fleetforge_runtime/

model.rs

use std::collections::BTreeMap;
use std::fmt;

use anyhow::{Context, Result};
use chrono::{DateTime, Utc};
use serde::de::Error as DeError;
use serde::ser::Serializer;
use serde::{Deserialize, Serialize};
use serde_json::Value;
use uuid::Uuid;

use crate::{validate_step_spec, StepSpecError};
use fleetforge_trust::{Trust, TrustOrigin};

/// Stable identifier assigned to every run stored in FleetForge.
#[derive(Debug, Clone, Copy, Serialize, Deserialize, PartialEq, Eq, Hash)]
#[serde(transparent)]
pub struct RunId(pub Uuid);

impl From<Uuid> for RunId {
    fn from(value: Uuid) -> Self {
        Self(value)
    }
}

impl From<RunId> for Uuid {
    fn from(value: RunId) -> Self {
        value.0
    }
}

impl fmt::Display for RunId {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "{}", self.0)
    }
}

/// Unique identifier for an individual step within a run.
#[derive(Debug, Clone, Copy, Serialize, Deserialize, PartialEq, Eq, Hash)]
#[serde(transparent)]
pub struct StepId(pub Uuid);

impl From<Uuid> for StepId {
    fn from(value: Uuid) -> Self {
        Self(value)
    }
}

impl From<StepId> for Uuid {
    fn from(value: StepId) -> Self {
        value.0
    }
}

impl fmt::Display for StepId {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "{}", self.0)
    }
}

/// High-level lifecycle phases for a run.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize, Hash)]
#[serde(rename_all = "snake_case")]
pub enum RunStatus {
    Pending,
    Running,
    Succeeded,
    Failed,
    Canceled,
    PausedAtStep,
}

impl RunStatus {
    pub fn as_str(self) -> &'static str {
        match self {
            RunStatus::Pending => "pending",
            RunStatus::Running => "running",
            RunStatus::Succeeded => "succeeded",
            RunStatus::Failed => "failed",
            RunStatus::Canceled => "canceled",
            RunStatus::PausedAtStep => "paused_at_step",
        }
    }
}

impl From<fleetforge_storage::models::RunStatus> for RunStatus {
    fn from(value: fleetforge_storage::models::RunStatus) -> Self {
        match value {
            fleetforge_storage::models::RunStatus::Pending => RunStatus::Pending,
            fleetforge_storage::models::RunStatus::Running => RunStatus::Running,
            fleetforge_storage::models::RunStatus::Succeeded => RunStatus::Succeeded,
            fleetforge_storage::models::RunStatus::Failed => RunStatus::Failed,
            fleetforge_storage::models::RunStatus::Canceled => RunStatus::Canceled,
            fleetforge_storage::models::RunStatus::PausedAtStep => RunStatus::PausedAtStep,
        }
    }
}

impl From<RunStatus> for fleetforge_storage::models::RunStatus {
    fn from(value: RunStatus) -> Self {
        match value {
            RunStatus::Pending => fleetforge_storage::models::RunStatus::Pending,
            RunStatus::Running => fleetforge_storage::models::RunStatus::Running,
            RunStatus::Succeeded => fleetforge_storage::models::RunStatus::Succeeded,
            RunStatus::Failed => fleetforge_storage::models::RunStatus::Failed,
            RunStatus::Canceled => fleetforge_storage::models::RunStatus::Canceled,
            RunStatus::PausedAtStep => fleetforge_storage::models::RunStatus::PausedAtStep,
        }
    }
}

/// Scheduler-facing lifecycle phases for an individual step.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize, Hash)]
#[serde(rename_all = "snake_case")]
pub enum StepStatus {
    Queued,
    Blocked,
    Leased,
    Running,
    Succeeded,
    Failed,
    Skipped,
}

impl StepStatus {
    pub fn as_str(self) -> &'static str {
        match self {
            StepStatus::Queued => "queued",
            StepStatus::Blocked => "blocked",
            StepStatus::Leased => "leased",
            StepStatus::Running => "running",
            StepStatus::Succeeded => "succeeded",
            StepStatus::Failed => "failed",
            StepStatus::Skipped => "skipped",
        }
    }
}

