => {
      context.heartbeat({ operation: "advance_run" });
    },
  };
 }
 function currentActivityContext(): Context | undefined {
  try {
    return Context.current();
  } catch {
    return undefined;
  }
 }
 function isActivityCancelled(error: unknown): boolean {
  return error instanceof Error && "code" in error && error.code === "activity_cancelled";
 }
--- a/packages/workflows/src/index.ts
+++ b/packages/workflows/src/index.ts
@@ -0,0 +1,4 @@
 export * from "./activities.js";
 export * from "./temporal-run-engine.js";
 export * from "./types.js";
 export * from "./workflow.js";
--- a/packages/workflows/src/temporal-run-engine.test.ts
+++ b/packages/workflows/src/temporal-run-engine.test.ts
--- a/packages/workflows/src/temporal-run-engine.ts
+++ b/packages/workflows/src/temporal-run-engine.ts
@@ -0,0 +1,666 @@
 import { randomUUID } from "node:crypto";
 import {
  ApplicationFailure,
  type WorkflowClient,
  WorkflowExecutionAlreadyStartedError,
  type WorkflowHandle,
  WorkflowNotFoundError,
 } from "@temporalio/client";
 import { type ApprovalDecisionAction, DevflowError } from "@devflow/core";
 import type { RunEngine, RunStartInput, RunStatus } from "@devflow/run-engine";
 import type { AbortSignalPayload } from "./types.js";
 import { abortSignal, approveSignal, pauseSignal, resumeSignal, runWorkflow } from "./workflow.js";
 export const temporalNamespace = "devflow";
 export const temporalTaskQueue = "devflow-runs";
 export interface TemporalRunEngineOptions {
  client: WorkflowClient;
  taskQueue?: string;
  workflowIdPrefix?: string;
  statusReader: Pick<RunEngine, "getStatus">;
  controlValidator?: {
    validateResumeSignalInput(runId: string): Promise<void>;
  };
  startReplayValidator?: { validateStartReplay(input: RunStartInput): Promise<void> };
  approvalSignalReader?: {
    validateApprovalSignalInput(
      runId: string,
      approvalRequestId: string,
      action: ApprovalDecisionAction,
      clientToken: string,
    ): Promise<"pending" | "applied">;
    readApprovalSignalResult(
      runId: string,
      approvalRequestId: string,
      action: ApprovalDecisionAction,
      clientToken: string,
    ): Promise<"pending" | "applied">;
    replayAppliedApprovalSideEffects?(runId: string, action: ApprovalDecisionAction): Promise<void>;
  };
  awaitRunStart?: boolean;
  awaitSignals?: boolean;
  startRunWaitMs?: number;
  startRunPollMs?: number;
  terminalReportWaitMs?: number;
 }
 export class TemporalRunEngine implements RunEngine {
  private readonly client: WorkflowClient;
  private readonly taskQueue: string;
  private readonly workflowIdPrefix: string;
  private readonly statusReader: Pick<RunEngine, "getStatus">;
  private readonly controlValidator:
    | {
        validateResumeSignalInput(runId: string): Promise<void>;
      }
    | undefined;
  private readonly startReplayValidator:
    | { validateStartReplay(input: RunStartInput): Promise<void> }
    | undefined;
  private readonly approvalSignalReader: TemporalRunEngineOptions["approvalSignalReader"];
  private readonly awaitRunStart: boolean;
  private readonly awaitSignals: boolean;
  private readonly startRunWaitMs: number;
  private readonly startRunPollMs: number;
  private readonly terminalReportWaitMs: number;
  constructor(options: TemporalRunEngineOptions) {
    this.client = options.client;
    this.taskQueue = options.taskQueue ?? temporalTaskQueue;
    this.workflowIdPrefix = options.workflowIdPrefix ?? "devflow-run";
    this.statusReader = options.statusReader;
    this.controlValidator = options.controlValidator;
    this.startReplayValidator = options.startReplayValidator;
    this.approvalSignalReader = options.approvalSignalReader;
    this.awaitRunStart = options.awaitRunStart ?? true;
    this.awaitSignals = options.awaitSignals ?? true;
    this.startRunWaitMs = options.startRunWaitMs ?? 30_000;
    this.startRunPollMs = options.startRunPollMs ?? 50;
    this.terminalReportWaitMs = options.terminalReportWaitMs ?? 90_000;
  }
  async startRun(input: RunStartInput): Promise<{ runId: string }> {
    const runId = input.runId ?? randomUUID();
    let handle: Pick<WorkflowHandle<typeof runWorkflow>, "result"> | undefined;
    try {
      handle = await this.client.start(runWorkflow, {
        args: [{ ...input, runId }],
        taskQueue: this.taskQueue,
        workflowId: this.workflowId(runId),
        workflowIdConflictPolicy: "FAIL",
        workflowIdReusePolicy: "REJECT_DUPLICATE",
      });
    } catch (error) {
      if (!(error instanceof WorkflowExecutionAlreadyStartedError)) {
        throw error;
      }
      const replayStatus = await this.validateAlreadyStartedReplay({ ...input, runId });
      if (isTerminalRunState(replayStatus.run.state)) {
        await this.waitForTerminalReportIfNeeded(runId, replayStatus);
        return { runId };
      }
    }
    if (this.awaitRunStart) {
      await this.waitForRunStart(runId, handle);
    }
    return { runId };
  }
  async signalApproval(
    runId: string,
    approvalRequestId: string,
    action: ApprovalDecisionAction,
    clientToken: string,
    comment?: string,
  ): Promise<void> {
    if (this.awaitSignals && this.approvalSignalReader === undefined) {
      throw new DevflowError("Temporal approval signal reader is not configured", {
        class: "fatal",
        code: "internal_state_corruption",
        runId,
      });
    }
    const initialDecision = await this.validateApprovalSignalInput(
      runId,
      approvalRequestId,
      action,
      clientToken,
    );
    if (initialDecision === "applied") {
      const status = await this.getStatus(runId);
      if (isTerminalRunState(status.run.state)) {
        await this.approvalSignalReader?.replayAppliedApprovalSideEffects?.(runId, action);
        await this.waitForTerminalReportIfNeeded(runId, status);
        return;
      }
    }
    const workflowHandle = this.handle(runId);
    try {
      await workflowHandle.signal(approveSignal, {
        runId,
        approvalRequestId,
        action,
        clientToken,
        ...(comment === undefined ? {} : { comment }),
      });
    } catch (error) {
      if (
        await this.settleClosedApprovalSignal(runId, approvalRequestId, action, clientToken, error)
      ) {
        return;
      }
      throw error;
    }
    if (this.awaitSignals) {
      await this.waitForApprovalSignalResult(runId, approvalRequestId, action, clientToken);
