@gotgenes/pi-permission-system 0.8.0 → 1.0.0

package/CHANGELOG.md

@@ -5,6 +5,23 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [1.0.0](https://github.com/gotgenes/pi-permission-system/compare/v0.8.0...v1.0.0) (2026-05-03)
+
+
+### ⚠ BREAKING CHANGES
+
+* The bundled temperature-stripping shim for OpenAI Responses-style APIs (openai-codex-responses, openai-responses, azure-openai-responses) has been removed. This module monkey-patched the provider stack at the process level and had no connection to permission enforcement. Users who need the shim can extract it into a standalone extension.
+
+### Features
+
+* remove out-of-scope model-option-compatibility provider shim ([#17](https://github.com/gotgenes/pi-permission-system/issues/17)) ([b390896](https://github.com/gotgenes/pi-permission-system/commit/b39089611fe565f81dacf7fa0bff3af36d50f7ce))
+
+
+### Documentation
+
+* plan removal of out-of-scope model-option-compatibility shim ([#17](https://github.com/gotgenes/pi-permission-system/issues/17)) ([a48f2ef](https://github.com/gotgenes/pi-permission-system/commit/a48f2ef025cbe970d21071b94552fcb9a4f7de89))
+* **retro:** add retro notes for issue [#16](https://github.com/gotgenes/pi-permission-system/issues/16) ([ee710cb](https://github.com/gotgenes/pi-permission-system/commit/ee710cba9b1fe92a39016c61348d2a0eb2895d1f))
+
 ## [0.8.0](https://github.com/gotgenes/pi-permission-system/compare/v0.7.0...v0.8.0) (2026-05-03)
 
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@gotgenes/pi-permission-system",
-  "version": "0.8.0",
+  "version": "1.0.0",
   "description": "Permission enforcement extension for the Pi coding agent.",
   "type": "module",
   "main": "./index.ts",

package/src/index.ts

@@ -35,7 +35,6 @@ import {
   savePermissionSystemConfig,
 } from "./extension-config.js";
 import { createPermissionSystemLogger, safeJsonStringify } from "./logging.js";
-import { registerModelOptionCompatibilityGuard } from "./model-option-compatibility.js";
 import {
   isPermissionDecisionState,
   type PermissionPromptDecision,
@@ -1338,8 +1337,6 @@ export default function piPermissionSystemExtension(pi: ExtensionAPI): void {
 
   setLoggingWarningReporter(notifyWarning);
   refreshExtensionConfig();
-  registerModelOptionCompatibilityGuard(pi);
-
   registerPermissionSystemCommand(pi, {
     getConfig: () => extensionConfig,
     setConfig: saveExtensionConfig,

