@f5xc-salesdemos/xcsh 18.28.0 → 18.28.1

package/package.json

@@ -1,7 +1,7 @@
 {
 	"type": "module",
 	"name": "@f5xc-salesdemos/xcsh",
-	"version": "18.28.0",
+	"version": "18.28.1",
 	"description": "Coding agent CLI with read, bash, edit, write tools and session management",
 	"homepage": "https://github.com/f5xc-salesdemos/xcsh",
 	"author": "Can Boluk",
@@ -47,12 +47,12 @@
 	"dependencies": {
 		"@agentclientprotocol/sdk": "0.16.1",
 		"@mozilla/readability": "^0.6",
-		"@f5xc-salesdemos/xcsh-stats": "18.28.0",
-		"@f5xc-salesdemos/pi-agent-core": "18.28.0",
-		"@f5xc-salesdemos/pi-ai": "18.28.0",
-		"@f5xc-salesdemos/pi-natives": "18.28.0",
-		"@f5xc-salesdemos/pi-tui": "18.28.0",
-		"@f5xc-salesdemos/pi-utils": "18.28.0",
+		"@f5xc-salesdemos/xcsh-stats": "18.28.1",
+		"@f5xc-salesdemos/pi-agent-core": "18.28.1",
+		"@f5xc-salesdemos/pi-ai": "18.28.1",
+		"@f5xc-salesdemos/pi-natives": "18.28.1",
+		"@f5xc-salesdemos/pi-tui": "18.28.1",
+		"@f5xc-salesdemos/pi-utils": "18.28.1",
 		"@sinclair/typebox": "^0.34",
 		"@xterm/headless": "^6.0",
 		"ajv": "^8.18",

package/src/config/context-schema.json

@@ -0,0 +1,115 @@
+{
+  "$schema": "http://json-schema.org/draft-07/schema#",
+  "$id": "https://raw.githubusercontent.com/f5xc-salesdemos/xcsh/main/packages/coding-agent/src/config/context-schema.json",
+  "title": "F5 XC Context",
+  "description": "Schema for F5 XC context files stored in ~/.config/f5xc/contexts/<name>.json. Validated at load, create, and import time.",
+  "type": "object",
+  "required": ["apiUrl", "apiToken"],
+  "additionalProperties": false,
+  "properties": {
+    "$schema": {
+      "type": "string",
+      "description": "Optional schema reference for editor autocomplete and validation."
+    },
+    "name": {
+      "type": "string",
+      "pattern": "^[a-zA-Z0-9_-]{1,64}$",
+      "not": {
+        "enum": [
+          "list", "show", "status", "create", "delete", "rename",
+          "namespace", "env", "set", "unset", "add", "remove",
+          "clear", "activate", "validate", "export", "import",
+          "wizard", "help"
+        ]
+      },
+      "description": "Context name. Derived from filename. Must not collide with /context subcommands."
+    },
+    "apiUrl": {
+      "type": "string",
+      "format": "uri",
+      "pattern": "^https://",
+      "description": "F5 XC console API URL (must be HTTPS)."
+    },
+    "apiToken": {
+      "type": "string",
+      "minLength": 1,
+      "description": "API token for authentication."
+    },
+    "defaultNamespace": {
+      "type": "string",
+      "minLength": 1,
+      "default": "default",
+      "description": "Default namespace for CRUD operations. Projected as F5XC_NAMESPACE in bash environment. Use /context namespace to change."
+    },
+    "env": {
+      "type": "object",
+      "description": "Additional environment variables injected into bash sessions. Reserved keys that have dedicated top-level fields are forbidden.",
+      "additionalProperties": {
+        "type": "string"
+      },
+      "propertyNames": {
+        "allOf": [
+          {
+            "pattern": "^[A-Za-z_][A-Za-z0-9_]*$",
+            "description": "Keys must be valid environment variable names."
+          },
+          {
+            "not": {
+              "enum": ["F5XC_NAMESPACE", "F5XC_API_URL", "F5XC_API_TOKEN", "F5XC_TENANT"]
+            },
+            "description": "Reserved keys have dedicated top-level fields and must not appear in env."
+          }
+        ]
+      }
+    },
+    "sensitiveKeys": {
+      "type": "array",
+      "items": {
+        "type": "string",
+        "minLength": 1
+      },
+      "uniqueItems": true,
+      "description": "Env var names from env whose values should be masked in output. Values must reference keys present in env (enforced at runtime)."
+    },
+    "knowledgeSources": {
+      "type": "array",
+      "items": {
+        "type": "object",
+        "required": ["url"],
+        "additionalProperties": false,
+        "properties": {
+          "url": { "type": "string", "format": "uri" },
+          "label": { "type": "string" },
+          "type": { "type": "string", "enum": ["llms-txt", "skill-dir", "docs-site"] }
+        }
+      }
+    },
+    "includeSkills": {
+      "type": "array",
+      "items": { "type": "string", "minLength": 1 },
+      "uniqueItems": true,
+      "description": "Skill names to force-include when this context is active. Must not overlap with excludeSkills (enforced at runtime)."
+    },
+    "excludeSkills": {
+      "type": "array",
+      "items": { "type": "string", "minLength": 1 },
+      "uniqueItems": true,
+      "description": "Skill names to exclude when this context is active. Must not overlap with includeSkills (enforced at runtime)."
+    },
+    "version": {
+      "type": "integer",
+      "minimum": 1,
+      "description": "Schema version. Must be <= CURRENT_SCHEMA_VERSION (enforced at runtime since the ceiling is dynamic)."
+    },
+    "metadata": {
+      "type": "object",
+      "additionalProperties": false,
+      "properties": {
+        "createdAt": { "type": "string", "format": "date-time" },
+        "expiresAt": { "type": "string", "format": "date-time" },
+        "lastRotatedAt": { "type": "string", "format": "date-time" },
+        "rotateAfterDays": { "type": "integer", "minimum": 1 }
+      }
+    }
+  }
+}

