@gotgenes/pi-permission-system 3.8.0 → 3.9.0

package/CHANGELOG.md

@@ -5,6 +5,27 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [3.9.0](https://github.com/gotgenes/pi-permission-system/compare/v3.8.0...v3.9.0) (2026-05-03)
+
+
+### Features
+
+* add normalizeConfig and defaults modules ([84f9c3e](https://github.com/gotgenes/pi-permission-system/commit/84f9c3ef1c665e8d55b694ecf8bbec2dff41b093))
+* evaluate() accepts optional defaultAction parameter ([69dde81](https://github.com/gotgenes/pi-permission-system/commit/69dde81d05722065307b04102a8af6935df0e17c))
+
+
+### Bug Fixes
+
+* remove unused imports flagged by biome ([62704a3](https://github.com/gotgenes/pi-permission-system/commit/62704a3b5c833af74a3bd27942ffc4247c92c12c))
+
+
+### Documentation
+
+* mark [#42](https://github.com/gotgenes/pi-permission-system/issues/42) and [#43](https://github.com/gotgenes/pi-permission-system/issues/43) complete in target architecture ([04430f2](https://github.com/gotgenes/pi-permission-system/commit/04430f2ea000e9607541262a71ad2be633dc7bb6))
+* mark [#56](https://github.com/gotgenes/pi-permission-system/issues/56) complete in target architecture ([2fe95c5](https://github.com/gotgenes/pi-permission-system/commit/2fe95c577ec97e78c1390db91020294ba25662e0))
+* plan unify Rule type and normalize config into flat Ruleset ([#56](https://github.com/gotgenes/pi-permission-system/issues/56)) ([61e8c48](https://github.com/gotgenes/pi-permission-system/commit/61e8c4800f39a173b69f2773e8b2f09fa9c7318b))
+* **retro:** add retro notes for issue [#43](https://github.com/gotgenes/pi-permission-system/issues/43) ([bd6aea6](https://github.com/gotgenes/pi-permission-system/commit/bd6aea6ed2e1dfdad1ef610f9abb8319d87460cd))
+
 ## [3.8.0](https://github.com/gotgenes/pi-permission-system/compare/v3.7.0...v3.8.0) (2026-05-03)
 
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@gotgenes/pi-permission-system",
-  "version": "3.8.0",
+  "version": "3.9.0",
   "description": "Permission enforcement extension for the Pi coding agent.",
   "type": "module",
   "files": [

package/src/defaults.ts

@@ -0,0 +1,60 @@
+import type { PermissionDefaultPolicy, PermissionState } from "./types";
+
+/** Hardcoded fallback — every surface defaults to "ask" (least privilege). */
+export const DEFAULT_POLICY: PermissionDefaultPolicy = {
+  tools: "ask",
+  bash: "ask",
+  mcp: "ask",
+  skills: "ask",
+  special: "ask",
+};
+
+/**
+ * Map a surface name used in evaluate() to the corresponding
+ * defaultPolicy key. Surfaces not listed here fall through to
+ * either "tools" or "special" via getSurfaceDefault().
+ */
+const SURFACE_TO_DEFAULT_KEY: Record<string, keyof PermissionDefaultPolicy> = {
+  bash: "bash",
+  mcp: "mcp",
+  skill: "skills",
+};
+
+/**
+ * Resolve the default action for a surface, consulting merged defaults.
+ *
+ * - "bash", "mcp", "skill" → dedicated defaultPolicy key
+ * - special-key surfaces (e.g. "external_directory") → defaults.special
+ * - everything else (tool-name surfaces) → defaults.tools
+ */
+export function getSurfaceDefault(
+  surface: string,
+  defaults: PermissionDefaultPolicy,
+  specialKeys: ReadonlySet<string>,
+): PermissionState {
+  const key = SURFACE_TO_DEFAULT_KEY[surface];
+  if (key) return defaults[key];
+  if (specialKeys.has(surface)) return defaults.special;
+  return defaults.tools;
+}
+
+/**
+ * Merge zero or more partial default policies on top of DEFAULT_POLICY.
+ * Later partials override earlier ones (shallow spread per key).
+ */
+export function mergeDefaults(
+  ...partials: ReadonlyArray<Partial<PermissionDefaultPolicy> | undefined>
+): PermissionDefaultPolicy {
+  const merged: PermissionDefaultPolicy = { ...DEFAULT_POLICY };
+
+  for (const partial of partials) {
+    if (!partial) continue;
+    if (partial.tools) merged.tools = partial.tools;
+    if (partial.bash) merged.bash = partial.bash;
+    if (partial.mcp) merged.mcp = partial.mcp;
+    if (partial.skills) merged.skills = partial.skills;
+    if (partial.special) merged.special = partial.special;
+  }
+
+  return merged;
+}

