npm - @andyqiu/codeforge - Versions diffs - 0.6.6 → 0.6.7 - Mend

@andyqiu/codeforge 0.6.6 → 0.6.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/dist/index.js +32 -5
package/package.json +1 -1

package/dist/index.js CHANGED Viewed

@@ -19889,7 +19889,7 @@ import * as zlib from "node:zlib";
 // lib/version-injected.ts
 function getInjectedVersion() {
   try {
-    const v = "0.6.6";
+    const v = "0.6.7";
     if (typeof v === "string" && /^\d+\.\d+\.\d+/.test(v)) {
       return v;
     }
@@ -21345,8 +21345,7 @@ function formatLazyBindDenyReason(input) {
 var CLASS_B_CALLER_WHITELIST = new Set([
   "codeforge",
   "reviewer",
-  "reviewer-lite",
-  "general"
+  "reviewer-lite"
 ]);
 var MERGE_CALLER_WHITELIST = new Set([
   "codeforge",
@@ -21558,10 +21557,38 @@ var sessionWorktreeGuardPlugin = async (ctx) => {
         try {
           entry = await getSessionWorktree(sessionId, mainRoot);
         } catch (err) {
-          log13.warn(`getSessionWorktree failed (跳过本次检查)`, {
+          const errMsg = err instanceof Error ? err.message : String(err);
+          if (isWriteOperation(toolName, argsObj, mainRoot)) {
+            log13.warn(`[registry-fail-closed] DENY (getSessionWorktree failed)`, {
+              sessionId,
+              mainRoot,
+              tool: toolName,
+              error: errMsg
+            });
+            safeWriteLog(PLUGIN_NAME22, {
+              hook: "tool.execute.before",
+              tool: toolName,
+              sessionID: input.sessionID,
+              action: "deny",
+              source: "registry-query-failed",
+              error: errMsg
+            });
+            denied = new DeniedError(`[session-worktree-guard] DENIED: session ${sessionId} 的 worktree 绑定信息查询失败` + `（${errMsg}），为防止写操作污染主工作区已拒绝执行。请重试；持续失败请检查 registry ` + `文件或设 CODEFORGE_DISABLE_WORKTREE_GUARD=1 显式放弃隔离`);
+            return;
+          }
+          log13.warn(`getSessionWorktree failed (只读放行)`, {
             sessionId,
             mainRoot,
-            error: err instanceof Error ? err.message : String(err)
+            tool: toolName,
+            error: errMsg
+          });
+          safeWriteLog(PLUGIN_NAME22, {
+            hook: "tool.execute.before",
+            tool: toolName,
+            sessionID: input.sessionID,
+            action: "skip",
+            source: "registry-query-failed-readonly",
+            is_write: false
           });
           return;
         }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@andyqiu/codeforge",
-  "version": "0.6.6",
+  "version": "0.6.7",
   "description": "CodeForge — opencode 的零侵入扩展包",
   "type": "module",
   "private": false,