npm - @gotgenes/pi-permission-system - Versions diffs - 10.0.0 → 10.1.0 - Mend

@gotgenes/pi-permission-system 10.0.0 → 10.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (64) hide show

package/CHANGELOG.md +26 -0
package/README.md +1 -1
package/package.json +1 -1
package/src/agent-prep-session.ts +28 -0
package/src/decision-reporter.ts +41 -0
package/src/denial-messages.ts +11 -0
package/src/forwarded-permissions/permission-forwarder.ts +549 -0
package/src/forwarding-manager.ts +3 -7
package/src/gate-handler-session.ts +13 -0
package/src/gate-prompter.ts +14 -0
package/src/handlers/before-agent-start.ts +2 -3
package/src/handlers/gates/bash-command.ts +4 -18
package/src/handlers/gates/bash-external-directory.ts +3 -15
package/src/handlers/gates/bash-path.ts +3 -16
package/src/handlers/gates/descriptor.ts +0 -28
package/src/handlers/gates/path.ts +3 -15
package/src/handlers/gates/runner.ts +142 -105
package/src/handlers/gates/skill-input-gate-pipeline.ts +104 -0
package/src/handlers/gates/skill-input.ts +44 -0
package/src/handlers/gates/tool-call-gate-pipeline.ts +120 -0
package/src/handlers/lifecycle.ts +9 -9
package/src/handlers/permission-gate-handler.ts +34 -238
package/src/index.ts +49 -69
package/src/mcp-targets.ts +56 -46
package/src/permission-prompter.ts +7 -58
package/src/permission-resolver.ts +17 -0
package/src/permission-session.ts +77 -9
package/src/permissions-service.ts +53 -0
package/src/service-lifecycle.ts +49 -0
package/src/session-approval-recorder.ts +6 -0
package/src/session-lifecycle-session.ts +24 -0
package/src/tool-input-preview.ts +0 -62
package/src/tool-input-prompt-formatters.ts +63 -0
package/src/tool-preview-formatter.ts +6 -4
package/test/decision-reporter.test.ts +112 -0
package/test/denial-messages.test.ts +62 -0
package/test/forwarding-manager.test.ts +26 -44
package/test/handlers/before-agent-start.test.ts +45 -21
package/test/handlers/external-directory-integration.test.ts +86 -22
package/test/handlers/external-directory-session-dedup.test.ts +102 -55
package/test/handlers/gates/bash-command.test.ts +49 -90
package/test/handlers/gates/bash-external-directory.test.ts +54 -95
package/test/handlers/gates/bash-path.test.ts +63 -148
package/test/handlers/gates/path.test.ts +38 -105
package/test/handlers/gates/runner.test.ts +150 -93
package/test/handlers/gates/skill-input-gate-pipeline.test.ts +176 -0
package/test/handlers/gates/skill-input.test.ts +128 -0
package/test/handlers/gates/tool-call-gate-pipeline.test.ts +180 -0
package/test/handlers/input.test.ts +1 -2
package/test/handlers/lifecycle.test.ts +49 -33
package/test/handlers/tool-call-events.test.ts +1 -1
package/test/helpers/gate-fixtures.ts +147 -16
package/test/helpers/handler-fixtures.ts +143 -27
package/test/mcp-targets.test.ts +55 -0
package/test/permission-forwarder.test.ts +295 -0
package/test/permission-forwarding.test.ts +0 -282
package/test/permission-prompter.test.ts +33 -44
package/test/permission-session.test.ts +160 -27
package/test/permissions-service.test.ts +151 -0
package/test/runtime.test.ts +0 -4
package/test/service-lifecycle.test.ts +162 -0
package/test/tool-input-preview.test.ts +0 -111
package/test/tool-input-prompt-formatters.test.ts +115 -0
package/src/forwarded-permissions/polling.ts +0 -411

package/test/handlers/gates/path.test.ts CHANGED Viewed

@@ -1,13 +1,14 @@
-import { describe, expect, it, vi } from "vitest";
+import { describe, expect, it } from "vitest";
 import type { GateDescriptor } from "#src/handlers/gates/descriptor";
 import { isGateDescriptor } from "#src/handlers/gates/descriptor";
 import { describePathGate } from "#src/handlers/gates/path";
 import type { ToolCallContext } from "#src/handlers/gates/types";
-import type { Rule } from "#src/rule";
-import type { PermissionCheckResult } from "#src/types";
-import { makeGateCheckResult as makeCheckResult } from "#test/helpers/gate-fixtures";
