npm - @f2a/network - Versions diffs - 0.1.2 → 0.2.0 - Mend

@f2a/network 0.1.2 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (226) hide show

package/README.md +278 -63
package/dist/cli/commands.d.ts.map +1 -1
package/dist/cli/commands.js +29 -2
package/dist/cli/commands.js.map +1 -1
package/dist/cli/config.d.ts +176 -0
package/dist/cli/config.d.ts.map +1 -0
package/dist/cli/config.js +386 -0
package/dist/cli/config.js.map +1 -0
package/dist/cli/daemon.d.ts +54 -0
package/dist/cli/daemon.d.ts.map +1 -0
package/dist/cli/daemon.js +572 -0
package/dist/cli/daemon.js.map +1 -0
package/dist/cli/index.js +90 -16
package/dist/cli/index.js.map +1 -1
package/dist/cli/init.d.ts +13 -0
package/dist/cli/init.d.ts.map +1 -0
package/dist/cli/init.js +352 -0
package/dist/cli/init.js.map +1 -0
package/dist/core/e2ee-crypto.d.ts +127 -1
package/dist/core/e2ee-crypto.d.ts.map +1 -1
package/dist/core/e2ee-crypto.js +446 -12
package/dist/core/e2ee-crypto.js.map +1 -1
package/dist/core/f2a.d.ts +2 -1
package/dist/core/f2a.d.ts.map +1 -1
package/dist/core/f2a.js +6 -2
package/dist/core/f2a.js.map +1 -1
package/dist/core/identity/encrypted-key-store.d.ts +19 -0
package/dist/core/identity/encrypted-key-store.d.ts.map +1 -0
package/dist/core/identity/encrypted-key-store.js +72 -0
package/dist/core/identity/encrypted-key-store.js.map +1 -0
package/dist/core/identity/identity-manager.d.ts +133 -0
package/dist/core/identity/identity-manager.d.ts.map +1 -0
package/dist/core/identity/identity-manager.js +454 -0
package/dist/core/identity/identity-manager.js.map +1 -0
package/dist/core/identity/index.d.ts +8 -0
package/dist/core/identity/index.d.ts.map +1 -0
package/dist/core/identity/index.js +7 -0
package/dist/core/identity/index.js.map +1 -0
package/dist/core/identity/types.d.ts +70 -0
package/dist/core/identity/types.d.ts.map +1 -0
package/dist/core/identity/types.js +17 -0
package/dist/core/identity/types.js.map +1 -0
package/dist/core/p2p-network.d.ts +26 -0
package/dist/core/p2p-network.d.ts.map +1 -1
package/dist/core/p2p-network.js +434 -105
package/dist/core/p2p-network.js.map +1 -1
package/dist/core/reputation-security.d.ts +15 -0
package/dist/core/reputation-security.d.ts.map +1 -1
package/dist/core/reputation-security.js +73 -3
package/dist/core/reputation-security.js.map +1 -1
package/dist/core/reputation.d.ts +129 -4
package/dist/core/reputation.d.ts.map +1 -1
package/dist/core/reputation.js +294 -1
package/dist/core/reputation.js.map +1 -1
package/dist/core/review-committee.d.ts +2 -2
package/dist/core/review-committee.d.ts.map +1 -1
package/dist/core/review-committee.js +17 -0
package/dist/core/review-committee.js.map +1 -1
package/dist/daemon/control-server.d.ts.map +1 -1
package/dist/daemon/control-server.js +44 -1
package/dist/daemon/control-server.js.map +1 -1
package/dist/daemon/webhook.d.ts +3 -0
package/dist/daemon/webhook.d.ts.map +1 -1
package/dist/daemon/webhook.js +318 -6
package/dist/daemon/webhook.js.map +1 -1
package/dist/index.d.ts +3 -3
package/dist/index.d.ts.map +1 -1
package/dist/index.js +7 -3
package/dist/index.js.map +1 -1
package/dist/types/index.d.ts +4 -0
package/dist/types/index.d.ts.map +1 -1
package/dist/types/index.js.map +1 -1
package/dist/types/result.d.ts +1 -1
package/dist/types/result.d.ts.map +1 -1
package/dist/types/result.js.map +1 -1
package/dist/utils/crypto-utils.d.ts +17 -0
package/dist/utils/crypto-utils.d.ts.map +1 -0
package/dist/utils/crypto-utils.js +28 -0
package/dist/utils/crypto-utils.js.map +1 -0
package/dist/utils/logger.d.ts +1 -0
package/dist/utils/logger.d.ts.map +1 -1
package/dist/utils/logger.js +9 -3
