npm - @google/gemini-cli - Versions diffs - 0.39.0-preview.2 → 0.39.1 - Mend

@google/gemini-cli 0.39.0-preview.2 → 0.39.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (46) hide show

package/bundle/{dist-DQVXGLSO.js → dist-7UL5MZ3N.js} RENAMED Viewed

@@ -37,6 +37,8 @@ import {
   CODE_ASSIST_ENDPOINT,
   COMMON_DIRECTORY_EXCLUDES,
   COMMON_IGNORE_PATTERNS,
+  CONFIRMATION_REQUIRED_PRIORITY,
+  CORE_TOOLS_FLAG_PRIORITY,
   CacheService,
   ChatRecordingService,
   ClearcutLogger,
@@ -190,6 +192,7 @@ import {
   LegacyAgentProtocol,
   LegacyAgentSession,
   LlmRole,
+  LoadedTrustedFolders,
   LocalAgentExecutor,
   LocalSandboxManager,
   Logger,
@@ -238,6 +241,7 @@ import {
   PreCompressTrigger,
   PrivateIpError,
   ProjectIdRequiredError,
+  REDIRECTION_NAMES,
   ROOT_SCHEDULER_ID,
   RateLimiter,
   ReadFileTool,
@@ -302,6 +306,7 @@ import {
   TrackerTaskSchema,
   TrackerUpdateTaskTool,
   TrackerVisualizeTool,
+  TrustLevel,
   Turn,
   UPGRADE_URL_PAGE,
   USER_POLICY_TIER,
@@ -343,6 +348,7 @@ import {
   calculateReplacement,
   canUseRipgrep,
   checkExhaustive,
+  checkPathTrust,
   checkPolicy,
   classifyGoogleError,
   cleanupWorktree,
@@ -350,6 +356,7 @@ import {
   clearCachedCredentialFile,
   clearEmittedPolicyWarnings,
   clearOauthClientCache,
+  clearRealPathCacheForTesting,
   computeModelAddedAndRemovedLines,
   connectAndDiscover,
   connectToMcpServer,
@@ -563,6 +570,7 @@ import {
   isTmux,
   isToolActivityError,
   isToolCallResponseInfo,
+  isTrustLevel,
   isUserActive,
   isUserVisibleHook,
   isValidNonThoughtTextPart,
@@ -582,6 +590,7 @@ import {
   loadPoliciesFromToml,
   loadSkillFromFile,
   loadSkillsFromDir,
+  loadTrustedFolders,
   loadWasmBinary,
   logApiError,
   logApiRequest,
@@ -688,6 +697,7 @@ import {
   resetBrowserSession,
   resetEncodingCache,
   resetOauthClientForTesting,
+  resetTrustedFoldersForTesting,
   resetUserDataCacheForTesting,
   resetVersionCache,
   resolveAndValidatePlanPath,
@@ -706,6 +716,7 @@ import {
   sanitizeOutput,
   saveApiKey,
   saveTruncatedToolOutput,
+  saveTrustedFolders,
   scheduleAgentTools,
   serializeTerminalToObject,
   setGlobalProxy,
@@ -751,7 +762,7 @@ import {
   wrapInAccountChooser,
   writeToStderr,
   writeToStdout
-} from "./chunk-5J5LWISO.js";
+} from "./chunk-UIBQS45C.js";
 import {
   ACTIVATE_SKILL_TOOL_NAME,
   AGENT_TOOL_NAME,
@@ -813,6 +824,7 @@ import {
   FatalSandboxError,
   FatalToolExecutionError,
   FatalTurnLimitedError,
+  FatalUntrustedWorkspaceError,
   ForbiddenError,
   GEMINI_DIR,
   GEMINI_IGNORE_FILE_NAME,
@@ -909,6 +921,7 @@ import {
   TRACKER_LIST_TASKS_TOOL_NAME,
   TRACKER_UPDATE_TASK_TOOL_NAME,
   TRACKER_VISUALIZE_TOOL_NAME,
+  TRUSTED_FOLDERS_FILENAME,