      if (action === "approve" || action === "request_changes") {
        const status = await this.waitForStatusWithoutTimeout(
          runId,
          (candidate) => !isActiveRunState(candidate.run.state),
        );
        if (status.run.state === "failed" || status.run.state === "aborted") {
          await this.throwWorkflowFailureOrGeneric(
            runId,
            workflowHandle,
            "Temporal approval signal failed during advancement",
          );
        }
        await this.waitForTerminalReportIfNeeded(runId, status);
      } else {
        await this.waitForTerminalReportIfNeeded(
          runId,
          await this.waitForStatusWithoutTimeout(runId, (candidate) =>
            isTerminalRunState(candidate.run.state),
          ),
        );
      }
    }
  }
  async pauseRun(runId: string): Promise<void> {
    const before = await this.getStatus(runId);
    if (
      isTerminalRunState(before.run.state) ||
      !["planning", "executing", "awaiting_approval"].includes(before.run.state)
    ) {
      return;
    }
    try {
      await this.handle(runId).signal(pauseSignal, { runId, clientToken: randomUUID() });
    } catch (error) {
      const settled = await this.settleClosedWorkflowSignal(runId, error);
      if (settled !== undefined) {
        await this.throwControlNotApplied(runId, "pause", "paused", settled);
      }
      throw error;
    }
    if (this.awaitSignals) {
      const status = await this.waitForStatusWithoutTimeout(
        runId,
        (status) => status.run.state === "paused" || isTerminalRunState(status.run.state),
      );
      if (status.run.state !== "paused") {
        await this.throwControlNotApplied(runId, "pause", "paused", status);
      }
    }
  }
  async resumeRun(runId: string): Promise<void> {
    const before = await this.getStatus(runId);
    if (before.run.state !== "paused") {
      return;
    }
    await this.controlValidator?.validateResumeSignalInput(runId);
    try {
      await this.handle(runId).signal(resumeSignal, { runId, clientToken: randomUUID() });
    } catch (error) {
      if ((await this.settleClosedWorkflowSignal(runId, error)) !== undefined) {
        return;
      }
      throw error;
    }
    if (this.awaitSignals) {
      const status = await this.waitForResumeSignalResult(runId);
      if (status.run.state === "failed" || status.run.state === "aborted") {
        throw new DevflowError("Temporal resume failed", {
          class: "human_required",
          code: "temporal_signal_failed",
          runId,
          recoveryHint: `run_state=${status.run.state}`,
        });
      }
      await this.waitForTerminalReportIfNeeded(runId, status);
    }
  }
  async abortRun(runId: string, reason: string): Promise<void> {
    const before = await this.getStatus(runId);
    if (isTerminalRunState(before.run.state)) {
      return;
    }
    const payload: AbortSignalPayload = {
      runId,
      reason,
      clientToken: randomUUID(),
    };
    try {
      await this.handle(runId).signal(abortSignal, payload);
    } catch (error) {
      const settled = await this.settleClosedWorkflowSignal(runId, error);
      if (settled !== undefined) {
        if (settled.run.state === "aborted") {
          return;
        }
        await this.throwControlNotApplied(runId, "abort", "aborted", settled);
      }
      throw error;
    }
    if (this.awaitSignals) {
      const status = await this.waitForTerminalReportIfNeeded(
        runId,
        await this.waitForStatusWithoutTimeout(runId, (status) =>
          isTerminalRunState(status.run.state),
        ),
      );
      if (status.run.state !== "aborted") {
        await this.throwControlNotApplied(runId, "abort", "aborted", status);
      }
    }
  }
  getStatus(runId: string): Promise<RunStatus> {
    return this.statusReader.getStatus(runId);
  }
  workflowId(runId: string): string {
    return `${this.workflowIdPrefix}:${runId}`;
  }
  private handle(runId: string) {
    return this.client.getHandle(this.workflowId(runId));
  }
  private async settleClosedWorkflowSignal(
    runId: string,
    error: unknown,
  ): Promise<RunStatus | undefined> {
    if (!(error instanceof WorkflowNotFoundError)) {
      return undefined;
    }
    const latest = await this.getStatus(runId);
    if (!isTerminalRunState(latest.run.state)) {
      return undefined;
    }
    return this.waitForTerminalReportIfNeeded(runId, latest);
  }
  private async settleClosedApprovalSignal(
    runId: string,
    approvalRequestId: string,
    action: ApprovalDecisionAction,
    clientToken: string,
    error: unknown,
  ): Promise<boolean> {
    if (!(error instanceof WorkflowNotFoundError)) {
      return false;
    }
    await this.waitForApprovalSignalResult(runId, approvalRequestId, action, clientToken);
    const latest = await this.getStatus(runId);
    if (!isTerminalRunState(latest.run.state)) {
      return false;
    }
    await this.approvalSignalReader?.replayAppliedApprovalSideEffects?.(runId, action);
    await this.waitForTerminalReportIfNeeded(runId, latest);
    return true;
  }
  private async waitForRunStart(
    runId: string,
    handle?: Pick<WorkflowHandle<typeof runWorkflow>, "result">,
  ): Promise<RunStatus> {
    const workflowPromise = handle?.result().then(
      () => this.statusReader.getStatus(runId),
      (cause: unknown) => {
        throw unwrapTemporalStartFailure(runId, cause);
      },
    );
    const materializedStatus = await (workflowPromise === undefined
      ? this.waitForStatus(runId, () => true)
      : Promise.race([this.waitForStatus(runId, () => true), workflowPromise]));
    if (!isActiveRunState(materializedStatus.run.state)) {
      await this.throwIfStartupFailed(runId, materializedStatus, handle);
      return this.waitForTerminalReportIfNeeded(runId, materializedStatus);
    }
    const status = await (workflowPromise === undefined
      ? this.waitForStatusWithoutTimeout(
          runId,
          (candidate) => !isActiveRunState(candidate.run.state),
        )
      : Promise.race([
          this.waitForStatusWithoutTimeout(
            runId,
            (candidate) => !isActiveRunState(candidate.run.state),
          ),
          workflowPromise,
        ]));
    await this.throwIfStartupFailed(runId, status, handle);
    return this.waitForTerminalReportIfNeeded(runId, status);