package/dist/utils/logger.js.map +1 -1
package/dist/utils/rate-limiter.d.ts.map +1 -1
package/dist/utils/rate-limiter.js +3 -1
package/dist/utils/rate-limiter.js.map +1 -1
package/dist/utils/signature.d.ts +47 -1
package/dist/utils/signature.d.ts.map +1 -1
package/dist/utils/signature.js +166 -11
package/dist/utils/signature.js.map +1 -1
package/package.json +9 -1
package/.github/workflows/ci.yml +0 -113
package/.github/workflows/publish.yml +0 -60
package/MONOREPO.md +0 -58
package/SKILL.md +0 -137
package/dist/adapters/openclaw.d.ts +0 -103
package/dist/adapters/openclaw.d.ts.map +0 -1
package/dist/adapters/openclaw.js +0 -297
package/dist/adapters/openclaw.js.map +0 -1
package/dist/core/connection-manager.d.ts +0 -80
package/dist/core/connection-manager.d.ts.map +0 -1
package/dist/core/connection-manager.js +0 -235
package/dist/core/connection-manager.js.map +0 -1
package/dist/core/connection-manager.test.d.ts +0 -2
package/dist/core/connection-manager.test.d.ts.map +0 -1
package/dist/core/connection-manager.test.js +0 -52
package/dist/core/connection-manager.test.js.map +0 -1
package/dist/core/identity.d.ts +0 -47
package/dist/core/identity.d.ts.map +0 -1
package/dist/core/identity.js +0 -130
package/dist/core/identity.js.map +0 -1
package/dist/core/identity.test.d.ts +0 -2
package/dist/core/identity.test.d.ts.map +0 -1
package/dist/core/identity.test.js +0 -43
package/dist/core/identity.test.js.map +0 -1
package/dist/core/serverless.d.ts +0 -155
package/dist/core/serverless.d.ts.map +0 -1
package/dist/core/serverless.js +0 -615
package/dist/core/serverless.js.map +0 -1
package/dist/daemon/webhook.test.d.ts +0 -2
package/dist/daemon/webhook.test.d.ts.map +0 -1
package/dist/daemon/webhook.test.js +0 -24
package/dist/daemon/webhook.test.js.map +0 -1
package/dist/protocol/messages.d.ts +0 -739
package/dist/protocol/messages.d.ts.map +0 -1
package/dist/protocol/messages.js +0 -188
package/dist/protocol/messages.js.map +0 -1
package/dist/protocol/messages.test.d.ts +0 -2
package/dist/protocol/messages.test.d.ts.map +0 -1
package/dist/protocol/messages.test.js +0 -55
package/dist/protocol/messages.test.js.map +0 -1
package/docs/F2A-PROTOCOL.md +0 -61
package/docs/MOBILE_BOOTSTRAP_DESIGN.md +0 -126
package/docs/a2a-lessons.md +0 -316
package/docs/middleware-guide.md +0 -448
package/docs/readme-update-checklist.md +0 -90
package/docs/reputation-guide.md +0 -396
package/docs/rfcs/001-reputation-system.md +0 -712
package/docs/security-design.md +0 -247
package/install.sh +0 -231
package/packages/openclaw-adapter/README.md +0 -510
package/packages/openclaw-adapter/openclaw.plugin.json +0 -106
package/packages/openclaw-adapter/package.json +0 -40
package/packages/openclaw-adapter/src/announcement-queue.test.ts +0 -449
package/packages/openclaw-adapter/src/announcement-queue.ts +0 -403
package/packages/openclaw-adapter/src/capability-detector.test.ts +0 -99
package/packages/openclaw-adapter/src/capability-detector.ts +0 -183
package/packages/openclaw-adapter/src/claim-handlers.test.ts +0 -974
package/packages/openclaw-adapter/src/claim-handlers.ts +0 -482
package/packages/openclaw-adapter/src/connector.business.test.ts +0 -583
package/packages/openclaw-adapter/src/connector.ts +0 -795
package/packages/openclaw-adapter/src/index.test.ts +0 -82
package/packages/openclaw-adapter/src/index.ts +0 -18
package/packages/openclaw-adapter/src/integration.e2e.test.ts +0 -829
package/packages/openclaw-adapter/src/logger.ts +0 -51
package/packages/openclaw-adapter/src/network-client.test.ts +0 -266
package/packages/openclaw-adapter/src/network-client.ts +0 -251
package/packages/openclaw-adapter/src/network-recovery.test.ts +0 -465