   ToolConfirmationOutcome,
   ToolErrorType,
   UPDATE_TOPIC_DISPLAY_NAME,
@@ -999,7 +1012,7 @@ import {
   toFriendlyError,
   toPathKey,
   unescapePath
-} from "./chunk-67TFD6HC.js";
+} from "./chunk-FNPZLVJU.js";
 import "./chunk-664ZODQF.js";
 import "./chunk-RJTRUG2J.js";
 import {
@@ -1068,6 +1081,8 @@ export {
   COMMON_IGNORE_PATTERNS,
   COMPLETE_TASK_DISPLAY_NAME,
   COMPLETE_TASK_TOOL_NAME,
+  CONFIRMATION_REQUIRED_PRIORITY,
+  CORE_TOOLS_FLAG_PRIORITY,
   CacheService,
   CanceledError,
   ChangeAuthRequestedError,
@@ -1169,6 +1184,7 @@ export {
   FatalSandboxError,
   FatalToolExecutionError,
   FatalTurnLimitedError,
+  FatalUntrustedWorkspaceError,
   FetchAdminControlsResponseSchema,
   FetchError,
   FileDiscoveryService,
@@ -1289,6 +1305,7 @@ export {
   LegacyAgentProtocol,
   LegacyAgentSession,
   LlmRole,
+  LoadedTrustedFolders,
   LocalAgentExecutor,
   LocalSandboxManager,
   Logger,
@@ -1379,6 +1396,7 @@ export {
   READ_MANY_PARAM_RECURSIVE,
   READ_MANY_PARAM_USE_DEFAULT_EXCLUDES,
   READ_ONLY_KINDS,
+  REDIRECTION_NAMES,
   REFERENCE_CONTENT_END,
   REFERENCE_CONTENT_START,
   ROOT_SCHEDULER_ID,
@@ -1446,6 +1464,7 @@ export {
   TRACKER_LIST_TASKS_TOOL_NAME,
   TRACKER_UPDATE_TASK_TOOL_NAME,
   TRACKER_VISUALIZE_TOOL_NAME,
+  TRUSTED_FOLDERS_FILENAME,
   TRUSTED_MCP_SERVER_PRIORITY,
   TaskStatus,
   TaskStatusSchema,
@@ -1469,6 +1488,7 @@ export {
   TrackerTaskSchema,
   TrackerUpdateTaskTool,
   TrackerVisualizeTool,
+  TrustLevel,
   Turn,
   UPDATE_TOPIC_DISPLAY_NAME,
   UPDATE_TOPIC_TOOL_NAME,
@@ -1527,6 +1547,7 @@ export {
   canUseRipgrep,
   categorizeAndConcatenate,
   checkExhaustive,
+  checkPathTrust,
   checkPolicy,
   classifyGoogleError,
   cleanupWorktree,
@@ -1534,6 +1555,7 @@ export {
   clearCachedCredentialFile,
   clearEmittedPolicyWarnings,
   clearOauthClientCache,
+  clearRealPathCacheForTesting,
   computeModelAddedAndRemovedLines,
   concatenateInstructions,
   connectAndDiscover,
@@ -1795,6 +1817,7 @@ export {
   isTool,
   isToolActivityError,
   isToolCallResponseInfo,
+  isTrustLevel,
   isUserActive,
   isUserVisibleHook,
   isValidNonThoughtTextPart,
@@ -1819,6 +1842,7 @@ export {
   loadServerHierarchicalMemory,
   loadSkillFromFile,
   loadSkillsFromDir,
+  loadTrustedFolders,
   loadWasmBinary,
   logApiError,
   logApiRequest,
@@ -1931,6 +1955,7 @@ export {
   resetBrowserSession,
   resetEncodingCache,
   resetOauthClientForTesting,
+  resetTrustedFoldersForTesting,
   resetUserDataCacheForTesting,
   resetVersionCache,
   resolveAndValidatePlanPath,
@@ -1953,6 +1978,7 @@ export {
   sanitizeOutput,
   saveApiKey,
   saveTruncatedToolOutput,
+  saveTrustedFolders,
   scheduleAgentTools,
   serializeTerminalToObject,
   setGeminiMdFilename,

