npm - @keygraph/shannon - Versions diffs - 1.1.0 → 1.3.0 - Mend

@keygraph/shannon 1.1.0 → 1.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/index.mjs CHANGED Viewed

@@ -165,6 +165,7 @@ function spawnWorker(opts) {
 	args.push("-v", `${path.join(workspacePath, "deliverables")}:${opts.repo.containerPath}/.shannon/deliverables`);
 	args.push("-v", `${path.join(workspacePath, "scratchpad")}:${opts.repo.containerPath}/.shannon/scratchpad`);
 	args.push("-v", `${path.join(workspacePath, ".playwright-cli")}:${opts.repo.containerPath}/.shannon/.playwright-cli`);
+	args.push("-v", `${path.join(workspacePath, ".playwright")}:${opts.repo.containerPath}/.playwright`);
 	if (opts.promptsDir) args.push("-v", `${opts.promptsDir}:/app/apps/worker/prompts:ro`);
 	if (opts.config) args.push("-v", `${opts.config.hostPath}:${opts.config.containerPath}:ro`);
 	if (opts.outputDir) args.push("-v", `${opts.outputDir}:/app/output`);
@@ -421,7 +422,9 @@ async function setup() {
 		]
 	});
 	if (p.isCancel(provider)) return cancelAndExit();
-	saveConfig(await setupProvider(provider));
+	const config = await setupProvider(provider);
+	await maybePromptAdaptiveThinking(config);
+	saveConfig(config);
 	const configPath = path.join(SHANNON_HOME$1, "config.toml");
 	p.log.success(`Configuration saved to ${configPath}`);
 	p.outro("Run `npx @keygraph/shannon start` to begin a scan.");
@@ -450,7 +453,7 @@ async function setupAnthropic() {
 	if (authMethod === "oauth") config.anthropic = { oauth_token: await promptSecret("Enter your OAuth token") };
 	else config.anthropic = { api_key: await promptSecret("Enter your Anthropic API key") };
 	const customizeModels = await p.confirm({
-		message: "Do you want to change the default models?\n    Small  - claude-haiku-4-5-20251001\n    Medium - claude-sonnet-4-6\n    Large  - claude-opus-4-6",
+		message: "Do you want to change the default models?\n    Small  - claude-haiku-4-5-20251001\n    Medium - claude-sonnet-4-6\n    Large  - claude-opus-4-7",
 		initialValue: false
 	});
 	if (p.isCancel(customizeModels)) return cancelAndExit();
@@ -469,7 +472,7 @@ async function setupAnthropic() {
 		if (p.isCancel(medium)) return cancelAndExit();
 		const large = await p.text({
 			message: "Large model ID",
-			initialValue: "claude-opus-4-6",
+			initialValue: "claude-opus-4-7",
 			validate: required("Large model ID is required")
 		});
 		if (p.isCancel(large)) return cancelAndExit();
@@ -500,7 +503,7 @@ async function setupCustomBaseUrl() {
 		auth_token: await promptSecret("Enter the auth token for the custom endpoint")
 	} };
 	const customizeModels = await p.confirm({
-		message: "Do you want to change the default models?\n    Small  - claude-haiku-4-5-20251001\n    Medium - claude-sonnet-4-6\n    Large  - claude-opus-4-6",
+		message: "Do you want to change the default models?\n    Small  - claude-haiku-4-5-20251001\n    Medium - claude-sonnet-4-6\n    Large  - claude-opus-4-7",
 		initialValue: false
 	});
 	if (p.isCancel(customizeModels)) return cancelAndExit();
@@ -519,7 +522,7 @@ async function setupCustomBaseUrl() {
 		if (p.isCancel(medium)) return cancelAndExit();
 		const large = await p.text({
 			message: "Large model ID",
-			initialValue: "claude-opus-4-6",
+			initialValue: "claude-opus-4-7",
 			validate: required("Large model ID is required")
 		});
 		if (p.isCancel(large)) return cancelAndExit();
@@ -553,7 +556,7 @@ async function setupBedrock() {
 	if (p.isCancel(medium)) return cancelAndExit();
 	const large = await p.text({
 		message: "Large model ID",
-		placeholder: "us.anthropic.claude-opus-4-6",
+		placeholder: "us.anthropic.claude-opus-4-7",
 		validate: required("Large model ID is required")
 	});
 	if (p.isCancel(large)) return cancelAndExit();
@@ -610,7 +613,7 @@ async function setupVertex() {
 		}),
 		large: () => p.text({
 			message: "Large model ID",
-			placeholder: "claude-opus-4-6",
+			placeholder: "claude-opus-4-7",
 			validate: required("Large model ID is required")
 		})
 	});
@@ -629,6 +632,23 @@ async function setupVertex() {
 		}
 	};
 }
+async function maybePromptAdaptiveThinking(config) {
+	const m = config.models;
+	if (!(!m || [
+		m.small,
+		m.medium,
+		m.large
+	].some((v) => v && /opus-4-[67]/.test(v)))) return;
+	const enable = await p.confirm({
+		message: "Enable adaptive thinking on Opus 4.6/4.7? Claude decides when and how deeply to reason.",