package/packages/openclaw-adapter/src/node-manager.test.ts +0 -136
package/packages/openclaw-adapter/src/node-manager.ts +0 -429
package/packages/openclaw-adapter/src/plugin.test.ts +0 -439
package/packages/openclaw-adapter/src/plugin.ts +0 -104
package/packages/openclaw-adapter/src/reputation.test.ts +0 -221
package/packages/openclaw-adapter/src/reputation.ts +0 -368
package/packages/openclaw-adapter/src/task-guard.test.ts +0 -502
package/packages/openclaw-adapter/src/task-guard.ts +0 -860
package/packages/openclaw-adapter/src/task-queue.concurrency.test.ts +0 -462
package/packages/openclaw-adapter/src/task-queue.edge-cases.test.ts +0 -284
package/packages/openclaw-adapter/src/task-queue.persistence.test.ts +0 -408
package/packages/openclaw-adapter/src/task-queue.ts +0 -668
package/packages/openclaw-adapter/src/tool-handlers.test.ts +0 -906
package/packages/openclaw-adapter/src/tool-handlers.ts +0 -574
package/packages/openclaw-adapter/src/types.ts +0 -361
package/packages/openclaw-adapter/src/webhook-pusher.test.ts +0 -188
package/packages/openclaw-adapter/src/webhook-pusher.ts +0 -220
package/packages/openclaw-adapter/src/webhook-server.test.ts +0 -580
package/packages/openclaw-adapter/src/webhook-server.ts +0 -202
package/packages/openclaw-adapter/tsconfig.json +0 -20
package/src/cli/commands.test.ts +0 -157
package/src/cli/commands.ts +0 -129
package/src/cli/index.test.ts +0 -77
package/src/cli/index.ts +0 -234
package/src/core/autonomous-economy.test.ts +0 -291
package/src/core/autonomous-economy.ts +0 -428
package/src/core/e2ee-crypto.test.ts +0 -125
package/src/core/e2ee-crypto.ts +0 -246
package/src/core/f2a.test.ts +0 -269
package/src/core/f2a.ts +0 -618
package/src/core/p2p-network.test.ts +0 -199
package/src/core/p2p-network.ts +0 -1432
package/src/core/reputation-security.test.ts +0 -403
package/src/core/reputation-security.ts +0 -562
package/src/core/reputation.test.ts +0 -260
package/src/core/reputation.ts +0 -576
package/src/core/review-committee.test.ts +0 -380
package/src/core/review-committee.ts +0 -401
package/src/core/token-manager.test.ts +0 -133
package/src/core/token-manager.ts +0 -140
package/src/daemon/control-server.test.ts +0 -216
package/src/daemon/control-server.ts +0 -292
package/src/daemon/index.test.ts +0 -85
package/src/daemon/index.ts +0 -89
package/src/daemon/main.ts +0 -44
package/src/daemon/start.ts +0 -29
package/src/daemon/webhook.test.ts +0 -68
package/src/daemon/webhook.ts +0 -105
package/src/index.test.ts +0 -436
package/src/index.ts +0 -72
package/src/types/index.test.ts +0 -87
package/src/types/index.ts +0 -341
package/src/types/result.ts +0 -68
package/src/utils/benchmark.ts +0 -237
package/src/utils/logger.ts +0 -331
package/src/utils/middleware.ts +0 -229
package/src/utils/rate-limiter.ts +0 -207
package/src/utils/signature.ts +0 -136
package/src/utils/validation.ts +0 -186
package/tests/docker/Dockerfile.node +0 -23
package/tests/docker/Dockerfile.runner +0 -18
package/tests/docker/docker-compose.test.yml +0 -73
package/tests/integration/message-passing.test.ts +0 -109
package/tests/integration/multi-node.test.ts +0 -92
package/tests/integration/p2p-connection.test.ts +0 -83
package/tests/integration/test-config.ts +0 -32
package/tsconfig.json +0 -21
package/vitest.config.ts +0 -26

package/packages/openclaw-adapter/src/task-guard.test.ts DELETED Viewed

@@ -1,502 +0,0 @@
-/**
- * TaskGuard 测试
- */
-import { describe, it, expect, beforeEach, afterEach, vi } from 'vitest';
-import { TaskGuard, DEFAULT_TASK_GUARD_CONFIG, type TaskGuardRule, type TaskGuardContext } from './task-guard.js';
