cellstate_pipeline/

ast.rs

//! Abstract Syntax Tree types

use serde::{Deserialize, Serialize};
use std::fmt;

// ============================================================================
// AST TYPES (Task 4.1)
// ============================================================================

/// The root AST node for a CELLSTATE configuration.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct CellstateAst {
    pub version: String,
    pub definitions: Vec<Definition>,
}

/// A top-level definition in pack config.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub enum Definition {
    Adapter(AdapterDef),
    Memory(MemoryDef),
    Policy(PolicyDef),
    Injection(InjectionDef),
    // Battle Intel Feature 3: Evolution mode
    Evolution(EvolutionDef),
    // Battle Intel Feature 4: Summarization policies
    SummarizationPolicy(SummarizationPolicyDef),
    // Pack-first architecture: New definitions
    Trajectory(TrajectoryDef),
    Agent(AgentDef),
    Cache(CacheDef),
    Provider(ProviderDef),
    // Intent Engineering: machine-readable organizational purpose
    Intent(IntentDef),
}

/// Adapter definition for storage backends.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct AdapterDef {
    pub name: String,
    pub adapter_type: AdapterType,
    pub connection: String,
    pub options: Vec<(String, String)>,
}

/// Supported adapter types.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize)]
pub enum AdapterType {
    Postgres,
    Redis,
    Memory,
}

impl fmt::Display for AdapterType {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            AdapterType::Postgres => f.write_str("postgres"),
            AdapterType::Redis => f.write_str("redis"),
            AdapterType::Memory => f.write_str("memory"),
        }
    }
}

/// Memory definition for memory types.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct MemoryDef {
    pub name: String,
    pub memory_type: MemoryType,
    pub schema: Vec<FieldDef>,
    pub retention: Retention,
    pub lifecycle: Lifecycle,
    pub parent: Option<String>,
    pub indexes: Vec<IndexDef>,
    pub inject_on: Vec<Trigger>,
    pub artifacts: Vec<String>,
    /// Pack-first: Memory modifiers (embeddable, summarizable, lockable)
    pub modifiers: Vec<ModifierDef>,
}

/// Memory type categories.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize)]
pub enum MemoryType {
    Ephemeral,
    Working,
    Episodic,
    Semantic,
    Procedural,
    Meta,
}

impl fmt::Display for MemoryType {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            MemoryType::Ephemeral => f.write_str("ephemeral"),
            MemoryType::Working => f.write_str("working"),
            MemoryType::Episodic => f.write_str("episodic"),
            MemoryType::Semantic => f.write_str("semantic"),
            MemoryType::Procedural => f.write_str("procedural"),
            MemoryType::Meta => f.write_str("meta"),
        }
    }
}

/// Field definition in a schema.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct FieldDef {
    pub name: String,
    pub field_type: FieldType,
    pub nullable: bool,
    pub default: Option<String>,
    /// Optional security configuration for PII fields.
    pub security: Option<FieldSecurity>,
}

/// Field types supported in schemas.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub enum FieldType {
    Uuid,
    Text,
    Int,
    Float,
    Bool,
    Timestamp,
    Json,
    Embedding(Option<usize>),
    Enum(Vec<String>),
    Array(Box<FieldType>),
}

impl fmt::Display for FieldType {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            FieldType::Uuid => f.write_str("uuid"),
            FieldType::Text => f.write_str("text"),
            FieldType::Int => f.write_str("int"),
            FieldType::Float => f.write_str("float"),
            FieldType::Bool => f.write_str("bool"),
            FieldType::Timestamp => f.write_str("timestamp"),
            FieldType::Json => f.write_str("json"),
            FieldType::Embedding(Some(d)) => write!(f, "embedding({})", d),
            FieldType::Embedding(None) => f.write_str("embedding"),
            FieldType::Enum(variants) => write!(f, "enum({})", variants.join(", ")),
            FieldType::Array(inner) => write!(f, "array({})", inner),
        }
    }
}

/// Retention policy for memory entries.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub enum Retention {
    Persistent,
    Session,
    Scope,
    Duration(String),
    Max(usize),
}

impl fmt::Display for Retention {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            Retention::Persistent => f.write_str("persistent"),
            Retention::Session => f.write_str("session"),
            Retention::Scope => f.write_str("scope"),
            Retention::Duration(d) => write!(f, "duration({})", d),
            Retention::Max(n) => write!(f, "max({})", n),
        }
    }
}

