GetHub/CleanMM
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
Files
1cb9a42c7b66ea3f77c15071dc406435fc41b2c6
CleanMM/Docs/TaskStateMachine.md
zhukang 1cb9a42c7b fix: enforce recovery retention and fail-closed restore semantics 
- prune expired recovery items on load/save and reject expired restores at worker boundary
- add restoreExpired and restoreConflict protocol/application error mapping
- disable expired restore actions in History and reload persisted state after restore failures
- add recovery expiry/conflict coverage plus sync protocol, architecture, state-machine, and recovery contract docs
- wire AtlasAppTests into the shared Xcode scheme and add app-layer regression coverage for expired restore reload behavior

Refs: ATL-221 ATL-222 ATL-223 ATL-224 ATL-225, vibe-kanban SID-9
2026-03-13 14:38:50 +08:00

2.2 KiB
Raw Blame History

Task State Machine

Task Types

  • scan
  • execute_clean
  • execute_uninstall
  • restore
  • inspect_permissions
  • health_snapshot

Main States

  • draft
  • submitted
  • validating
  • awaiting_permission
  • queued
  • running
  • cancelling
  • completed
  • partial_failed
  • failed
  • cancelled
  • expired

Terminal States

  • completed
  • partial_failed
  • failed
  • cancelled
  • expired

Core Transition Rules

  • draft -> submitted
  • submitted -> validating
  • validating -> awaiting_permission | queued | failed
  • awaiting_permission -> queued | cancelled | failed
  • queued -> running | cancelled
  • running -> cancelling | completed | partial_failed | failed
  • cancelling -> cancelled

Action Item States

  • pending
  • running
  • succeeded
  • skipped
  • failed
  • cancelled

Guarantees

  • Terminal states are immutable.
  • Progress must not move backwards.
  • Destructive tasks must be audited.
  • Recoverable tasks must leave structured recovery entries until restored or expired.
  • Expired recovery entries must no longer remain actionable in active recovery state.
  • Repeated write requests must honor idempotency rules when those flows become externally reentrant.

Current MVP Notes

  • scan emits monotonic progress and finishes with a preview-ready plan when the upstream scan adapter succeeds; otherwise the request should fail rather than silently fabricate findings.
  • execute_clean must not report completion in release-facing flows unless real cleanup side effects have been applied. Fresh preview plans now carry structured execution targets, and unsupported or unstructured targets should fail closed.
  • execute_uninstall removes an app from the current workspace view and creates a recovery entry.
  • restore can physically restore items when structured recovery mappings are present, and can still rehydrate a Finding or an AppFootprint into Atlas state from the recovery payload.
  • restore must reject expired recovery items before side effects and must fail closed when the original destination already exists.
  • User-visible task summaries and settings-driven text should reflect the persisted app-language preference when generated.
Reference in New Issue View Git Blame Copy Permalink