@corbat-tech/coco 2.5.1 → 2.5.3

package/dist/index.js

@@ -17,8 +17,8 @@ import { promisify } from 'util';
 import { z } from 'zod';
 import { Logger } from 'tslog';
 import Anthropic from '@anthropic-ai/sdk';
-import OpenAI from 'openai';
 import { jsonrepair } from 'jsonrepair';
+import OpenAI from 'openai';
 import 'http';
 import { GoogleGenerativeAI, FunctionCallingMode } from '@google/generative-ai';
 import JSON5 from 'json5';
@@ -8401,6 +8401,12 @@ var ToolRegistry = class {
           return `${field} (${issue.message.toLowerCase()})`;
         });
         errorMessage = `Invalid tool input \u2014 ${fields.join(", ")}`;
+        const allUndefined = error.issues.every(
+          (i) => i.message.toLowerCase().includes("received undefined")
+        );
+        if (allUndefined && error.issues.length > 1) {
+          errorMessage += ". All parameters are missing \u2014 this is likely a JSON serialization error on our side. Please retry with the same arguments.";
+        }
       } else {
         const rawMessage = error instanceof Error ? error.message : String(error);
         errorMessage = humanizeError(rawMessage, name);
@@ -11784,6 +11790,20 @@ var AnthropicProvider = class {
         if (event.type === "content_block_start") {
           const contentBlock = event.content_block;
           if (contentBlock.type === "tool_use") {
+            if (currentToolCall) {
+              getLogger().warn(
+                `[Anthropic] content_block_stop missing for tool '${currentToolCall.name}' \u2014 finalizing early to prevent data bleed.`
+              );
+              try {
+                currentToolCall.input = currentToolInputJson ? JSON.parse(currentToolInputJson) : {};
+              } catch {
+                currentToolCall.input = {};
+              }
+              yield {
+                type: "tool_use_end",
+                toolCall: { ...currentToolCall }
+              };
+            }
             currentToolCall = {
               id: contentBlock.id,
               name: contentBlock.name
@@ -11813,10 +11833,21 @@ var AnthropicProvider = class {
             try {
               currentToolCall.input = currentToolInputJson ? JSON.parse(currentToolInputJson) : {};
             } catch {
-              getLogger().warn(
-                `Failed to parse tool call arguments: ${currentToolInputJson?.slice(0, 100)}`
-              );
-              currentToolCall.input = {};
+              let repaired = false;
+              if (currentToolInputJson) {
+                try {
+                  currentToolCall.input = JSON.parse(jsonrepair(currentToolInputJson));
+                  repaired = true;
+                  getLogger().debug(`Repaired JSON for tool ${currentToolCall.name}`);
+                } catch {
+                }
+              }
+              if (!repaired) {
+                getLogger().warn(
+                  `Failed to parse tool call arguments for ${currentToolCall.name}: ${currentToolInputJson?.slice(0, 300)}`
+                );
+                currentToolCall.input = {};
+              }
             }
             yield {
               type: "tool_use_end",
@@ -12366,6 +12397,30 @@ var OpenAIProvider = class {
         }
       };
       const timeoutInterval = setInterval(checkTimeout, 5e3);
+      const providerName = this.name;
+      const parseArguments = (builder) => {
+        let input = {};
+        try {
+          input = builder.arguments ? JSON.parse(builder.arguments) : {};
+        } catch (error) {
+          console.warn(
+            `[${providerName}] Failed to parse tool call arguments for ${builder.name}: ${builder.arguments?.slice(0, 300)}`
+          );
+          try {
+            if (builder.arguments) {
+              const repaired = jsonrepair(builder.arguments);
+              input = JSON.parse(repaired);
+              console.log(`[${providerName}] \u2713 Successfully repaired JSON for ${builder.name}`);
+            }
+          } catch {
+            console.error(
+              `[${providerName}] Cannot repair JSON for ${builder.name}, using empty object`