/// Lifecycle management for memory entries.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub enum Lifecycle {
    Explicit,
    AutoClose(Trigger),
}

impl fmt::Display for Lifecycle {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            Lifecycle::Explicit => f.write_str("explicit"),
            Lifecycle::AutoClose(trigger) => write!(f, "auto_close({})", trigger),
        }
    }
}

/// Trigger events for policies and lifecycle.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub enum Trigger {
    TaskStart,
    TaskEnd,
    ScopeClose,
    TurnEnd,
    Manual,
    Schedule(String),
}

impl fmt::Display for Trigger {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            Trigger::TaskStart => f.write_str("task_start"),
            Trigger::TaskEnd => f.write_str("task_end"),
            Trigger::ScopeClose => f.write_str("scope_close"),
            Trigger::TurnEnd => f.write_str("turn_end"),
            Trigger::Manual => f.write_str("manual"),
            Trigger::Schedule(s) => write!(f, "schedule:{}", s),
        }
    }
}

/// Index definition for memory fields.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct IndexDef {
    pub field: String,
    pub index_type: IndexType,
    pub options: Vec<(String, String)>,
}

/// Supported index types.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize)]
pub enum IndexType {
    Btree,
    Hash,
    Gin,
    Hnsw,
    Ivfflat,
}

impl fmt::Display for IndexType {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            IndexType::Btree => f.write_str("btree"),
            IndexType::Hash => f.write_str("hash"),
            IndexType::Gin => f.write_str("gin"),
            IndexType::Hnsw => f.write_str("hnsw"),
            IndexType::Ivfflat => f.write_str("ivfflat"),
        }
    }
}

/// Policy definition with trigger-action rules.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct PolicyDef {
    pub name: String,
    pub rules: Vec<PolicyRule>,
}

/// A single policy rule.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct PolicyRule {
    pub trigger: Trigger,
    pub actions: Vec<Action>,
}

/// Actions that can be triggered by policies.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub enum Action {
    Summarize(String),
    ExtractArtifacts(String),
    Checkpoint(String),
    Prune {
        target: String,
        criteria: FilterExpr,
    },
    Notify(String),
    Inject {
        target: String,
        mode: InjectionMode,
    },
    // Battle Intel Feature 4: Auto-summarization action
    AutoSummarize {
        source_level: AbstractionLevelParsed,
        target_level: AbstractionLevelParsed,
        create_edges: bool,
    },
}

/// Injection definition for context assembly.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct InjectionDef {
    pub source: String,
    pub target: String,
    pub mode: InjectionMode,
    pub priority: i32,
    pub max_tokens: Option<i32>,
    pub filter: Option<FilterExpr>,
}

/// Injection modes for context assembly.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub enum InjectionMode {
    Full,
    Summary,
    TopK(usize),
    Relevant(f32),
}

impl fmt::Display for InjectionMode {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            InjectionMode::Full => f.write_str("full"),
            InjectionMode::Summary => f.write_str("summary"),
            InjectionMode::TopK(k) => write!(f, "topk:{}", k),
            InjectionMode::Relevant(threshold) => write!(f, "relevant:{}", threshold),
        }
    }
}

/// Filter expression for queries.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub enum FilterExpr {
    Comparison {
        field: String,
        op: CompareOp,
        value: FilterValue,
    },
    And(Vec<FilterExpr>),
    Or(Vec<FilterExpr>),
    Not(Box<FilterExpr>),
}

/// Comparison operators for filters.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize)]
pub enum CompareOp {
    Eq,
    Ne,
    Gt,
    Lt,
    Ge,
    Le,
    Contains,
    Regex,
    In,
}

/// Values that can be used in filter expressions.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub enum FilterValue {
    String(String),
    Number(f64),
    Bool(bool),
    Null,
    CurrentTrajectory,
    CurrentScope,
    Now,
    Array(Vec<FilterValue>),
}

// ============================================================================
// BATTLE INTEL FEATURE 2: ABSTRACTION LEVELS
// ============================================================================

/// Abstraction level for pack config (mirrors cellstate_core::AbstractionLevel).
#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash, Serialize, Deserialize)]
pub enum AbstractionLevelParsed {
    Raw,       // L0: Direct observation
    Summary,   // L1: Synthesized from L0s
    Principle, // L2: High-level abstraction
}

