limits: unified 1 KiB cap on send/ask + reminder auto-file on overflow

hive-c0re/src/reminder_scheduler.rs

@@ -121,8 +121,9 @@ fn inline_fallback(req_path: &str, reason: &str, message: &str) -> String {
 /// Persist `message` to `host_path` with the symlink-escape defenses
 /// described in the module docs. Returns `Ok(())` on success, or a
 /// human-readable reason string on any failure (caller logs +
-/// inline-falls-back).
-fn write_payload(agent: &str, host_path: &Path, message: &str) -> Result<(), String> {
+/// inline-falls-back). `pub` because `agent_server::handle_remind`
+/// reuses it for the at-remind-time auto-file path.
+pub fn write_payload(agent: &str, host_path: &Path, message: &str) -> Result<(), String> {
     let Some(parent) = host_path.parent() else {
         return Err("internal: host path has no parent".to_owned());
     };
@@ -168,8 +169,9 @@ fn write_payload(agent: &str, host_path: &Path, message: &str) -> Result<(), Str
 /// validating that it lives under the agent's own state subtree, has
 /// a non-empty relative tail, and doesn't try to traverse out via
 /// `..`. Returns the host `PathBuf` on success, or a human-readable
-/// reason string on rejection.
-fn resolve_host_path(agent: &str, req_path: &str) -> Result<PathBuf, String> {
+/// reason string on rejection. `pub` so `agent_server::handle_remind`
+/// can reuse it for the at-remind-time auto-file path.
+pub fn resolve_host_path(agent: &str, req_path: &str) -> Result<PathBuf, String> {
     let prefix = format!("/agents/{agent}/state/");
     let Some(rel) = req_path.strip_prefix(&prefix) else {
         return Err(format!(