+            );
+            console.error(`[${providerName}] Original error:`, error);
+          }
+        }
+        return input;
+      };
       try {
         for await (const chunk of stream) {
           const delta = chunk.choices[0]?.delta;
@@ -12377,7 +12432,7 @@ var OpenAIProvider = class {
           }
           if (delta?.tool_calls) {
             for (const toolCallDelta of delta.tool_calls) {
-              const index = toolCallDelta.index;
+              const index = toolCallDelta.index ?? toolCallBuilders.size;
               if (!toolCallBuilders.has(index)) {
                 toolCallBuilders.set(index, {
                   id: toolCallDelta.id ?? "",
@@ -12412,34 +12467,28 @@ var OpenAIProvider = class {
               }
             }
           }
-        }
-        for (const [, builder] of toolCallBuilders) {
-          let input = {};
-          try {
-            input = builder.arguments ? JSON.parse(builder.arguments) : {};
-          } catch (error) {
-            console.warn(
-              `[${this.name}] Failed to parse tool call arguments for ${builder.name}: ${builder.arguments?.slice(0, 100)}`
-            );
-            try {
-              if (builder.arguments) {
-                const repaired = jsonrepair(builder.arguments);
-                input = JSON.parse(repaired);
-                console.log(`[${this.name}] \u2713 Successfully repaired JSON for ${builder.name}`);
-              }
-            } catch {
-              console.error(
-                `[${this.name}] Cannot repair JSON for ${builder.name}, using empty object`
-              );
-              console.error(`[${this.name}] Original error:`, error);
+          const finishReason = chunk.choices[0]?.finish_reason;
+          if (finishReason && toolCallBuilders.size > 0) {
+            for (const [, builder] of toolCallBuilders) {
+              yield {
+                type: "tool_use_end",
+                toolCall: {
+                  id: builder.id,
+                  name: builder.name,
+                  input: parseArguments(builder)
+                }
+              };
             }
+            toolCallBuilders.clear();
           }
+        }
+        for (const [, builder] of toolCallBuilders) {
           yield {
             type: "tool_use_end",
             toolCall: {
               id: builder.id,
               name: builder.name,
-              input
+              input: parseArguments(builder)
             }
           };
         }
@@ -12608,7 +12657,8 @@ var OpenAIProvider = class {
       if (msg.role === "system") {
         result.push({ role: "system", content: this.contentToString(msg.content) });
       } else if (msg.role === "user") {
-        if (Array.isArray(msg.content) && msg.content[0]?.type === "tool_result") {
+        if (Array.isArray(msg.content) && msg.content.some((b) => b.type === "tool_result")) {
+          const textParts = [];
           for (const block of msg.content) {
             if (block.type === "tool_result") {
               const toolResult = block;
@@ -12617,8 +12667,16 @@ var OpenAIProvider = class {
                 tool_call_id: toolResult.tool_use_id,
                 content: toolResult.content
               });
+            } else if (block.type === "text") {
+              textParts.push(block.text);
             }
           }
+          if (textParts.length > 0) {
+            console.warn(
+              `[${this.name}] User message has mixed tool_result and text blocks \u2014 text emitted as a separate user message.`
+            );
+            result.push({ role: "user", content: textParts.join("") });
+          }
         } else if (Array.isArray(msg.content) && msg.content.some((b) => b.type === "image")) {
           const parts = [];
           for (const block of msg.content) {
@@ -12663,6 +12721,10 @@ var OpenAIProvider = class {
                   arguments: JSON.stringify(block.input)
                 }
               });
+            } else {
+              console.warn(