// ============================================================================
// BATTLE INTEL FEATURE 3: EVOLUTION MODE (MemEvolve-inspired)
// ============================================================================

/// Evolution definition for pack config benchmarking.
///
/// pack syntax:
/// ```text
/// evolution "memory_optimization" {
///     baseline: "current_prod"
///     candidates: ["hybrid_search", "aggressive_summarize"]
///     benchmark_queries: 100
///     metrics: ["retrieval_accuracy", "token_efficiency"]
/// }
/// ```
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct EvolutionDef {
    pub name: String,
    /// Snapshot name to compare against
    pub baseline: String,
    /// Candidate config names to test
    pub candidates: Vec<String>,
    /// Number of queries to benchmark
    pub benchmark_queries: i32,
    /// Metrics to track
    pub metrics: Vec<String>,
}

// ============================================================================
// BATTLE INTEL FEATURE 4: SUMMARIZATION POLICIES
// ============================================================================

/// Summarization trigger types (mirrors cellstate_core::SummarizationTrigger).
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub enum SummarizationTriggerParsed {
    /// Trigger when token usage reaches threshold percent
    DosageThreshold { percent: u8 },
    /// Trigger when scope closes
    ScopeClose,
    /// Trigger every N turns
    TurnCount { count: i32 },
    /// Trigger every N artifacts
    ArtifactCount { count: i32 },
    /// Manual trigger only
    Manual,
}

/// Summarization policy definition.
///
/// pack syntax:
/// ```text
/// summarization_policy "auto_abstract" {
///     triggers: [dosage_reached(80), scope_close]
///     source_level: raw
///     target_level: summary
///     max_sources: 10
///     create_edges: true
/// }
/// ```
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct SummarizationPolicyDef {
    pub name: String,
    pub triggers: Vec<SummarizationTriggerParsed>,
    pub source_level: AbstractionLevelParsed,
    pub target_level: AbstractionLevelParsed,
    pub max_sources: i32,
    pub create_edges: bool,
}

// ============================================================================
// PACK-FIRST ARCHITECTURE: TRAJECTORY DEFINITIONS
// ============================================================================

/// Trajectory definition for multi-turn interaction templates.
///
/// pack syntax:
/// ```text
/// trajectory "customer_support" {
///     description: "Multi-turn customer support interaction"
///     agent_type: "support_agent"
///     token_budget: 8000
///     memory_refs: [artifacts, notes, scopes]
/// }
/// ```
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct TrajectoryDef {
    pub name: String,
    pub description: Option<String>,
    pub agent_type: String,
    pub token_budget: i32,
    pub memory_refs: Vec<String>,
    pub metadata: Option<serde_json::Value>,
}

// ============================================================================
// PACK-FIRST ARCHITECTURE: AGENT DEFINITIONS
// ============================================================================

/// Agent definition for agent types and capabilities.
///
/// pack syntax:
/// ```text
/// agent "support_agent" {
///     capabilities: ["classify_issue", "search_kb", "escalate"]
///     constraints: {
///         max_concurrent: 5
///         timeout_ms: 30000
///     }
///     permissions: {
///         read: [artifacts, notes, scopes]
///         write: [notes, scopes]
///         lock: [scopes]
///     }
/// }
/// ```
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct AgentDef {
    pub name: String,
    pub capabilities: Vec<String>,
    pub constraints: AgentConstraints,
    pub permissions: PermissionMatrix,
}

/// Agent runtime constraints.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct AgentConstraints {
    pub max_concurrent: i32,
    pub timeout_ms: i64,
}

impl Default for AgentConstraints {
    fn default() -> Self {
        Self {
            max_concurrent: 1,
            timeout_ms: 30000,
        }
    }
}

/// Permission matrix for agent access control.
#[derive(Debug, Clone, PartialEq, Default, Serialize, Deserialize)]
pub struct PermissionMatrix {
    pub read: Vec<String>,
    pub write: Vec<String>,
    pub lock: Vec<String>,
}

// ============================================================================
// PACK-FIRST ARCHITECTURE: CACHE CONFIGURATION
// ============================================================================