package/src/internal-urls/build-info.generated.ts

@@ -17,17 +17,17 @@ export interface BuildInfo {
 }
 
 export const BUILD_INFO: BuildInfo = {
-	"version": "18.28.0",
-	"commit": "aefe3468aa6c23cfe1f6ac0575e011b2416389cf",
-	"shortCommit": "aefe346",
+	"version": "18.28.1",
+	"commit": "42862f837ad12f42e37bc29e47ab6f58be779de0",
+	"shortCommit": "42862f8",
 	"branch": "main",
-	"tag": "v18.28.0",
-	"commitDate": "2026-04-30T03:44:13Z",
-	"buildDate": "2026-04-30T04:02:30.628Z",
+	"tag": "v18.28.1",
+	"commitDate": "2026-04-30T11:56:41Z",
+	"buildDate": "2026-04-30T12:21:15.369Z",
 	"dirty": false,
 	"prNumber": "",
 	"repoUrl": "https://github.com/f5xc-salesdemos/xcsh",
 	"repoSlug": "f5xc-salesdemos/xcsh",
-	"commitUrl": "https://github.com/f5xc-salesdemos/xcsh/commit/aefe3468aa6c23cfe1f6ac0575e011b2416389cf",
-	"releaseUrl": "https://github.com/f5xc-salesdemos/xcsh/releases/tag/v18.28.0"
+	"commitUrl": "https://github.com/f5xc-salesdemos/xcsh/commit/42862f837ad12f42e37bc29e47ab6f58be779de0",
+	"releaseUrl": "https://github.com/f5xc-salesdemos/xcsh/releases/tag/v18.28.1"
 };

package/src/services/f5xc-context-command.ts

@@ -11,6 +11,7 @@ import {
 	F5XC_NAMESPACE,
 	F5XC_TENANT,
 	F5XC_USERNAME,
+	RESERVED_ENV_KEYS,
 } from "./f5xc-env";
 import {
 	formatAuthIndicator,
@@ -256,7 +257,7 @@ async function handleShow(ctx: CommandContext, service: ContextService, name?: s
 	rows.push({ key: F5XC_NAMESPACE, value: sanitize(context.defaultNamespace) });
 	if (context.env) {
 		for (const [key, value] of Object.entries(context.env)) {
-			if (authKeys.includes(key)) continue;
+			if (authKeys.includes(key) || RESERVED_ENV_KEYS.has(key)) continue;
 			rows.push({ key: sanitize(key), value: isSensitiveKey(key) ? service.maskToken(value) : sanitize(value) });
 		}
 	}

package/src/services/f5xc-context.ts

@@ -11,6 +11,8 @@ import {
 	F5XC_NAMESPACE,
 	F5XC_TENANT,
 	hasEnvOverride,
+	RESERVED_ENV_KEYS,
+	RESERVED_ENV_MESSAGES,
 } from "./f5xc-env";
 
 export const CURRENT_SCHEMA_VERSION = 1;
@@ -508,8 +510,13 @@ export class ContextService {
 			version: CURRENT_SCHEMA_VERSION,
 			metadata: { createdAt: new Date().toISOString() },
 		};
+		const filePayload = {
+			$schema:
+				"https://raw.githubusercontent.com/f5xc-salesdemos/xcsh/main/packages/coding-agent/src/config/context-schema.json",
+			...data,
+		} as Record<string, unknown>;
 		const tmpPath = `${contextPath}.tmp`;
-		fs.writeFileSync(tmpPath, JSON.stringify(data, null, 2), { mode: 0o600 });
+		fs.writeFileSync(tmpPath, JSON.stringify(filePayload, null, 2), { mode: 0o600 });
 		fs.renameSync(tmpPath, contextPath);
 		this.#contextsCache = [...this.#contextsCache, data].sort((a, b) => a.name.localeCompare(b.name));
 	}
@@ -845,6 +852,12 @@ export class ContextService {
 
 		this.#assertCompatibleVersion(context);
 