impl From<fleetforge_storage::models::StepStatus> for StepStatus {
    fn from(value: fleetforge_storage::models::StepStatus) -> Self {
        match value {
            fleetforge_storage::models::StepStatus::Queued => StepStatus::Queued,
            fleetforge_storage::models::StepStatus::Blocked => StepStatus::Blocked,
            fleetforge_storage::models::StepStatus::Leased => StepStatus::Leased,
            fleetforge_storage::models::StepStatus::Running => StepStatus::Running,
            fleetforge_storage::models::StepStatus::Succeeded => StepStatus::Succeeded,
            fleetforge_storage::models::StepStatus::Failed => StepStatus::Failed,
            fleetforge_storage::models::StepStatus::Skipped => StepStatus::Skipped,
        }
    }
}

impl From<StepStatus> for fleetforge_storage::models::StepStatus {
    fn from(value: StepStatus) -> Self {
        match value {
            StepStatus::Queued => fleetforge_storage::models::StepStatus::Queued,
            StepStatus::Blocked => fleetforge_storage::models::StepStatus::Blocked,
            StepStatus::Leased => fleetforge_storage::models::StepStatus::Leased,
            StepStatus::Running => fleetforge_storage::models::StepStatus::Running,
            StepStatus::Succeeded => fleetforge_storage::models::StepStatus::Succeeded,
            StepStatus::Failed => fleetforge_storage::models::StepStatus::Failed,
            StepStatus::Skipped => fleetforge_storage::models::StepStatus::Skipped,
        }
    }
}

/// Canonical step execution classes understood by the runtime.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize, Hash)]
#[serde(rename_all = "snake_case")]
pub enum StepType {
    Llm,
    Tool,
    Http,
    Map,
    Reduce,
    Branch,
    Replay,
    Agent,
}

impl StepType {
    pub fn as_str(self) -> &'static str {
        match self {
            StepType::Llm => "llm",
            StepType::Tool => "tool",
            StepType::Http => "http",
            StepType::Map => "map",
            StepType::Reduce => "reduce",
            StepType::Branch => "branch",
            StepType::Replay => "replay",
            StepType::Agent => "agent",
        }
    }
}

impl std::str::FromStr for StepType {
    type Err = anyhow::Error;

    fn from_str(s: &str) -> Result<Self, Self::Err> {
        match s {
            "llm" => Ok(StepType::Llm),
            "tool" => Ok(StepType::Tool),
            "http" => Ok(StepType::Http),
            "map" => Ok(StepType::Map),
            "reduce" => Ok(StepType::Reduce),
            "branch" => Ok(StepType::Branch),
            "replay" => Ok(StepType::Replay),
            "agent" => Ok(StepType::Agent),
            other => Err(anyhow::anyhow!("unknown step type '{}'", other)),
        }
    }
}

impl fmt::Display for StepType {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "{}", self.as_str())
    }
}

/// Fully resolved specification for a step scheduled by the runtime.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct StepSpec {
    pub id: StepId,
    #[serde(rename = "type")]
    pub r#type: StepType,
    pub inputs: Value,
    #[serde(default = "default_policy_blob")]
    pub policy: Value,
    #[serde(default)]
    pub execution: StepExecution,
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub slug: Option<String>,
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub trust: Option<Trust>,
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub trust_origin: Option<TrustOrigin>,
    #[serde(skip)]
    pub llm_inputs: Option<LlmInputs>,
}

fn default_policy_blob() -> Value {
    Value::Object(Default::default())
}

/// Execution policy configuration embedded in a [`StepSpec`].
#[derive(Debug, Clone, Serialize, Deserialize)]
#[serde(default)]
pub struct StepExecution {
    pub max_attempts: u32,
    pub retry_backoff_ms: u64,
    pub retry_backoff_factor: f64,
    pub deadline_ms: Option<u64>,
    pub checkpoint: bool,
    pub compensation: Option<CompensationSpec>,
    pub cost_hint: Option<CostHint>,
}

impl Default for StepExecution {
    fn default() -> Self {
        Self {
            max_attempts: 1,
            retry_backoff_ms: 0,
            retry_backoff_factor: 1.0,
            deadline_ms: None,
            checkpoint: false,
            compensation: None,
            cost_hint: None,
        }
    }
}