/// Cache configuration for the Three Dragons architecture.
///
/// pack syntax:
/// ```text
/// cache {
///     backend: lmdb
///     path: "/var/cellstate/cache"
///     size_mb: 1024
///     default_freshness: best_effort { max_staleness: 60s }
/// }
/// ```
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct CacheDef {
    pub backend: CacheBackendType,
    pub path: Option<String>,
    pub size_mb: i32,
    pub default_freshness: FreshnessDef,
    pub max_entries: Option<i32>,
    pub ttl: Option<String>,
}

/// Cache backend types.
#[derive(Debug, Clone, Copy, PartialEq, Eq, PartialOrd, Ord, Serialize, Deserialize)]
pub enum CacheBackendType {
    Lmdb,
    Memory,
}

impl fmt::Display for CacheBackendType {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            CacheBackendType::Lmdb => f.write_str("lmdb"),
            CacheBackendType::Memory => f.write_str("memory"),
        }
    }
}

/// Freshness policy definition.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub enum FreshnessDef {
    /// Best-effort freshness with max staleness tolerance
    BestEffort { max_staleness: String },
    /// Strict freshness - always fetch from source
    Strict,
}

impl fmt::Display for FreshnessDef {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            FreshnessDef::BestEffort { max_staleness } => {
                write!(f, "best_effort(max_staleness: {})", max_staleness)
            }
            FreshnessDef::Strict => f.write_str("strict"),
        }
    }
}

impl Default for FreshnessDef {
    fn default() -> Self {
        FreshnessDef::BestEffort {
            max_staleness: "60s".to_string(),
        }
    }
}

// ============================================================================
// PACK-FIRST ARCHITECTURE: PROVIDER DEFINITIONS
// ============================================================================

/// LLM provider definition for embeddings and summarization.
///
/// pack syntax:
/// ```text
/// provider "openai" {
///     type: openai
///     api_key: env("OPENAI_API_KEY")
///     model: "text-embedding-3-small"
/// }
/// ```
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct ProviderDef {
    pub name: String,
    pub provider_type: ProviderType,
    pub api_key: EnvValue,
    pub model: String,
    pub options: Vec<(String, String)>,
}

/// LLM provider types.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize)]
pub enum ProviderType {
    OpenAI,
    Anthropic,
    Local,
    Custom,
}

impl fmt::Display for ProviderType {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            ProviderType::OpenAI => f.write_str("openai"),
            ProviderType::Anthropic => f.write_str("anthropic"),
            ProviderType::Local => f.write_str("local"),
            ProviderType::Custom => f.write_str("custom"),
        }
    }
}

/// Environment variable reference or literal value.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub enum EnvValue {
    /// Reference to environment variable: env("VAR_NAME")
    Env(String),
    /// Literal string value
    Literal(String),
}

// ============================================================================
// INTENT ENGINEERING: RE-EXPORT FROM CELLSTATE_CORE
// ============================================================================

pub use cellstate_core::intent::{
    AlignmentSignal, AutonomyLevel, DelegationBoundary, DriftReport, IntentDef, ResolutionRule,
    SignalScore, SignalTarget,
};

// ============================================================================
// PACK-FIRST ARCHITECTURE: MEMORY MODIFIERS
// ============================================================================

/// Memory modifier types for embeddable, summarizable, lockable.
///
/// pack syntax in memory definition:
/// ```text
/// memory artifacts {
///     modifiers: [
///         embeddable { provider: "openai" },
///         summarizable { style: brief, on: [scope_close] }
///     ]
/// }
/// ```
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub enum ModifierDef {
    /// Embeddable modifier - enables vector embeddings
    Embeddable { provider: String },
    /// Summarizable modifier - enables auto-summarization
    Summarizable {
        style: SummaryStyle,
        on_triggers: Vec<Trigger>,
    },
    /// Lockable modifier - enables distributed locking
    Lockable { mode: LockMode },
}

impl fmt::Display for ModifierDef {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            ModifierDef::Embeddable { provider } => {
                write!(f, "embeddable(provider: {})", provider)
            }
            ModifierDef::Summarizable { style, on_triggers } => {
                let triggers_str = on_triggers
                    .iter()
                    .map(|t| t.to_string())
                    .collect::<Vec<_>>()
                    .join(", ");
                write!(f, "summarizable(style: {}, on: [{}])", style, triggers_str)
            }
            ModifierDef::Lockable { mode } => write!(f, "lockable(mode: {})", mode),
        }
    }
}