package/bundle/{dist-P4XAO4SC.js → dist-FMEYWTZB.js} RENAMED Viewed

@@ -37,6 +37,8 @@ import {
   CODE_ASSIST_ENDPOINT,
   COMMON_DIRECTORY_EXCLUDES,
   COMMON_IGNORE_PATTERNS,
+  CONFIRMATION_REQUIRED_PRIORITY,
+  CORE_TOOLS_FLAG_PRIORITY,
   CacheService,
   ChatRecordingService,
   ClearcutLogger,
@@ -190,6 +192,7 @@ import {
   LegacyAgentProtocol,
   LegacyAgentSession,
   LlmRole,
+  LoadedTrustedFolders,
   LocalAgentExecutor,
   LocalSandboxManager,
   Logger,
@@ -238,6 +241,7 @@ import {
   PreCompressTrigger,
   PrivateIpError,
   ProjectIdRequiredError,
+  REDIRECTION_NAMES,
   ROOT_SCHEDULER_ID,
   RateLimiter,
   ReadFileTool,
@@ -302,6 +306,7 @@ import {
   TrackerTaskSchema,
   TrackerUpdateTaskTool,
   TrackerVisualizeTool,
+  TrustLevel,
   Turn,
   UPGRADE_URL_PAGE,
   USER_POLICY_TIER,
@@ -343,6 +348,7 @@ import {
   calculateReplacement,
   canUseRipgrep,
   checkExhaustive,
+  checkPathTrust,
   checkPolicy,
   classifyGoogleError,
   cleanupWorktree,
@@ -350,6 +356,7 @@ import {
   clearCachedCredentialFile,
   clearEmittedPolicyWarnings,
   clearOauthClientCache,
+  clearRealPathCacheForTesting,
   computeModelAddedAndRemovedLines,
   connectAndDiscover,
   connectToMcpServer,
@@ -563,6 +570,7 @@ import {
   isTmux,
   isToolActivityError,
   isToolCallResponseInfo,
+  isTrustLevel,
   isUserActive,
   isUserVisibleHook,
   isValidNonThoughtTextPart,
@@ -582,6 +590,7 @@ import {
   loadPoliciesFromToml,
   loadSkillFromFile,
   loadSkillsFromDir,
+  loadTrustedFolders,
   loadWasmBinary,
   logApiError,
   logApiRequest,
@@ -688,6 +697,7 @@ import {
   resetBrowserSession,
   resetEncodingCache,
   resetOauthClientForTesting,
+  resetTrustedFoldersForTesting,
   resetUserDataCacheForTesting,
   resetVersionCache,
   resolveAndValidatePlanPath,
@@ -706,6 +716,7 @@ import {
   sanitizeOutput,
   saveApiKey,
   saveTruncatedToolOutput,
+  saveTrustedFolders,
   scheduleAgentTools,
   serializeTerminalToObject,
   setGlobalProxy,
@@ -751,7 +762,7 @@ import {
   wrapInAccountChooser,
   writeToStderr,
   writeToStdout
-} from "./chunk-4UUOHXDW.js";
+} from "./chunk-GDRLBWZL.js";
 import {
   ACTIVATE_SKILL_TOOL_NAME,
   AGENT_TOOL_NAME,
@@ -813,6 +824,7 @@ import {
   FatalSandboxError,
   FatalToolExecutionError,
   FatalTurnLimitedError,
+  FatalUntrustedWorkspaceError,
   ForbiddenError,
   GEMINI_DIR,
   GEMINI_IGNORE_FILE_NAME,
@@ -909,6 +921,7 @@ import {
   TRACKER_LIST_TASKS_TOOL_NAME,
   TRACKER_UPDATE_TASK_TOOL_NAME,
   TRACKER_VISUALIZE_TOOL_NAME,
+  TRUSTED_FOLDERS_FILENAME,
   ToolConfirmationOutcome,
   ToolErrorType,
   UPDATE_TOPIC_DISPLAY_NAME,
@@ -999,7 +1012,7 @@ import {