/// Compensation step reference invoked when a primary step fails.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct CompensationSpec {
    pub step: String,
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub reason: Option<String>,
}

/// Optional cost metadata used for planning and budgeting.
#[derive(Debug, Clone, Serialize, Deserialize, Default)]
pub struct CostHint {
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub tokens: Option<i64>,
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub usd: Option<f64>,
}

/// Chat roles accepted by the LLM adapters.
#[derive(Debug, Clone, Serialize, Deserialize)]
#[serde(rename_all = "snake_case")]
pub enum ChatRole {
    System,
    User,
    Assistant,
    Tool,
}

/// Message envelope passed to language models.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ChatMessage {
    pub role: ChatRole,
    pub content: Value,
    #[serde(default)]
    pub name: Option<String>,
    #[serde(default)]
    pub tool_call_id: Option<String>,
    #[serde(default)]
    pub metadata: Option<Value>,
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub trust: Option<Trust>,
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub trust_origin: Option<TrustOrigin>,
}

/// Declarative tool description exposed to the LLM.
#[derive(Debug, Clone, Serialize, Deserialize)]
#[serde(default)]
pub struct ToolSpec {
    pub name: String,
    pub description: String,
    pub schema: Value,
    #[serde(flatten)]
    pub extra: BTreeMap<String, Value>,
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub trust: Option<Trust>,
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub trust_origin: Option<TrustOrigin>,
}

impl Default for ToolSpec {
    fn default() -> Self {
        Self {
            name: String::new(),
            description: String::new(),
            schema: Value::Null,
            extra: BTreeMap::new(),
            trust: None,
            trust_origin: None,
        }
    }
}

/// Retrieval or memory source that augments LLM prompts.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ContextSource {
    pub kind: ContextSourceKind,
    #[serde(default)]
    pub namespace: Option<String>,
    #[serde(default)]
    pub key: Option<String>,
    #[serde(default)]
    pub top_k: Option<u32>,
    #[serde(default)]
    pub query: Option<String>,
    #[serde(flatten)]
    pub extra: BTreeMap<String, Value>,
}

impl Default for ContextSource {
    fn default() -> Self {
        Self {
            kind: ContextSourceKind::Input,
            namespace: None,
            key: None,
            top_k: None,
            query: None,
            extra: BTreeMap::new(),
        }
    }
}

/// Supported context source kinds.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub enum ContextSourceKind {
    #[serde(rename = "memory:kv")]
    MemoryKv,
    #[serde(rename = "memory:vector")]
    MemoryVector,
    #[serde(rename = "artifact")]
    Artifact,
    #[serde(rename = "input")]
    Input,
}

/// Schema reference that constrains structured responses.
#[derive(Debug, Clone, Serialize, Deserialize)]
#[serde(untagged)]
pub enum ResponseSchema {
    Inline(Value),
    Reference(String),
}

/// Strategy the LLM should use when deciding whether to call a tool.
#[derive(Debug, Clone, PartialEq, Eq)]
pub enum ToolChoice {
    Auto,
    None,
    Required(String),
}

impl Default for ToolChoice {
    fn default() -> Self {
        ToolChoice::Auto
    }
}

impl serde::Serialize for ToolChoice {
    fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>
    where
        S: Serializer,
    {
        match self {
            ToolChoice::Auto => serializer.serialize_str("auto"),
            ToolChoice::None => serializer.serialize_str("none"),
            ToolChoice::Required(name) => serializer.serialize_str(&format!("required:{name}")),
        }
    }
}

impl<'de> serde::Deserialize<'de> for ToolChoice {
    fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
    where
        D: serde::Deserializer<'de>,
    {
        let value = String::deserialize(deserializer)?;
        let trimmed = value.trim();
        match trimmed.to_ascii_lowercase().as_str() {
            "auto" => Ok(ToolChoice::Auto),
            "none" => Ok(ToolChoice::None),
            other => {
                if let Some(name) = other.strip_prefix("required:") {
                    if name.is_empty() {
                        return Err(DeError::custom(
                            "tool_choice 'required:' must include tool name",
                        ));
                    }
                    Ok(ToolChoice::Required(name.to_string()))
                } else {
                    Err(DeError::custom(format!(
                        "unsupported tool_choice '{value}'"
                    )))
                }
            }
        }
    }
}