  }
  private async throwIfStartupFailed(
    runId: string,
    status: RunStatus,
    handle?: Pick<WorkflowHandle<typeof runWorkflow>, "result">,
  ): Promise<void> {
    if (status.run.state === "failed" || status.run.state === "aborted") {
      if (handle !== undefined) {
        try {
          await handle.result();
        } catch (cause) {
          throw unwrapTemporalStartFailure(runId, cause);
        }
      }
      throw new DevflowError("Temporal run failed during startup", {
        class: "human_required",
        code: "temporal_start_failed",
        runId,
        recoveryHint: `run_state=${status.run.state}`,
      });
    }
  }
  private async validateAlreadyStartedReplay(
    input: RunStartInput & { runId: string },
  ): Promise<RunStatus> {
    if (this.startReplayValidator === undefined) {
      throw new DevflowError("Temporal start replay validation is not configured", {
        class: "fatal",
        code: "internal_state_corruption",
        runId: input.runId,
      });
    }
    const status = await this.waitForStatus(input.runId, () => true);
    await this.startReplayValidator.validateStartReplay(input);
    return status;
  }
  private async waitForStatus(
    runId: string,
    isReady: (status: RunStatus) => boolean,
  ): Promise<RunStatus> {
    const deadline = Date.now() + this.startRunWaitMs;
    let lastError: unknown;
    do {
      try {
        const status = await this.statusReader.getStatus(runId);
        if (isReady(status)) {
          return status;
        }
      } catch (error) {
        lastError = error;
      }
      await sleep(this.startRunPollMs);
    } while (Date.now() < deadline);
    throw new DevflowError("Temporal run did not materialize before timeout", {
      class: "human_required",
      code: "temporal_start_timeout",
      runId,
      recoveryHint: "Check the Temporal worker process and task queue configuration.",
      cause: lastError,
    });
  }
  private async waitForStatusWithoutTimeout(
    runId: string,
    isReady: (status: RunStatus) => boolean,
  ): Promise<RunStatus> {
    for (;;) {
      const status = await this.statusReader.getStatus(runId);
      if (isReady(status)) {
        return status;
      }
      await sleep(this.startRunPollMs);
    }
  }
  private async waitForResumeSignalResult(runId: string): Promise<RunStatus> {
    for (;;) {
      const status = await this.statusReader.getStatus(runId);
      if (status.run.state !== "paused" && !isActiveRunState(status.run.state)) {
        return status;
      }
      if (status.run.state === "paused") {
        await this.controlValidator?.validateResumeSignalInput(runId);
      }
      await sleep(this.startRunPollMs);
    }
  }
  private async waitForTerminalReportIfNeeded(
    runId: string,
    status: RunStatus,
  ): Promise<RunStatus> {
    if (!isTerminalRunState(status.run.state) || status.run.finalReportPath !== null) {
      return status;
    }
    const deadline = Date.now() + this.terminalReportWaitMs;
    let latest = status;
    do {
      await sleep(this.startRunPollMs);
      latest = await this.statusReader.getStatus(runId);
      if (isTerminalRunState(latest.run.state) && latest.run.finalReportPath !== null) {
        return latest;
      }
      if (!isTerminalRunState(latest.run.state)) {
        return latest;
      }
    } while (Date.now() < deadline);
    throw new DevflowError("Temporal terminal run report did not materialize before timeout", {
      class: "human_required",
      code: "final_report_timeout",
      runId,
      recoveryHint: `run_state=${latest.run.state}`,
    });
  }
  private async throwControlNotApplied(
    runId: string,
    control: "abort" | "pause",
    expectedState: "aborted" | "paused",
    status: RunStatus,
  ): Promise<never> {
    const latest = await this.waitForTerminalReportIfNeeded(runId, status);
    throw new DevflowError(`Temporal ${control} signal was not applied`, {
      class: "human_required",
      code: "temporal_signal_failed",
      runId,
      recoveryHint: `expected_run_state=${expectedState};actual_run_state=${latest.run.state}`,
    });
  }
  private async validateApprovalSignalInput(
    runId: string,
    approvalRequestId: string,
    action: ApprovalDecisionAction,
    clientToken: string,
  ): Promise<"pending" | "applied"> {
    if (this.approvalSignalReader === undefined) {
      return "pending";
    }
    return this.approvalSignalReader.validateApprovalSignalInput(
      runId,
      approvalRequestId,
      action,
      clientToken,
    );
  }
  private async waitForApprovalSignalResult(
    runId: string,
    approvalRequestId: string,
    action: ApprovalDecisionAction,
    clientToken: string,
  ): Promise<void> {
    const deadline = Date.now() + this.startRunWaitMs;
    const reader = this.approvalSignalReader;
    if (reader === undefined) {
      throw new DevflowError("Temporal approval signal reader is not configured", {
        class: "fatal",
        code: "internal_state_corruption",
        runId,
      });
    }
    do {
      const result = await reader.readApprovalSignalResult(
        runId,
        approvalRequestId,
        action,
        clientToken,
      );
      if (result === "applied") {
        return;
      }
      await sleep(this.startRunPollMs);
    } while (Date.now() < deadline);
    throw new DevflowError("Temporal approval signal did not apply before timeout", {
      class: "human_required",
      code: "temporal_signal_timeout",
      runId,
      recoveryHint: "Check the Temporal worker process and approval request state.",
    });
  }
  private async throwWorkflowFailureOrGeneric(
    runId: string,
    handle: Pick<WorkflowHandle<typeof runWorkflow>, "result">,
    message: string,
  ): Promise<never> {
    try {
      await handle.result();
    } catch (error) {
      throw unwrapTemporalFailure(runId, error, "temporal_signal_failed");
    }
    throw new DevflowError(message, {
      class: "human_required",
      code: "temporal_signal_failed",
      runId,
      recoveryHint: "run_state=failed",
    });
  }
 }
 function sleep(ms: number): Promise<void> {
  return new Promise((resolveSleep) => setTimeout(resolveSleep, ms));
 }
 function isActiveRunState(state: string): boolean {
  return state === "created" || state === "bound" || state === "executing" || state === "planning";
 }