-import type { TaskRequest, TaskAnnouncement, ReputationEntry } from './types.js';
-describe('TaskGuard', () => {
-  let guard: TaskGuard;
-  beforeEach(() => {
-    guard = new TaskGuard();
-  });
-  // 创建测试任务
-  const createTask = (overrides: Partial<TaskRequest> = {}): TaskRequest => ({
-    taskId: 'test-task-1',
-    taskType: 'test',
-    description: 'A test task',
-    from: 'peer-1',
-    timestamp: Date.now(),
-    timeout: 5000,
-    ...overrides
-  });
-  const createAnnouncement = (overrides: Partial<TaskAnnouncement> = {}): TaskAnnouncement => ({
-    announcementId: 'ann-test-1',
-    taskType: 'test',
-    description: 'A test announcement',
-    from: 'peer-1',
-    timestamp: Date.now(),
-    timeout: 5000,
-    status: 'open',
-    ...overrides
-  });
-  describe('check() - 基础功能', () => {
-    it('应该返回检查报告', () => {
-      const task = createTask();
-      const report = guard.check(task);
-      expect(report.taskId).toBe('test-task-1');
-      expect(report.passed).toBe(true);
-      expect(report.timestamp).toBeGreaterThan(0);
-      expect(Array.isArray(report.results)).toBe(true);
-    });
-    it('应该运行所有启用的规则', () => {
-      const task = createTask();
-      const report = guard.check(task);
-      // 7 个默认规则
-      expect(report.results).toHaveLength(7);
-    });
-    it('应该正确分类 blocks 和 warnings', () => {
-      const task = createTask({ description: 'rm -rf /' });
-      const report = guard.check(task);
-      expect(report.passed).toBe(false);
-      expect(report.blocks.length).toBeGreaterThan(0);
-    });
-    it('应该记录任务以用于频率限制', () => {
-      const task = createTask();
-      guard.check(task);
-      guard.check(task);
-      guard.check(task);
-      // 第四次检查应该在 recentTaskCount 中看到 3
-      const report = guard.check(task, { isWhitelisted: false, isBlacklisted: false });
-      // 频率限制规则应该通过（3 < 10）
-      const rateLimitResult = report.results.find(r => r.ruleId === 'rate-limit');
-      expect(rateLimitResult?.passed).toBe(true);
-    });
-  });
-  describe('规则 1: 黑名单检查', () => {
-    it('应该阻止黑名单用户', () => {
-      const task = createTask();
-      const report = guard.check(task, { isBlacklisted: true });
-      expect(report.passed).toBe(false);
-      expect(report.blocks.some(r => r.ruleId === 'blacklist')).toBe(true);
-    });
-    it('应该允许非黑名单用户', () => {
-      const task = createTask();
-      const report = guard.check(task, { isBlacklisted: false });
-      const blacklistResult = report.results.find(r => r.ruleId === 'blacklist');
-      expect(blacklistResult?.passed).toBe(true);
-    });
-  });
-  describe('规则 2: 频率限制', () => {
-    it('应该阻止频率过高的请求', () => {
-      const task = createTask();
-      // 发送 11 次请求（超过默认限制 10）
-      for (let i = 0; i < 11; i++) {
-        guard.check(task);
-      }
-      const report = guard.check(task);
-      const rateLimitResult = report.results.find(r => r.ruleId === 'rate-limit');
-      expect(rateLimitResult?.passed).toBe(false);
-      expect(report.passed).toBe(false);
-    });
-    it('应该允许正常频率的请求', () => {
-      const task = createTask();
-      const report = guard.check(task);
-      const rateLimitResult = report.results.find(r => r.ruleId === 'rate-limit');
-      expect(rateLimitResult?.passed).toBe(true);
-    });
-    it('应该使用自定义的 maxTasksPerMinute', () => {
-      const strictGuard = new TaskGuard({ maxTasksPerMinute: 2 });
-      const task = createTask();
-      // 第一次检查：recentTaskCount = 0，通过
-      strictGuard.check(task);
-      // 第二次检查：recentTaskCount = 1，通过
-      strictGuard.check(task);
-      // 第三次检查：recentTaskCount = 2，2 > 2 = false，通过