   toFriendlyError,
   toPathKey,
   unescapePath
-} from "./chunk-67TFD6HC.js";
+} from "./chunk-FNPZLVJU.js";
 import "./chunk-664ZODQF.js";
 import "./chunk-RJTRUG2J.js";
 import {
@@ -1068,6 +1081,8 @@ export {
   COMMON_IGNORE_PATTERNS,
   COMPLETE_TASK_DISPLAY_NAME,
   COMPLETE_TASK_TOOL_NAME,
+  CONFIRMATION_REQUIRED_PRIORITY,
+  CORE_TOOLS_FLAG_PRIORITY,
   CacheService,
   CanceledError,
   ChangeAuthRequestedError,
@@ -1169,6 +1184,7 @@ export {
   FatalSandboxError,
   FatalToolExecutionError,
   FatalTurnLimitedError,
+  FatalUntrustedWorkspaceError,
   FetchAdminControlsResponseSchema,
   FetchError,
   FileDiscoveryService,
@@ -1289,6 +1305,7 @@ export {
   LegacyAgentProtocol,
   LegacyAgentSession,
   LlmRole,
+  LoadedTrustedFolders,
   LocalAgentExecutor,
   LocalSandboxManager,
   Logger,
@@ -1379,6 +1396,7 @@ export {
   READ_MANY_PARAM_RECURSIVE,
   READ_MANY_PARAM_USE_DEFAULT_EXCLUDES,
   READ_ONLY_KINDS,
+  REDIRECTION_NAMES,
   REFERENCE_CONTENT_END,
   REFERENCE_CONTENT_START,
   ROOT_SCHEDULER_ID,
@@ -1446,6 +1464,7 @@ export {
   TRACKER_LIST_TASKS_TOOL_NAME,
   TRACKER_UPDATE_TASK_TOOL_NAME,
   TRACKER_VISUALIZE_TOOL_NAME,
+  TRUSTED_FOLDERS_FILENAME,
   TRUSTED_MCP_SERVER_PRIORITY,
   TaskStatus,
   TaskStatusSchema,
@@ -1469,6 +1488,7 @@ export {
   TrackerTaskSchema,
   TrackerUpdateTaskTool,
   TrackerVisualizeTool,
+  TrustLevel,
   Turn,
   UPDATE_TOPIC_DISPLAY_NAME,
   UPDATE_TOPIC_TOOL_NAME,
@@ -1527,6 +1547,7 @@ export {
   canUseRipgrep,
   categorizeAndConcatenate,
   checkExhaustive,
+  checkPathTrust,
   checkPolicy,
   classifyGoogleError,
   cleanupWorktree,
@@ -1534,6 +1555,7 @@ export {
   clearCachedCredentialFile,
   clearEmittedPolicyWarnings,
   clearOauthClientCache,
+  clearRealPathCacheForTesting,
   computeModelAddedAndRemovedLines,
   concatenateInstructions,
   connectAndDiscover,
@@ -1795,6 +1817,7 @@ export {
   isTool,
   isToolActivityError,
   isToolCallResponseInfo,
+  isTrustLevel,
   isUserActive,
   isUserVisibleHook,
   isValidNonThoughtTextPart,
@@ -1819,6 +1842,7 @@ export {
   loadServerHierarchicalMemory,
   loadSkillFromFile,
   loadSkillsFromDir,
+  loadTrustedFolders,
   loadWasmBinary,
   logApiError,
   logApiRequest,
@@ -1931,6 +1955,7 @@ export {
   resetBrowserSession,
   resetEncodingCache,
   resetOauthClientForTesting,
+  resetTrustedFoldersForTesting,
   resetUserDataCacheForTesting,
   resetVersionCache,
   resolveAndValidatePlanPath,
@@ -1953,6 +1978,7 @@ export {
   sanitizeOutput,
   saveApiKey,
   saveTruncatedToolOutput,
+  saveTrustedFolders,
   scheduleAgentTools,
   serializeTerminalToObject,
   setGeminiMdFilename,