 function isTerminalRunState(state: string): boolean {
  return state === "completed" || state === "failed" || state === "aborted";
 }
 function unwrapTemporalStartFailure(runId: string, cause: unknown): unknown {
  return unwrapTemporalFailure(runId, cause, "temporal_start_failed");
 }
 function unwrapTemporalFailure(runId: string, cause: unknown, fallbackCode: string): unknown {
  const maybeCause = nestedCause(cause);
  if (maybeCause instanceof DevflowError) {
    return maybeCause;
  }
  return new DevflowError("Temporal workflow failed", {
    class: "human_required",
    code: fallbackCode,
    runId,
    recoveryHint: "Inspect the Temporal workflow failure and run events.",
    cause,
  });
 }
 function nestedCause(error: unknown): unknown {
  let current = error;
  const seen = new Set<unknown>();
  while (current !== null && typeof current === "object" && !seen.has(current)) {
    seen.add(current);
    if (current instanceof DevflowError) {
      return current;
    }
    if (isApplicationFailureLike(current)) {
      const devflowError = devflowErrorFromApplicationFailure(current);
      if (devflowError !== undefined) {
        return devflowError;
      }
    }
    current = (current as { cause?: unknown }).cause;
  }
  return undefined;
 }
 function devflowErrorFromApplicationFailure(
  error: ApplicationFailureLike,
 ): DevflowError | undefined {
  if (error.type !== "DevflowError") {
    return undefined;
  }
  const details = error.details?.[0];
  if (!isSerializedDevflowError(details)) {
    return undefined;
  }
  return new DevflowError(error.message ?? "Temporal activity failed with DevflowError", {
    class: details.class,
    code: details.code,
    ...(details.runId === undefined ? {} : { runId: details.runId }),
    ...(details.phaseId === undefined ? {} : { phaseId: details.phaseId }),
    ...(details.recoveryHint === undefined ? {} : { recoveryHint: details.recoveryHint }),
    cause: error,
  });
 }
 interface ApplicationFailureLike {
  message?: string;
  type?: string | null;
  details?: unknown[] | null;
 }
 function isApplicationFailureLike(value: unknown): value is ApplicationFailureLike {
  return (
    value instanceof ApplicationFailure ||
    (value !== null &&
      typeof value === "object" &&
      "type" in value &&
      (value as { type?: unknown }).type === "DevflowError")
  );
 }
 function isSerializedDevflowError(value: unknown): value is {
  class: "recoverable" | "human_required" | "fatal";
  code: string;
  runId?: string;
  phaseId?: string;
  recoveryHint?: string;
 } {
  if (value === null || typeof value !== "object") {
    return false;
  }
  const candidate = value as Record<string, unknown>;
  return (
    (candidate.class === "recoverable" ||
      candidate.class === "human_required" ||
      candidate.class === "fatal") &&
    typeof candidate.code === "string" &&
    (candidate.runId === undefined || typeof candidate.runId === "string") &&
    (candidate.phaseId === undefined || typeof candidate.phaseId === "string") &&
    (candidate.recoveryHint === undefined || typeof candidate.recoveryHint === "string")
  );
 }
--- a/packages/workflows/src/types.ts
+++ b/packages/workflows/src/types.ts
@@ -0,0 +1,24 @@
 import type { ApprovalDecisionAction } from "@devflow/core";
 export interface ApprovalSignalPayload {
  runId: string;
  approvalRequestId: string;
  action: ApprovalDecisionAction;
  clientToken: string;
  comment?: string;
  idempotencyKey?: string;
 }
 export interface RunSignalPayload {
  runId: string;
  clientToken?: string;
  idempotencyKey?: string;
 }
 export interface AbortSignalPayload extends RunSignalPayload {
  reason: string;
 }
 export interface RunWorkflowResult {
  runId: string;
 }
--- a/packages/workflows/src/workflow.integration.test.ts
+++ b/packages/workflows/src/workflow.integration.test.ts
@@ -0,0 +1,440 @@
 import { randomUUID } from "node:crypto";
 import { fileURLToPath } from "node:url";
 import type { RunStatus } from "@devflow/run-engine";
 import { ApplicationFailure } from "@temporalio/activity";
 import { TestWorkflowEnvironment } from "@temporalio/testing";
 import { Worker } from "@temporalio/worker";
 import { describe, expect, it } from "vitest";
 import type { DevflowActivities } from "./activities.js";
 import { TemporalRunEngine } from "./temporal-run-engine.js";
 import { abortSignal, runWorkflow } from "./workflow.js";
 describe("runWorkflow Temporal integration", () => {
  it("orchestrates a fake M4-style run through a real Temporal worker", async () => {
    const testEnv = await TestWorkflowEnvironment.createTimeSkipping();
    try {
      const runId = randomUUID();
      const taskQueue = `devflow-workflow-test-${runId}`;
      const workflowId = `devflow-run:${runId}`;
      let status = runStatus(runId, "created", []);
      let advanceCalls = 0;
      let reportComposed = false;
      const activities: DevflowActivities = {
        async prepareRunActivity(input) {
          const preparedRunId = input.runId ?? runId;
          status = runStatus(preparedRunId, "created", []);
          return { runId: preparedRunId };
        },
        async lockBindingsActivity(input) {
          status = runStatus(input.runId ?? runId, "executing", []);
        },
        async failRunActivity(input) {
          status = runStatus(input.runId, "failed", []);
        },
        async advanceRunActivity(input) {
          advanceCalls += 1;
          status = runStatus(input.runId, "completed", []);
          return status;
        },
        async signalApprovalActivity() {
          throw new Error("approval signal should not be needed for this workflow path");
        },
        async pauseRunActivity(payload) {
          status = runStatus(payload.runId, "paused", []);
        },
        async resumeRunActivity(payload) {
          status = runStatus(payload.runId, "executing", []);
        },
        async abortRunActivity(payload) {
          status = runStatus(payload.runId, "aborted", []);
        },
        async getStatusActivity() {
          return status;
        },
        async isRunTerminalActivity() {
          return ["completed", "failed", "aborted"].includes(status.run.state);
        },
        async composeFinalReportActivity(runIdToReport) {
          reportComposed = true;
          status = runStatus(runIdToReport, "completed", [], {