+import {
+  makeGateCheckResult as makeCheckResult,
+  makeResolver,
+} from "#test/helpers/gate-fixtures";
 // ── helpers ────────────────────────────────────────────────────────────────
@@ -23,53 +24,36 @@ function makeTcc(overrides: Partial<ToolCallContext> = {}): ToolCallContext {
   };
 }
-type CheckPermissionFn = (
-  surface: string,
-  input: unknown,
-  agentName?: string,
-  sessionRules?: Rule[],
-) => PermissionCheckResult;
 // ── tests ──────────────────────────────────────────────────────────────────
 describe("describePathGate", () => {
-  const getSessionRuleset = vi.fn<() => Rule[]>().mockReturnValue([]);
   it("returns null for non-path-bearing tools", () => {
-    const checkPermission = vi.fn<CheckPermissionFn>();
+    const resolver = makeResolver();
     const result = describePathGate(
       makeTcc({ toolName: "bash", input: { command: "ls" } }),
-      checkPermission,
-      getSessionRuleset,
+      resolver,
     );
     expect(result).toBeNull();
-    expect(checkPermission).not.toHaveBeenCalled();
+    expect(resolver.resolve).not.toHaveBeenCalled();
   });
   it("returns null when tool has no extractable path", () => {
-    const checkPermission = vi.fn<CheckPermissionFn>();
+    const resolver = makeResolver();
     const result = describePathGate(
       makeTcc({ toolName: "read", input: {} }),
-      checkPermission,
-      getSessionRuleset,
+      resolver,
     );
     expect(result).toBeNull();
   });
   it("returns null when path check result is allow", () => {
-    const checkPermission = vi
-      .fn<CheckPermissionFn>()
-      .mockReturnValue(makeCheckResult({ state: "allow" }));
-    const result = describePathGate(
-      makeTcc(),
-      checkPermission,
-      getSessionRuleset,
-    );
+    const resolver = makeResolver(makeCheckResult({ state: "allow" }));
+    const result = describePathGate(makeTcc(), resolver);
     expect(result).toBeNull();
   });
   it("returns null when matchedPattern is undefined (universal default)", () => {
-    const checkPermission = vi.fn<CheckPermissionFn>().mockReturnValue(
+    const resolver = makeResolver(
       makeCheckResult({
         state: "ask",
         matchedPattern: undefined,
@@ -77,16 +61,12 @@ describe("describePathGate", () => {
         origin: "builtin",
       }),
     );
-    const result = describePathGate(
-      makeTcc(),
-      checkPermission,
-      getSessionRuleset,
-    );
+    const result = describePathGate(makeTcc(), resolver);
     expect(result).toBeNull();
   });
   it("returns GateDescriptor when matchedPattern is defined (explicit path rule)", () => {
-    const checkPermission = vi.fn<CheckPermissionFn>().mockReturnValue(
+    const resolver = makeResolver(
       makeCheckResult({
         state: "ask",
         matchedPattern: "*.env",
@@ -94,27 +74,16 @@ describe("describePathGate", () => {
         origin: "global",
       }),
     );
-    const result = describePathGate(
-      makeTcc(),
-      checkPermission,
-      getSessionRuleset,
-    );
+    const result = describePathGate(makeTcc(), resolver);
     expect(result).not.toBeNull();
     expect(isGateDescriptor(result)).toBe(true);
   });
   it("returns GateDescriptor when path check result is deny", () => {
-    const checkPermission = vi.fn<CheckPermissionFn>().mockReturnValue(
-      makeCheckResult({
-        state: "deny",
-        matchedPattern: "*.env",
-      }),
-    );
-    const result = describePathGate(
-      makeTcc(),
-      checkPermission,
-      getSessionRuleset,
+    const resolver = makeResolver(
+      makeCheckResult({ state: "deny", matchedPattern: "*.env" }),
     );
+    const result = describePathGate(makeTcc(), resolver);
     expect(result).not.toBeNull();
     expect(isGateDescriptor(result)).toBe(true);
     const desc = result as GateDescriptor;
