@gotgenes/pi-permission-system 5.18.0 → 5.18.1

package/CHANGELOG.md

@@ -5,6 +5,16 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [5.18.1](https://github.com/gotgenes/pi-permission-system/compare/v5.18.0...v5.18.1) (2026-05-15)
+
+
+### Documentation
+
+* plan Pi GitHub Tools extension ([#153](https://github.com/gotgenes/pi-permission-system/issues/153)) ([6f8566f](https://github.com/gotgenes/pi-permission-system/commit/6f8566feba22981e3f726aae8544bab53dce8a8a))
+* **retro:** add retro notes for issue [#145](https://github.com/gotgenes/pi-permission-system/issues/145) ([70ff363](https://github.com/gotgenes/pi-permission-system/commit/70ff36369a902f82d78e277ba9fa7948bb62d82c))
+* update /ship-issue to use pi-github-tools ([#153](https://github.com/gotgenes/pi-permission-system/issues/153)) ([7a4de21](https://github.com/gotgenes/pi-permission-system/commit/7a4de21ee16f7a1fff3ef8cf6e2b3a0516183ab5))
+* update docs and pattern-suggest for path surface ([6defcdb](https://github.com/gotgenes/pi-permission-system/commit/6defcdb5430296c82da6eefc1980ab109dedc202))
+
 ## [5.18.0](https://github.com/gotgenes/pi-permission-system/compare/v5.17.0...v5.18.0) (2026-05-14)
 
 

package/README.md

@@ -17,6 +17,7 @@ Permission enforcement extension for the [Pi](https://pi.mariozechner.at/) codin
 - **Enforces allow / ask / deny** at tool-call time with UI confirmation dialogs
 - **Controls bash commands** with wildcard pattern matching (`git *: ask`, `rm -rf *: deny`)
 - **Gates MCP and skill access** at server, tool, and skill-name granularity
+- **Protects sensitive file patterns** — cross-cutting `path` rules deny `.env`, `~/.ssh/*`, etc. across all tools and bash at once
 - **Guards external paths** — prompts before file tools or bash commands reach outside `cwd`
 - **Forwards prompts from subagents** — `ask` policies work even in non-UI execution contexts
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@gotgenes/pi-permission-system",
-  "version": "5.18.0",
+  "version": "5.18.1",
   "description": "Permission enforcement extension for the Pi coding agent.",
   "type": "module",
   "exports": {

package/src/pattern-suggest.ts

@@ -69,6 +69,8 @@ function buildLabel(pattern: string, surface: string): string {
       return `Yes, allow skill "${pattern}" for this session`;
     case "external_directory":
       return `Yes, allow access to external directory "${pattern}" for this session`;
+    case "path":
+      return `Yes, allow path "${pattern}" for this session`;
     default:
       // Path-bearing tools with a specific path pattern show the pattern.
       if (PATH_BEARING_TOOLS.has(surface) && pattern !== "*") {
@@ -104,6 +106,9 @@ export function suggestSessionPattern(
     case "external_directory":
       pattern = deriveApprovalPattern(value);
       break;
+    case "path":
+      pattern = deriveApprovalPattern(value);
+      break;
     default:
       // Path-bearing tools: derive a directory-scoped pattern from the path.
       if (PATH_BEARING_TOOLS.has(surface) && value !== "*") {

package/tests/pattern-suggest.test.ts

@@ -121,6 +121,21 @@ describe("suggestSessionPattern", () => {
     });
   });
 
+  describe("path surface", () => {
+    it("returns directory-scoped pattern for a file path", () => {
+      const result = suggestSessionPattern("path", "src/.env");
+      expect(result).toMatchObject({
+        surface: "path",
+        pattern: "src/*",
+      });
+    });
+
+    it("label includes path pattern", () => {
+      const result = suggestSessionPattern("path", "src/.env");
+      expect(result.label).toBe('Yes, allow path "src/*" for this session');
+    });
+  });
+
   describe("path-bearing tool surfaces", () => {
     it("returns directory-scoped pattern for read with a file path", () => {
       const result = suggestSessionPattern("read", "/outside/project/file.ts");