-      strictGuard.check(task);
-      // 第四次检查：recentTaskCount = 3，3 > 2 = true，被阻止
-      const report = strictGuard.check(task);
-      expect(report.passed).toBe(false);
-      expect(report.blocks.some(r => r.ruleId === 'rate-limit')).toBe(true);
-    });
-  });
-  describe('规则 3: 危险关键词检查', () => {
-    it('应该检测危险关键词', () => {
-      const dangerousTasks = [
-        'rm -rf /',
-        'format the disk',
-        'delete all files',
-        'destroy everything',
-        'wipe the system'
-      ];
-      for (const desc of dangerousTasks) {
-        const task = createTask({ description: desc });
-        const report = guard.check(task);
-        const keywordResult = report.results.find(r => r.ruleId === 'dangerous-keywords');
-        expect(keywordResult?.passed).toBe(false);
-      }
-    });
-    it('应该允许安全描述', () => {
-      const task = createTask({ description: 'Read a file and process data' });
-      const report = guard.check(task);
-      const keywordResult = report.results.find(r => r.ruleId === 'dangerous-keywords');
-      expect(keywordResult?.passed).toBe(true);
-    });
-    it('应该检测关键词（不区分大小写）', () => {
-      const task = createTask({ description: 'FORMAT the disk' });
-      const report = guard.check(task);
-      const keywordResult = report.results.find(r => r.ruleId === 'dangerous-keywords');
-      expect(keywordResult?.passed).toBe(false);
-    });
-  });
-  describe('规则 4: 危险模式检查', () => {
-    it('应该检测危险正则模式', () => {
-      const dangerousPatterns = [
-        'rm -rf /',
-        'format c:',
-        'delete all records',
-        'drop database users',
-        'shutdown -h now'
-      ];
-      for (const desc of dangerousPatterns) {
-        const task = createTask({ description: desc });
-        const report = guard.check(task);
-        const patternResult = report.results.find(r => r.ruleId === 'dangerous-patterns');
-        expect(patternResult?.passed).toBe(false);
-      }
-    });
-    it('应该允许安全模式', () => {
-      const task = createTask({ description: 'delete a single item from list' });
-      const report = guard.check(task);
-      const patternResult = report.results.find(r => r.ruleId === 'dangerous-patterns');
-      expect(patternResult?.passed).toBe(true);
-    });
-  });
-  describe('规则 5: 信誉检查', () => {
-    it('应该检查信誉是否足够执行危险任务', () => {
-      const reputation: ReputationEntry = {
-        peerId: 'peer-1',
-        score: 50, // 低于默认的 minReputationForDangerous (70)
-        successfulTasks: 10,
-        failedTasks: 5,
-        totalTasks: 15,
-        avgResponseTime: 100,
-        lastInteraction: Date.now(),
-        history: []
-      };
-      const task = createTask({ description: 'rm -rf /' });
-      const report = guard.check(task, { requesterReputation: reputation });
-      const repResult = report.results.find(r => r.ruleId === 'reputation');
-      expect(repResult?.passed).toBe(false);
-    });
-    it('应该允许高信誉用户执行危险任务', () => {
-      const reputation: ReputationEntry = {
-        peerId: 'peer-1',
-        score: 80,
-        successfulTasks: 100,
-        failedTasks: 5,
-        totalTasks: 105,
-        avgResponseTime: 50,
-        lastInteraction: Date.now(),
-        history: []
-      };
-      const task = createTask({ description: 'rm -rf /' });
-      const report = guard.check(task, { requesterReputation: reputation });
-      // 注意：虽然信誉通过了，但危险关键词检查仍然会阻止
-      const repResult = report.results.find(r => r.ruleId === 'reputation');
-      expect(repResult?.passed).toBe(true);
-    });
-    it('应该处理无信誉记录的情况', () => {
-      const task = createTask();
-      const report = guard.check(task);
