Bumps every version source from 3.3.3 to 3.3.4:
- pyproject.toml
- mempalace/version.py (canonical)
- .claude-plugin/plugin.json
- .claude-plugin/marketplace.json
- .codex-plugin/plugin.json
- README.md badge

Dates the CHANGELOG section and adds entries for the bug fixes that
landed this cycle (#1135, #1191, #1230, #1231) plus expands the #1194
entry to credit the lookup-side recovery path from #1197.

Pre-tag verification:
- 1441 passed, 1 skipped (full suite minus benchmarks, all platforms)
- ruff check + format clean
- 44/44 in test_version_consistency + test_readme_claims (6-file sync)
- JPH invariant: pyproject.toml + .claude-plugin/plugin.json both
  reference mempalace-mcp
- Wheel build + fresh-venv install: mempalace --version reports 3.3.4,
  mempalace-mcp --help works (catches the v3.3.2-class regression)

22 commits from upstream/develop, including:

- HNSW capacity divergence detection + BM25-only sqlite fallback when
  vector layer is unloadable (MemPalace#1222 / MemPalace#1227 — vector_disabled kwarg
  routes search through chromadb-bypass path on segfault risk).
- HNSW index bloat prevention via batch_size + sync_threshold metadata
  on collection create (MemPalace#1191).
- Hooks: always mine the active transcript as convos, additive to
  MEMPAL_DIR (MemPalace#1230 / MemPalace#1231). Restructured into `_get_mine_targets()`
  list approach + separate `_ingest_transcript()`. Daemon-strict gate
  preserved on each entry point.
- Wing-name normalization for hyphenated dirs across miner / convo_miner
  / palace_graph (MemPalace#1194 / MemPalace#1195 / MemPalace#1197).
- `narrow _fix_blob_seq_ids` shim + `repair --mode max-seq-id` for
  legacy 0.6.x BLOB-poisoned palaces (MemPalace#1135).

Conflict resolution:
- README.md: kept fork-shaped narrative, dropped upstream's sweep tip
  injection (per fork-readme handling memory).
- hooks/README.md: adopted upstream's accurate `MEMPAL_DIR` additive
  description; kept `MEMPAL_PYTHON` env-var name (matches actual
  `hooks/*.sh` scripts in both forks).
- mempalace/cli.py: consolidated duplicate `--mode` argparse declarations
  into one with all 4 choices (rebuild/legacy/reorganize/max-seq-id).
- mempalace/hooks_cli.py: adopted upstream's `_get_mine_targets()` +
  `_ingest_transcript()` shape; added `_daemon_strict()` guard at entry
  of `_maybe_auto_ingest`, `_mine_sync`, and `_ingest_transcript` so
  the daemon-strict architecture still skips local writes.
- mempalace/mcp_server.py: kept both `kind=` and `vector_disabled=`
  kwargs on the `search_memories` call.
- mempalace/searcher.py: kept fork's `_count_in_scope`,
  `_sqlite_fallback_and_scope`, `_apply_kind_text_filter` AND upstream's
  `_bm25_only_via_sqlite`. Both `kind` and `vector_disabled` parameters
  on `search_memories`.

Tests: 1510 passing (up from 1366 — upstream brought new test suites).

Follow-up to MemPalace#1222.
Adjacent to the upstream HNSW index-bloat work in MemPalace#1191.

Co-authored-by: Copilot <[email protected]>

Follow-up to MemPalace#1222.
Directly related to MemPalace#1124.
Adjacent to the upstream HNSW index-bloat work in MemPalace#1191.

Co-authored-by: Copilot <[email protected]>

Follow-up to MemPalace#1222.
Directly related to MemPalace#1124.
Adjacent to the upstream HNSW index-bloat work in MemPalace#1191.

Co-authored-by: Copilot <[email protected]>

Follow-up to MemPalace#1222.
Directly related to MemPalace#1124.
Adjacent to the upstream HNSW index-bloat work in MemPalace#1191.

Co-authored-by: Copilot <[email protected]>

Follow-up to MemPalace#1222.
Directly related to MemPalace#1124.
Adjacent to the upstream HNSW index-bloat work in MemPalace#1191.

Co-authored-by: Copilot <[email protected]>

Follow-up to MemPalace#1222.
Directly related to MemPalace#1124.
Adjacent to the upstream HNSW index-bloat work in MemPalace#1191.

Co-authored-by: Copilot <[email protected]>

…lush

PR MemPalace#1191's `_HNSW_BLOAT_GUARD` set `hnsw:batch_size=50_000` and
`hnsw:sync_threshold=50_000` at every collection-creation site to
prevent the link_lists.bin resize-cycle bloat that hits during large
mining workloads. The empirical validation was on a 39,792-drawer
rebuild — i.e. the `mempalace_drawers` collection.

