@machina.ai/cell-cli-core 1.36.0-rc1 → 1.38.1-rc2

package/dist/src/sandbox/linux/bwrapArgsBuilder.test.js

@@ -0,0 +1,247 @@
+/**
+ * @license
+ * Copyright 2026 Google LLC
+ * SPDX-License-Identifier: Apache-2.0
+ */
+import { describe, it, expect, vi, beforeEach, afterEach } from 'vitest';
+import { buildBwrapArgs } from './bwrapArgsBuilder.js';
+import fs from 'node:fs';
+import * as shellUtils from '../../utils/shell-utils.js';
+import os from 'node:os';
+vi.mock('node:fs', async () => {
+    const actual = await vi.importActual('node:fs');
+    return {
+        ...actual,
+        default: {
+            // @ts-expect-error - Property 'default' does not exist on type 'typeof import("node:fs")'
+            ...actual.default,
+            existsSync: vi.fn(() => true),
+            realpathSync: vi.fn((p) => p.toString()),
+            statSync: vi.fn(() => ({ isDirectory: () => true })),
+            mkdirSync: vi.fn(),
+            mkdtempSync: vi.fn((prefix) => prefix + 'mocked'),
+            openSync: vi.fn(),
+            closeSync: vi.fn(),
+            writeFileSync: vi.fn(),
+            readdirSync: vi.fn(() => []),
+            chmodSync: vi.fn(),
+            unlinkSync: vi.fn(),
+            rmSync: vi.fn(),
+        },
+        existsSync: vi.fn(() => true),
+        realpathSync: vi.fn((p) => p.toString()),
+        statSync: vi.fn(() => ({ isDirectory: () => true })),
+        mkdirSync: vi.fn(),
+        mkdtempSync: vi.fn((prefix) => prefix + 'mocked'),
+        openSync: vi.fn(),
+        closeSync: vi.fn(),
+        writeFileSync: vi.fn(),
+        readdirSync: vi.fn(() => []),
+        chmodSync: vi.fn(),
+        unlinkSync: vi.fn(),
+        rmSync: vi.fn(),
+    };
+});
+vi.mock('../../utils/shell-utils.js', async (importOriginal) => {
+    const actual = await importOriginal();
+    return {
+        ...actual,
+        spawnAsync: vi.fn(() => Promise.resolve({ status: 0, stdout: Buffer.from('') })),
+        initializeShellParsers: vi.fn(),
+        isStrictlyApproved: vi.fn().mockResolvedValue(true),
+    };
+});
+describe.skipIf(os.platform() === 'win32')('buildBwrapArgs', () => {
+    const workspace = '/home/user/workspace';
+    beforeEach(() => {
+        vi.clearAllMocks();
+        vi.mocked(fs.existsSync).mockReturnValue(true);
+        vi.mocked(fs.realpathSync).mockImplementation((p) => p.toString());
+    });
+    afterEach(() => {
+        vi.restoreAllMocks();
+    });
+    const defaultOptions = {
+        workspace,
+        workspaceWrite: false,
+        networkAccess: false,
+        allowedPaths: [],
+        forbiddenPaths: [],
+        additionalPermissions: {},
+        includeDirectories: [],
+        maskFilePath: '/tmp/mask',
+        isWriteCommand: false,
+    };
+    it('should correctly format the base arguments', async () => {
+        const args = await buildBwrapArgs(defaultOptions);
+        expect(args).toEqual([
+            '--unshare-all',
+            '--new-session',
+            '--die-with-parent',
+            '--ro-bind',
+            '/',
+            '/',
+            '--dev',
+            '/dev',
+            '--proc',
+            '/proc',
+            '--tmpfs',
+            '/tmp',
+            '--ro-bind-try',
+            workspace,
+            workspace,
+            '--ro-bind',
+            `${workspace}/.gitignore`,
+            `${workspace}/.gitignore`,
+            '--ro-bind',
+            `${workspace}/.geminiignore`,
+            `${workspace}/.geminiignore`,
+            '--ro-bind',
+            `${workspace}/.git`,
+            `${workspace}/.git`,
+        ]);
+    });
+    it('binds workspace read-write when workspaceWrite is true', async () => {
+        const args = await buildBwrapArgs({
+            ...defaultOptions,
+            workspaceWrite: true,
+        });
+        expect(args).toContain('--bind-try');
+        const bindIndex = args.indexOf('--bind-try');
+        expect(args[bindIndex + 1]).toBe(workspace);
+    });
+    it('maps network permissions to --share-net', async () => {
+        const args = await buildBwrapArgs({
+            ...defaultOptions,
+            networkAccess: true,
+        });
+        expect(args).toContain('--share-net');
+    });
+    it('maps explicit write permissions to --bind-try', async () => {
+        const args = await buildBwrapArgs({
+            ...defaultOptions,
+            additionalPermissions: {
+                fileSystem: { write: ['/home/user/workspace/out/dir'] },
+            },
+        });
+        const index = args.indexOf('--bind-try');
+        expect(index).not.toBe(-1);
+        expect(args[index + 1]).toBe('/home/user/workspace/out/dir');
+    });
+    it('should protect both the symlink and the real path of governance files', async () => {
+        vi.mocked(fs.realpathSync).mockImplementation((p) => {
+            if (p.toString() === `${workspace}/.gitignore`)
+                return '/shared/global.gitignore';
+            return p.toString();
+        });
+        const args = await buildBwrapArgs(defaultOptions);
+        expect(args).toContain('--ro-bind');
+        expect(args).toContain(`${workspace}/.gitignore`);
+        expect(args).toContain('/shared/global.gitignore');
+    });
+    it('should parameterize allowed paths and normalize them', async () => {
+        const args = await buildBwrapArgs({
+            ...defaultOptions,
+            allowedPaths: ['/tmp/cache', '/opt/tools', workspace],
+        });
+        expect(args).toContain('--bind-try');
+        expect(args[args.indexOf('/tmp/cache') - 1]).toBe('--bind-try');