            finalReportPath: "/workspace/run/run.report.md",
          });
        },
      };
      const worker = await Worker.create({
        activities,
        connection: testEnv.nativeConnection,
        ...(testEnv.namespace === undefined ? {} : { namespace: testEnv.namespace }),
        taskQueue,
        workflowsPath: fileURLToPath(new URL("./workflow.ts", import.meta.url)),
      });
      await expect(
        worker.runUntil(async () => {
          const handle = await testEnv.client.workflow.start(runWorkflow, {
            args: [
              {
                runId,
                requirementsMd: "Run the workflow integration parity path.",
                repoPath: "/repo",
                baseBranch: "main",
              },
            ],
            taskQueue,
            workflowId,
          });
          return handle.result();
        }),
      ).resolves.toEqual({ runId });
      expect(advanceCalls).toBe(1);
      expect(reportComposed).toBe(true);
    } finally {
      await testEnv.teardown();
    }
  }, 120_000);
  it("processes a queued abort signal before starting another advance activity", async () => {
    const testEnv = await TestWorkflowEnvironment.createTimeSkipping();
    try {
      const runId = randomUUID();
      const taskQueue = `devflow-workflow-test-${runId}`;
      const workflowId = `devflow-run:${runId}`;
      const lockStarted = deferred<void>();
      const releaseLock = deferred<void>();
      let status = runStatus(runId, "created", []);
      let advanceCalls = 0;
      let abortCalls = 0;
      let reportComposed = false;
      const activities: DevflowActivities = {
        async prepareRunActivity(input) {
          const preparedRunId = input.runId ?? runId;
          status = runStatus(preparedRunId, "created", []);
          return { runId: preparedRunId };
        },
        async lockBindingsActivity(input) {
          status = runStatus(input.runId ?? runId, "executing", []);
          lockStarted.resolve(undefined);
          await releaseLock.promise;
        },
        async failRunActivity(input) {
          status = runStatus(input.runId, "failed", []);
        },
        async advanceRunActivity(input) {
          advanceCalls += 1;
          status = runStatus(input.runId, "completed", []);
          return status;
        },
        async signalApprovalActivity() {
          throw new Error("approval signal should not be needed for this workflow path");
        },
        async pauseRunActivity(payload) {
          status = runStatus(payload.runId, "paused", []);
        },
        async resumeRunActivity(payload) {
          status = runStatus(payload.runId, "executing", []);
        },
        async abortRunActivity(payload) {
          abortCalls += 1;
          status = runStatus(payload.runId, "aborted", []);
        },
        async getStatusActivity() {
          return status;
        },
        async isRunTerminalActivity() {
          return ["completed", "failed", "aborted"].includes(status.run.state);
        },
        async composeFinalReportActivity(runIdToReport) {
          reportComposed = true;
          status = runStatus(runIdToReport, status.run.state, [], {
            finalReportPath: "/workspace/run/run.report.md",
          });
        },
      };
      const worker = await Worker.create({
        activities,
        connection: testEnv.nativeConnection,
        ...(testEnv.namespace === undefined ? {} : { namespace: testEnv.namespace }),
        taskQueue,
        workflowsPath: fileURLToPath(new URL("./workflow.ts", import.meta.url)),
      });
      await expect(
        worker.runUntil(async () => {
          const handle = await testEnv.client.workflow.start(runWorkflow, {
            args: [
              {
                runId,
                requirementsMd: "Abort while a fake advancement is completing.",
                repoPath: "/repo",
                baseBranch: "main",
              },
            ],
            taskQueue,
            workflowId,
          });
          await lockStarted.promise;
          await handle.signal(abortSignal, {
            runId,
            reason: "user_requested_abort",
            clientToken: "abort-token-1",
          });
          releaseLock.resolve(undefined);
          return handle.result();
        }),
      ).resolves.toEqual({ runId });
      expect(advanceCalls).toBe(0);
      expect(abortCalls).toBe(1);
      expect(reportComposed).toBe(true);
      expect(status.run.state).toBe("aborted");
    } finally {
      await testEnv.teardown();
    }
  }, 120_000);
  it("applies abort before waiting for an interrupted advance to settle", async () => {
    const testEnv = await TestWorkflowEnvironment.createTimeSkipping();
    try {
      const runId = randomUUID();
      const taskQueue = `devflow-workflow-test-${runId}`;
      const workflowId = `devflow-run:${runId}`;
      const advanceStarted = deferred<void>();
      const abortObserved = deferred<void>();
      let status = runStatus(runId, "created", []);
      let abortCalls = 0;
      let reportComposed = false;
      const activities: DevflowActivities = {
        async prepareRunActivity(input) {
          const preparedRunId = input.runId ?? runId;
          status = runStatus(preparedRunId, "created", []);
          return { runId: preparedRunId };
        },
        async lockBindingsActivity(input) {
          status = runStatus(input.runId ?? runId, "executing", []);
        },
        async failRunActivity(input) {
          status = runStatus(input.runId, "failed", []);
        },
        async advanceRunActivity(input) {
          advanceStarted.resolve(undefined);
          await abortObserved.promise;
          throw ApplicationFailure.create({
            message: "Run left active state before fake phase mutation",
            type: "DevflowError",
            nonRetryable: true,
            details: [{ class: "human_required", code: "run_state_changed", runId: input.runId }],
          });
        },
        async signalApprovalActivity() {
          throw new Error("approval signal should not be needed for this workflow path");
        },
        async pauseRunActivity(payload) {
          status = runStatus(payload.runId, "paused", []);
        },
        async resumeRunActivity(payload) {
          status = runStatus(payload.runId, "executing", []);
        },