/// Normalized inputs for an LLM step, extracted from the `inputs` blob.
#[derive(Debug, Clone, Serialize, Deserialize, Default)]
#[serde(default)]
pub struct LlmInputs {
    pub messages: Option<Vec<ChatMessage>>,
    pub prompt_ref: Option<String>,
    pub prompt_params: Option<Value>,
    pub prompt: Option<String>,
    pub model: Option<String>,
    pub temperature: Option<f64>,
    pub tools: Option<Vec<ToolSpec>>,
    pub tool_choice: Option<ToolChoice>,
    pub response_schema: Option<ResponseSchema>,
    pub response_strict: Option<bool>,
    pub context_sources: Option<Vec<ContextSource>>,
    pub params: Option<Value>,
    #[serde(flatten)]
    pub extra: BTreeMap<String, Value>,
}

/// Errors surfaced while decoding a [`StepSpec`] from JSON.
#[derive(Debug, thiserror::Error)]
pub enum StepSpecDecodeError {
    #[error("step spec validation failed: {0:?}")]
    Validation(#[from] StepSpecError),
    #[error("step spec deserialization failed: {0}")]
    Deserialize(#[from] serde_json::Error),
    #[error("{0}")]
    FeatureGate(String),
}

impl StepSpec {
    /// Validates a JSON blob, enriches it with derived fields, and returns a [`StepSpec`].
    pub fn try_from_value(value: Value) -> Result<Self, StepSpecDecodeError> {
        validate_step_spec(&value)?;
        let mut spec: StepSpec = serde_json::from_value(value)?;
        enforce_prompt_v2_gate(&spec)?;
        if spec.r#type == StepType::Llm {
            let typed: LlmInputs = serde_json::from_value(spec.inputs.clone())?;
            spec.llm_inputs = Some(typed);
        }
        Ok(spec)
    }
}

/// Snapshot of a queued step fetched from storage for scheduling.
#[derive(Debug, Clone)]
pub struct QueuedStep {
    pub run_id: RunId,
    pub step_id: StepId,
    pub idx: i32,
    pub priority: i16,
    pub status: StepStatus,
    pub attempt: i32,
    pub created_at: DateTime<Utc>,
    pub max_attempts: i32,
    pub retry_backoff_ms: i64,
    pub retry_backoff_factor: f64,
    pub not_before: Option<DateTime<Utc>>,
    pub deadline_at: Option<DateTime<Utc>>,
    pub checkpoint: Option<Value>,
    pub compensation_step: Option<StepId>,
    pub compensation_scheduled: bool,
    pub spec: StepSpec,
}

impl TryFrom<fleetforge_storage::models::Step> for QueuedStep {
    type Error = anyhow::Error;

    fn try_from(value: fleetforge_storage::models::Step) -> Result<Self> {
        let fleetforge_storage::models::Step {
            run_id,
            step_id,
            idx,
            priority,
            spec_json,
            status,
            attempt,
            created_at,
            max_attempts,
            retry_backoff_ms,
            retry_backoff_factor,
            not_before,
            deadline_at,
            leased_by: _,
            lease_expires_at: _,
            output_json: _,
            error_json: _,
            checkpoint,
            compensation_step,
            compensation_scheduled,
        } = value;

        let spec = StepSpec::try_from_value(spec_json)
            .map_err(|err| anyhow::anyhow!("invalid step spec stored in DB: {err}"))?;

        Ok(Self {
            run_id: RunId(run_id),
            step_id: StepId(step_id),
            idx,
            priority,
            status: StepStatus::from(status),
            attempt,
            created_at,
            max_attempts,
            retry_backoff_ms,
            retry_backoff_factor,
            not_before,
            deadline_at,
            checkpoint,
            compensation_step: compensation_step.map(StepId),
            compensation_scheduled,
            spec,
        })
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::validate_step_spec;
    use proptest::prelude::*;
    use serde_json::{json, Value};
    use std::env;
    use uuid::Uuid;