+        expect(args[args.indexOf('/opt/tools') - 1]).toBe('--bind-try');
+    });
+    it('should bind the parent directory of a non-existent path', async () => {
+        vi.mocked(fs.existsSync).mockImplementation((p) => {
+            if (p === '/home/user/workspace/new-file.txt')
+                return false;
+            return true;
+        });
+        const args = await buildBwrapArgs({
+            ...defaultOptions,
+            allowedPaths: ['/home/user/workspace/new-file.txt'],
+            isWriteCommand: true,
+        });
+        const parentDir = '/home/user/workspace';
+        const bindIndex = args.lastIndexOf(parentDir);
+        expect(bindIndex).not.toBe(-1);
+        expect(args[bindIndex - 2]).toBe('--bind-try');
+    });
+    it('should parameterize forbidden paths and explicitly deny them', async () => {
+        vi.mocked(fs.statSync).mockImplementation((p) => {
+            if (p.toString().includes('cache')) {
+                return { isDirectory: () => true };
+            }
+            return { isDirectory: () => false };
+        });
+        const args = await buildBwrapArgs({
+            ...defaultOptions,
+            forbiddenPaths: ['/tmp/cache', '/opt/secret.txt'],
+        });
+        const cacheIndex = args.indexOf('/tmp/cache');
+        expect(args[cacheIndex - 1]).toBe('--tmpfs');
+        const secretIndex = args.indexOf('/opt/secret.txt');
+        expect(args[secretIndex - 2]).toBe('--ro-bind');
+        expect(args[secretIndex - 1]).toBe('/dev/null');
+    });
+    it('resolves forbidden symlink paths to their real paths', async () => {
+        vi.mocked(fs.statSync).mockImplementation(() => ({ isDirectory: () => false }));
+        vi.mocked(fs.realpathSync).mockImplementation((p) => {
+            if (p === '/tmp/forbidden-symlink')
+                return '/opt/real-target.txt';
+            return p.toString();
+        });
+        const args = await buildBwrapArgs({
+            ...defaultOptions,
+            forbiddenPaths: ['/tmp/forbidden-symlink'],
+        });
+        const secretIndex = args.indexOf('/opt/real-target.txt');
+        expect(args[secretIndex - 2]).toBe('--ro-bind');
+        expect(args[secretIndex - 1]).toBe('/dev/null');
+    });
+    it('masks directory symlinks with tmpfs for both paths', async () => {
+        vi.mocked(fs.statSync).mockImplementation(() => ({ isDirectory: () => true }));
+        vi.mocked(fs.realpathSync).mockImplementation((p) => {
+            if (p === '/tmp/dir-link')
+                return '/opt/real-dir';
+            return p.toString();
+        });
+        const args = await buildBwrapArgs({
+            ...defaultOptions,
+            forbiddenPaths: ['/tmp/dir-link'],
+        });
+        const idx = args.indexOf('/opt/real-dir');
+        expect(args[idx - 1]).toBe('--tmpfs');
+    });
+    it('should override allowed paths if a path is also in forbidden paths', async () => {
+        vi.mocked(fs.statSync).mockImplementation(() => ({ isDirectory: () => true }));
+        const args = await buildBwrapArgs({
+            ...defaultOptions,
+            forbiddenPaths: ['/tmp/conflict'],
+            allowedPaths: ['/tmp/conflict'],
+        });
+        const bindIndex = args.findIndex((a, i) => a === '--bind-try' && args[i + 1] === '/tmp/conflict');
+        const tmpfsIndex = args.findIndex((a, i) => a === '--tmpfs' && args[i + 1] === '/tmp/conflict');
+        expect(bindIndex).toBeGreaterThan(-1);
+        expect(tmpfsIndex).toBeGreaterThan(bindIndex);
+        expect(args[tmpfsIndex + 1]).toBe('/tmp/conflict');
+    });
+    it('blocks .env and .env.* files', async () => {
+        vi.mocked(shellUtils.spawnAsync).mockImplementation((cmd, args) => {
+            if (cmd === 'find' && args?.[0] === workspace) {
+                return Promise.resolve({
+                    status: 0,
+                    stdout: Buffer.from(`${workspace}/.env\0${workspace}/.env.local\0`),
+                });
+            }
+            return Promise.resolve({
+                status: 0,
+                stdout: Buffer.from(''),
+            });
+        });
+        const args = await buildBwrapArgs(defaultOptions);
+        expect(args).toContain(`${workspace}/.env`);
+        expect(args).toContain(`${workspace}/.env.local`);
+        const envIndex = args.indexOf(`${workspace}/.env`);
+        expect(args[envIndex - 2]).toBe('--bind');
+        expect(args[envIndex - 1]).toBe('/tmp/mask');
+    });
+});
+//# sourceMappingURL=bwrapArgsBuilder.test.js.map

package/dist/src/sandbox/linux/bwrapArgsBuilder.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"bwrapArgsBuilder.test.js","sourceRoot":"","sources":["../../../../src/sandbox/linux/bwrapArgsBuilder.test.