/// Summary style for summarizable modifier.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize)]
pub enum SummaryStyle {
    Brief,
    Detailed,
}

impl fmt::Display for SummaryStyle {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            SummaryStyle::Brief => f.write_str("brief"),
            SummaryStyle::Detailed => f.write_str("detailed"),
        }
    }
}

/// Lock mode for lockable modifier.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize)]
pub enum LockMode {
    Exclusive,
    Shared,
}

impl fmt::Display for LockMode {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            LockMode::Exclusive => f.write_str("exclusive"),
            LockMode::Shared => f.write_str("shared"),
        }
    }
}

// ============================================================================
// PII & SECURITY AST TYPES (Phase 3)
// ============================================================================

/// PII/sensitivity classification for a field.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash, Serialize, Deserialize, Default)]
pub enum PIIClassification {
    /// No restrictions
    #[default]
    Public,
    /// Internal use only
    Internal,
    /// Limited access
    Confidential,
    /// Highly restricted
    Restricted,
    /// Secret - encrypted, redacted in logs
    Secret,
}

impl PIIClassification {
    /// Whether this classification requires runtime redaction.
    pub fn requires_redaction(&self) -> bool {
        matches!(self, Self::Confidential | Self::Restricted | Self::Secret)
    }

    /// Whether this classification requires encrypted vault storage.
    pub fn requires_encryption(&self) -> bool {
        matches!(self, Self::Secret)
    }
}

/// Field security modifiers.
///
/// Controls how agents and systems can interact with sensitive fields.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct FieldSecurity {
    /// Sensitivity classification
    pub classification: PIIClassification,
    /// Agent can pass but not read content
    pub opaque: bool,
    /// Cannot be modified after creation
    pub immutable: bool,
    /// All access is logged
    pub audited: bool,
    /// Redact in logs and error messages
    pub redact_in_logs: bool,
    /// Source from environment variable
    pub env_source: Option<String>,
}

impl Default for FieldSecurity {
    fn default() -> Self {
        Self {
            classification: PIIClassification::Public,
            opaque: false,
            immutable: false,
            audited: false,
            redact_in_logs: false,
            env_source: None,
        }
    }
}

impl FieldSecurity {
    /// Create a public field with no restrictions.
    pub fn public() -> Self {
        Self::default()
    }

    /// Create a secret field with full protection.
    pub fn secret() -> Self {
        Self {
            classification: PIIClassification::Secret,
            opaque: true,
            immutable: false,
            audited: true,
            redact_in_logs: true,
            env_source: None,
        }
    }

    /// Create a sensitive field.
    pub fn sensitive() -> Self {
        Self {
            classification: PIIClassification::Confidential,
            opaque: false,
            immutable: false,
            audited: false,
            redact_in_logs: true,
            env_source: None,
        }
    }

    /// Mark as opaque (agent can pass but not read).
    pub fn with_opaque(mut self) -> Self {
        self.opaque = true;
        self
    }

    /// Mark as immutable.
    pub fn with_immutable(mut self) -> Self {
        self.immutable = true;
        self
    }

    /// Mark as audited.
    pub fn with_audited(mut self) -> Self {
        self.audited = true;
        self
    }

    /// Set environment source.
    pub fn with_env(mut self, var_name: impl Into<String>) -> Self {
        self.env_source = Some(var_name.into());
        self
    }
}

/// Enhanced field definition with security modifiers.
///
/// Extends the basic FieldDef with optional security configuration.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct SecureFieldDef {
    /// Field name
    pub name: String,
    /// Field type
    pub field_type: FieldType,
    /// Security configuration (optional)
    pub security: Option<FieldSecurity>,
    /// Default value (if any)
    pub default: Option<String>,
}

// ============================================================================
// PARSE ERROR (Task 4.8)
// ============================================================================

/// Parse error with line/column information.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct ParseError {
    pub message: String,
    pub line: usize,
    pub column: usize,
}

impl std::fmt::Display for ParseError {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        write!(
            f,
            "Parse error at line {}, column {}: {}",
            self.line, self.column, self.message
        )
    }
}

impl std::error::Error for ParseError {}

/// Collector for accumulating multiple parse errors.
#[derive(Debug, Clone, Default)]
pub struct ErrorCollector {
    errors: Vec<ParseError>,
}

impl ErrorCollector {
    pub fn new() -> Self {
        Self { errors: vec![] }
    }

    pub fn add(&mut self, error: ParseError) {
        self.errors.push(error);
    }

