npm - @f-o-h/cli - Versions diffs - 0.1.40 → 0.1.42 - Mend

@f-o-h/cli 0.1.40 → 0.1.42

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/dist/foh.js +52 -11
package/package.json +1 -1

package/dist/foh.js CHANGED Viewed

@@ -32801,7 +32801,7 @@ var StdioServerTransport = class {
 };
 // src/lib/cli-version.ts
-var CLI_VERSION = "0.1.40";
+var CLI_VERSION = "0.1.42";
 // src/commands/mcp-serve.ts
 var DEFAULT_TIMEOUT_MS = 12e4;
@@ -39054,7 +39054,13 @@ function resolveCodexExecutionCommand() {
 }
 function validateCodexRunner(options) {
   if (options.skipRunnerProbe) {
-    return { binaryChecked: false, requiredFlagsChecked: false };
+    return {
+      binaryChecked: false,
+      requiredFlagsChecked: false,
+      automationMode: "ask-for-approval-never",
+      globalArgs: ["--ask-for-approval", "never"],
+      execArgs: []
+    };
   }
   const probe = options.runnerProbe ?? defaultRunnerProbe;
   const probeCommand = resolveCodexProbeCommand();
@@ -39066,26 +39072,48 @@ function validateCodexRunner(options) {
   if (help.error || help.status !== 0) {
     throw new ExternalAgentExecutorError("external_agent_runner_help_unavailable", "Codex runner probe failed: `codex exec --help` did not exit 0.");
   }
-  const helpText = `${help.stdout}
+  const execHelpText = `${help.stdout}
 ${help.stderr}`;
-  const requiredFlags = [
+  const rootHelp = probe(probeCommand, ["--help"]);
+  const rootHelpText = `${rootHelp.stdout}
+${rootHelp.stderr}`;
+  const commonExecFlags = [
     "--cd",
     "--skip-git-repo-check",
     "--ephemeral",
     "--ignore-rules",
     "--sandbox",
-    "--full-auto",
     "--json",
     "--output-last-message"
   ];
-  const missing = requiredFlags.filter((flag) => !helpText.includes(flag));
+  const missing = commonExecFlags.filter((flag) => !execHelpText.includes(flag));
+  const supportsLegacyFullAuto = execHelpText.includes("--full-auto");
+  const supportsModernApprovalMode = rootHelp.status === 0 && rootHelpText.includes("--ask-for-approval");
+  if (!supportsLegacyFullAuto && !supportsModernApprovalMode) {
+    missing.push("--full-auto or --ask-for-approval");
+  }
   if (missing.length > 0) {
     throw new ExternalAgentExecutorError(
       "external_agent_runner_required_flags_missing",
       `Codex runner is missing required exec flag(s): ${missing.join(", ")}`
     );
   }
-  return { binaryChecked: true, requiredFlagsChecked: true };
+  if (supportsModernApprovalMode) {
+    return {
+      binaryChecked: true,
+      requiredFlagsChecked: true,
+      automationMode: "ask-for-approval-never",
+      globalArgs: ["--ask-for-approval", "never"],
+      execArgs: []
+    };
+  }
+  return {
+    binaryChecked: true,
+    requiredFlagsChecked: true,
+    automationMode: "full-auto",
+    globalArgs: [],
+    execArgs: ["--full-auto"]
+  };
 }
 function normalizeCodexSandboxBackend(value) {
   const normalized = (value || "default").trim().toLowerCase();
@@ -39095,6 +39123,14 @@ function normalizeCodexSandboxBackend(value) {
     `Unsupported Codex sandbox backend: ${value}. Use default or legacy-landlock.`
   );
 }
+function normalizeCodexSandboxMode(value) {
+  const normalized = (value || "workspace-write").trim().toLowerCase();
+  if (normalized === "workspace-write" || normalized === "danger-full-access") return normalized;
+  throw new ExternalAgentExecutorError(
+    "invalid_codex_sandbox_mode",
+    `Unsupported Codex sandbox mode: ${value}. Use workspace-write or danger-full-access.`
+  );
+}
 function codexConfigArgs(input) {
   const args = [];
   if (input.backend === "legacy-landlock") {
@@ -39133,6 +39169,7 @@ function createExternalAgentExecutorPlan(options) {
   const batch = readBatch(batchPath);
   const runnerProbe = validateCodexRunner(options);
   const codexSandboxBackend = normalizeCodexSandboxBackend(options.codexSandboxBackend);
+  const codexSandboxMode = normalizeCodexSandboxMode(options.codexSandboxMode);
   const codexNetworkAccess = options.codexNetworkAccess === true;
   const privateRepoRoot = (0, import_path12.resolve)(options.privateRepoRoot || options.cwd || process.cwd());
   const workspaceRoot = resolveWorkspaceRoot({ batchPath, workspaceRoot: options.workspaceRoot, privateRepoRoot });
@@ -39175,6 +39212,7 @@ function createExternalAgentExecutorPlan(options) {
     const runPath = (0, import_path12.join)(runDir, "run.json");
     const artifactSafetyPath = (0, import_path12.join)(runDir, "artifact-safety.json");
     const args = [
+      ...runnerProbe.globalArgs,
       "exec",
       ...codexConfigArgs({ backend: codexSandboxBackend, networkAccess: codexNetworkAccess }),
       "--cd",
@@ -39183,8 +39221,8 @@ function createExternalAgentExecutorPlan(options) {
       "--ephemeral",
       "--ignore-rules",
       "--sandbox",
-      "workspace-write",