    #[test]
    fn valid_step_spec_passes() {
        let spec = json!({
            "id": "550e8400-e29b-41d4-a716-446655440000",
            "type": "map",
            "inputs": {
                "workers": 4
            }
        });
        validate_step_spec(&spec).expect("valid step spec should pass");
    }

    #[test]
    fn invalid_step_spec_fails() {
        let spec = json!({
            "id": "not-a-uuid",
            "type": "map",
            "inputs": {}
        });
        let err = validate_step_spec(&spec).expect_err("invalid spec must fail");
        assert!(!err.details.is_empty());
        assert!(
            err.details
                .iter()
                .any(|detail| detail.instance_path.contains("id")),
            "error details should reference the invalid id field"
        );
    }

    #[test]
    fn prompt_v2_fields_require_flag() {
        env::remove_var(PROMPTS_V2_FLAG);
        let spec = json!({
            "id": "00000000-0000-4000-8000-000000000001",
            "type": "llm",
            "inputs": {
                "messages": [
                    {"role": "user", "content": "Hello"}
                ]
            }
        });
        let err = StepSpec::try_from_value(spec)
            .expect_err("feature gate should reject prompts v2 fields");
        match err {
            StepSpecDecodeError::FeatureGate(message) => {
                assert!(message.contains(PROMPTS_V2_FLAG));
            }
            other => panic!("expected feature gate error, found {other:?}"),
        }
    }

    #[test]
    fn prompt_v2_fields_parse_with_flag() {
        env::set_var(PROMPTS_V2_FLAG, "1");
        let spec_value = json!({
            "id": "00000000-0000-4000-8000-000000000002",
            "type": "llm",
            "inputs": {
                "messages": [
                    {"role": "system", "content": "system"},
                    {"role": "user", "content": "collect"}
                ],
                "tools": [
                    {
                        "name": "web_search",
                        "description": "search",
                        "schema": {"type": "object", "properties": {"query": {"type": "string"}}, "required": ["query"]}
                    }
                ],
                "response_schema": {
                    "type": "object",
                    "required": ["insights"],
                    "properties": {
                        "insights": {
                            "type": "array",
                            "items": {"type": "object", "required": ["summary"], "properties": {"summary": {"type": "string"}}}
                        }
                    }
                },
                "tool_choice": "auto",
                "response_strict": true
            }
        });
        let spec = StepSpec::try_from_value(spec_value)
            .expect("llm inputs should parse with feature flag");
        let llm = spec.llm_inputs.expect("llm inputs should be populated");
        let messages = llm.messages.expect("messages present");
        assert_eq!(messages.len(), 2);
        let tools = llm.tools.expect("tools present");
        assert_eq!(tools.len(), 1);
        assert!(matches!(llm.tool_choice, Some(ToolChoice::Auto)));
        env::remove_var(PROMPTS_V2_FLAG);
    }

    fn step_type_strategy() -> impl Strategy<Value> {
        prop_oneof![
            Just(json!("llm")),
            Just(json!("tool")),
            Just(json!("map")),
            Just(json!("reduce")),
            Just(json!("branch")),
            Just(json!("replay")),
        ]
    }

    fn key_strategy() -> impl Strategy<String> {
        proptest::string::string_regex("[a-zA-Z0-9_]{1,8}").unwrap()
    }

    fn json_object_strategy() -> impl Strategy<Value> {
        prop::collection::hash_map(key_strategy(), any_json_value(), 0..4).prop_map(|map| {
            let map: serde_json::Map<String, Value> = map.into_iter().collect();
            Value::Object(map)
        })
    }

    fn any_json_value() -> impl Strategy<Value> {
        prop_oneof![
            Just(Value::Null),
            any::<bool>().prop_map(Value::Bool),
            any::<i64>().prop_map(|i| Value::Number(i.into())),
            any::<f64>()
                .prop_filter_map("finite", |f| serde_json::Number::from_f64(f))
                .prop_map(Value::Number),
            "[a-zA-Z0-9_]{0,12}".prop_map(Value::String),
            prop::collection::vec(any::<i64>().prop_map(|i| Value::Number(i.into())), 0..4)
                .prop_map(Value::Array),
        ]
    }