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACzE,OAAO,EAAE,cAAc,EAAyB,MAAM,uBAAuB,CAAC;AAC9E,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,KAAK,UAAU,MAAM,4BAA4B,CAAC;AACzD,OAAO,EAAE,MAAM,SAAS,CAAC;AAEzB,EAAE,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,IAAI,EAAE;IAC5B,MAAM,MAAM,GAAG,MAAM,EAAE,CAAC,YAAY,CAA2B,SAAS,CAAC,CAAC;IAC1E,OAAO;QACL,GAAG,MAAM;QACT,OAAO,EAAE;YACP,0FAA0F;YAC1F,GAAG,MAAM,CAAC,OAAO;YACjB,UAAU,EAAE,EAAE,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC;YAC7B,YAAY,EAAE,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC;YACxC,QAAQ,EAAE,EAAE,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI,EAAE,CAAa,CAAC;YAChE,SAAS,EAAE,EAAE,CAAC,EAAE,EAAE;YAClB,WAAW,EAAE,EAAE,CAAC,EAAE,CAAC,CAAC,MAAc,EAAE,EAAE,CAAC,MAAM,GAAG,QAAQ,CAAC;YACzD,QAAQ,EAAE,EAAE,CAAC,EAAE,EAAE;YACjB,SAAS,EAAE,EAAE,CAAC,EAAE,EAAE;YAClB,aAAa,EAAE,EAAE,CAAC,EAAE,EAAE;YACtB,WAAW,EAAE,EAAE,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC;YAC5B,SAAS,EAAE,EAAE,CAAC,EAAE,EAAE;YAClB,UAAU,EAAE,EAAE,CAAC,EAAE,EAAE;YACnB,MAAM,EAAE,EAAE,CAAC,EAAE,EAAE;SAChB;QACD,UAAU,EAAE,EAAE,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC;QAC7B,YAAY,EAAE,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC;QACxC,QAAQ,EAAE,EAAE,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI,EAAE,CAAa,CAAC;QAChE,SAAS,EAAE,EAAE,CAAC,EAAE,EAAE;QAClB,WAAW,EAAE,EAAE,CAAC,EAAE,CAAC,CAAC,MAAc,EAAE,EAAE,CAAC,MAAM,GAAG,QAAQ,CAAC;QACzD,QAAQ,EAAE,EAAE,CAAC,EAAE,EAAE;QACjB,SAAS,EAAE,EAAE,CAAC,EAAE,EAAE;QAClB,aAAa,EAAE,EAAE,CAAC,EAAE,EAAE;QACtB,WAAW,EAAE,EAAE,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC;QAC5B,SAAS,EAAE,EAAE,CAAC,EAAE,EAAE;QAClB,UAAU,EAAE,EAAE,CAAC,EAAE,EAAE;QACnB,MAAM,EAAE,EAAE,CAAC,EAAE,EAAE;KAChB,CAAC;AACJ,CAAC,CAAC,CAAC;AAEH,EAAE,CAAC,IAAI,CAAC,4BAA4B,EAAE,KAAK,EAAE,cAAc,EAAE,EAAE;IAC7D,MAAM,MAAM,GACV,MAAM,cAAc,EAA+C,CAAC;IACtE,OAAO;QACL,GAAG,MAAM;QACT,UAAU,EAAE,EAAE,CAAC,EAAE,CAAC,GAAG,EAAE,CACrB,OAAO,CAAC,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,CAAC,CACxD;QACD,sBAAsB,EAAE,EAAE,CAAC,EAAE,EAAE;QAC/B,kBAAkB,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,iBAAiB,CAAC,IAAI,CAAC;KACpD,CAAC;AACJ,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC,QAAQ,EAAE,KAAK,OAAO,CAAC,CAAC,gBAAgB,EAAE,GAAG,EAAE;IAChE,MAAM,SAAS,GAAG,sBAAsB,CAAC;IAEzC,UAAU,CAAC,GAAG,EAAE;QACd,EAAE,CAAC,aAAa,EAAE,CAAC;QACnB,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,UAAU,CAAC,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;QAC/C,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,YAAY,CAAC,CAAC,kBAAkB,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC;IACrE,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,GAAG,EAAE;QACb,EAAE,CAAC,eAAe,EAAE,CAAC;IACvB,CAAC,CAAC,CAAC;IAEH,MAAM,cAAc,GAAqB;QACvC,SAAS;QACT,cAAc,EAAE,KAAK;QACrB,aAAa,EAAE,KAAK;QACpB,YAAY,EAAE,EAAE;QAChB,cAAc,EAAE,EAAE;QAClB,qBAAqB,EAAE,EAAE;QACzB,kBAAkB,EAAE,EAAE;QACtB,YAAY,EAAE,WAAW;QACzB,cAAc,EAAE,KAAK;KACtB,CAAC;IAEF,EAAE,CAAC,4CAA4C,EAAE,KAAK,IAAI,EAAE;QAC1D,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC,cAAc,CAAC,CAAC;QAElD,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC;YACnB,eAAe;YACf,eAAe;YACf,mBAAmB;YACnB,WAAW;YACX,GAAG;YACH,GAAG;YACH,OAAO;YACP,MAAM;YACN,QAAQ;YACR,OAAO;YACP,SAAS;YACT,MAAM;YACN,eAAe;YACf,SAAS;YACT,SAAS;YACT,WAAW;YACX,GAAG,SAAS,aAAa;YACzB,GAAG,SAAS,aAAa;YACzB,WAAW;YACX,GAAG,SAAS,gBAAgB;YAC5B,GAAG,SAAS,gBAAgB;YAC5B,WAAW;YACX,GAAG,SAAS,OAAO;YACnB,GAAG,SAAS,OAAO;SACpB,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,wDAAwD,EAAE,KAAK,IAAI,EAAE;QACtE,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC;YAChC,GAAG,cAAc;YACjB,cAAc,EAAE,IAAI;SACrB,CAAC,CAAC;QAEH,MAAM,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC;QACrC,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;QAC7C,MAAM,CAAC,IAAI,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yCAAyC,EAAE,KAAK,IAAI,EAAE;QACvD,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC;YAChC,GAAG,cAAc;YACjB,aAAa,EAAE,IAAI;SACpB,CAAC,CAAC;QAEH,MAAM,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;IACxC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,+CAA+C,EAAE,KAAK,IAAI,EAAE;QAC7D,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC;YAChC,GAAG,cAAc;YACjB,qBAAqB,EAAE;gBACrB,UAAU,EAAE,EAAE,KAAK,EAAE,CAAC,8BAA8B,CAAC,EAAE;aACxD;SACF,CAAC,CAAC;QAEH,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;QACzC,MAAM,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;QAC3B,MAAM,CAAC,IAAI,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,8BAA8B,CAAC,CAAC;IAC/D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uEAAuE,EAAE,KAAK,IAAI,EAAE;QACrF,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,YAAY,CAAC,CAAC,kBAAkB,CAAC,CAAC,CAAC,EAAE,EAAE;YAClD,IAAI,CAAC,CAAC,QAAQ,EAAE,KAAK,GAAG,SAAS,aAAa;gBAC5C,OAAO,0BAA0B,CAAC;YACpC,OAAO,CAAC,CAAC,QAAQ,EAAE,CAAC;QACtB,CAAC,CAAC,CAAC;QAEH,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC,cAAc,CAAC,CAAC;QAElD,MAAM,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;QACpC,MAAM,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,GAAG,SAAS,aAAa,CAAC,CAAC;QAClD,MAAM,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,0BAA0B,CAAC,CAAC;IACrD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sDAAsD,EAAE,KAAK,IAAI,EAAE;QACpE,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC;YAChC,GAAG,cAAc;YACjB,YAAY,EAAE,CAAC,YAAY,EAAE,YAAY,EAAE,SAAS,CAAC;SACtD,CAAC,CAAC;QAEH,MAAM,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC;QACrC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QAChE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IAClE,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yDAAyD,EAAE,KAAK,IAAI,EAAE;QACvE,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,UAAU,CAAC,CAAC,kBAAkB,CAAC,CAAC,CAAC,EAAE,EAAE;YAChD,IAAI,CAAC,KAAK,mCAAmC;gBAAE,OAAO,KAAK,CAAC;YAC5D,OAAO,IAAI,CAAC;QACd,CAAC,CAAC,CAAC;QAEH,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC;YAChC,GAAG,cAAc;YACjB,YAAY,EAAE,CAAC,mCAAmC,CAAC;YACnD,cAAc,EAAE,IAAI;SACrB,CAAC,CAAC;QAEH,MAAM,SAAS,GAAG,sBAAsB,CAAC;QACzC,MAAM,SAAS,GAAG,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC;QAC9C,MAAM,CAAC,SAAS,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;QAC/B,MAAM,CAAC,IAAI,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IACjD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,8DAA8D,EAAE,KAAK,IAAI,EAAE;QAC5E,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,QAAQ,CAAC,CAAC,kBAAkB,CAAC,CAAC,CAAC,EAAE,EAAE;YAC9C,IAAI,CAAC,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;gBACnC,OAAO,EAAE,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI,EAAc,CAAC;YACjD,CAAC;YACD,OAAO,EAAE,WAAW,EAAE,GAAG,EAAE,CAAC,KAAK,EAAc,CAAC;QAClD,CAAC,CAAC,CAAC;QAEH,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC;YAChC,GAAG,cAAc;YACjB,cAAc,EAAE,CAAC,YAAY,EAAE,iBAAiB,CAAC;SAClD,CAAC,CAAC;QAEH,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;QAC9C,MAAM,CAAC,IAAI,CAAC,UAAU,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAE7C,MAAM,WAAW,GAAG,IAAI,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;QACpD,MAAM,CAAC,IAAI,CAAC,WAAW,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAChD,MAAM,CAAC,IAAI,CAAC,WAAW,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;IAClD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sDAAsD,EAAE,KAAK,IAAI,EAAE;QACpE,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,QAAQ,CAAC,CAAC,kBAAkB,CACvC,GAAG,EAAE,CAAC,CAAC,EAAE,WAAW,EAAE,GAAG,EAAE,CAAC,KAAK,EAAE,CAAa,CACjD,CAAC;QACF,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,YAAY,CAAC,CAAC,kBAAkB,CAAC,CAAC,CAAC,EAAE,EAAE;YAClD,IAAI,CAAC,KAAK,wBAAwB;gBAAE,OAAO,sBAAsB,CAAC;YAClE,OAAO,CAAC,CAAC,QAAQ,EAAE,CAAC;QACtB,CAAC,CAAC,CAAC;QAEH,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC;YAChC,GAAG,cAAc;YACjB,cAAc,EAAE,CAAC,wBAAwB,CAAC;SAC3C,CAAC,CAAC;QAEH,MAAM,WAAW,GAAG,IAAI,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAC;QACzD,MAAM,CAAC,IAAI,CAAC,WAAW,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAChD,MAAM,CAAC,IAAI,CAAC,WAAW,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;IAClD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oDAAoD,EAAE,KAAK,IAAI,EAAE;QAClE,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,QAAQ,CAAC,CAAC,kBAAkB,CACvC,GAAG,EAAE,CAAC,CAAC,EAAE,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI,EAAE,CAAa,CAChD,CAAC;QACF,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,YAAY,CAAC,CAAC,kBAAkB,CAAC,CAAC,CAAC,EAAE,EAAE;YAClD,IAAI,CAAC,KAAK,eAAe;gBAAE,OAAO,eAAe,CAAC;YAClD,OAAO,CAAC,CAAC,QAAQ,EAAE,CAAC;QACtB,CAAC,CAAC,CAAC;QAEH,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC;YAChC,GAAG,cAAc;YACjB,cAAc,EAAE,CAAC,eAAe,CAAC;SAClC,CAAC,CAAC;QAEH,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;QAC1C,MAAM,CAAC,IAAI,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IACxC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oEAAoE,EAAE,KAAK,IAAI,EAAE;QAClF,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,QAAQ,CAAC,CAAC,kBAAkB,CACvC,GAAG,EAAE,CAAC,CAAC,EAAE,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI,EAAE,CAAa,CAChD,CAAC;QAEF,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC;YAChC,GAAG,cAAc;YACjB,cAAc,EAAE,CAAC,eAAe,CAAC;YACjC,YAAY,EAAE,CAAC,eAAe,CAAC;SAChC,CAAC,CAAC;QAEH,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAC9B,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,YAAY,IAAI,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,eAAe,CAChE,CAAC;QACF,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAC/B,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,SAAS,IAAI,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,eAAe,CAC7D,CAAC;QAEF,MAAM,CAAC,SAAS,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,CAAC;QACtC,MAAM,CAAC,UAAU,CAAC,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC;QAC9C,MAAM,CAAC,IAAI,CAAC,UAAU,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;IACrD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,8BAA8B,EAAE,KAAK,IAAI,EAAE;QAC5C,EAAE,CAAC,MAAM,CAAC,UAAU,CAAC,UAAU,CAAC,CAAC,kBAAkB,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE;YAChE,IAAI,GAAG,KAAK,MAAM,IAAI,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,SAAS,EAAE,CAAC;gBAC9C,OAAO,OAAO,CAAC,OAAO,CAAC;oBACrB,MAAM,EAAE,CAAC;oBACT,MAAM,EAAE,MAAM,CAAC,IAAI,CAAC,GAAG,SAAS,UAAU,SAAS,eAAe,CAAC;iBACb,CAAC,CAAC;YAC5D,CAAC;YACD,OAAO,OAAO,CAAC,OAAO,CAAC;gBACrB,MAAM,EAAE,CAAC;gBACT,MAAM,EAAE,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC;aAC+B,CAAC,CAAC;QAC5D,CAAC,CAAC,CAAC;QAEH,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC,cAAc,CAAC,CAAC;QAElD,MAAM,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,GAAG,SAAS,OAAO,CAAC,CAAC;QAC5C,MAAM,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,GAAG,SAAS,aAAa,CAAC,CAAC;QAElD,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,SAAS,OAAO,CAAC,CAAC;QACnD,MAAM,CAAC,IAAI,CAAC,QAAQ,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC1C,MAAM,CAAC,IAAI,CAAC,QAAQ,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;IAC/C,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/src/sandbox/macos/MacOsSandboxManager.d.ts

@@ -3,29 +3,17 @@
  * Copyright 2026 Google LLC
  * SPDX-License-Identifier: Apache-2.0
  */
-import { type SandboxManager, type SandboxRequest, type SandboxedCommand, type GlobalSandboxOptions } from '../../services/sandboxManager.js';
-import { type EnvironmentSanitizationConfig } from '../../services/environmentSanitization.js';
-import { type SandboxPolicyManager } from '../../policy/sandboxPolicyManager.js';
-export interface MacOsSandboxOptions extends GlobalSandboxOptions {
-    /** Optional base sanitization config. */
-    sanitizationConfig?: EnvironmentSanitizationConfig;
-    /** The current sandbox mode behavior from config. */
-    modeConfig?: {
-        readonly?: boolean;
-        network?: boolean;
-        approvedTools?: string[];
-        allowOverrides?: boolean;
-    };
-    /** The policy manager for persistent approvals. */
-    policyManager?: SandboxPolicyManager;
-}
-/**
- * A SandboxManager implementation for macOS that uses Seatbelt.