    pub fn has_errors(&self) -> bool {
        !self.errors.is_empty()
    }

    pub fn into_errors(self) -> Vec<ParseError> {
        self.errors
    }

    /// Combine collected parse errors into a single ParseError for compatibility.
    ///
    /// If no errors were collected, returns `None`. If exactly one error exists, returns that
    /// error unchanged. If multiple errors exist, returns a `ParseError` that uses the first
    /// error's `line` and `column` and a combined `message` that lists all errors with their
    /// index, line, column, and original message.
    ///
    /// # Examples
    ///
    /// ```
    /// use cellstate_pipeline::{ErrorCollector, ParseError};
    /// let mut coll = ErrorCollector::new();
    /// coll.add(ParseError { message: "a".into(), line: 1, column: 2 });
    /// coll.add(ParseError { message: "b".into(), line: 3, column: 4 });
    /// let combined = coll.into_single_error().unwrap();
    /// assert!(combined.message.contains("a"));
    /// assert!(combined.message.contains("b"));
    /// assert_eq!(combined.line, 1);
    /// assert_eq!(combined.column, 2);
    /// ```
    pub fn into_single_error(self) -> Option<ParseError> {
        if self.errors.is_empty() {
            return None;
        }

        if self.errors.len() == 1 {
            return Some(
                self.errors
                    .into_iter()
                    .next()
                    .expect("length verified as 1"),
            );
        }

        // Multiple errors: create combined message
        let first = &self.errors[0];
        let mut message = format!(
            "{} (and {} more errors):\n",
            first.message,
            self.errors.len() - 1
        );

        for (i, err) in self.errors.iter().enumerate() {
            message.push_str(&format!(
                "  {}. Line {}, col {}: {}\n",
                i + 1,
                err.line,
                err.column,
                err.message
            ));
        }

        Some(ParseError {
            message,
            line: first.line,
            column: first.column,
        })
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    // ── PIIClassification ──────────────────────────────────────────────

    #[test]
    fn pii_public_no_redaction_no_encryption() {
        assert!(!PIIClassification::Public.requires_redaction());
        assert!(!PIIClassification::Public.requires_encryption());
    }

    #[test]
    fn pii_internal_no_redaction_no_encryption() {
        assert!(!PIIClassification::Internal.requires_redaction());
        assert!(!PIIClassification::Internal.requires_encryption());
    }

    #[test]
    fn pii_confidential_requires_redaction_not_encryption() {
        assert!(PIIClassification::Confidential.requires_redaction());
        assert!(!PIIClassification::Confidential.requires_encryption());
    }

    #[test]
    fn pii_restricted_requires_redaction_not_encryption() {
        assert!(PIIClassification::Restricted.requires_redaction());
        assert!(!PIIClassification::Restricted.requires_encryption());
    }

    #[test]
    fn pii_secret_requires_both() {
        assert!(PIIClassification::Secret.requires_redaction());
        assert!(PIIClassification::Secret.requires_encryption());
    }

    #[test]
    fn pii_default_is_public() {
        assert_eq!(PIIClassification::default(), PIIClassification::Public);
    }

    // ── FieldSecurity builders ─────────────────────────────────────────

    #[test]
    fn field_security_default_is_public() {
        let fs = FieldSecurity::default();
        assert_eq!(fs.classification, PIIClassification::Public);
        assert!(!fs.opaque);
        assert!(!fs.immutable);
        assert!(!fs.audited);
        assert!(!fs.redact_in_logs);
        assert!(fs.env_source.is_none());
    }

    #[test]
    fn field_security_public_equals_default() {
        assert_eq!(FieldSecurity::public(), FieldSecurity::default());
    }

    #[test]
    fn field_security_secret_has_full_protection() {
        let fs = FieldSecurity::secret();
        assert_eq!(fs.classification, PIIClassification::Secret);
        assert!(fs.opaque);
        assert!(fs.audited);
        assert!(fs.redact_in_logs);
    }

    #[test]
    fn field_security_sensitive_redacts_logs() {
        let fs = FieldSecurity::sensitive();
        assert_eq!(fs.classification, PIIClassification::Confidential);
        assert!(fs.redact_in_logs);
        assert!(!fs.opaque);
    }

