@gotgenes/pi-permission-system 4.1.0 → 4.1.1

package/CHANGELOG.md

@@ -5,6 +5,18 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [4.1.1](https://github.com/gotgenes/pi-permission-system/compare/v4.1.0...v4.1.1) (2026-05-04)
+
+
+### Bug Fixes
+
+* add dotAll flag so wildcard `*` matches newlines ([#73](https://github.com/gotgenes/pi-permission-system/issues/73)) ([57085e3](https://github.com/gotgenes/pi-permission-system/commit/57085e3c9dbe80204e5629a3c18f8c1f307226f8))
+
+
+### Documentation
+
+* plan dotAll fix for wildcard multiline matching ([#73](https://github.com/gotgenes/pi-permission-system/issues/73)) ([b9c0a5b](https://github.com/gotgenes/pi-permission-system/commit/b9c0a5bcabc0f77e85d4932f7e2cf584a1bc0223))
+
 ## [4.1.0](https://github.com/gotgenes/pi-permission-system/compare/v4.0.1...v4.1.0) (2026-05-04)
 
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@gotgenes/pi-permission-system",
-  "version": "4.1.0",
+  "version": "4.1.1",
   "description": "Permission enforcement extension for the Pi coding agent.",
   "type": "module",
   "files": [

package/src/wildcard-matcher.ts

@@ -26,7 +26,7 @@ export function compileWildcardPattern<TState>(
   return {
     pattern,
     state,
-    regex: new RegExp(`^${escaped}$`),
+    regex: new RegExp(`^${escaped}$`, "s"),
   };
 }
 

package/tests/permission-system.test.ts

@@ -635,6 +635,27 @@ test("PermissionManager canonical built-in permission checking", () => {
   }
 });
 
+test("multiline bash command resolves to allow via universal fallback", () => {
+  // Regression test for #73: node -e "..." with embedded newlines was
+  // falling through to the hard-coded 'ask' default because wildcardMatch
+  // used /^.*$/ (no dotAll), which does not match '\n'.
+  const { manager, cleanup } = createManager({
+    permission: {
+      "*": "allow",
+      bash: { "rm -rf *": "deny", "sudo *": "ask" },
+    },
+  });
+
+  try {
+    const command =
+      "node -e \"\nimport('x').then(() => {\n  console.log('done');\n});\n\"";
+    const result = manager.checkPermission("bash", { command });
+    assert.equal(result.state, "allow");
+  } finally {
+    cleanup();
+  }
+});
+
 test("Bash specific deny patterns override catch-all within the same config", () => {
   // In the flat format, patterns within a surface map are ordered by insertion.
   // Last-match-wins means specific patterns placed AFTER the catch-all override it.

package/tests/wildcard-matcher.test.ts

@@ -187,6 +187,22 @@ describe("wildcardMatch", () => {
     expect(wildcardMatch("*", "bash")).toBe(true);
   });
 
+  test("'*' pattern matches values containing newlines", () => {
+    expect(wildcardMatch("*", "line1\nline2")).toBe(true);
+    expect(wildcardMatch("*", "a\nb\nc")).toBe(true);
+  });
+
+  test("prefix-wildcard pattern matches value with embedded newlines", () => {
+    const command =
+      "node -e \"\nimport('x').then(() => {\n  console.log('done');\n});\n\"";
+    expect(wildcardMatch("node *", command)).toBe(true);
+  });
+
+  test("compileWildcardPattern regex matches multiline string", () => {
+    const compiled = compileWildcardPattern("*", "allow");
+    expect(compiled.regex.test("a\nb")).toBe(true);
+  });
+
   test("exact pattern matches identical value", () => {
     expect(wildcardMatch("read", "read")).toBe(true);
     expect(wildcardMatch("external_directory", "external_directory")).toBe(