@askance/cli 0.2.4 → 0.3.1

package/README.md

@@ -15,7 +15,7 @@ npx askance login
 
 ## What it does
 
-- **Hook handler** — intercepts tool calls before execution and evaluates them against your `.askance.yml` policy rules
+- **Hook handler** — intercepts tool calls before execution and evaluates them against your cloud policy rules
 - **MCP server** — provides tools for the agent to wait for approvals and check for instructions
 - **CLI** — sets up config files and authenticates with the Askance cloud
 
@@ -39,33 +39,12 @@ npx askance init --all      # All agents
 
 ## Policy rules
 
-Policy rules in `.askance.yml` control what happens when the agent uses a tool:
+Policy rules are managed in the [Askance dashboard](https://app.askance.app) and control what happens when the agent uses a tool:
 
 - **allow** — tool call proceeds immediately
 - **gate** — queued for approval in the dashboard
 - **deny** — blocked automatically
 
-```yaml
-rules:
-  - name: "Allow read-only tools"
-    match:
-      tool: "^(Read|Glob|Grep|WebSearch)$"
-    action: allow
-
-  - name: "Gate file writes"
-    match:
-      tool: "^(Edit|Write)$"
-    action: gate
-    risk: medium
-
-  - name: "Deny destructive commands"
-    match:
-      tool: "^Bash$"
-      command: "(rm -rf|chmod 777)"
-    action: deny
-    risk: high
-```
-
 ## Dashboard
 
 Manage approvals at [app.askance.app](https://app.askance.app) — approve, deny, or send instructions to your agent from any device.

package/dist/common/api-client.js

@@ -9,6 +9,7 @@ exports.apiGet = apiGet;
 exports.apiPost = apiPost;
 exports.intercept = intercept;
 exports.getInstructions = getInstructions;
+exports.sessionHeartbeat = sessionHeartbeat;
 exports.waitForInstruction = waitForInstruction;
 exports.readKeepAliveConfig = readKeepAliveConfig;
 const node_https_1 = __importDefault(require("node:https"));
@@ -164,6 +165,9 @@ function intercept(payload) {
 function getInstructions(projectId) {
     return apiGet(`/api/instructions/${projectId}`);
 }
+function sessionHeartbeat(sessionId, lastMessage) {
+    return apiPost("/api/sessions/heartbeat", { sessionId, lastMessage });
+}
 function waitForInstruction(projectId, timeoutMs) {
     return apiGet(`/api/instructions/${projectId}/wait?timeout=${timeoutMs}`, timeoutMs + 5000);
 }

package/dist/hook-handler/index.js

@@ -6,6 +6,14 @@ Object.defineProperty(exports, "__esModule", { value: true });
 const node_fs_1 = __importDefault(require("node:fs"));
 const api_client_1 = require("../common/api-client");
 const CONTEXT_LINES = 20;
+const QUESTION_TOOLS = new Set([
+    "askuserquestion", "askfollowupquestion", "askquestion",
+    "ask_user", "ask_followup", "ask_question",
+]);
+function isQuestionTool(toolName) {
+    return QUESTION_TOOLS.has(toolName.toLowerCase()) ||
+        toolName.toLowerCase().includes("ask");
+}
 function readStdin() {
     return new Promise((resolve, reject) => {
         let data = "";
@@ -63,14 +71,16 @@ async function main() {
     // Extract recent Claude reasoning from transcript
     input.context_summary = extractContext(input.transcript_path ?? "");
     const config = (0, api_client_1.readConfig)();
+    const toolName = input.tool_name ?? "";
     // Map to cloud API format (PascalCase)
     const payload = {
-        ToolName: input.tool_name ?? "",
+        ToolName: toolName,
         ToolInput: input.tool_input ? JSON.stringify(input.tool_input) : undefined,
         SessionId: input.session_id,
         Cwd: input.cwd,
         ContextSummary: input.context_summary,
         ProjectId: config.projectId || undefined,
+        IsQuestion: isQuestionTool(toolName),
     };
     const result = await (0, api_client_1.intercept)(payload);
     if (!result.ok || !result.data) {
@@ -111,15 +121,23 @@ async function main() {
         process.exit(0);
     }
     if (response.action === "pending") {
+        const isQuestion = response.isQuestion || isQuestionTool(toolName);
+        const reason = isQuestion
+            ? `PENDING QUESTION (${response.approvalId}): ${response.rule}. ` +
+                `This question has been forwarded to the operator on the Askance dashboard. ` +
+                `The operator will type an answer. Call the mcp__askance__wait tool with ` +
+                `approval_id "${response.approvalId}" to receive their response. ` +
+                `Continue working on other tasks while waiting.`
+            : `PENDING APPROVAL (${response.approvalId}): ${response.rule}. ` +
+                `This action is queued for human approval on the Askance dashboard. ` +
+                `Continue working on other tasks. When you need the result, call the ` +
+                `mcp__askance__wait tool with approval_id "${response.approvalId}" ` +
+                `to check if it has been approved. Once approved, retry the original action.`;
         const output = JSON.stringify({
             hookSpecificOutput: {
                 hookEventName: "PreToolUse",
                 permissionDecision: "deny",
-                permissionDecisionReason: `PENDING APPROVAL (${response.approval_id}): ${response.rule}. ` +
-                    `This action is queued for human approval on the Askance dashboard. ` +
-                    `Continue working on other tasks. When you need the result, call the ` +
-                    `mcp__askance__wait tool with approval_id "${response.approval_id}" ` +
-                    `to check if it has been approved. Once approved, retry the original action.`,
+                permissionDecisionReason: reason,
             },
         });
         process.stdout.write(output);