    #[test]
    fn field_security_builder_chain() {
        let fs = FieldSecurity::public()
            .with_opaque()
            .with_immutable()
            .with_audited()
            .with_env("MY_SECRET");
        assert!(fs.opaque);
        assert!(fs.immutable);
        assert!(fs.audited);
        assert_eq!(fs.env_source, Some("MY_SECRET".to_string()));
    }

    // ── FieldSecurity serde roundtrip ──────────────────────────────────

    #[test]
    fn field_security_serde_roundtrip() {
        let fs = FieldSecurity::secret().with_env("API_KEY");
        let json = serde_json::to_string(&fs).unwrap();
        let d: FieldSecurity = serde_json::from_str(&json).unwrap();
        assert_eq!(d, fs);
    }

    // ── ParseError ─────────────────────────────────────────────────────

    #[test]
    fn parse_error_display() {
        let err = ParseError {
            message: "unexpected token".into(),
            line: 10,
            column: 5,
        };
        let s = format!("{}", err);
        assert!(s.contains("line 10"));
        assert!(s.contains("column 5"));
        assert!(s.contains("unexpected token"));
    }

    #[test]
    fn parse_error_is_std_error() {
        let err = ParseError {
            message: "test".into(),
            line: 1,
            column: 1,
        };
        let _: &dyn std::error::Error = &err;
    }

    // ── ErrorCollector ─────────────────────────────────────────────────

    #[test]
    fn error_collector_empty() {
        let c = ErrorCollector::new();
        assert!(!c.has_errors());
        assert!(c.into_single_error().is_none());
    }

    #[test]
    fn error_collector_single_error() {
        let mut c = ErrorCollector::new();
        c.add(ParseError {
            message: "oops".into(),
            line: 1,
            column: 2,
        });
        assert!(c.has_errors());
        let single = c.into_single_error().unwrap();
        assert_eq!(single.message, "oops");
        assert_eq!(single.line, 1);
        assert_eq!(single.column, 2);
    }

    #[test]
    fn error_collector_multiple_errors_combined() {
        let mut c = ErrorCollector::new();
        c.add(ParseError {
            message: "first".into(),
            line: 1,
            column: 1,
        });
        c.add(ParseError {
            message: "second".into(),
            line: 5,
            column: 3,
        });
        let combined = c.into_single_error().unwrap();
        assert_eq!(combined.line, 1); // uses first error's position
        assert_eq!(combined.column, 1);
        assert!(combined.message.contains("first"));
        assert!(combined.message.contains("second"));
        assert!(combined.message.contains("1 more errors"));
    }

    #[test]
    fn error_collector_into_errors() {
        let mut c = ErrorCollector::new();
        c.add(ParseError {
            message: "a".into(),
            line: 1,
            column: 1,
        });
        c.add(ParseError {
            message: "b".into(),
            line: 2,
            column: 2,
        });
        let errors = c.into_errors();
        assert_eq!(errors.len(), 2);
    }

    #[test]
    fn error_collector_default_is_empty() {
        let c = ErrorCollector::default();
        assert!(!c.has_errors());
    }

    // ── AgentConstraints default ───────────────────────────────────────

    #[test]
    fn agent_constraints_default() {
        let ac = AgentConstraints::default();
        assert_eq!(ac.max_concurrent, 1);
        assert_eq!(ac.timeout_ms, 30000);
    }

    // ── FreshnessDef default ───────────────────────────────────────────

    #[test]
    fn freshness_def_default_is_best_effort() {
        let f = FreshnessDef::default();
        assert!(matches!(f, FreshnessDef::BestEffort { .. }));
    }

    // ── Enum serde roundtrips ──────────────────────────────────────────

    #[test]
    fn adapter_type_serde_roundtrip() {
        for variant in [
            AdapterType::Postgres,
            AdapterType::Redis,
            AdapterType::Memory,
        ] {
            let json = serde_json::to_string(&variant).unwrap();
            let d: AdapterType = serde_json::from_str(&json).unwrap();
            assert_eq!(d, variant);
        }
    }

    #[test]
    fn memory_type_serde_roundtrip() {
        for variant in [
            MemoryType::Ephemeral,
            MemoryType::Working,
            MemoryType::Episodic,
            MemoryType::Semantic,
            MemoryType::Procedural,
            MemoryType::Meta,
        ] {
            let json = serde_json::to_string(&variant).unwrap();
            let d: MemoryType = serde_json::from_str(&json).unwrap();
            assert_eq!(d, variant);
        }
    }