- */
+import { type SandboxManager, type SandboxRequest, type SandboxedCommand, type GlobalSandboxOptions, type ParsedSandboxDenial } from '../../services/sandboxManager.js';
+import type { ShellExecutionResult } from '../../services/shellExecutionService.js';
 export declare class MacOsSandboxManager implements SandboxManager {
     private readonly options;
-    constructor(options: MacOsSandboxOptions);
-    private isStrictlyApproved;
-    private getCommandName;
+    private readonly denialCache;
+    constructor(options: GlobalSandboxOptions);
+    isKnownSafeCommand(args: string[]): boolean;
+    isDangerousCommand(args: string[]): boolean;
+    parseDenials(result: ShellExecutionResult): ParsedSandboxDenial | undefined;
+    getWorkspace(): string;
+    getOptions(): GlobalSandboxOptions;
     prepareCommand(req: SandboxRequest): Promise<SandboxedCommand>;
+    private writeProfileToTempFile;
 }

package/dist/src/sandbox/macos/MacOsSandboxManager.js

@@ -3,58 +3,42 @@
  * Copyright 2026 Google LLC
  * SPDX-License-Identifier: Apache-2.0
  */
-import {} from '../../services/sandboxManager.js';
-import { sanitizeEnvironment, getSecureSanitizationConfig, } from '../../services/environmentSanitization.js';
-import { buildSeatbeltArgs } from './seatbeltArgsBuilder.js';
-import { getCommandRoots, initializeShellParsers, splitCommands, stripShellWrapper, } from '../../utils/shell-utils.js';
-import { isKnownSafeCommand } from './commandSafety.js';
-import { parse as shellParse } from 'shell-quote';
-import {} from '../../policy/sandboxPolicyManager.js';
+import fs from 'node:fs';
+import os from 'node:os';
 import path from 'node:path';
-/**
- * A SandboxManager implementation for macOS that uses Seatbelt.
- */
+import { resolveSandboxPaths, } from '../../services/sandboxManager.js';
+import { sanitizeEnvironment, getSecureSanitizationConfig, } from '../../services/environmentSanitization.js';
+import { buildSeatbeltProfile } from './seatbeltArgsBuilder.js';
+import { initializeShellParsers } from '../../utils/shell-utils.js';
+import { isKnownSafeCommand, isDangerousCommand, } from '../utils/commandSafety.js';
+import { verifySandboxOverrides, getCommandName as getFullCommandName, isStrictlyApproved, } from '../utils/commandUtils.js';
+import { parsePosixSandboxDenials, createSandboxDenialCache, } from '../utils/sandboxDenialUtils.js';
+import { handleReadWriteCommands } from '../utils/sandboxReadWriteUtils.js';
 export class MacOsSandboxManager {
     options;
+    denialCache = createSandboxDenialCache();
     constructor(options) {
         this.options = options;
     }
-    async isStrictlyApproved(req) {
-        const approvedTools = this.options.modeConfig?.approvedTools;
-        if (!approvedTools || approvedTools.length === 0) {
-            return false;
-        }
-        await initializeShellParsers();
-        const fullCmd = [req.command, ...req.args].join(' ');
-        const stripped = stripShellWrapper(fullCmd);
-        const roots = getCommandRoots(stripped);
-        if (roots.length === 0)
-            return false;
-        const allRootsApproved = roots.every((root) => approvedTools.includes(root));
-        if (allRootsApproved) {
+    isKnownSafeCommand(args) {
+        const toolName = args[0];
+        const approvedTools = this.options.modeConfig?.approvedTools ?? [];
+        if (toolName && approvedTools.includes(toolName)) {
             return true;
         }
-        const pipelineCommands = splitCommands(stripped);
-        if (pipelineCommands.length === 0)
-            return false;
-        // For safety, every command in the pipeline must be considered safe.