        async abortRunActivity(payload) {
          abortCalls += 1;
          status = runStatus(payload.runId, "aborted", []);
          abortObserved.resolve(undefined);
        },
        async getStatusActivity() {
          return status;
        },
        async isRunTerminalActivity() {
          return ["completed", "failed", "aborted"].includes(status.run.state);
        },
        async composeFinalReportActivity(runIdToReport) {
          reportComposed = true;
          status = runStatus(runIdToReport, status.run.state, [], {
            finalReportPath: "/workspace/run/run.report.md",
          });
        },
      };
      const worker = await Worker.create({
        activities,
        connection: testEnv.nativeConnection,
        ...(testEnv.namespace === undefined ? {} : { namespace: testEnv.namespace }),
        taskQueue,
        workflowsPath: fileURLToPath(new URL("./workflow.ts", import.meta.url)),
      });
      await expect(
        worker.runUntil(async () => {
          const handle = await testEnv.client.workflow.start(runWorkflow, {
            args: [
              {
                runId,
                requirementsMd: "Abort while advancement is already in flight.",
                repoPath: "/repo",
                baseBranch: "main",
              },
            ],
            taskQueue,
            workflowId,
          });
          await advanceStarted.promise;
          await handle.signal(abortSignal, {
            runId,
            reason: "user_requested_abort",
            clientToken: "abort-token-1",
          });
          return handle.result();
        }),
      ).resolves.toEqual({ runId });
      expect(abortCalls).toBe(1);
      expect(reportComposed).toBe(true);
      expect(status.run.state).toBe("aborted");
    } finally {
      await testEnv.teardown();
    }
  }, 120_000);
  it("preserves non-retryable DevflowError activity failures through TemporalRunEngine", async () => {
    const testEnv = await TestWorkflowEnvironment.createLocal();
    try {
      const runId = randomUUID();
      const taskQueue = `devflow-workflow-test-${runId}`;
      let status = runStatus(runId, "created", []);
      let lockAttempts = 0;
      const activities: DevflowActivities = {
        async prepareRunActivity(input) {
          const preparedRunId = input.runId ?? runId;
          status = runStatus(preparedRunId, "created", []);
          return { runId: preparedRunId };
        },
        async lockBindingsActivity(input) {
          lockAttempts += 1;
          status = runStatus(input.runId ?? runId, "executing", []);
          throw ApplicationFailure.create({
            message: "No eligible persona",
            type: "DevflowError",
            nonRetryable: true,
            details: [
              {
                class: "human_required",
                code: "no_eligible_persona",
                runId: input.runId ?? runId,
              },
            ],
          });
        },
        async failRunActivity(input) {
          status = runStatus(input.runId, "failed", []);
        },
        async advanceRunActivity(input) {
          status = runStatus(input.runId, "completed", []);
          return status;
        },
        async signalApprovalActivity() {
          throw new Error("approval signal should not be needed for this workflow path");
        },
        async pauseRunActivity(payload) {
          status = runStatus(payload.runId, "paused", []);
        },
        async resumeRunActivity(payload) {
          status = runStatus(payload.runId, "executing", []);
        },
        async abortRunActivity(payload) {
          status = runStatus(payload.runId, "aborted", []);
        },
        async getStatusActivity() {
          return status;
        },
        async isRunTerminalActivity() {
          return ["completed", "failed", "aborted"].includes(status.run.state);
        },
        async composeFinalReportActivity(runIdToReport) {
          status = runStatus(runIdToReport, status.run.state, [], {
            finalReportPath: "/workspace/run/run.report.md",
          });
        },
      };
      const worker = await Worker.create({
        activities,
        connection: testEnv.nativeConnection,
        ...(testEnv.namespace === undefined ? {} : { namespace: testEnv.namespace }),
        taskQueue,
        workflowsPath: fileURLToPath(new URL("./workflow.ts", import.meta.url)),
      });
      const engine = new TemporalRunEngine({
        client: testEnv.client.workflow,
        startRunPollMs: 1,
        statusReader: { getStatus: async () => status },
        taskQueue,
      });
      await expect(
        worker.runUntil(() =>
          engine.startRun({
            runId,
            requirementsMd: "Propagate lock binding failure through Temporal.",
            repoPath: "/repo",
            baseBranch: "main",
          }),
        ),
      ).rejects.toMatchObject({ code: "no_eligible_persona" });
      expect(lockAttempts).toBe(1);
      expect(status.run.state).toBe("failed");
    } finally {
      await testEnv.teardown();
    }
  }, 120_000);
 });
 function runStatus(
  runId: string,
  state: string,
  approvals: RunStatus["approvals"],
  overrides: Partial<RunStatus["run"]> = {},
 ): RunStatus {
  return {
    run: {
      id: runId,
      state,
      repoPath: "/repo",
      baseBranch: "main",
      worktreeRoot: "/workspace/run/main",
      currentPhaseId: null,
      finalReportPath: null,
      startedAt: null,
      endedAt: null,
      ...overrides,
    },
    approvals,
    eventsTail: [],
    phases: [],
  };
 }
 interface Deferred<T> {
  promise: Promise<T>;
  resolve(value: T | PromiseLike<T>): void;
  reject(reason?: unknown): void;
 }
 function deferred<T>(): Deferred<T> {
  let resolve!: Deferred<T>["resolve"];
  let reject!: Deferred<T>["reject"];
  const promise = new Promise<T>((resolvePromise, rejectPromise) => {
    resolve = resolvePromise;
    reject = rejectPromise;
  });
  return { promise, resolve, reject };
 }
--- a/packages/workflows/src/workflow.test.ts
+++ b/packages/workflows/src/workflow.test.ts
@@ -0,0 +1,59 @@
 import { ActivityCancellationType } from "@temporalio/workflow";
 import { describe, expect, it } from "vitest";
 import {
  type QueuedSignal,
  advanceRunActivityCancellationType,
  handleQueuedSignal,
  settleInterruptedAdvance,
 } from "./workflow.js";
