refactor(config): tighten plugin config guardrails

2026-05-06 16:01:01 +00:00 · 2026-04-27 13:46:23 +01:00
parent ef9d108436
commit 5dd1e264eb
16 changed files with 789 additions and 649 deletions
--- a/docs/plugins/sdk-migration.md
+++ b/docs/plugins/sdk-migration.md
@@ -119,12 +119,15 @@ releases.
    Mutation results include a typed `followUp` summary for tests and logging;
    the gateway remains responsible for applying or scheduling the restart.
    `loadConfig` and `writeConfigFile` remain as deprecated compatibility
-    helpers for external plugins during the migration window and warn once when
-    called. Bundled plugins and repo runtime code are protected by scanner
-    guardrails in `pnpm check:deprecated-internal-config-api`: new production
-    plugin usage fails outright, direct config writes fail, gateway server
-    methods must use the request runtime snapshot, and long-lived runtime
-    modules have zero allowed ambient `loadConfig()` calls.
+    helpers for external plugins during the migration window and warn once with
+    the `runtime-config-load-write` compatibility code. Bundled plugins and repo
+    runtime code are protected by scanner guardrails in
+    `pnpm check:deprecated-internal-config-api` and
+    `pnpm check:no-runtime-action-load-config`: new production plugin usage
+    fails outright, direct config writes fail, gateway server methods must use
+    the request runtime snapshot, runtime channel send/action/client helpers
+    must receive config from their boundary, and long-lived runtime modules have
+    zero allowed ambient `loadConfig()` calls.

  </Step>