-        for (const cmdString of pipelineCommands) {
-            const parsedArgs = shellParse(cmdString).map(String);
-            if (!isKnownSafeCommand(parsedArgs)) {
-                return false;
-            }
-        }
-        return true;
+        return isKnownSafeCommand(args);
     }
-    async getCommandName(req) {
-        await initializeShellParsers();
-        const fullCmd = [req.command, ...req.args].join(' ');
-        const stripped = stripShellWrapper(fullCmd);
-        const roots = getCommandRoots(stripped).filter((r) => r !== 'shopt' && r !== 'set');
-        if (roots.length > 0) {
-            return roots[0];
-        }
-        return path.basename(req.command);
+    isDangerousCommand(args) {
+        return isDangerousCommand(args);
+    }
+    parseDenials(result) {
+        return parsePosixSandboxDenials(result, this.denialCache);
+    }
+    getWorkspace() {
+        return this.options.workspace;
+    }
+    getOptions() {
+        return this.options;
     }
     async prepareCommand(req) {
         await initializeShellParsers();
@@ -63,25 +47,31 @@ export class MacOsSandboxManager {
         const isReadonlyMode = this.options.modeConfig?.readonly ?? true;
         const allowOverrides = this.options.modeConfig?.allowOverrides ?? true;
         // Reject override attempts in plan mode
-        if (!allowOverrides && req.policy?.additionalPermissions) {
-            const perms = req.policy.additionalPermissions;
-            if (perms.network ||
-                (perms.fileSystem?.write && perms.fileSystem.write.length > 0)) {
-                throw new Error('Sandbox request rejected: Cannot override readonly/network restrictions in Plan mode.');
-            }
+        verifySandboxOverrides(allowOverrides, req.policy);
+        let command = req.command;
+        let args = req.args;
+        // Translate virtual commands for sandboxed file system access
+        if (command === '__read') {
+            command = '/bin/cat';
         }
+        else if (command === '__write') {
+            command = '/bin/sh';
+            args = ['-c', 'cat > "$1"', '_', ...args];
+        }
+        const currentReq = { ...req, command, args };
         // If not in readonly mode OR it's a strictly approved pipeline, allow workspace writes
         const isApproved = allowOverrides
-            ? await this.isStrictlyApproved(req)
+            ? await isStrictlyApproved(currentReq, this.options.modeConfig?.approvedTools)
             : false;
-        const workspaceWrite = !isReadonlyMode || isApproved;
-        const networkAccess = this.options.modeConfig?.network ?? req.policy?.networkAccess ?? false;
+        const isYolo = this.options.modeConfig?.yolo ?? false;
+        const workspaceWrite = !isReadonlyMode || isApproved || isYolo;
+        const defaultNetwork = this.options.modeConfig?.network || req.policy?.networkAccess || isYolo;
+        const { allowed: allowedPaths, forbidden: forbiddenPaths } = await resolveSandboxPaths(this.options, req);
         // Fetch persistent approvals for this command
-        const commandName = await this.getCommandName(req);
+        const commandName = await getFullCommandName(currentReq);
         const persistentPermissions = allowOverrides
             ? this.options.policyManager?.getCommandPermissions(commandName)
             : undefined;
-        // Merge all permissions
         const mergedAdditional = {
             fileSystem: {
                 read: [
@@ -93,25 +83,43 @@ export class MacOsSandboxManager {
                     ...(req.policy?.additionalPermissions?.fileSystem?.write ?? []),
                 ],
             },
-            network: networkAccess ||
+            network: defaultNetwork ||
                 persistentPermissions?.network ||
                 req.policy?.additionalPermissions?.network ||
                 false,
         };
-        const sandboxArgs = buildSeatbeltArgs({
+        const { command: finalCommand, args: finalArgs } = handleReadWriteCommands(req, mergedAdditional, this.options.workspace, req.policy?.allowedPaths);
+        const sandboxArgs = buildSeatbeltProfile({
             workspace: this.options.workspace,
-            allowedPaths: [...(req.policy?.allowedPaths || [])],
-            forbiddenPaths: req.policy?.forbiddenPaths,
+            allowedPaths: [
+                ...allowedPaths,
+                ...(this.options.includeDirectories || []),
+            ],
+            forbiddenPaths,
             networkAccess: mergedAdditional.network,
             workspaceWrite,
             additionalPermissions: mergedAdditional,
         });
+        const tempFile = this.writeProfileToTempFile(sandboxArgs);
         return {
             program: '/usr/bin/sandbox-exec',
-            args: [...sandboxArgs, '--', req.command, ...req.args],
+            args: ['-f', tempFile, '--', finalCommand, ...finalArgs],
             env: sanitizedEnv,
             cwd: req.cwd,
+            cleanup: () => {