package/src/model-option-compatibility.ts

@@ -1,182 +0,0 @@
-import {
-  type Api,
-  type AssistantMessageEventStream,
-  getApiProvider,
-  type Context as LlmContext,
-  type Model,
-  type SimpleStreamOptions,
-} from "@mariozechner/pi-ai";
-import type { ExtensionAPI } from "@mariozechner/pi-coding-agent";
-
-const GUARDED_TEMPERATURE_APIS = [
-  "openai-codex-responses",
-  "openai-responses",
-  "azure-openai-responses",
-] as const satisfies readonly Api[];
-const OPENAI_RESPONSES_APIS = new Set<Api>([
-  "openai-responses",
-  "azure-openai-responses",
-]);
-const TEMPERATURE_UNSUPPORTED_APIS = new Set<Api>(["openai-codex-responses"]);
-const TEMPERATURE_UNSUPPORTED_PROVIDERS = new Set<string>(["openai-codex"]);
-
-export type ApiStreamSimpleDelegate = (
-  model: Model<Api>,
-  context: LlmContext,
-  options?: SimpleStreamOptions,
-) => AssistantMessageEventStream;
-
-type GlobalWithPermissionSystemProviderGuard = typeof globalThis & {
-  __piPermissionSystemModelOptionBaseStreams?: Map<
-    string,
-    ApiStreamSimpleDelegate
-  >;
-  __piPermissionSystemModelOptionGuardedApis?: Set<string>;
-};
-
-function getBaseApiStreams(): Map<string, ApiStreamSimpleDelegate> {
-  const globalScope = globalThis as GlobalWithPermissionSystemProviderGuard;
-  if (!globalScope.__piPermissionSystemModelOptionBaseStreams) {
-    globalScope.__piPermissionSystemModelOptionBaseStreams = new Map<
-      string,
-      ApiStreamSimpleDelegate
-    >();
-  }
-  return globalScope.__piPermissionSystemModelOptionBaseStreams;
-}
-
-function getGuardedApis(): Set<string> {
-  const globalScope = globalThis as GlobalWithPermissionSystemProviderGuard;
-  if (!globalScope.__piPermissionSystemModelOptionGuardedApis) {
-    globalScope.__piPermissionSystemModelOptionGuardedApis = new Set<string>();
-  }
-  return globalScope.__piPermissionSystemModelOptionGuardedApis;
-}
-
-function normalizeIdentifier(value: string | undefined): string {
-  return (value ?? "").trim().toLowerCase();
-}
-
-function hasModelToken(modelId: string, token: string): boolean {
-  return normalizeIdentifier(modelId)
-    .split(/[^a-z0-9]+/)
-    .includes(token);
-}
-
-export function getUnsupportedTemperatureReason(
-  model: Pick<Model<Api>, "api" | "id" | "provider" | "reasoning">,
-): string | undefined {
-  if (TEMPERATURE_UNSUPPORTED_APIS.has(model.api)) {
-    return `api '${model.api}' does not support temperature`;
-  }
-
-  const provider = normalizeIdentifier(model.provider);
-  if (TEMPERATURE_UNSUPPORTED_PROVIDERS.has(provider)) {
-    return `provider '${model.provider}' does not support temperature`;
-  }
-
-  if (
-    OPENAI_RESPONSES_APIS.has(model.api) &&
-    hasModelToken(model.id, "codex")
-  ) {
-    return `model '${model.id}' does not support temperature`;
-  }
-
-  if (OPENAI_RESPONSES_APIS.has(model.api) && model.reasoning) {
-    return `reasoning model '${model.id}' accepts only the provider default temperature`;
-  }
-
-  return undefined;
-}
-
-function isRecord(value: unknown): value is Record<string, unknown> {
-  return typeof value === "object" && value !== null && !Array.isArray(value);
-}
-
-export function stripUnsupportedTemperatureFromPayload(
-  payload: unknown,
-): unknown {
-  if (!isRecord(payload) || !("temperature" in payload)) {
-    return payload;
-  }
-
-  const { temperature: _temperature, ...rest } = payload;
-  return rest;
-}
-
-function composeTemperatureSanitizer(
-  options: SimpleStreamOptions | undefined,
-  model: Model<Api>,
-): SimpleStreamOptions | undefined {
-  const reason = getUnsupportedTemperatureReason(model);
-  if (!reason && options?.temperature === undefined) {
-    return options;
-  }
-
-  if (!reason) {
-    return options;
-  }
-
-  const existingOnPayload = options?.onPayload;
-  const nextOptions: SimpleStreamOptions = options
-    ? { ...options, temperature: undefined }
-    : {};
-
-  nextOptions.onPayload = async (payload, payloadModel) => {
-    const transformedPayload = existingOnPayload
-      ? await existingOnPayload(payload, payloadModel)
-      : undefined;
-    return stripUnsupportedTemperatureFromPayload(
-      transformedPayload ?? payload,
-    );
-  };
-
-  return nextOptions;
-}
-
-function ensureModelOptionGuardForApi(pi: ExtensionAPI, api: Api): boolean {
-  const guardedApis = getGuardedApis();
-  if (guardedApis.has(api)) {
-    return true;
-  }
-
-  const baseStreams = getBaseApiStreams();
-  let baseStream = baseStreams.get(api);
-  if (!baseStream) {
-    const currentProvider = getApiProvider(api);
-    if (!currentProvider) {
-      return false;
-    }
-    baseStream = currentProvider.streamSimple as ApiStreamSimpleDelegate;
-    baseStreams.set(api, baseStream);
-  }
-
-  const providerName = `pi-permission-system-model-option-compatibility-${api.replace(/[^a-z0-9]+/gi, "-").toLowerCase()}`;
-  pi.registerProvider(providerName, {
-    api,
-    streamSimple: (model, context, options) => {
-      const typedModel = model as Model<Api>;
-      const delegate = baseStreams.get(typedModel.api);
-      if (!delegate) {
-        throw new Error(
-          `No base stream provider available for api '${typedModel.api}'.`,
-        );
-      }
-
-      return delegate(
-        typedModel,
-        context,
-        composeTemperatureSanitizer(options, typedModel),
-      );
-    },
-  });
-
-  guardedApis.add(api);
-  return true;
-}
-
-export function registerModelOptionCompatibilityGuard(pi: ExtensionAPI): void {
-  for (const api of GUARDED_TEMPERATURE_APIS) {
-    ensureModelOptionGuardForApi(pi, api);
-  }
-}