+		const reservedViolations = Object.keys(vars).filter(k => RESERVED_ENV_KEYS.has(k));
+		if (reservedViolations.length > 0) {
+			const messages = reservedViolations.map(k => RESERVED_ENV_MESSAGES[k]).join("\n");
+			throw new ContextError(messages, name);
+		}
+
 		const env = { ...(context.env ?? {}), ...vars };
 		const sensitiveSet = new Set(context.sensitiveKeys ?? []);
 		const newSensitive: string[] = [];
@@ -1181,7 +1194,36 @@ export class ContextService {
 		if (parsed.env && typeof parsed.env === "object" && !Array.isArray(parsed.env)) {
 			env = {};
 			for (const [k, v] of Object.entries(parsed.env)) {
-				if (typeof v === "string") env[k] = v;
+				if (typeof v !== "string") continue;
+				if (RESERVED_ENV_KEYS.has(k)) {
+					// Resolve the corresponding top-level field to detect value mismatches
+					let topLevelValue: string | undefined;
+					switch (k) {
+						case F5XC_NAMESPACE:
+							topLevelValue = typeof parsed.defaultNamespace === "string" ? parsed.defaultNamespace : undefined;
+							break;
+						case F5XC_API_URL:
+							topLevelValue = typeof parsed.apiUrl === "string" ? parsed.apiUrl : undefined;
+							break;
+						case F5XC_API_TOKEN:
+							topLevelValue = typeof parsed.apiToken === "string" ? parsed.apiToken : undefined;
+							break;
+						default:
+							topLevelValue = undefined;
+							break; // F5XC_TENANT: derived, no stored top-level field
+					}
+					// Warn on mismatch OR when there is no top-level field to compare (F5XC_TENANT)
+					if (topLevelValue === undefined || v !== topLevelValue) {
+						logger.warn("F5XC context env contains reserved key — stripping", {
+							name: canonicalName,
+							key: k,
+							envValue: SECRET_ENV_PATTERNS.test(k) ? "[redacted]" : v,
+							topLevelValue: SECRET_ENV_PATTERNS.test(k) ? "[redacted]" : (topLevelValue ?? "(derived)"),
+						});
+					}
+					continue;
+				}
+				env[k] = v;
 			}
 			if (Object.keys(env).length === 0) env = undefined;
 		}
@@ -1284,7 +1326,7 @@ export class ContextService {
 		// Inject all additional env vars from context.env map
 		if (context.env) {
 			for (const [key, value] of Object.entries(context.env)) {
-				if (!process.env[key]) merged[key] = value;
+				if (!process.env[key] && !(RESERVED_ENV_KEYS.has(key) && key in merged)) merged[key] = value;
 			}
 		}
 

package/src/services/f5xc-env.ts

@@ -10,6 +10,20 @@ export const F5XC_TENANT = "F5XC_TENANT" as const;
 export const F5XC_USERNAME = "F5XC_USERNAME" as const;
 export const F5XC_CONSOLE_PASSWORD = "F5XC_CONSOLE_PASSWORD" as const;
 
+export const RESERVED_ENV_KEYS: ReadonlySet<string> = new Set([
+	F5XC_NAMESPACE,
+	F5XC_API_URL,
+	F5XC_API_TOKEN,
+	F5XC_TENANT,
+]);
+
+export const RESERVED_ENV_MESSAGES: Readonly<Record<string, string>> = {
+	[F5XC_NAMESPACE]: `${F5XC_NAMESPACE} is managed by defaultNamespace. Use /context namespace <value> to change it.`,
+	[F5XC_API_URL]: `${F5XC_API_URL} is managed by apiUrl. It cannot be overridden via env vars.`,
+	[F5XC_API_TOKEN]: `${F5XC_API_TOKEN} is managed by apiToken. It cannot be overridden via env vars.`,
+	[F5XC_TENANT]: `${F5XC_TENANT} is read-only (derived from apiUrl). It cannot be set directly.`,
+};
+
 /**
  * True iff an env var is overriding a context-provided credential.
  * F5XC_API_URL alone is NOT an override — it is the signal that the user