    #[test]
    fn field_type_serde_roundtrip() {
        for variant in [
            FieldType::Uuid,
            FieldType::Text,
            FieldType::Int,
            FieldType::Float,
            FieldType::Bool,
            FieldType::Timestamp,
            FieldType::Json,
            FieldType::Embedding(Some(1536)),
            FieldType::Embedding(None),
        ] {
            let json = serde_json::to_string(&variant).unwrap();
            let d: FieldType = serde_json::from_str(&json).unwrap();
            assert_eq!(d, variant);
        }
    }

    #[test]
    fn retention_serde_roundtrip() {
        for variant in [
            Retention::Persistent,
            Retention::Session,
            Retention::Scope,
            Retention::Duration("3600s".into()),
            Retention::Max(100),
        ] {
            let json = serde_json::to_string(&variant).unwrap();
            let d: Retention = serde_json::from_str(&json).unwrap();
            assert_eq!(d, variant);
        }
    }

    #[test]
    fn lifecycle_serde_roundtrip() {
        for variant in [
            Lifecycle::Explicit,
            Lifecycle::AutoClose(Trigger::ScopeClose),
        ] {
            let json = serde_json::to_string(&variant).unwrap();
            let d: Lifecycle = serde_json::from_str(&json).unwrap();
            assert_eq!(d, variant);
        }
    }

    #[test]
    fn trigger_serde_roundtrip() {
        for variant in [
            Trigger::TaskStart,
            Trigger::TaskEnd,
            Trigger::ScopeClose,
            Trigger::TurnEnd,
            Trigger::Manual,
            Trigger::Schedule("0 * * * *".into()),
        ] {
            let json = serde_json::to_string(&variant).unwrap();
            let d: Trigger = serde_json::from_str(&json).unwrap();
            assert_eq!(d, variant);
        }
    }

    #[test]
    fn index_type_serde_roundtrip() {
        for variant in [
            IndexType::Btree,
            IndexType::Hash,
            IndexType::Gin,
            IndexType::Hnsw,
            IndexType::Ivfflat,
        ] {
            let json = serde_json::to_string(&variant).unwrap();
            let d: IndexType = serde_json::from_str(&json).unwrap();
            assert_eq!(d, variant);
        }
    }

    #[test]
    fn action_serde_roundtrip() {
        let actions = vec![
            Action::Summarize("scope".into()),
            Action::Checkpoint("scope".into()),
            Action::ExtractArtifacts("scope".into()),
            Action::Notify("admin".into()),
            Action::Inject {
                target: "memory".into(),
                mode: InjectionMode::Full,
            },
        ];
        for action in actions {
            let json = serde_json::to_string(&action).unwrap();
            let d: Action = serde_json::from_str(&json).unwrap();
            assert_eq!(d, action);
        }
    }

    #[test]
    fn injection_mode_serde_roundtrip() {
        for variant in [
            InjectionMode::Full,
            InjectionMode::Summary,
            InjectionMode::TopK(5),
            InjectionMode::Relevant(0.8),
        ] {
            let json = serde_json::to_string(&variant).unwrap();
            let d: InjectionMode = serde_json::from_str(&json).unwrap();
            assert_eq!(d, variant);
        }
    }

    #[test]
    fn lock_mode_serde_roundtrip() {
        for variant in [LockMode::Exclusive, LockMode::Shared] {
            let json = serde_json::to_string(&variant).unwrap();
            let d: LockMode = serde_json::from_str(&json).unwrap();
            assert_eq!(d, variant);
        }
    }

    #[test]
    fn summary_style_serde_roundtrip() {
        for variant in [SummaryStyle::Brief, SummaryStyle::Detailed] {
            let json = serde_json::to_string(&variant).unwrap();
            let d: SummaryStyle = serde_json::from_str(&json).unwrap();
            assert_eq!(d, variant);
        }
    }

    #[test]
    fn compare_op_serde_roundtrip() {
        for variant in [
            CompareOp::Eq,
            CompareOp::Ne,
            CompareOp::Gt,
            CompareOp::Lt,
            CompareOp::Ge,
            CompareOp::Le,
            CompareOp::Contains,
            CompareOp::In,
            CompareOp::Regex,
        ] {
            let json = serde_json::to_string(&variant).unwrap();
            let d: CompareOp = serde_json::from_str(&json).unwrap();
            assert_eq!(d, variant);
        }
    }
}