package/bundle/docs/cli/cli-reference.md CHANGED Viewed

@@ -52,6 +52,7 @@ These commands are available within the interactive REPL.
 | `--prompt-interactive`           | `-i`  | string  | -         | Execute prompt and continue in interactive mode                                                                                                                        |
 | `--worktree`                     | `-w`  | string  | -         | Start Gemini in a new git worktree. If no name is provided, one is generated automatically. Requires `experimental.worktrees: true` in settings.                       |
 | `--sandbox`                      | `-s`  | boolean | `false`   | Run in a sandboxed environment for safer execution                                                                                                                     |
+| `--skip-trust`                   | -     | boolean | `false`   | Trust the current workspace for this session, skipping the folder trust check.                                                                                         |
 | `--approval-mode`                | -     | string  | `default` | Approval mode for tool execution. Choices: `default`, `auto_edit`, `yolo`, `plan`                                                                                      |
 | `--yolo`                         | `-y`  | boolean | `false`   | **Deprecated.** Auto-approve all actions. Use `--approval-mode=yolo` instead.                                                                                          |
 | `--experimental-acp`             | -     | boolean | -         | Start in ACP (Agent Code Pilot) mode. **Experimental feature.**                                                                                                        |

package/bundle/docs/cli/trusted-folders.md CHANGED Viewed

@@ -100,6 +100,34 @@ protect you. In this mode, the following features are disabled:
 Granting trust to a folder unlocks the full functionality of Gemini CLI for that
 workspace.
+## Headless and automated environments
+When running Gemini CLI in a headless environment (for example, a CI/CD
+pipeline) where interactive prompts are not possible, the trust dialog cannot be
+displayed. If the folder is untrusted and the Folder Trust feature is enabled,
+the CLI will throw a `FatalUntrustedWorkspaceError` and exit.
+To proceed in these environments, you can bypass the trust check using one of
+the following methods:
+- **Command-line flag:** Run the CLI with the `--skip-trust` flag.
+- **Environment variable:** Set the `GEMINI_CLI_TRUST_WORKSPACE=true`
+  environment variable.
+These methods will trust the current workspace for the duration of the session
+without prompting.
+For detailed instructions on managing folder trust within CI/CD workflows,
+review the
+[Gemini CLI trust guidance for GitHub Actions](https://github.com/google-github-actions/run-gemini-cli/blob/main/docs/trust-guidance.md).
+## Overriding the trust file location
+By default, trust settings are saved to `~/.gemini/trustedFolders.json`. If you
+need to store this file in a different location, you can set the
+`GEMINI_CLI_TRUSTED_FOLDERS_PATH` environment variable to the desired absolute
+file path.
 ## Managing your trust settings
 If you need to change a decision or see all your settings, you have a couple of

package/bundle/docs/reference/configuration.md CHANGED Viewed

@@ -1437,6 +1437,12 @@ their corresponding top-level category object in your `settings.json` file.
   - **Default:** `undefined`
   - **Requires restart:** Yes
+- **`tools.confirmationRequired`** (array):
+  - **Description:** Tool names that always require user confirmation. Takes
+    precedence over allowed tools and core tool allowlists.
+  - **Default:** `undefined`
+  - **Requires restart:** Yes
 - **`tools.exclude`** (array):
   - **Description:** Tool names to exclude from discovery.
   - **Default:** `undefined`
@@ -2099,6 +2105,14 @@ the `advanced.excludedEnvVars` setting in your `settings.json` file.
   - Overrides the hardcoded default
   - Example: `export GEMINI_MODEL="gemini-3-flash-preview"` (Windows PowerShell:
     `$env:GEMINI_MODEL="gemini-3-flash-preview"`)
+- **`GEMINI_CLI_TRUST_WORKSPACE`**:
+  - If set to `"true"`, trusts the current workspace for the duration of the
+    session, bypassing the folder trust check.
+  - Useful for headless environments (for example, CI/CD pipelines).
+- **`GEMINI_CLI_TRUSTED_FOLDERS_PATH`**:
+  - Overrides the default location for the `trustedFolders.json` file.
+  - Useful if you want to store this configuration in a custom location instead
+    of the default `~/.gemini/`.
 - **`GEMINI_CLI_IDE_PID`**:
   - Manually specifies the PID of the IDE process to use for integration. This
     is useful when running Gemini CLI in a standalone terminal while still