@gencode/agents 0.0.4 → 0.0.6

package/dist/security/command-safe-bins.js

@@ -1,84 +0,0 @@
-import path from "node:path";
-import { unwrapExecutable } from "./command-trusted-executables.js";
-const DENIED_FLAGS = {
-    grep: ["-r", "-R", "--recursive", "--dereference-recursive", "-f", "--file"],
-    jq: ["-f", "--from-file", "--argfile", "--slurpfile", "--rawfile", "-L", "--library-path"],
-    sort: ["-o", "--output", "--compress-program", "--files0-from", "--random-source", "--temporary-directory", "-T"],
-    wc: ["--files0-from"],
-};
-function basename(value) {
-    if (!value) {
-        return "";
-    }
-    return path.posix.basename(value).toLowerCase();
-}
-function includesDeniedFlag(args, deniedFlags) {
-    for (let index = 0; index < args.length; index += 1) {
-        const arg = args[index];
-        for (const denied of deniedFlags) {
-            if (arg === denied || arg.startsWith(`${denied}=`) || (denied.length === 2 && arg.startsWith(denied) && arg.length > 2)) {
-                return true;
-            }
-        }
-    }
-    return false;
-}
-function countPositionals(args) {
-    const positionals = [];
-    let stopFlags = false;
-    for (const arg of args) {
-        if (stopFlags) {
-            positionals.push(arg);
-            continue;
-        }
-        if (arg === "--") {
-            stopFlags = true;
-            continue;
-        }
-        if (arg.startsWith("-")) {
-            continue;
-        }
-        positionals.push(arg);
-    }
-    return positionals;
-}
-function validateSafeBinArgs(executable, args) {
-    if (includesDeniedFlag(args, DENIED_FLAGS[executable] ?? [])) {
-        return false;
-    }
-    const positionals = countPositionals(args);
-    switch (executable) {
-        case "jq":
-            return positionals.length <= 1;
-        case "head":
-        case "tail":
-        case "uniq":
-        case "tr":
-        case "wc":
-        case "cut":
-            return positionals.length === 0;
-        case "grep":
-            return positionals.length <= 1;
-        case "sort":
-            return positionals.length === 0;
-        default:
-            return false;
-    }
-}
-export function matchSafeBin(segment, safeBins, allowlist) {
-    if (!safeBins.enabled) {
-        return null;
-    }
-    const executable = basename(unwrapExecutable(segment, allowlist));
-    if (!executable) {
-        return null;
-    }
-    if (!safeBins.bins.some((entry) => entry.toLowerCase() === executable)) {
-        return null;
-    }
-    const args = basename(segment.executable) === "env"
-        ? segment.argv.slice(segment.argv.findIndex((arg) => !/^[A-Za-z_][A-Za-z0-9_]*=/.test(arg) && arg !== "env") + 1)
-        : segment.argv.slice(1);
-    return validateSafeBinArgs(executable, args) ? executable : null;
-}
-//# sourceMappingURL=command-safe-bins.js.map