+                try {
+                    fs.unlinkSync(tempFile);
+                }
+                catch {
+                    // Ignore cleanup errors
+                }
+            },
         };
     }
+    writeProfileToTempFile(profile) {
+        const tempFile = path.join(os.tmpdir(), `gemini-cli-seatbelt-${Date.now()}-${Math.random().toString(36).slice(2)}.sb`);
+        fs.writeFileSync(tempFile, profile, { mode: 0o600 });
+        return tempFile;
+    }
 }
 //# sourceMappingURL=MacOsSandboxManager.js.map

package/dist/src/sandbox/macos/MacOsSandboxManager.js.map

@@ -1 +1 @@
-{"version":3,"file":"MacOsSandboxManager.js","sourceRoot":"","sources":["../../../../src/sandbox/macos/MacOsSandboxManager.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAMN,MAAM,kCAAkC,CAAC;AAC1C,OAAO,EACL,mBAAmB,EACnB,2BAA2B,GAE5B,MAAM,2CAA2C,CAAC;AACnD,OAAO,EAAE,iBAAiB,EAAE,MAAM,0BAA0B,CAAC;AAC7D,OAAO,EACL,eAAe,EACf,sBAAsB,EACtB,aAAa,EACb,iBAAiB,GAClB,MAAM,4BAA4B,CAAC;AACpC,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAC;AACxD,OAAO,EAAE,KAAK,IAAI,UAAU,EAAE,MAAM,aAAa,CAAC;AAClD,OAAO,EAA6B,MAAM,sCAAsC,CAAC;AACjF,OAAO,IAAI,MAAM,WAAW,CAAC;AAgB7B;;GAEG;AACH,MAAM,OAAO,mBAAmB;IACD;IAA7B,YAA6B,OAA4B;QAA5B,YAAO,GAAP,OAAO,CAAqB;IAAG,CAAC;IAErD,KAAK,CAAC,kBAAkB,CAAC,GAAmB;QAClD,MAAM,aAAa,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,aAAa,CAAC;QAC7D,IAAI,CAAC,aAAa,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACjD,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,sBAAsB,EAAE,CAAC;QAE/B,MAAM,OAAO,GAAG,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACrD,MAAM,QAAQ,GAAG,iBAAiB,CAAC,OAAO,CAAC,CAAC;QAE5C,MAAM,KAAK,GAAG,eAAe,CAAC,QAAQ,CAAC,CAAC;QACxC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,KAAK,CAAC;QAErC,MAAM,gBAAgB,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,IAAI,EAAE,EAAE,CAC5C,aAAa,CAAC,QAAQ,CAAC,IAAI,CAAC,CAC7B,CAAC;QACF,IAAI,gBAAgB,EAAE,CAAC;YACrB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,gBAAgB,GAAG,aAAa,CAAC,QAAQ,CAAC,CAAC;QACjD,IAAI,gBAAgB,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,KAAK,CAAC;QAEhD,qEAAqE;QACrE,KAAK,MAAM,SAAS,IAAI,gBAAgB,EAAE,CAAC;YACzC,MAAM,UAAU,GAAG,UAAU,CAAC,SAAS,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YACrD,IAAI,CAAC,kBAAkB,CAAC,UAAU,CAAC,EAAE,CAAC;gBACpC,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,KAAK,CAAC,cAAc,CAAC,GAAmB;QAC9C,MAAM,sBAAsB,EAAE,CAAC;QAC/B,MAAM,OAAO,GAAG,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACrD,MAAM,QAAQ,GAAG,iBAAiB,CAAC,OAAO,CAAC,CAAC;QAC5C,MAAM,KAAK,GAAG,eAAe,CAAC,QAAQ,CAAC,CAAC,MAAM,CAC5C,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,OAAO,IAAI,CAAC,KAAK,KAAK,CACpC,CAAC;QACF,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrB,OAAO,KAAK,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QACD,OAAO,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IACpC,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,GAAmB;QACtC,MAAM,sBAAsB,EAAE,CAAC;QAC/B,MAAM,kBAAkB,GAAG,2BAA2B,CACpD,GAAG,CAAC,MAAM,EAAE,kBAAkB,CAC/B,CAAC;QAEF,MAAM,YAAY,GAAG,mBAAmB,CAAC,GAAG,CAAC,GAAG,EAAE,kBAAkB,CAAC,CAAC;QAEtE,MAAM,cAAc,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,QAAQ,IAAI,IAAI,CAAC;QACjE,MAAM,cAAc,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,cAAc,IAAI,IAAI,CAAC;QAEvE,wCAAwC;QACxC,IAAI,CAAC,cAAc,IAAI,GAAG,CAAC,MAAM,EAAE,qBAAqB,EAAE,CAAC;YACzD,MAAM,KAAK,GAAG,GAAG,CAAC,MAAM,CAAC,qBAAqB,CAAC;YAC/C,IACE,KAAK,CAAC,OAAO;gBACb,CAAC,KAAK,CAAC,UAAU,EAAE,KAAK,IAAI,KAAK,CAAC,UAAU,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,EAC9D,CAAC;gBACD,MAAM,IAAI,KAAK,CACb,uFAAuF,CACxF,CAAC;YACJ,CAAC;QACH,CAAC;QAED,uFAAuF;QACvF,MAAM,UAAU,GAAG,cAAc;YAC/B,CAAC,CAAC,MAAM,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC;YACpC,CAAC,CAAC,KAAK,CAAC;QAEV,MAAM,cAAc,GAAG,CAAC,cAAc,IAAI,UAAU,CAAC;QACrD,MAAM,aAAa,GACjB,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,OAAO,IAAI,GAAG,CAAC,MAAM,EAAE,aAAa,IAAI,KAAK,CAAC;QAEzE,8CAA8C;QAC9C,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC;QACnD,MAAM,qBAAqB,GAAG,cAAc;YAC1C,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,aAAa,EAAE,qBAAqB,CAAC,WAAW,CAAC;YAChE,CAAC,CAAC,SAAS,CAAC;QAEd,wBAAwB;QACxB,MAAM,gBAAgB,GAAuB;YAC3C,UAAU,EAAE;gBACV,IAAI,EAAE;oBACJ,GAAG,CAAC,qBAAqB,EAAE,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC;oBAClD,GAAG,CAAC,GAAG,CAAC,MAAM,EAAE,qBAAqB,EAAE,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC;iBAC/D;gBACD,KAAK,EAAE;oBACL,GAAG,CAAC,qBAAqB,EAAE,UAAU,EAAE,KAAK,IAAI,EAAE,CAAC;oBACnD,GAAG,CAAC,GAAG,CAAC,MAAM,EAAE,qBAAqB,EAAE,UAAU,EAAE,KAAK,IAAI,EAAE,CAAC;iBAChE;aACF;YACD,OAAO,EACL,aAAa;gBACb,qBAAqB,EAAE,OAAO;gBAC9B,GAAG,CAAC,MAAM,EAAE,qBAAqB,EAAE,OAAO;gBAC1C,KAAK;SACR,CAAC;QAEF,MAAM,WAAW,GAAG,iBAAiB,CAAC;YACpC,SAAS,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS;YACjC,YAAY,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,EAAE,YAAY,IAAI,EAAE,CAAC,CAAC;YACnD,cAAc,EAAE,GAAG,CAAC,MAAM,EAAE,cAAc;YAC1C,aAAa,EAAE,gBAAgB,CAAC,OAAO;YACvC,cAAc;YACd,qBAAqB,EAAE,gBAAgB;SACxC,CAAC,CAAC;QAEH,OAAO;YACL,OAAO,EAAE,uBAAuB;YAChC,IAAI,EAAE,CAAC,GAAG,WAAW,EAAE,IAAI,EAAE,GAAG,CAAC,OAAO,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;YACtD,GAAG,EAAE,YAAY;YACjB,GAAG,EAAE,GAAG,CAAC,GAAG;SACb,CAAC;IACJ,CAAC;CACF"}