    fn valid_spec_strategy() -> impl Strategy<Value> {
        (
            any::<Uuid>(),
            step_type_strategy(),
            json_object_strategy(),
            json_object_strategy(),
        )
            .prop_map(|(id, ty, inputs, policy)| {
                let mut obj = serde_json::Map::new();
                obj.insert("id".into(), Value::String(id.to_string()));
                obj.insert("type".into(), ty);
                obj.insert("inputs".into(), inputs);
                obj.insert("policy".into(), policy);
                Value::Object(obj)
            })
    }

    fn invalid_spec_strategy() -> impl Strategy<Value> {
        prop_oneof![
            valid_spec_strategy().prop_map(|mut v| {
                if let Value::Object(ref mut obj) = v {
                    obj.remove("id");
                }
                v
            }),
            valid_spec_strategy().prop_map(|mut v| {
                if let Value::Object(ref mut obj) = v {
                    obj.insert("type".to_string(), Value::String("unknown".to_string()));
                }
                v
            }),
            valid_spec_strategy().prop_map(|mut v| {
                if let Value::Object(ref mut obj) = v {
                    obj.insert("inputs".to_string(), Value::Bool(true));
                }
                v
            }),
        ]
    }

    proptest! {
        #[test]
        fn prop_valid_specs_round_trip(spec in valid_spec_strategy()) {
            validate_step_spec(&spec).unwrap();
            let decoded = StepSpec::try_from_value(spec.clone()).expect("decode StepSpec");
            let reencoded = serde_json::to_value(decoded).expect("encode StepSpec");
            validate_step_spec(&reencoded).unwrap();
        }

        #[test]
        fn prop_invalid_specs_rejected(spec in invalid_spec_strategy()) {
            prop_assert!(validate_step_spec(&spec).is_err());
            prop_assert!(StepSpec::try_from_value(spec).is_err());
        }
    }

    #[test]
    fn missing_type_field_is_rejected() {
        let spec = json!({
            "id": "550e8400-e29b-41d4-a716-446655440000",
            "inputs": {}
        });
        let err = validate_step_spec(&spec).expect_err("missing type should fail validation");
        assert!(
            err.details
                .iter()
                .any(|detail| detail.instance_path.contains("/type")),
            "expected error referencing type field, got {err:?}"
        );
    }

    #[test]
    fn non_object_policy_is_rejected() {
        let spec = json!({
            "id": "550e8400-e29b-41d4-a716-446655440001",
            "type": "tool",
            "inputs": {},
            "policy": "invalid"
        });
        let err = validate_step_spec(&spec).expect_err("non-object policy should fail validation");
        assert!(
            err.details
                .iter()
                .any(|detail| detail.instance_path.contains("/policy")),
            "expected error referencing policy field, got {err:?}"
        );
    }
}

const PROMPTS_V2_FLAG: &str = "FLEETFORGE_PROMPTS_V2";

fn enforce_prompt_v2_gate(spec: &StepSpec) -> Result<(), StepSpecDecodeError> {
    if prompts_v2_enabled() || spec.r#type != StepType::Llm {
        return Ok(());
    }
    if !has_prompt_v2_fields(&spec.inputs) {
        return Ok(());
    }
    Err(StepSpecDecodeError::FeatureGate(format!(
        "prompt v2 fields require setting {PROMPTS_V2_FLAG}=1 (or true/yes/on) for step {}",
        spec.id
    )))
}

fn prompts_v2_enabled() -> bool {
    std::env::var(PROMPTS_V2_FLAG)
        .ok()
        .map(|value| match value.trim().to_ascii_lowercase().as_str() {
            "1" | "true" | "yes" | "on" => true,
            _ => false,
        })
        .unwrap_or(false)
}

fn has_prompt_v2_fields(inputs: &Value) -> bool {
    let Some(map) = inputs.as_object() else {
        return false;
    };
    const PROMPT_FIELDS: &[&str] = &[
        "messages",
        "prompt_ref",
        "prompt_params",
        "tools",
        "tool_choice",
        "response_schema",
        "response_strict",
        "context_sources",
    ];
    map.keys().any(|key| PROMPT_FIELDS.contains(&key.as_str()))
}