package/dist/security/command-safe-bins.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"command-safe-bins.js","sourceRoot":"","sources":["../../src/security/command-safe-bins.ts"],"names":[],"mappings":"AAAA,OAAO,IAAI,MAAM,WAAW,CAAC;AAK7B,OAAO,EAAE,gBAAgB,EAAE,MAAM,kCAAkC,CAAC;AAGpE,MAAM,YAAY,GAA6B;IAC7C,IAAI,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,aAAa,EAAE,yBAAyB,EAAE,IAAI,EAAE,QAAQ,CAAC;IAC5E,EAAE,EAAE,CAAC,IAAI,EAAE,aAAa,EAAE,WAAW,EAAE,aAAa,EAAE,WAAW,EAAE,IAAI,EAAE,gBAAgB,CAAC;IAC1F,IAAI,EAAE,CAAC,IAAI,EAAE,UAAU,EAAE,oBAAoB,EAAE,eAAe,EAAE,iBAAiB,EAAE,uBAAuB,EAAE,IAAI,CAAC;IACjH,EAAE,EAAE,CAAC,eAAe,CAAC;CACtB,CAAC;AAEF,SAAS,QAAQ,CAAC,KAAoB;IACpC,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,EAAE,CAAC;IACZ,CAAC;IACD,OAAO,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,WAAW,EAAE,CAAC;AAClD,CAAC;AAED,SAAS,kBAAkB,CAAC,IAAc,EAAE,WAAqB;IAC/D,KAAK,IAAI,KAAK,GAAG,CAAC,EAAE,KAAK,GAAG,IAAI,CAAC,MAAM,EAAE,KAAK,IAAI,CAAC,EAAE,CAAC;QACpD,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAE,CAAC;QACzB,KAAK,MAAM,MAAM,IAAI,WAAW,EAAE,CAAC;YACjC,IAAI,GAAG,KAAK,MAAM,IAAI,GAAG,CAAC,UAAU,CAAC,GAAG,MAAM,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,KAAK,CAAC,IAAI,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC,EAAE,CAAC;gBACxH,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,gBAAgB,CAAC,IAAc;IACtC,MAAM,WAAW,GAAa,EAAE,CAAC;IACjC,IAAI,SAAS,GAAG,KAAK,CAAC;IACtB,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,IAAI,SAAS,EAAE,CAAC;YACd,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACtB,SAAS;QACX,CAAC;QACD,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;YACjB,SAAS,GAAG,IAAI,CAAC;YACjB,SAAS;QACX,CAAC;QACD,IAAI,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YACxB,SAAS;QACX,CAAC;QACD,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACxB,CAAC;IACD,OAAO,WAAW,CAAC;AACrB,CAAC;AAED,SAAS,mBAAmB,CAAC,UAAkB,EAAE,IAAc;IAC7D,IAAI,kBAAkB,CAAC,IAAI,EAAE,YAAY,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC,EAAE,CAAC;QAC7D,OAAO,KAAK,CAAC;IACf,CAAC;IAED,MAAM,WAAW,GAAG,gBAAgB,CAAC,IAAI,CAAC,CAAC;IAC3C,QAAQ,UAAU,EAAE,CAAC;QACnB,KAAK,IAAI;YACP,OAAO,WAAW,CAAC,MAAM,IAAI,CAAC,CAAC;QACjC,KAAK,MAAM,CAAC;QACZ,KAAK,MAAM,CAAC;QACZ,KAAK,MAAM,CAAC;QACZ,KAAK,IAAI,CAAC;QACV,KAAK,IAAI,CAAC;QACV,KAAK,KAAK;YACR,OAAO,WAAW,CAAC,MAAM,KAAK,CAAC,CAAC;QAClC,KAAK,MAAM;YACT,OAAO,WAAW,CAAC,MAAM,IAAI,CAAC,CAAC;QACjC,KAAK,MAAM;YACT,OAAO,WAAW,CAAC,MAAM,KAAK,CAAC,CAAC;QAClC;YACE,OAAO,KAAK,CAAC;IACjB,CAAC;AACH,CAAC;AAED,MAAM,UAAU,YAAY,CAC1B,OAA6B,EAC7B,QAA+B,EAC/B,SAAiC;IAEjC,IAAI,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC;QACtB,OAAO,IAAI,CAAC;IACd,CAAC;IACD,MAAM,UAAU,GAAG,QAAQ,CAAC,gBAAgB,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC,CAAC;IAClE,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO,IAAI,CAAC;IACd,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,WAAW,EAAE,KAAK,UAAU,CAAC,EAAE,CAAC;QACvE,OAAO,IAAI,CAAC;IACd,CAAC;IACD,MAAM,IAAI,GACR,QAAQ,CAAC,OAAO,CAAC,UAAU,CAAC,KAAK,KAAK;QACpC,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,0BAA0B,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,GAAG,KAAK,KAAK,CAAC,GAAG,CAAC,CAAC;QACjH,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAC5B,OAAO,mBAAmB,CAAC,UAAU,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC;AACnE,CAAC"}

package/dist/security/command-trusted-executables.d.ts

@@ -1,6 +0,0 @@
-import type { CommandAllowlistPolicy, CommandTrustedExecutablesPolicy, ParsedCommandSegment } from "./command-policy-types.js";
-export declare function isAllowedWrapper(value: string | null, policy: CommandAllowlistPolicy): boolean;
-export declare function unwrapExecutable(segment: ParsedCommandSegment, policy: CommandAllowlistPolicy): string | null;
-export declare function matchTrustedExecutable(segment: ParsedCommandSegment, trustedExecutables: CommandTrustedExecutablesPolicy, allowlist: CommandAllowlistPolicy): string | null;
-export declare function matchAllowlistExecutable(segment: ParsedCommandSegment, policy: CommandAllowlistPolicy): string | null;
-//# sourceMappingURL=command-trusted-executables.d.ts.map

package/dist/security/command-trusted-executables.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"command-trusted-executables.d.ts","sourceRoot":"","sources":["../../src/security/command-trusted-executables.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,sBAAsB,EACtB,+BAA+B,EAC/B,oBAAoB,EACrB,MAAM,2BAA2B,CAAC;AASnC,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI,EAAE,MAAM,EAAE,sBAAsB,GAAG,OAAO,CAG9F;AAED,wBAAgB,gBAAgB,CAAC,OAAO,EAAE,oBAAoB,EAAE,MAAM,EAAE,sBAAsB,GAAG,MAAM,GAAG,IAAI,CAgB7G;AAED,wBAAgB,sBAAsB,CACpC,OAAO,EAAE,oBAAoB,EAC7B,kBAAkB,EAAE,+BAA+B,EACnD,SAAS,EAAE,sBAAsB,GAChC,MAAM,GAAG,IAAI,CAaf;AAED,wBAAgB,wBAAwB,CACtC,OAAO,EAAE,oBAAoB,EAC7B,MAAM,EAAE,sBAAsB,GAC7B,MAAM,GAAG,IAAI,CAaf"}