`mempalace_closets` legitimately stays small (~6,000 entries on a
~110k-drawer palace, capped by source-file count). With the same
50_000 threshold, its HNSW segment never reaches a sync point, so
`index_metadata.pickle` never lands on disk. Once sqlite crosses the
2,000-row absolute divergence threshold, `hnsw_capacity_status`
reports the closet collection DIVERGED with `hnsw_count=None`, search
falls back to BM25-only, and `mempalace repair --mode legacy` is the
recommended remedy — but rebuilding a never-flushed segment hits
chromadb 1.5.x's missing-pickle path and SIGSEGVs.

Splits the guard into a default and a small-collection variant
(batch_size=100, sync_threshold=100), selected by collection name via
`_hnsw_metadata_for(collection_name)`. Drawers keep the 50_000 guard;
closets get the lower threshold and flush during normal upsert
batches without re-introducing resize-cycle bloat (which only fires
past ~10k items per PR MemPalace#344).

Adds `tests/test_small_collection_hnsw_flush.py` — 6 regression tests
covering the pickle-flush contract for small collections, the
`hnsw_capacity_status` false-positive that motivated the production
incident, a control test pinning the cause to the threshold setting,
and a slow-marked counter-test confirming PR MemPalace#1191's bloat protection
still holds for collections that cross 50_000.

Two defenses that, combined, prevent a mid-write-corrupt HNSW segment
from reaching chromadb's Rust loader and tripping the SIGSEGV
documented at chroma-core/chroma#6852 (open, unfixed in 1.5.7 — same
null-pointer-deref signature reproduced today via lldb backtrace).

1. ``_segment_appears_healthy`` no longer treats a missing
   ``index_metadata.pickle`` as universally healthy. The function
   previously assumed "no pickle = fresh, never-flushed" and returned
   True so ``quarantine_stale_hnsw`` would leave the segment in place.
   That's correct only when ``data_level0.bin`` is also empty/absent.
   When ``data_level0.bin`` holds real HNSW data and the pickle is
   missing, the segment is mid-write corruption — chromadb wrote HNSW
   bytes but never the metadata, either because it crashed mid-flush
   or because ``sync_threshold`` was never crossed (PR MemPalace#1191's uniform
   50_000 threshold caused exactly this on closet collections, see
   commit 8488358). Loading such a segment via ``PersistentClient``
   SIGSEGVs in the Rust HNSW loader. The function now checks
   ``data_level0.bin``'s size and returns False when it's non-empty
   without an accompanying pickle, so quarantine catches it.

2. ``ChromaBackend._client`` now invokes ``quarantine_stale_hnsw``
   once per palace per process, mirroring the protection ``make_client``
   already provides. The two paths previously diverged: ``make_client``
   (used by some long-lived callers) gated quarantine on
   ``_quarantined_paths`` and called it on first open; ``_client``
   (used by every ``get_collection`` invocation, including
   ``mempalace repair --mode legacy``) skipped quarantine entirely.
   That made repair the most exposed code path to chromadb's
   stale-HNSW SIGSEGV — the exact failure observed today when repair
   was run against a palace whose closets segment had the mid-write-
   corruption shape from MemPalace#1. ``_client`` now uses the same gate so
   the cost is amortized and steady-write daemons don't thrash on
   reopen.

Adds 9 regression tests in ``tests/test_segment_quarantine_defenses.py``:

* Three ``_segment_appears_healthy`` cases pinning the truly-fresh
  vs. mid-write-corrupt vs. flushed-with-pickle distinction, plus the
  truncated-pickle edge.
* Three ``quarantine_stale_hnsw`` end-to-end cases: corrupt-and-stale
  → quarantined; flushed-and-stale → left alone (chromadb's async
  flush makes drift the steady state); fresh-and-stale → left alone
  (renaming an empty segment would orphan nothing).
* Two ``ChromaBackend.get_collection`` integration cases: a corrupt
  segment alongside a freshly-created palace gets quarantined on
  first open; subsequent opens within the same process do not
  re-fire the scan (``_quarantined_paths`` gate).

The capacity probe added in #1227 hardcoded a 2,000-row floor for the
"diverged" decision. The comment justifying that number explicitly tied
it to chromadb's *default* sync_threshold of 1,000 — "Two synchronization
windows worth (2 × sync_threshold = 2000) is a safe steady-state ceiling".

#1191 then bumped sync_threshold to 50,000 via _HNSW_BLOAT_GUARD without
updating the floor. Result: any palace created with the bloat guard
flips between OK and DIVERGED on every flush cycle. Steady-state
divergence sits at 0–50K (the natural queue depth), and the 2,000 floor
trips the guardrail the moment the queue exceeds 10% of sqlite_count.
The MCP server then routes search to BM25-only and disables duplicate
detection for ~80% of the write cycle on actively-mined ≥100K palaces,
even though chromadb is behaving correctly.