package/src/index.ts

@@ -11,10 +11,7 @@ import {
   handleSessionStart,
   handleToolCall,
 } from "./handlers";
-import {
-  type PermissionPromptDecision,
-  requestPermissionDecisionFromUi,
-} from "./permission-dialog";
+import { requestPermissionDecisionFromUi } from "./permission-dialog";
 import {
   createExtensionRuntime,
   createPermissionManagerForCwd,

package/src/normalize.ts

@@ -0,0 +1,70 @@
+import type { Rule, Ruleset } from "./rule";
+import type { PermissionState } from "./types";
+
+/**
+ * Subset of UnifiedPermissionConfig covering only policy fields.
+ * Used as the input shape for normalizeConfig().
+ */
+export interface NormalizableConfig {
+  tools?: Record<string, PermissionState>;
+  bash?: Record<string, PermissionState>;
+  mcp?: Record<string, PermissionState>;
+  skills?: Record<string, PermissionState>;
+  special?: Record<string, PermissionState>;
+}
+
+/**
+ * Keys in the `tools` map that serve as fallback defaults for their
+ * respective pattern-based surfaces rather than as tool-level rules.
+ *
+ * `tools.bash` sets the bash default (fallback when no bash pattern matches).
+ * `tools.mcp` sets the tool-level MCP fallback.
+ *
+ * These are NOT normalized into the Ruleset — they are extracted by the
+ * caller and handled as separate fallbacks to preserve the semantic that
+ * specific bash/mcp patterns always have priority.
+ */
+export const TOOL_SURFACE_OVERRIDE_KEYS: ReadonlySet<string> = new Set([
+  "bash",
+  "mcp",
+]);
+
+/**
+ * Convert the on-disk config shape into a flat Ruleset.
+ *
+ * Ordering within a scope:
+ * 1. tools entries (tool-name-as-surface, pattern "*") — excluding bash/mcp
+ * 2. bash entries (surface "bash", pattern = command glob)
+ * 3. mcp entries (surface "mcp", pattern = target glob)
+ * 4. skills entries (surface "skill", pattern = skill glob)
+ * 5. special entries (surface "special", pattern = key name)
+ *
+ * `tools.bash` and `tools.mcp` are excluded — see TOOL_SURFACE_OVERRIDE_KEYS.
+ * `defaultPolicy` is NOT included — handled separately by the caller.
+ */
+export function normalizeConfig(config: NormalizableConfig): Ruleset {
+  const rules: Rule[] = [];
+
+  for (const [name, action] of Object.entries(config.tools ?? {})) {
+    if (TOOL_SURFACE_OVERRIDE_KEYS.has(name)) continue;
+    rules.push({ surface: name, pattern: "*", action });
+  }
+
+  for (const [pattern, action] of Object.entries(config.bash ?? {})) {
+    rules.push({ surface: "bash", pattern, action });
+  }
+
+  for (const [pattern, action] of Object.entries(config.mcp ?? {})) {
+    rules.push({ surface: "mcp", pattern, action });
+  }
+
+  for (const [pattern, action] of Object.entries(config.skills ?? {})) {
+    rules.push({ surface: "skill", pattern, action });
+  }
+
+  for (const [name, action] of Object.entries(config.special ?? {})) {
+    rules.push({ surface: "special", pattern: name, action });
+  }
+
+  return rules;
+}