-      "--full-auto",
+      codexSandboxMode,
+      ...runnerProbe.execArgs,
       "--json",
       "--output-last-message",
       lastMessagePath,
@@ -39230,6 +39268,8 @@ function createExternalAgentExecutorPlan(options) {
         binary_checked: runnerProbe.binaryChecked,
         required_flags_checked: runnerProbe.requiredFlagsChecked
       },
+      codex_automation_mode: runnerProbe.automationMode,
+      codex_sandbox_mode: codexSandboxMode,
       codex_sandbox_backend: codexSandboxBackend,
       codex_network_access: codexNetworkAccess
     },
@@ -39337,7 +39377,7 @@ ${stderr}`;
   if (/(?:blocked|rejected|declined) by policy|EXEC_POLICY_BLOCKED|command execution was rejected|shell commands were rejected/i.test(combined)) {
     return { status: "hold", reasonCode: "codex_exec_policy_blocked" };
   }
-  if (/bwrap:.*(?:RTM_NEWADDR|Operation not permitted)|bubblewrap.*(?:RTM_NEWADDR|Operation not permitted)|Failed RTM_NEWADDR|ENV_SANDBOX_EXEC_BLOCKED/i.test(combined)) {
+  if (/bwrap:.*(?:RTM_NEWADDR|Operation not permitted|setting up uid map: Permission denied)|bubblewrap.*(?:RTM_NEWADDR|Operation not permitted|setting up uid map: Permission denied)|Failed RTM_NEWADDR|ENV_SANDBOX_EXEC_BLOCKED|permission profiles requiring direct runtime enforcement are incompatible with --use-legacy-landlock|legacy[_ -]?landlock.*incompatible/i.test(combined)) {
     return { status: "hold", reasonCode: "codex_sandbox_exec_blocked" };
   }
   if (/ENV_NETWORK_DNS_BLOCK|Could not resolve host|npm ping.*timeout|NO_EXECUTABLE_INSTALL/i.test(combined)) {
@@ -39860,7 +39900,7 @@ Exit the shell to finalize run.json.
     }), { json: Boolean(opts.json) });
     if (!report.ok) process.exitCode = 1;
   });
-  external.command("execute").description("Create a guarded dry-run executor plan for programmable external-agent runners").requiredOption("--batch <path>", "Path to external_agent_batch_plan.v1 batch.json").option("--runner <runner>", "Runner implementation", "codex").option("--workspace-root <path>", "Clean executor workspace root; must be outside the private repo").option("--private-repo-root <path>", "Private repository root to guard against").option("--timeout-minutes <minutes>", "Per-run timeout planned for future execution", "30").option("--codex-sandbox-backend <backend>", "Codex sandbox backend override: default|legacy-landlock", "default").option("--codex-network-access", "Allow Codex workspace-write sandbox network access for public docs/npm probes").option("--skip-runner-probe", "Skip local runner binary/help probing").option("--dry-run", "Write the executor plan without launching the runner", true).option("--live", "Launch one controlled external-agent run after writing the guarded plan").option("--json", "Output as JSON").action(async (opts) => {
+  external.command("execute").description("Create a guarded dry-run executor plan for programmable external-agent runners").requiredOption("--batch <path>", "Path to external_agent_batch_plan.v1 batch.json").option("--runner <runner>", "Runner implementation", "codex").option("--workspace-root <path>", "Clean executor workspace root; must be outside the private repo").option("--private-repo-root <path>", "Private repository root to guard against").option("--timeout-minutes <minutes>", "Per-run timeout planned for future execution", "30").option("--codex-sandbox-backend <backend>", "Codex sandbox backend override: default|legacy-landlock", "default").option("--codex-sandbox-mode <mode>", "Codex sandbox mode: workspace-write|danger-full-access", "workspace-write").option("--codex-network-access", "Allow Codex workspace-write sandbox network access for public docs/npm probes").option("--skip-runner-probe", "Skip local runner binary/help probing").option("--dry-run", "Write the executor plan without launching the runner", true).option("--live", "Launch one controlled external-agent run after writing the guarded plan").option("--json", "Output as JSON").action(async (opts) => {
     try {
       const plan = createExternalAgentExecutorPlan({
         batchPath: String(opts.batch),
@@ -39869,6 +39909,7 @@ Exit the shell to finalize run.json.
         privateRepoRoot: opts.privateRepoRoot ? String(opts.privateRepoRoot) : void 0,
         timeoutMinutes: Number(opts.timeoutMinutes || 30),
         codexSandboxBackend: String(opts.codexSandboxBackend || "default"),
+        codexSandboxMode: String(opts.codexSandboxMode || "workspace-write"),
         codexNetworkAccess: Boolean(opts.codexNetworkAccess),
         skipRunnerProbe: Boolean(opts.skipRunnerProbe),
         cwd: process.cwd()

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@f-o-h/cli",
-  "version": "0.1.40",
+  "version": "0.1.42",
   "description": "FOH CLI - AI-operator provisioning tool for Front Of House",
   "license": "UNLICENSED",
   "bin": {