This change reads the configured `hnsw:sync_threshold` from
`collection_metadata` per palace and scales the floor to 2 × that value.
The 10% relative term and the original #1222 detection capability are
unchanged — a 91%-missing-of-192K palace (the actual #1222 reproducer)
still trips, regardless of whether the collection was created with
sync_threshold=1000 or 50000.

Behavior summary:

| Collection's sync_threshold | New floor | Old floor |
|---|---|---|
| Missing (legacy palace)     | 2000      | 2000 (unchanged)
| 1000 (chromadb default)     | 2000      | 2000 (unchanged)
| 50000 (#1191 bloat guard)   | 100000    | 2000 (the bug)

Tests:
- test_capacity_status_tolerates_lag_under_large_sync_threshold (regression
  for the #1191/#1227 conflict — 100K sqlite + 50K HNSW + sync=50K → OK)
- test_capacity_status_still_flags_real_corruption_under_large_sync (#1222
  shape with bloat-guard collection — still detects corruption)
- test_capacity_status_default_threshold_when_no_sync_metadata (legacy
  palaces without the metadata row use the 2000 fallback floor)
- test_unflushed_path_also_uses_dynamic_floor (the never-flushed branch
  scales too — 30K under sync_threshold=50000 is no longer flagged)

All 18 pre-existing tests in tests/test_hnsw_capacity.py and 45 tests
in tests/test_backends.py still pass.

Co-Authored-By: Claude Opus 4.7 (1M context) <[email protected]>

Three fixes landed on develop after the initial release-prep cut and
were brought in via the develop merge. Document them in the 3.3.4
Bug Fixes section so the release notes reflect what users will
actually receive.

- #1287 - HNSW divergence floor scales with hnsw:sync_threshold
  (resolves a silent-fallback regression introduced by the
  interaction between #1191 and #1227 in this release)
- #1262 - ChromaBackend get_or_create_collection split, fixing the
  stop-hook SIGSEGV class on legacy palaces with mismatched stored
  metadata (#1089)
- #1288 / #1254 - repair --mode max-seq-id heuristic now decodes
  BLOB-typed embeddings.seq_id, restoring the un-poison path added
  in #1135 for palaces where chromadb 1.5.x writes seq_ids natively

… (upstream MemPalace#1191)

Adapted upstream fix to our chroma.py call sites (get_or_create + create_collection).

Sync with upstream/develop via cherry-pick of 9 critical bugfixes:
- HNSW index bloat prevention (MemPalace#1191)
- SIGSEGV guards on collection reopen (MemPalace#1262, MemPalace#1289)
- blob-seq marker fast-path (MemPalace#1177)
- palace_graph None-metadata guard (MemPalace#1201)
- palace_graph security tunnels (MemPalace#1168)
- hyphenated wing name normalization (MemPalace#1197)
- searcher _tokenize None guard (MemPalace#1198)
- mcp_server diary topic sanitize (MemPalace#936)

Tests: 1459 default + 113 benchmark + 6/7 stress all pass.
(random-kill stress test was failing on dev pre-merge; not regressed.)

Catches up on a month of upstream work. Highlights pulled in:

- MemPalace#1306 searcher: hybrid candidate union (vector ∪ BM25 reranking pool)
- MemPalace#1325 mcp security: omit absolute paths from tool_get_drawer / tool_status
- MemPalace#1322 chroma: wire quarantine_stale_hnsw to prevent SIGSEGV on stale HNSW
- MemPalace#1320 mcp: forward valid_to / source params in kg_add / kg_invalidate
- MemPalace#1321 cli: honor --palace flag in cmd_init
- MemPalace#1314 kg temporal params fix
- MemPalace#1244 cli: cmd_compress writes to mempalace_closets so palace can read
- MemPalace#1243 mcp: case-insensitive agent name in diary_write/diary_read
- MemPalace#1303 mcp_server: pass embedding_function= on collection reopen
- MemPalace#1076/MemPalace#1077 hooks: quote CLAUDE_PLUGIN_ROOT / CODEX_PLUGIN_ROOT in hooks.json
- Various ruff format passes on touched files

Conflict resolution (CHANGELOG.md only — code files all auto-merged):

- 3.3.5 unreleased section header from upstream kept above 3.3.4
- 3.3.4 section: kept our 2026-04-30 release date; merged upstream's new
  MemPalace#1299 SIGSEGV-on-default-EF entry in alongside our existing topic-tunnels
  (MemPalace#1194/MemPalace#1195/MemPalace#1197), HNSW-bloat (MemPalace#1191), max_seq_id (MemPalace#1135), and
  auto-ingest (MemPalace#1230/MemPalace#1231) entries. Kept our richer topic-tunnels detail
  (upstream's version was a strict subset).

xdev patches preserved (still on this branch, untouched by merge):
- 6ef44cb fix(hooks): route CC transcripts via convo_miner with cwd-based wings
- 3fad61d fix(config): allow leading dash in wing names

Not pushed to origin — run tests locally and decide when to push.

Co-Authored-By: Claude Opus 4.7 (1M context) <[email protected]>