feat: bootstrap thin distribution

[terisuke]

Summary

• add a thin guardrails distribution package that wraps a pinned upstream opencode runtime
• add managed and packaged profile defaults for localhost-only server exposure and disabled sharing
• add scenario coverage for config precedence, runtime pinning, and project-local compatibility

Philosophy

• follow epic feat(guardrails): Wave 8 — review fixes + remaining hooks + multi-model delegation #130 from claude-code-skills: mechanism-first guardrails, fast feedback, pointer-based instructions, and runtime verifiability
• keep OpenCode close to upstream and put organization policy into wrapper/profile layers instead of core patches

Verification

• cd packages/opencode && bun test test/scenario/guardrails.test.ts
• cd packages/opencode && bun typecheck

Closes #2

[Copilot]

Pull request overview

This PR introduces a new “thin distribution” package (@opencode-ai/guardrails) that wraps the upstream OpenCode runtime with organization defaults (managed + packaged profile) and adds scenario tests to lock in config precedence and local-asset compatibility.

Changes:

• Added packages/guardrails distribution package with wrapper CLI, packaged profile defaults, and managed config template.
• Added scenario tests validating managed-config precedence, runtime pinning, and project-local .opencode assets compatibility.
• Added guardrails plan documentation (ADRs + issue brief) under docs/ai-guardrails/.

Reviewed changes

Copilot reviewed 10 out of 12 changed files in this pull request and generated 2 comments.

Show a summary per file

File	Description
packages/opencode/test/scenario/guardrails.test.ts	Adds scenario coverage for managed config precedence, runtime pinning, and project-local assets.
packages/guardrails/README.md	Documents the guardrails distribution purpose, strategy, and deployment instructions.
packages/guardrails/profile/opencode.json	Packaged profile defaults (localhost-only server, share disabled, permission defaults).
packages/guardrails/profile/AGENTS.md	Always-loaded profile instructions for the guardrails approach.
packages/guardrails/managed/opencode.json	Managed deployment defaults mirroring the packaged profile.
packages/guardrails/package.json	Declares the guardrails package, bin entrypoint, and pins the opencode dependency.
packages/guardrails/bin/opencode-guardrails	Wrapper CLI that sets OPENCODE_CONFIG_DIR and delegates to the pinned opencode dependency.
docs/ai-guardrails/README.md	Introduces the internal guardrails plan and artifact map.
docs/ai-guardrails/issues/001-bootstrap-thin-distribution.md	Captures the bootstrap thin distribution requirements/acceptance criteria.
docs/ai-guardrails/adr/001-thin-distribution-over-deep-fork.md	Records the architectural decision to prefer a thin distribution over a deep fork.
docs/ai-guardrails/adr/004-scenario-tests-before-productization.md	Records the decision to add scenario tests before productization of policy surfaces.
bun.lock	Adds the new guardrails workspace package to the lockfile.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

The README link to managed/opencode.json is an absolute path to a local machine ("/Users/..."), which will be broken for everyone else and in GitHub rendering. Use a repository-relative link (e.g. "managed/opencode.json" or "./managed/opencode.json") instead.

Suggested change

	Copy [managed/opencode.json](/Users/teradakousuke/Developer/opencode/packages/guardrails/managed/opencode.json) into the system managed config directory:
	Copy [managed/opencode.json](managed/opencode.json) into the system managed config directory:

[Copilot]

The test writes files under ".opencode/commands", ".opencode/agents", and ".opencode/skills/..." but never creates those directories. In other tests, directories are created via fs.mkdir(..., { recursive: true }) before Bun.write; without that this test can throw ENOENT depending on Bun.write behavior. Create the necessary parent directories before writing these files.