+                `[${this.name}] Unexpected block type '${block.type}' in assistant message \u2014 dropping. This may indicate a message history corruption.`
+              );
             }
           }
           if (textParts.length > 0) {
@@ -15139,7 +15201,7 @@ function escapeRegex(str) {
 }
 var DEFAULT_TIMEOUT_MS = 12e4;
 var MAX_OUTPUT_SIZE = 1024 * 1024;
-var DANGEROUS_PATTERNS = [
+var DANGEROUS_PATTERNS_FULL = [
   /\brm\s+-rf\s+\/(?!\w)/,
   // rm -rf / (root)
   /\bsudo\s+rm\s+-rf/,
@@ -15152,14 +15214,6 @@ var DANGEROUS_PATTERNS = [
   // Format filesystem
   /\bformat\s+/,
   // Windows format
-  /`[^`]+`/,
-  // Backtick command substitution
-  /\$\([^)]+\)/,
-  // $() command substitution
-  /\beval\s+/,
-  // eval command
-  /\bsource\s+/,
-  // source command (can execute arbitrary scripts)
   />\s*\/etc\//,
   // Write to /etc
   />\s*\/root\//,
@@ -15173,6 +15227,25 @@ var DANGEROUS_PATTERNS = [
   /\bwget\s+.*\|\s*(ba)?sh/
   // wget | sh pattern
 ];
+var DANGEROUS_PATTERNS_SHELL_ONLY = [
+  /`[^`]+`/,
+  // Backtick command substitution
+  /\$\([^)]+\)/,
+  // $() command substitution
+  /\beval\s+/,
+  // eval command (shell eval, not JS eval())
+  /\bsource\s+/
+  // source command (can execute arbitrary scripts)
+];
+function getShellCommandPart(command) {
+  const firstNewline = command.indexOf("\n");
+  if (firstNewline === -1) return command;
+  const firstLine = command.slice(0, firstNewline);
+  if (/<<-?\s*['"]?\w/.test(firstLine)) {
+    return firstLine;
+  }
+  return command;
+}
 var SAFE_ENV_VARS = /* @__PURE__ */ new Set([
   // System info (non-sensitive)
   "PATH",
@@ -15239,13 +15312,21 @@ Examples:
     env: z.record(z.string(), z.string()).optional().describe("Environment variables")
   }),
   async execute({ command, cwd, timeout, env: env2 }) {
-    for (const pattern of DANGEROUS_PATTERNS) {
+    const shellPart = getShellCommandPart(command);
+    for (const pattern of DANGEROUS_PATTERNS_FULL) {
       if (pattern.test(command)) {
         throw new ToolError(`Potentially dangerous command blocked: ${command.slice(0, 100)}`, {
           tool: "bash_exec"
         });
       }
     }
+    for (const pattern of DANGEROUS_PATTERNS_SHELL_ONLY) {
+      if (pattern.test(shellPart)) {
+        throw new ToolError(`Potentially dangerous command blocked: ${command.slice(0, 100)}`, {
+          tool: "bash_exec"
+        });
+      }
+    }
     const startTime = performance.now();
     const timeoutMs = timeout ?? DEFAULT_TIMEOUT_MS;
     const { CommandHeartbeat: CommandHeartbeat2 } = await Promise.resolve().then(() => (init_heartbeat(), heartbeat_exports));
@@ -15327,13 +15408,21 @@ Examples:
     env: z.record(z.string(), z.string()).optional().describe("Environment variables")
   }),
   async execute({ command, cwd, env: env2 }) {
-    for (const pattern of DANGEROUS_PATTERNS) {
+    const shellPart = getShellCommandPart(command);
+    for (const pattern of DANGEROUS_PATTERNS_FULL) {
       if (pattern.test(command)) {
         throw new ToolError(`Potentially dangerous command blocked: ${command.slice(0, 100)}`, {
           tool: "bash_background"
         });
       }
     }
+    for (const pattern of DANGEROUS_PATTERNS_SHELL_ONLY) {
+      if (pattern.test(shellPart)) {
+        throw new ToolError(`Potentially dangerous command blocked: ${command.slice(0, 100)}`, {
+          tool: "bash_background"
+        });
+      }
+    }
     try {
       const filteredEnv = {};
       for (const [key, value] of Object.entries(process.env)) {
@@ -20915,7 +21004,7 @@ Examples:
 });
 var imageTools = [readImageTool];
 var path31 = await import('path');
-var DANGEROUS_PATTERNS2 = [
+var DANGEROUS_PATTERNS = [
   /\bDROP\s+(?:TABLE|DATABASE|INDEX|VIEW)\b/i,
   /\bTRUNCATE\b/i,
   /\bALTER\s+TABLE\b/i,
@@ -20925,7 +21014,7 @@ var DANGEROUS_PATTERNS2 = [
   /\bCREATE\s+(?:TABLE|DATABASE|INDEX)\b/i
 ];
 function isDangerousSql(sql2) {
-  return DANGEROUS_PATTERNS2.some((pattern) => pattern.test(sql2));
+  return DANGEROUS_PATTERNS.some((pattern) => pattern.test(sql2));
 }
 var sqlQueryTool = defineTool({
   name: "sql_query",