+{"version":3,"file":"MacOsSandboxManager.js","sourceRoot":"","sources":["../../../../src/sandbox/macos/MacOsSandboxManager.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,EAOL,mBAAmB,GACpB,MAAM,kCAAkC,CAAC;AAE1C,OAAO,EACL,mBAAmB,EACnB,2BAA2B,GAC5B,MAAM,2CAA2C,CAAC;AACnD,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAChE,OAAO,EAAE,sBAAsB,EAAE,MAAM,4BAA4B,CAAC;AACpE,OAAO,EACL,kBAAkB,EAClB,kBAAkB,GACnB,MAAM,2BAA2B,CAAC;AACnC,OAAO,EACL,sBAAsB,EACtB,cAAc,IAAI,kBAAkB,EACpC,kBAAkB,GACnB,MAAM,0BAA0B,CAAC;AAClC,OAAO,EACL,wBAAwB,EACxB,wBAAwB,GAEzB,MAAM,gCAAgC,CAAC;AACxC,OAAO,EAAE,uBAAuB,EAAE,MAAM,mCAAmC,CAAC;AAE5E,MAAM,OAAO,mBAAmB;IAGD;IAFZ,WAAW,GAAuB,wBAAwB,EAAE,CAAC;IAE9E,YAA6B,OAA6B;QAA7B,YAAO,GAAP,OAAO,CAAsB;IAAG,CAAC;IAE9D,kBAAkB,CAAC,IAAc;QAC/B,MAAM,QAAQ,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC;QACzB,MAAM,aAAa,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,aAAa,IAAI,EAAE,CAAC;QACnE,IAAI,QAAQ,IAAI,aAAa,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;YACjD,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,kBAAkB,CAAC,IAAI,CAAC,CAAC;IAClC,CAAC;IAED,kBAAkB,CAAC,IAAc;QAC/B,OAAO,kBAAkB,CAAC,IAAI,CAAC,CAAC;IAClC,CAAC;IAED,YAAY,CAAC,MAA4B;QACvC,OAAO,wBAAwB,CAAC,MAAM,EAAE,IAAI,CAAC,WAAW,CAAC,CAAC;IAC5D,CAAC;IAED,YAAY;QACV,OAAO,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC;IAChC,CAAC;IAED,UAAU;QACR,OAAO,IAAI,CAAC,OAAO,CAAC;IACtB,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,GAAmB;QACtC,MAAM,sBAAsB,EAAE,CAAC;QAC/B,MAAM,kBAAkB,GAAG,2BAA2B,CACpD,GAAG,CAAC,MAAM,EAAE,kBAAkB,CAC/B,CAAC;QAEF,MAAM,YAAY,GAAG,mBAAmB,CAAC,GAAG,CAAC,GAAG,EAAE,kBAAkB,CAAC,CAAC;QAEtE,MAAM,cAAc,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,QAAQ,IAAI,IAAI,CAAC;QACjE,MAAM,cAAc,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,cAAc,IAAI,IAAI,CAAC;QAEvE,wCAAwC;QACxC,sBAAsB,CAAC,cAAc,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;QAEnD,IAAI,OAAO,GAAG,GAAG,CAAC,OAAO,CAAC;QAC1B,IAAI,IAAI,GAAG,GAAG,CAAC,IAAI,CAAC;QAEpB,8DAA8D;QAC9D,IAAI,OAAO,KAAK,QAAQ,EAAE,CAAC;YACzB,OAAO,GAAG,UAAU,CAAC;QACvB,CAAC;aAAM,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;YACjC,OAAO,GAAG,SAAS,CAAC;YACpB,IAAI,GAAG,CAAC,IAAI,EAAE,YAAY,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QAC5C,CAAC;QAED,MAAM,UAAU,GAAG,EAAE,GAAG,GAAG,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;QAE7C,uFAAuF;QACvF,MAAM,UAAU,GAAG,cAAc;YAC/B,CAAC,CAAC,MAAM,kBAAkB,CACtB,UAAU,EACV,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,aAAa,CACvC;YACH,CAAC,CAAC,KAAK,CAAC;QAEV,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,IAAI,IAAI,KAAK,CAAC;QACtD,MAAM,cAAc,GAAG,CAAC,cAAc,IAAI,UAAU,IAAI,MAAM,CAAC;QAE/D,MAAM,cAAc,GAClB,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,OAAO,IAAI,GAAG,CAAC,MAAM,EAAE,aAAa,IAAI,MAAM,CAAC;QAE1E,MAAM,EAAE,OAAO,EAAE,YAAY,EAAE,SAAS,EAAE,cAAc,EAAE,GACxD,MAAM,mBAAmB,CAAC,IAAI,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;QAE/C,8CAA8C;QAC9C,MAAM,WAAW,GAAG,MAAM,kBAAkB,CAAC,UAAU,CAAC,CAAC;QACzD,MAAM,qBAAqB,GAAG,cAAc;YAC1C,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,aAAa,EAAE,qBAAqB,CAAC,WAAW,CAAC;YAChE,CAAC,CAAC,SAAS,CAAC;QAEd,MAAM,gBAAgB,GAAuB;YAC3C,UAAU,EAAE;gBACV,IAAI,EAAE;oBACJ,GAAG,CAAC,qBAAqB,EAAE,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC;oBAClD,GAAG,CAAC,GAAG,CAAC,MAAM,EAAE,qBAAqB,EAAE,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC;iBAC/D;gBACD,KAAK,EAAE;oBACL,GAAG,CAAC,qBAAqB,EAAE,UAAU,EAAE,KAAK,IAAI,EAAE,CAAC;oBACnD,GAAG,CAAC,GAAG,CAAC,MAAM,EAAE,qBAAqB,EAAE,UAAU,EAAE,KAAK,IAAI,EAAE,CAAC;iBAChE;aACF;YACD,OAAO,EACL,cAAc;gBACd,qBAAqB,EAAE,OAAO;gBAC9B,GAAG,CAAC,MAAM,EAAE,qBAAqB,EAAE,OAAO;gBAC1C,KAAK;SACR,CAAC;QAEF,MAAM,EAAE,OAAO,EAAE,YAAY,EAAE,IAAI,EAAE,SAAS,EAAE,GAAG,uBAAuB,CACxE,GAAG,EACH,gBAAgB,EAChB,IAAI,CAAC,OAAO,CAAC,SAAS,EACtB,GAAG,CAAC,MAAM,EAAE,YAAY,CACzB,CAAC;QAEF,MAAM,WAAW,GAAG,oBAAoB,CAAC;YACvC,SAAS,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS;YACjC,YAAY,EAAE;gBACZ,GAAG,YAAY;gBACf,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,kBAAkB,IAAI,EAAE,CAAC;aAC3C;YACD,cAAc;YACd,aAAa,EAAE,gBAAgB,CAAC,OAAO;YACvC,cAAc;YACd,qBAAqB,EAAE,gBAAgB;SACxC,CAAC,CAAC;QAEH,MAAM,QAAQ,GAAG,IAAI,CAAC,sBAAsB,CAAC,WAAW,CAAC,CAAC;QAE1D,OAAO;YACL,OAAO,EAAE,uBAAuB;YAChC,IAAI,EAAE,CAAC,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,EAAE,GAAG,SAAS,CAAC;YACxD,GAAG,EAAE,YAAY;YACjB,GAAG,EAAE,GAAG,CAAC,GAAG;YACZ,OAAO,EAAE,GAAG,EAAE;gBACZ,IAAI,CAAC;oBACH,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;gBAC1B,CAAC;gBAAC,MAAM,CAAC;oBACP,wBAAwB;gBAC1B,CAAC;YACH,CAAC;SACF,CAAC;IACJ,CAAC;IAEO,sBAAsB,CAAC,OAAe;QAC5C,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CACxB,EAAE,CAAC,MAAM,EAAE,EACX,uBAAuB,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAC9E,CAAC;QACF,EAAE,CAAC,aAAa,CAAC,QAAQ,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;QACrD,OAAO,QAAQ,CAAC;IAClB,CAAC;CACF"}