-      const repResult = report.results.find(r => r.ruleId === 'reputation');
-      expect(repResult?.passed).toBe(true);
-    });
-  });
-  describe('规则 6: 文件操作检查', () => {
-    it('应该检测系统路径文件操作', () => {
-      const dangerousPaths = [
-        'read /etc/passwd',
-        'write to /sys/config',
-        'delete /proc/123',
-        'edit /dev/null'
-      ];
-      for (const desc of dangerousPaths) {
-        const task = createTask({ description: desc });
-        const report = guard.check(task);
-        const fileResult = report.results.find(r => r.ruleId === 'file-operation');
-        expect(fileResult?.passed).toBe(false);
-      }
-    });
-    it('应该允许普通文件操作', () => {
-      const task = createTask({ description: 'read ~/documents/file.txt' });
-      const report = guard.check(task);
-      const fileResult = report.results.find(r => r.ruleId === 'file-operation');
-      expect(fileResult?.passed).toBe(true);
-    });
-  });
-  describe('规则 7: 网络操作检查', () => {
-    it('应该检测可疑的网络下载', () => {
-      // 更新测试用例：只检测真正的可执行文件扩展名
-      const suspiciousOps = [
-        'download malware.exe from http://example.com',
-        'fetch tool.dll via curl',
-        'wget http://example.com/backdoor.app',
-        'download payload.deb from api'
-      ];
-      for (const desc of suspiciousOps) {
-        const task = createTask({ description: desc });
-        const report = guard.check(task);
-        const networkResult = report.results.find(r => r.ruleId === 'network-operation');
-        expect(networkResult?.passed).toBe(false);
-      }
-    });
-    it('应该允许正常的网络操作', () => {
-      // 更新测试：python script 不再被标记为可疑
-      const normalOps = [
-        'fetch data from http://api.example.com/data',
-        'download python script from api',
-        'download script.sh from http://example.com'
-      ];
-      for (const desc of normalOps) {
-        const task = createTask({ description: desc });
-        const report = guard.check(task);
-        const networkResult = report.results.find(r => r.ruleId === 'network-operation');
-        expect(networkResult?.passed).toBe(true);
-      }
-    });
-  });
-  describe('quickCheck()', () => {
-    it('应该只返回布尔值', () => {
-      const task = createTask();
-      expect(guard.quickCheck(task)).toBe(true);
-    });
-    it('应该对危险任务返回 false', () => {
-      const task = createTask({ description: 'rm -rf /' });
-      expect(guard.quickCheck(task)).toBe(false);
-    });
-  });
-  describe('addRule()', () => {
-    it('应该添加自定义规则', () => {
-      const customRule: TaskGuardRule = {
-        id: 'custom-rule',
-        name: '自定义规则',
-        description: '测试自定义规则',
-        enabled: true,
-        severity: 'warn',
-        check: (task, context) => ({
-          passed: true,
-          severity: 'warn',
-          ruleId: 'custom-rule',
-          message: '自定义规则检查通过'
-        })
-      };
-      guard.addRule(customRule);
-      const task = createTask();
-      const report = guard.check(task);
-      expect(report.results.some(r => r.ruleId === 'custom-rule')).toBe(true);
-    });
-    it('自定义规则应该能阻止任务', () => {
-      const blockRule: TaskGuardRule = {
-        id: 'block-all',
-        name: '阻止所有',
-        description: '测试阻止规则',
-        enabled: true,
-        severity: 'block',
-        check: (task, context) => ({
-          passed: false,
-          severity: 'block',
-          ruleId: 'block-all',
-          message: '阻止所有任务'
-        })
-      };
-      guard.addRule(blockRule);
-      const task = createTask();
-      const report = guard.check(task);
-      expect(report.passed).toBe(false);