@@ -123,17 +92,10 @@ describe("describePathGate", () => {
   });
   it("returns GateDescriptor when path check result is ask", () => {
-    const checkPermission = vi.fn<CheckPermissionFn>().mockReturnValue(
-      makeCheckResult({
-        state: "ask",
-        matchedPattern: "*.env",
-      }),
-    );
-    const result = describePathGate(
-      makeTcc(),
-      checkPermission,
-      getSessionRuleset,
+    const resolver = makeResolver(
+      makeCheckResult({ state: "ask", matchedPattern: "*.env" }),
     );
+    const result = describePathGate(makeTcc(), resolver);
     expect(result).not.toBeNull();
     expect(isGateDescriptor(result)).toBe(true);
     const desc = result as GateDescriptor;
@@ -142,13 +104,12 @@ describe("describePathGate", () => {
   });
   it("descriptor has correct session approval surface and pattern", () => {
-    const checkPermission = vi
-      .fn<CheckPermissionFn>()
-      .mockReturnValue(makeCheckResult({ state: "ask", matchedPattern: "*" }));
+    const resolver = makeResolver(
+      makeCheckResult({ state: "ask", matchedPattern: "*" }),
+    );
     const result = describePathGate(
       makeTcc({ input: { path: "/test/project/src/.env" } }),
-      checkPermission,
-      getSessionRuleset,
+      resolver,
     ) as GateDescriptor;
     expect(result.sessionApproval).toBeDefined();
     expect(result.sessionApproval?.surface).toBe("path");
@@ -156,16 +117,10 @@ describe("describePathGate", () => {
   });
   it("descriptor denialContext references the file path and tool name", () => {
-    const checkPermission = vi
-      .fn<CheckPermissionFn>()
-      .mockReturnValue(
-        makeCheckResult({ state: "deny", matchedPattern: "*.env" }),
-      );
-    const result = describePathGate(
-      makeTcc(),
-      checkPermission,
-      getSessionRuleset,
-    ) as GateDescriptor;
+    const resolver = makeResolver(
+      makeCheckResult({ state: "deny", matchedPattern: "*.env" }),
+    );
+    const result = describePathGate(makeTcc(), resolver) as GateDescriptor;
     expect(result.denialContext).toEqual({
       kind: "path",
       toolName: "read",
@@ -175,43 +130,21 @@ describe("describePathGate", () => {
   });
   it("descriptor decision uses surface 'path' and the file path as value", () => {
-    const checkPermission = vi
-      .fn<CheckPermissionFn>()
-      .mockReturnValue(
-        makeCheckResult({ state: "deny", matchedPattern: "*.env" }),
-      );
-    const result = describePathGate(
-      makeTcc(),
-      checkPermission,
-      getSessionRuleset,
-    ) as GateDescriptor;
+    const resolver = makeResolver(
+      makeCheckResult({ state: "deny", matchedPattern: "*.env" }),
+    );
+    const result = describePathGate(makeTcc(), resolver) as GateDescriptor;
     expect(result.decision.surface).toBe("path");
     expect(result.decision.value).toBe(".env");
   });
-  it("passes agentName and session rules to checkPermission", () => {
-    const sessionRules: Rule[] = [
-      {
-        surface: "path",
-        pattern: "/project/*",
-        action: "allow",
-        origin: "session",
-      },
-    ];
-    const getSession = vi.fn<() => Rule[]>().mockReturnValue(sessionRules);
-    const checkPermission = vi
-      .fn<CheckPermissionFn>()
-      .mockReturnValue(makeCheckResult({ state: "allow" }));
-    describePathGate(
-      makeTcc({ agentName: "my-agent" }),
-      checkPermission,
-      getSession,
-    );
-    expect(checkPermission).toHaveBeenCalledWith(
+  it("resolves the path surface with the file path and agent name", () => {
+    const resolver = makeResolver(makeCheckResult({ state: "allow" }));
+    describePathGate(makeTcc({ agentName: "my-agent" }), resolver);
+    expect(resolver.resolve).toHaveBeenCalledWith(
       "path",
       { path: ".env" },
       "my-agent",
-      sessionRules,
     );
   });
 });