package/dist/hook-handler/stop-hook.js

@@ -1,5 +1,9 @@
 "use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
 Object.defineProperty(exports, "__esModule", { value: true });
+const node_fs_1 = __importDefault(require("node:fs"));
 const api_client_1 = require("../common/api-client");
 function readStdin() {
     return new Promise((resolve, reject) => {
@@ -10,6 +14,46 @@ function readStdin() {
         process.stdin.on("error", reject);
     });
 }
+function extractLastAssistantMessage(transcriptPath) {
+    try {
+        if (!transcriptPath || !node_fs_1.default.existsSync(transcriptPath))
+            return "";
+        const content = node_fs_1.default.readFileSync(transcriptPath, "utf-8");
+        const lines = content.trim().split("\n");
+        // Walk backwards to find the last assistant message
+        for (let i = lines.length - 1; i >= 0; i--) {
+            try {
+                const entry = JSON.parse(lines[i]);
+                if (entry.type === "assistant" && entry.message?.content) {
+                    const parts = Array.isArray(entry.message.content)
+                        ? entry.message.content
+                        : [entry.message.content];
+                    const texts = [];
+                    for (const part of parts) {
+                        if (typeof part === "string" && part.trim()) {
+                            texts.push(part.trim());
+                        }
+                        else if (part?.type === "text" && part.text?.trim()) {
+                            texts.push(part.text.trim());
+                        }
+                    }
+                    if (texts.length > 0) {
+                        const message = texts.join("\n");
+                        // Truncate to 2000 chars for storage
+                        return message.length > 2000 ? message.slice(0, 2000) + "..." : message;
+                    }
+                }
+            }
+            catch {
+                // skip unparseable lines
+            }
+        }
+        return "";
+    }
+    catch {
+        return "";
+    }
+}
 async function main() {
     let input;
     try {
@@ -23,6 +67,18 @@ async function main() {
     if (!config.projectId) {
         process.exit(0);
     }
+    // Extract and post the last assistant message to the dashboard
+    if (input.session_id && input.transcript_path) {
+        try {
+            const lastMessage = extractLastAssistantMessage(input.transcript_path);
+            if (lastMessage) {
+                await (0, api_client_1.sessionHeartbeat)(input.session_id, lastMessage);
+            }
+        }
+        catch {
+            // Non-critical — don't block on failure
+        }
+    }
     // Check for queued instructions from the dashboard
     try {
         const result = await (0, api_client_1.getInstructions)(config.projectId);

package/dist/mcp-server/index.js

@@ -57,6 +57,15 @@ server.tool("wait", "Wait for a pending Askance approval to be decided. Use this
                     }],
             };
         }
+        if (approvalStatus === "answered") {
+            const response = approval.response ?? "";
+            return {
+                content: [{
+                        type: "text",
+                        text: `OPERATOR RESPONSE for ${approval_id}:\n\n${response}\n\nThe operator has answered your question. Use this response to continue your work.`,
+                    }],
+            };
+        }
         return {
             content: [{
                     type: "text",
@@ -169,13 +178,13 @@ server.tool("check_instructions", "Poll the Askance dashboard for new operator i
                 isError: true,
             };
         }
-        // Read keep-alive config from local .askance.yml
+        // Read keep-alive config from .askance/config.json
         const kaConfig = (0, api_client_1.readKeepAliveConfig)();
         if (!kaConfig.enabled) {
             return {
                 content: [{
                         type: "text",
-                        text: "Keep-alive polling is disabled in .askance.yml. You may stop.",
+                        text: "Keep-alive polling is disabled. You may stop.",
                     }],
             };
         }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@askance/cli",
-  "version": "0.2.4",
+  "version": "0.3.1",
   "description": "Askance CLI — Tool call interception & approval management for AI coding agents",
   "license": "MIT",
   "homepage": "https://askance.app",