-      expect(report.blocks.some(r => r.ruleId === 'block-all')).toBe(true);
-    });
-  });
-  describe('setRuleEnabled()', () => {
-    it('应该禁用规则', () => {
-      guard.setRuleEnabled('blacklist', false);
-      const task = createTask();
-      const report = guard.check(task, { isBlacklisted: true });
-      // 黑名单规则被禁用，应该通过
-      expect(report.passed).toBe(true);
-    });
-    it('应该重新启用规则', () => {
-      guard.setRuleEnabled('blacklist', false);
-      guard.setRuleEnabled('blacklist', true);
-      const task = createTask();
-      const report = guard.check(task, { isBlacklisted: true });
-      expect(report.passed).toBe(false);
-    });
-    it('应该忽略不存在的规则 ID', () => {
-      // 不应该抛出错误
-      guard.setRuleEnabled('non-existent-rule', true);
-      guard.setRuleEnabled('non-existent-rule', false);
-    });
-  });
-  describe('updateConfig()', () => {
-    it('应该更新配置', () => {
-      guard.updateConfig({ maxTasksPerMinute: 5 });
-      const task = createTask();
-      for (let i = 0; i < 6; i++) {
-        guard.check(task);
-      }
-      const report = guard.check(task);
-      expect(report.passed).toBe(false);
-    });
-    it('应该合并配置', () => {
-      const originalBlocked = DEFAULT_TASK_GUARD_CONFIG.blockedKeywords.length;
-      guard.updateConfig({ blockedKeywords: ['custom-dangerous-word'] });
-      const task = createTask({ description: 'custom-dangerous-word' });
-      const report = guard.check(task);
-      expect(report.passed).toBe(false);
-    });
-  });
-  describe('requiresConfirmation', () => {
-    it('应该在有 warn 级别失败时要求确认', () => {
-      const reputation: ReputationEntry = {
-        peerId: 'peer-1',
-        score: 50,
-        successfulTasks: 10,
-        failedTasks: 5,
-        totalTasks: 15,
-        avgResponseTime: 100,
-        lastInteraction: Date.now(),
-        history: []
-      };
-      const task = createTask({ description: 'rm -rf /' });
-      const report = guard.check(task, { requesterReputation: reputation });
-      // 危险任务会被 block，但如果只是 warn 级别，应该要求确认
-      expect(report.requiresConfirmation).toBeDefined();
-    });
-    it('应该遵循 requireConfirmationForDangerous 配置', () => {
-      const noConfirmGuard = new TaskGuard({ requireConfirmationForDangerous: false });
-      const task = createTask({ description: 'download script.sh' });
-      const report = noConfirmGuard.check(task);
-      // 即使有 warn 级别的问题，也不需要确认
-      // 注意：需要找一个是 warn 而不是 block 的场景
-    });
-  });
-  describe('处理 TaskAnnouncement', () => {
-    it('应该正确处理 TaskAnnouncement 类型', () => {
-      const announcement = createAnnouncement();
-      const report = guard.check(announcement);
-      expect(report.taskId).toBe('ann-test-1');
-      expect(report.passed).toBe(true);
-    });
-    it('应该检测 TaskAnnouncement 中的危险描述', () => {
-      const announcement = createAnnouncement({ description: 'rm -rf /' });
-      const report = guard.check(announcement);
-      expect(report.passed).toBe(false);
-    });
-  });
-  describe('规则执行错误处理', () => {
-    it('应该处理规则执行中的错误', () => {
-      const errorRule: TaskGuardRule = {
-        id: 'error-rule',
-        name: '错误规则',
-        description: '测试错误处理',
-        enabled: true,
-        severity: 'warn',
-        check: (task, context) => {
-          throw new Error('规则执行失败');
-        }
-      };
-      guard.addRule(errorRule);
-      const task = createTask();
-      const report = guard.check(task);
-      const errorResult = report.results.find(r => r.ruleId === 'error-rule');
-      expect(errorResult?.passed).toBe(false);
-      expect(errorResult?.message).toContain('规则执行错误');
-    });
-  });
-});