@ax0l0tl/agent-governance-opencode 4.0.1 → 4.0.3

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@ax0l0tl/agent-governance-opencode",
-  "version": "4.0.1",
-  "description": "TEST ONLY — Do not install. Temporary fork of @microsoft/agent-governance-opencode published to verify OpenCode plugin contract fixes before upstreaming to Microsoft.",
+  "version": "4.0.3",
+  "description": "Public Preview — OpenCode CLI governance plugin for Agent Governance Toolkit developer protection policies",
   "type": "module",
   "main": "src/index.mjs",
   "exports": {
@@ -43,9 +43,8 @@
   "homepage": "https://github.com/microsoft/agent-governance-toolkit/tree/main/agent-governance-opencode",
   "dependencies": {
     "@microsoft/agent-governance-sdk": "3.7.0",
-    "@opencode-ai/plugin": "^1.17.1"
+    "@opencode-ai/plugin": "1.17.1"
   },
-  "devDependencies": {},
   "engines": {
     "node": ">=22.0.0"
   }

package/src/index.mjs

@@ -1,6 +1,9 @@
 // Copyright (c) Microsoft Corporation.
 // Licensed under the MIT License.
 
+import { appendFileSync } from "node:fs";
+import { homedir } from "node:os";
+import { join } from "node:path";
 import { tool } from "@opencode-ai/plugin";
 import {
   checkArbitraryText,
@@ -17,7 +20,7 @@ import {
  * Loads the AGT policy once per OpenCode process and wires it into the
  * OpenCode plugin contract:
  *
- *  - session.created              — inject AGT governance context for the run
+ *  - session.created           — log AGT governance status at session start
  *  - event (chat.params/start) — scan submitted prompts; throw to block
  *  - tool.execute.before       — enforce policy; throw to deny, mark args
  *                                for OpenCode's permission prompt on review
@@ -55,8 +58,6 @@ export const AgtGovernance = async (ctx) => {
   }
 
   return {
-    // Bug 1 fixed: session.start is not a valid OpenCode hook; use session.created.
-    // The additionalContext return value is also not part of the OpenCode contract.
     "session.created": async () => {
       try {
         const state = await getState();
@@ -81,6 +82,12 @@ export const AgtGovernance = async (ctx) => {
       // OpenCode emits a wide range of events. Only inspect prompt-bearing
       // events; ignore the rest cheaply.
       const prompt = extractPromptFromEvent(event);
+      // TODO(temporary): remove after verifying which event types reach this hook.
+      try {
+        const logPath = join(homedir(), ".config", "opencode", "agt", "event-debug.ndjson");
+        const entry = JSON.stringify({ ts: new Date().toISOString(), type: event?.type ?? null, covered: Boolean(prompt), event }) + "\n";
+        appendFileSync(logPath, entry, "utf8");
+      } catch { /* best-effort */ }
       if (!prompt) {
         return;
       }
@@ -94,8 +101,6 @@ export const AgtGovernance = async (ctx) => {
         throw new Error(result.reason || "AGT governance blocked the submitted prompt.");
       }
     },
-
-    // Bug 2 fixed: OpenCode expects flat string keys, not nested objects.
     "tool.execute.before": async (input, output) => {
       const state = await getState();
       const result = await evaluateOpenCodeTool(state, {
@@ -142,10 +147,6 @@ export const AgtGovernance = async (ctx) => {
       }
     },
 
-    // Bug 3 fixed: `tool` (singular) with `args` (not `tools` with `parameters`).
-    // Bug 4 fixed: execute returns a plain string, not an MCP { content: [...] } envelope.
-    // tool.schema (Zod) is provided by @opencode-ai/plugin (devDependency), which OpenCode
-    // always makes available in its plugin runtime environment.
     tool: {
       agt_policy_status: {
         description: "Return the active AGT OpenCode governance policy status and source.",