+		initialValue: true
+	});
+	if (p.isCancel(enable)) return cancelAndExit();
+	config.core = {
+		...config.core,
+		adaptive_thinking: enable
+	};
+}
 async function promptSecret(message) {
 	const value = await p.password({
 		message,
@@ -661,6 +681,12 @@ const CONFIG_MAP = [
 		toml: "core.max_tokens",
 		type: "number"
 	},
+	{
+		env: "CLAUDE_ADAPTIVE_THINKING",
+		toml: "core.adaptive_thinking",
+		type: "boolean",
+		boolFormat: "literal"
+	},
 	{
 		env: "ANTHROPIC_API_KEY",
 		toml: "anthropic.api_key",
@@ -732,15 +758,18 @@ const CONFIG_MAP = [
 		type: "string"
 	}
 ];
-/** Read a nested TOML value by dotted path (e.g. "anthropic.api_key"). */
-function getTomlValue(config, path) {
-	const [section, key] = path.split(".");
+/** Read a nested TOML value for a given mapping. */
+function getTomlValue(config, mapping) {
+	const [section, key] = mapping.toml.split(".");
 	if (!section || !key) return void 0;
 	const sectionObj = config[section];
 	if (!sectionObj || typeof sectionObj !== "object") return void 0;
 	const value = sectionObj[key];
 	if (value === void 0 || value === null) return void 0;
-	if (typeof value === "boolean") return value ? "1" : "0";
+	if (typeof value === "boolean") {
+		if (mapping.boolFormat === "literal") return value ? "true" : "false";
+		return value ? "1" : "0";
+	}
 	return String(value);
 }
 /** Parse the global TOML config file, returning null if it doesn't exist. */
@@ -897,7 +926,7 @@ function resolveConfig$1() {
 	}
 	for (const mapping of CONFIG_MAP) {
 		if (process.env[mapping.env]) continue;
-		const value = getTomlValue(toml, mapping.toml);
+		const value = getTomlValue(toml, mapping);
 		if (value) process.env[mapping.env] = value;
 	}
 }
@@ -925,7 +954,8 @@ const FORWARD_VARS = [
 	"ANTHROPIC_SMALL_MODEL",
 	"ANTHROPIC_MEDIUM_MODEL",
 	"ANTHROPIC_LARGE_MODEL",
-	"CLAUDE_CODE_MAX_OUTPUT_TOKENS"
+	"CLAUDE_CODE_MAX_OUTPUT_TOKENS",
+	"CLAUDE_ADAPTIVE_THINKING"
 ];
 /**
 * Load credentials into process.env.
@@ -1162,7 +1192,8 @@ async function start(args) {
 	for (const dir of [
 		"deliverables",
 		"scratchpad",
-		".playwright-cli"
+		".playwright-cli",
+		".playwright"
 	]) {
 		const dirPath = path.join(workspacePath, dir);
 		fs.mkdirSync(dirPath, { recursive: true });
@@ -1174,6 +1205,7 @@ async function start(args) {
 		"scratchpad",
 		".playwright-cli"
 	]) fs.mkdirSync(path.join(shannonDir, dir), { recursive: true });
+	fs.mkdirSync(path.join(repo.hostPath, ".playwright"), { recursive: true });
 	const credentialsPath = getCredentialsPath();
 	const hasCredentials = fs.existsSync(credentialsPath);
 	if (hasCredentials) process.env.GOOGLE_APPLICATION_CREDENTIALS = "/app/credentials/google-sa-key.json";
@@ -1386,6 +1418,23 @@ function workspaces(version) {
 * in the current working directory.
 */
 const __dirname = path.dirname(fileURLToPath(import.meta.url));
+function blockSudo() {
+	const isSudo = !!process.env.SUDO_USER;
+	const isRoot = process.geteuid?.() === 0;
+	if (!isSudo && !isRoot) return;
+	if (isSudo) {
+		console.error("ERROR: Shannon must not be run with sudo.");
+		console.error("Re-run this command as your normal user.");
+	} else {
+		console.error("ERROR: Shannon must not be run as the root user.");
+		console.error("Switch to a regular user account and re-run this command.");
+	}
+	if (process.platform === "linux") {
+		console.error("Configure Docker to run without sudo first:");
+		console.error("https://docs.docker.com/engine/install/linux-postinstall");
+	}
+	process.exit(1);
+}
 function getVersion() {
 	try {
 		const pkgPath = path.join(__dirname, "..", "package.json");
@@ -1506,6 +1555,7 @@ function parseStartArgs(argv) {
 		...output && { output }
 	};
 }
+blockSudo();
 const args = process.argv.slice(2);
 const command = args[0];
 switch (command) {

package/infra/compose.yml CHANGED Viewed

@@ -4,7 +4,7 @@ networks:
 services:
   temporal:
-    image: temporalio/temporal:latest
+    image: temporalio/temporal:1.7.0
     container_name: shannon-temporal
     command: ["server", "start-dev", "--db-filename", "/home/temporal/temporal.db", "--ip", "0.0.0.0"]
     ports:

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@keygraph/shannon",
-  "version": "1.1.0",
+  "version": "1.3.0",
   "description": "Shannon - Autonomous white-box AI pentester for web applications and APIs by Keygraph",
   "type": "module",
   "main": "dist/index.mjs",