 describe("runWorkflow signal handling", () => {
  it("waits for advance activity cancellation completion before handling control signals", () => {
    expect(advanceRunActivityCancellationType).toBe(
      ActivityCancellationType.WAIT_CANCELLATION_COMPLETED,
    );
  });
  it("treats stale resume approval conflicts as idempotent no-op controls", async () => {
    const calls: string[] = [];
    const signal: QueuedSignal = {
      type: "resume",
      payload: { runId: "run-1", clientToken: "token-1" },
    };
    await expect(
      handleQueuedSignal(signal, {
        async abortRunActivity() {
          calls.push("abort");
        },
        async pauseRunActivity() {
          calls.push("pause");
        },
        async resumeRunActivity() {
          calls.push("resume");
          throw new Error("Approval decision conflicts with the current request state");
        },
        async signalApprovalActivity() {
          calls.push("approve");
        },
      }),
    ).resolves.toBeUndefined();
    expect(calls).toEqual(["resume"]);
  });
  it("discards a successful advance result after a control signal wins the race", async () => {
    await expect(settleInterruptedAdvance(Promise.resolve({ state: "completed" }))).resolves.toBe(
      undefined,
    );
  });
  it("treats interrupted advance cancellation as a control signal handoff", async () => {
    const cancellation = new Error("activity canceled");
    await expect(
      settleInterruptedAdvance(Promise.reject(cancellation), (error) => error === cancellation),
    ).resolves.toBe(undefined);
  });
 });
--- a/packages/workflows/src/workflow.ts
+++ b/packages/workflows/src/workflow.ts
@@ -0,0 +1,268 @@
 import {
  ActivityCancellationType,
  ActivityFailure,
  ApplicationFailure,
  CancellationScope,
  condition,
  defineSignal,
  isCancellation,
  proxyActivities,
  rootCause,
  setHandler,
 } from "@temporalio/workflow";
 import type { RunStartInput, RunStatus } from "@devflow/run-engine";
 import type { DevflowActivities } from "./activities.js";
 import type {
  AbortSignalPayload,
  ApprovalSignalPayload,
  RunSignalPayload,
  RunWorkflowResult,
 } from "./types.js";
 export const approveSignal = defineSignal<[ApprovalSignalPayload]>("approve");
 export const pauseSignal = defineSignal<[RunSignalPayload]>("pause");
 export const resumeSignal = defineSignal<[RunSignalPayload]>("resume");
 export const abortSignal = defineSignal<[AbortSignalPayload]>("abort");
 export const unpauseSignal = defineSignal<[RunSignalPayload]>("unpause");
 export type QueuedSignal =
  | { type: "approve"; payload: ApprovalSignalPayload }
  | { type: "pause"; payload: RunSignalPayload }
  | { type: "resume"; payload: RunSignalPayload }
  | { type: "abort"; payload: AbortSignalPayload }
  | { type: "unpause"; payload: RunSignalPayload };
 type ControlActivities = Pick<
  DevflowActivities,
  "abortRunActivity" | "pauseRunActivity" | "resumeRunActivity" | "signalApprovalActivity"
 >;
 const defaultActivities = proxyActivities<DevflowActivities>({
  startToCloseTimeout: "10 minutes",
  retry: {
    maximumAttempts: 3,
    initialInterval: "1 second",
    maximumInterval: "30 seconds",
  },
 });
 export const advanceRunActivityCancellationType =
  ActivityCancellationType.WAIT_CANCELLATION_COMPLETED;
 const interruptibleActivities = proxyActivities<Pick<DevflowActivities, "advanceRunActivity">>({
  startToCloseTimeout: "10 minutes",
  heartbeatTimeout: "5 seconds",
  cancellationType: advanceRunActivityCancellationType,
  retry: {
    maximumAttempts: 3,
    initialInterval: "1 second",
    maximumInterval: "30 seconds",
  },
 });
 const singleAttemptActivities = proxyActivities<
  Pick<DevflowActivities, "composeFinalReportActivity">
 >({
  startToCloseTimeout: "1 minute",
  retry: { maximumAttempts: 1 },
 });
 export async function runWorkflow(input: RunStartInput): Promise<RunWorkflowResult> {
  const queue: QueuedSignal[] = [];
  const enqueue = (signal: QueuedSignal) => {
    queue.push(signal);
  };
  setHandler(approveSignal, (payload) => enqueue({ type: "approve", payload }));
  setHandler(pauseSignal, (payload) => enqueue({ type: "pause", payload }));
  setHandler(resumeSignal, (payload) => enqueue({ type: "resume", payload }));
  setHandler(abortSignal, (payload) => enqueue({ type: "abort", payload }));
  setHandler(unpauseSignal, (payload) => enqueue({ type: "unpause", payload }));
  const result = await defaultActivities.prepareRunActivity(input);
  const runInput = { ...input, runId: result.runId };
  try {
    await defaultActivities.lockBindingsActivity(runInput);
  } catch (error) {
    await defaultActivities.failRunActivity({
      runId: result.runId,
      reason: "lock_bindings_failed",
    });
    rethrowDevflowFailure(error);
  }
  let status: RunStatus | undefined;
  try {
    status = await advanceUntilBlockedOrSignal(result.runId, false, queue);
  } catch (error) {
    rethrowDevflowFailure(error);
  }
  if (status === undefined) {
    if (queue.length > 0) {
      await handleQueuedSignal(queue.shift());
    }
    status = await defaultActivities.getStatusActivity(result.runId);
  }
  while (!isTerminalRunState(status.run.state)) {
    if (queue.length > 0) {
      await handleQueuedSignal(queue.shift());
      status = await defaultActivities.getStatusActivity(result.runId);
      continue;
    }
    if (status.run.state === "executing" || status.run.state === "planning") {
      let advanced: RunStatus | undefined;
      try {
        advanced = await advanceUntilBlockedOrSignal(result.runId, true, queue);
      } catch (error) {
        rethrowDevflowFailure(error);
      }
      if (advanced !== undefined) {
        status = advanced;
        continue;
      }
      if (queue.length > 0) {
        await handleQueuedSignal(queue.shift());
        status = await defaultActivities.getStatusActivity(result.runId);
        continue;
      }
      status = await defaultActivities.getStatusActivity(result.runId);
      continue;
    }
    await condition(() => queue.length > 0);
    await handleQueuedSignal(queue.shift());
    status = await defaultActivities.getStatusActivity(result.runId);
  }
  await singleAttemptActivities.composeFinalReportActivity(result.runId);
  return result;
 }
 export async function handleQueuedSignal(
  signal: QueuedSignal | undefined,
  activities: ControlActivities = defaultActivities,