package/dist/security/command-trusted-executables.js

@@ -1,57 +0,0 @@
-import path from "node:path";
-function basename(value) {
-    if (!value) {
-        return "";
-    }
-    return path.posix.basename(value).toLowerCase();
-}
-export function isAllowedWrapper(value, policy) {
-    const name = basename(value);
-    return policy.wrappers.some((entry) => entry.toLowerCase() === name);
-}
-export function unwrapExecutable(segment, policy) {
-    if (!segment.executable) {
-        return null;
-    }
-    if (!isAllowedWrapper(segment.executable, policy)) {
-        return segment.executable;
-    }
-    const wrapperName = basename(segment.executable);
-    if (wrapperName === "env") {
-        let index = 1;
-        while (index < segment.argv.length && /^[A-Za-z_][A-Za-z0-9_]*=/.test(segment.argv[index])) {
-            index += 1;
-        }
-        return segment.argv[index] ?? null;
-    }
-    return segment.argv[1] ?? null;
-}
-export function matchTrustedExecutable(segment, trustedExecutables, allowlist) {
-    const executable = unwrapExecutable(segment, allowlist);
-    const name = basename(executable);
-    if (!name || !trustedExecutables.enabled) {
-        return null;
-    }
-    for (const entry of trustedExecutables.executables) {
-        const entryName = basename(entry);
-        if (entryName === name) {
-            return entry;
-        }
-    }
-    return null;
-}
-export function matchAllowlistExecutable(segment, policy) {
-    const executable = unwrapExecutable(segment, policy);
-    const name = basename(executable);
-    if (!name) {
-        return null;
-    }
-    for (const entry of policy.executables) {
-        const entryName = basename(entry);
-        if (entryName === name) {
-            return entry;
-        }
-    }
-    return null;
-}
-//# sourceMappingURL=command-trusted-executables.js.map

package/dist/security/command-trusted-executables.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"command-trusted-executables.js","sourceRoot":"","sources":["../../src/security/command-trusted-executables.ts"],"names":[],"mappings":"AAAA,OAAO,IAAI,MAAM,WAAW,CAAC;AAO7B,SAAS,QAAQ,CAAC,KAAoB;IACpC,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,EAAE,CAAC;IACZ,CAAC;IACD,OAAO,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,WAAW,EAAE,CAAC;AAClD,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,KAAoB,EAAE,MAA8B;IACnF,MAAM,IAAI,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC;IAC7B,OAAO,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,WAAW,EAAE,KAAK,IAAI,CAAC,CAAC;AACvE,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,OAA6B,EAAE,MAA8B;IAC5F,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,CAAC;QACxB,OAAO,IAAI,CAAC;IACd,CAAC;IACD,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAAC,UAAU,EAAE,MAAM,CAAC,EAAE,CAAC;QAClD,OAAO,OAAO,CAAC,UAAU,CAAC;IAC5B,CAAC;IACD,MAAM,WAAW,GAAG,QAAQ,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;IACjD,IAAI,WAAW,KAAK,KAAK,EAAE,CAAC;QAC1B,IAAI,KAAK,GAAG,CAAC,CAAC;QACd,OAAO,KAAK,GAAG,OAAO,CAAC,IAAI,CAAC,MAAM,IAAI,0BAA0B,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAE,CAAC,EAAE,CAAC;YAC5F,KAAK,IAAI,CAAC,CAAC;QACb,CAAC;QACD,OAAO,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,IAAI,CAAC;IACrC,CAAC;IACD,OAAO,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC;AACjC,CAAC;AAED,MAAM,UAAU,sBAAsB,CACpC,OAA6B,EAC7B,kBAAmD,EACnD,SAAiC;IAEjC,MAAM,UAAU,GAAG,gBAAgB,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;IACxD,MAAM,IAAI,GAAG,QAAQ,CAAC,UAAU,CAAC,CAAC;IAClC,IAAI,CAAC,IAAI,IAAI,CAAC,kBAAkB,CAAC,OAAO,EAAE,CAAC;QACzC,OAAO,IAAI,CAAC;IACd,CAAC;IACD,KAAK,MAAM,KAAK,IAAI,kBAAkB,CAAC,WAAW,EAAE,CAAC;QACnD,MAAM,SAAS,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,SAAS,KAAK,IAAI,EAAE,CAAC;YACvB,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,UAAU,wBAAwB,CACtC,OAA6B,EAC7B,MAA8B;IAE9B,MAAM,UAAU,GAAG,gBAAgB,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IACrD,MAAM,IAAI,GAAG,QAAQ,CAAC,UAAU,CAAC,CAAC;IAClC,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,OAAO,IAAI,CAAC;IACd,CAAC;IACD,KAAK,MAAM,KAAK,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;QACvC,MAAM,SAAS,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,SAAS,KAAK,IAAI,EAAE,CAAC;YACvB,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC"}