RubyGems - lex-exec - Versions diffs - 0.1.6 → 0.1.7 - Mend

lex-exec 0.1.6 → 0.1.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +7 -0
data/lib/legion/extensions/exec/helpers/constants.rb +28 -4
data/lib/legion/extensions/exec/runners/shell.rb +19 -0
data/lib/legion/extensions/exec/version.rb +1 -1
metadata +1 -1

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 7b2fbeab776f3905427aacc575cfcae9c9e101bb78637b3082f707572709e13f
-  data.tar.gz: 5c746408c3fb7fc484c8c8da9f54b2319f832aace2e43e78d34d413c60263ce0
+  metadata.gz: 7d8694405797d859fb276bf9ffb3fdd2b9ae66ed3f3c1cc35a1b6fb5b43541cd
+  data.tar.gz: 2b46aac5a8817673d6ac641d04b4b880c2531f5c79a1b076ef77b83053d1a008
 SHA512:
-  metadata.gz: 7ccfc95535ed4c768b5aa50fcfb2d4f8a417f32b0db0d005e9d479cd4e558c9f43e1233273d1cfda8ee6c60d5c1801e2e948610d43d0370ae234c1d61887c681
-  data.tar.gz: a0193fae4bee505f012cee6ca6e9435d9311b7369ca2751f5781dedfcd1df12953f04d312c03a6fe2524c7eb30cba45cb2036ede4a4ab964e427ec6468270d24
+  metadata.gz: 9cd2bd04a54f2c430d9d51cf11b6d356fdcce17664fcddd83d1e2d5a4a63e1f89c2b25aa89855f406ab4b3f69c4b3611d98c47b1ffbf8d6eacce214efeb7b2a5
+  data.tar.gz: 4b2fba88d6554fbdf73ab0206f6ada2cf730094d366ee96bfcef61c96240dd0d9e1c5deeda3c4729b99d42a28f0cc14126673a5c001ccda37d1874254137dce6

data/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,12 @@
 # Changelog
+## [0.1.7] - 2026-04-09
+### Added
+- Python venv integration: route bare `python3`/`pip3` commands to Legion-managed venv (`~/.legionio/python`)
+- `python3`, `python`, `pip3`, `pip` added to sandbox allowlist
+- Runtime venv resolution via `Constants.venv_python`/`.venv_pip`/`.venv_exists?` (no longer frozen at load time)
 ## [0.1.6] - 2026-03-30
 ### Changed

data/lib/legion/extensions/exec/helpers/constants.rb CHANGED Viewed

@@ -5,14 +5,24 @@ module Legion
     module Exec
       module Helpers
         module Constants
-          DEFAULT_TIMEOUT   = 120_000 # 120 seconds in ms
-          MAX_TIMEOUT       = 600_000 # 10 minutes in ms
-          MAX_OUTPUT_BYTES  = 1_048_576 # 1 MB
+          DEFAULT_TIMEOUT  = 120_000 # 120 seconds in ms
+          MAX_TIMEOUT      = 600_000 # 10 minutes in ms
+          MAX_OUTPUT_BYTES = 1_048_576 # 1 MB
-          ALLOWED_COMMANDS = %w[
+          LEGION_PYTHON_VENV = File.expand_path('~/.legionio/python').freeze
+          BASE_ALLOWED_COMMANDS = %w[
             bundle git gh ruby rspec rubocop ls cat mkdir cp mv rm touch echo wc head tail
+            python3 pip3
+          ].freeze
+          VENV_ALLOWED_COMMANDS = [
+            "#{LEGION_PYTHON_VENV}/bin/python3",
+            "#{LEGION_PYTHON_VENV}/bin/pip3"
           ].freeze
+          ALLOWED_COMMANDS = (BASE_ALLOWED_COMMANDS + VENV_ALLOWED_COMMANDS).freeze
           BLOCKED_PATTERNS = [
             %r{rm\s+-rf\s+/},
             /rm\s+-rf\s+~/,
@@ -25,6 +35,20 @@ module Legion
           ].freeze
           AUDIT_FIELDS = %i[command cwd exit_code duration_ms executed_at truncated].freeze
+          module_function
+          def venv_python
+            "#{LEGION_PYTHON_VENV}/bin/python3"
+          end
+          def venv_pip
+            "#{LEGION_PYTHON_VENV}/bin/pip3"
+          end
+          def venv_exists?
+            File.exist?("#{LEGION_PYTHON_VENV}/pyvenv.cfg")
+          end
         end
       end
     end

data/lib/legion/extensions/exec/runners/shell.rb CHANGED Viewed

@@ -14,6 +14,11 @@ module Legion
             check = default_sandbox.allowed?(command)
             return { success: false, error: :blocked, reason: check[:reason] } unless check[:allowed]
+            # Rewrite bare `python3` / `python` / `pip3` / `pip` invocations to use
+            # the Legion-managed venv interpreter so scripts always run inside the
+            # correct environment with pre-installed packages (python-pptx, etc.).
+            command = rewrite_python_command(command)
             start_time = ::Process.clock_gettime(::Process::CLOCK_MONOTONIC)
             timeout_secs = [timeout, Helpers::Constants::MAX_TIMEOUT].min / 1000.0
@@ -59,6 +64,20 @@ module Legion
           private
+          # Replace bare `python3`, `python`, `pip3`, `pip` at the start of a command
+          # with the absolute venv paths — but only when the venv actually exists.
+          # Full absolute paths that already point into the venv are left unchanged.
+          def rewrite_python_command(command)
+            return command unless Helpers::Constants.venv_exists? # rubocop:disable Legion/Extension/RunnerReturnHash
+            python = Helpers::Constants.venv_python
+            pip    = Helpers::Constants.venv_pip
+            command
+              .sub(/\Apython3(\s|\z)/, "#{python}\\1")
+              .sub(/\Apip3(\s|\z)/,    "#{pip}\\1")
+          end
           def default_sandbox
             @default_sandbox ||= Helpers::Sandbox.new
           end

data/lib/legion/extensions/exec/version.rb CHANGED Viewed

@@ -3,7 +3,7 @@
 module Legion
   module Extensions
     module Exec
-      VERSION = '0.1.6'
+      VERSION = '0.1.7'
     end
   end
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: lex-exec
 version: !ruby/object:Gem::Version
-  version: 0.1.6
+  version: 0.1.7
 platform: ruby
 authors:
 - Esity