 ): Promise<void> {
  if (signal === undefined) {
    return;
  }
  if (signal.type === "approve") {
    await ignoreControlConflict(activities.signalApprovalActivity(signal.payload));
  } else if (signal.type === "pause") {
    await ignoreControlConflict(activities.pauseRunActivity(signal.payload));
  } else if (signal.type === "resume" || signal.type === "unpause") {
    await ignoreControlConflict(activities.resumeRunActivity(signal.payload));
  } else {
    await ignoreControlConflict(activities.abortRunActivity(signal.payload));
  }
 }
 async function ignoreControlConflict(operation: Promise<void>): Promise<void> {
  try {
    await operation;
  } catch (error) {
    if (rootCause(error) === "Approval decision conflicts with the current request state") {
      return;
    }
    rethrowDevflowFailure(error);
  }
 }
 async function advanceUntilBlockedOrSignal(
  runId: string,
  resumeActivePhase: boolean,
  queue: QueuedSignal[],
 ): Promise<RunStatus | undefined> {
  const scope = new CancellationScope({ cancellable: true });
  const input = resumeActivePhase ? { runId, resumeActivePhase: true } : { runId };
  const activityPromise = scope.run(() => interruptibleActivities.advanceRunActivity(input));
  const signalPromise = condition(() => queue.length > 0).then(() => undefined);
  const result = await Promise.race([activityPromise, signalPromise]);
  if (result !== undefined) {
    return result;
  }
  scope.cancel();
  const interruptingSignal = queue[0];
  if (interruptingSignal?.type === "abort" || interruptingSignal?.type === "pause") {
    queue.shift();
    await handleQueuedSignal(interruptingSignal);
    await settleInterruptedAdvance(activityPromise, isCancellation, {
      ignoreRunStateChanged: true,
    });
    return defaultActivities.getStatusActivity(runId);
  }
  return settleInterruptedAdvance(activityPromise);
 }
 export async function settleInterruptedAdvance<T>(
  activityPromise: Promise<T>,
  isCanceled: (error: unknown) => boolean = isCancellation,
  options: { ignoreRunStateChanged?: boolean } = {},
 ): Promise<undefined> {
  try {
    await activityPromise;
    return undefined;
  } catch (error) {
    if (isCanceled(error)) {
      return undefined;
    }
    if (
      options.ignoreRunStateChanged === true &&
      isDevflowFailureCode(error, "run_state_changed")
    ) {
      return undefined;
    }
    throw error;
  }
 }
 function isTerminalRunState(state: string): boolean {
  return state === "completed" || state === "failed" || state === "aborted";
 }
 function rethrowDevflowFailure(error: unknown): never {
  const failure = devflowApplicationFailure(error);
  if (failure !== undefined) {
    throw ApplicationFailure.create({
      message: failure.message,
      type: failure.type ?? "DevflowError",
      nonRetryable: true,
      details: failure.details ?? [],
    });
  }
  throw error;
 }
 function devflowApplicationFailure(error: unknown): ApplicationFailure | undefined {
  let current = error;
  const seen = new Set<unknown>();
  while (current !== null && typeof current === "object" && !seen.has(current)) {
    seen.add(current);
    if (current instanceof ApplicationFailure && current.type === "DevflowError") {
      return current;
    }
    if (current instanceof ActivityFailure) {
      current = current.cause;
      continue;
    }
    current = (current as { cause?: unknown }).cause;
  }
  return undefined;
 }
 function isDevflowFailureCode(error: unknown, code: string): boolean {
  const failure = devflowApplicationFailure(error);
  const details = (failure as { details?: unknown[] } | undefined)?.details;
  return (
    details?.some(
      (detail) =>
        typeof detail === "object" && detail !== null && "code" in detail && detail.code === code,
    ) ?? false
  );
 }
--- a/packages/workflows/tsconfig.build.json
+++ b/packages/workflows/tsconfig.build.json
@@ -0,0 +1,10 @@
 {
  "extends": "./tsconfig.json",
  "compilerOptions": {
    "composite": false,
    "emitDeclarationOnly": true,
    "noEmit": false
  },
  "references": [],
  "exclude": ["src/**/*.test.ts"]
 }
--- a/packages/workflows/tsconfig.json
+++ b/packages/workflows/tsconfig.json
@@ -0,0 +1,15 @@
 {
  "extends": "../../tsconfig.base.json",
  "compilerOptions": {
    "rootDir": "src",
    "outDir": "dist",
    "types": ["node", "vitest"]
  },
  "include": ["src/**/*.ts"],
  "references": [
    { "path": "../core" },
    { "path": "../db" },
    { "path": "../run-engine" },
    { "path": "../session" }
  ]
 }
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
--- a/tsconfig.json
+++ b/tsconfig.json
@@ -10,7 +10,9 @@
    { "path": "./packages/db" },
    { "path": "./packages/run-engine" },
    { "path": "./packages/session" },
    { "path": "./packages/workflows" },
    { "path": "./apps/api" },
-    { "path": "./apps/cli" }
+    { "path": "./apps/cli" },
    { "path": "./apps/worker" }
  ]
 }
--- a/tsconfig.typecheck.json
+++ b/tsconfig.typecheck.json
@@ -11,7 +11,8 @@
      "@devflow/core": ["packages/core/src/index.ts"],
      "@devflow/db": ["packages/db/src/index.ts"],
      "@devflow/run-engine": ["packages/run-engine/src/index.ts"],
-      "@devflow/session": ["packages/session/src/index.ts"]
+      "@devflow/session": ["packages/session/src/index.ts"],
      "@devflow/workflows": ["packages/workflows/src/index.ts"]
    }
  },
  "include": ["apps/**/*.ts", "packages/**/*.ts", "scripts/**/*.ts", "tests/**/*.ts", "*.ts"],
--- a/vitest.workspace.ts
+++ b/vitest.workspace.ts
@@ -8,6 +8,7 @@ const alias = {
  "@devflow/db": resolve(root, "packages/db/src/index.ts"),
  "@devflow/run-engine": resolve(root, "packages/run-engine/src/index.ts"),
  "@devflow/session": resolve(root, "packages/session/src/index.ts"),
  "@devflow/workflows": resolve(root, "packages/workflows/src/index.ts"),
 };
 function nodeProject(name: string, include: string[]) {
@@ -27,6 +28,8 @@ export default defineWorkspace([
  nodeProject("packages/core", ["packages/core/src/**/*.test.ts"]),
  nodeProject("packages/session", ["packages/session/src/**/*.test.ts"]),
  nodeProject("packages/run-engine", ["packages/run-engine/src/**/*.test.ts"]),
  nodeProject("packages/workflows", ["packages/workflows/src/**/*.test.ts"]),
  nodeProject("apps/api", ["apps/api/src/**/*.test.ts"]),
  nodeProject("apps/cli", ["apps/cli/src/**/*.test.ts"]),
  nodeProject("apps/worker", ["apps/worker/src/**/*.test.ts"]),
 ]);