npm - @pensar/apex - Versions diffs - 0.0.99 → 0.0.100-canary.c40b1a25 - Mend

@pensar/apex 0.0.99 → 0.0.100-canary.c40b1a25

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/build/auth.js CHANGED Viewed

@@ -8,7 +8,7 @@ import fs from "fs/promises";
 // package.json
 var package_default = {
   name: "@pensar/apex",
-  version: "0.0.99",
+  version: "0.0.100-canary.c40b1a25",
   description: "AI-powered penetration testing CLI tool with terminal UI",
   module: "src/tui/index.tsx",
   main: "build/index.js",

package/build/index.js CHANGED Viewed

@@ -31880,12 +31880,6 @@ var init_openrouter = __esm(() => {
 var PENSAR_MODELS;
 var init_pensar = __esm(() => {
   PENSAR_MODELS = [
-    {
-      id: "pensar:anthropic.claude-opus-4-6-v1",
-      name: "Claude Opus 4.6 (Pensar)",
-      provider: "pensar",
-      contextLength: 200000
-    },
     {
       id: "pensar:anthropic.claude-sonnet-4-5-20250929-v1:0",
       name: "Claude Sonnet 4.5 (Pensar)",
@@ -31977,7 +31971,7 @@ var package_default2;
 var init_package = __esm(() => {
   package_default2 = {
     name: "@pensar/apex",
-    version: "0.0.99",
+    version: "0.0.100-canary.c40b1a25",
     description: "AI-powered penetration testing CLI tool with terminal UI",
     module: "src/tui/index.tsx",
     main: "build/index.js",
@@ -194042,7 +194036,7 @@ function createAllTools(ctx4) {
     get_page: getPage(ctx4)
   };
 }
-var ALL_TOOL_NAMES;
+var ALL_TOOL_NAMES, PLAN_MODE_TOOL_NAMES;
 var init_tools = __esm(() => {
   init_browserTools();
   init_sandboxPlaywright();
@@ -194151,6 +194145,40 @@ var init_tools = __esm(() => {
     "web_search",
     "get_page"
   ];
+  PLAN_MODE_TOOL_NAMES = [
+    "browser_navigate",
+    "browser_snapshot",
+    "browser_screenshot",
+    "browser_click",
+    "browser_fill",
+    "browser_evaluate",
+    "browser_console",
+    "browser_get_cookies",
+    "execute_command",
+    "http_request",
+    "read_file",
+    "list_files",
+    "grep",
+    "authenticate_session",
+    "delegate_to_auth_subagent",
+    "create_attack_surface_report",
+    "complete_authentication",
+    "run_attack_surface",
+    "spawn_pentest_swarm",
+    "spawn_coding_agent",
+    "provide_comparison_results",
+    "add_memory",
+    "list_memories",
+    "get_memory",
+    "email_list_inboxes",
+    "email_list_messages",
+    "email_get_message",
+    "email_search_messages",
+    "email_get_attachments",
+    "email_mark_read",
+    "web_search",
+    "get_page"
+  ];
 });
 // src/core/agents/offSecAgent/tools/response.ts
@@ -194892,7 +194920,11 @@ var init_offensiveSecurityAgent = __esm(() => {
       }
       const hasEmail = (input.session.config?.emailIntegration?.inboxes?.length ?? 0) > 0;
       const emailToolSet = new Set(EMAIL_TOOL_NAMES);
-      const activeTools = hasEmail ? input.activeTools : input.activeTools.filter((t3) => !emailToolSet.has(t3));
+      let activeTools = hasEmail ? input.activeTools : input.activeTools.filter((t3) => !emailToolSet.has(t3));
+      if (input.mode === "plan") {
+        const planSet = new Set(PLAN_MODE_TOOL_NAMES);
+        activeTools = activeTools.filter((t3) => planSet.has(t3));
+      }
       const messagesDir = input.messagesDir ?? input.session.rootPath;
       if (!existsSync21(messagesDir)) {
         mkdirSync10(messagesDir, { recursive: true });
@@ -286458,8 +286490,10 @@ function resolveKeyboardShortcut(key, status, inputValue, hasPendingApprovals, d
     return { type: "toggle-verbose" };
   if (key.ctrl && key.name === "l")
     return { type: "toggle-expanded-logs" };
-  if (key.name === "tab" && key.shift)
+  if (key.name === "tab" && key.shift && key.meta)
     return { type: "toggle-approval" };
+  if (key.name === "tab" && key.shift)
+    return { type: "toggle-mode" };
   if (status === "waiting" && hasPendingApprovals && (key.name === "y" || key.raw === "Y")) {
     return { type: "approve" };
   }
@@ -286474,7 +286508,9 @@ function resolveAbortAction(commandCancelled, cancelCommand) {
   }
   return { type: "kill-agent" };
 }
-function buildOperatorSystemPrompt(target, operatorState) {
+function buildOperatorSystemPrompt(target, operatorState, agentMode) {
+  const modeNote = agentMode === "plan" ? `
+Agent mode: PLAN — read-only tools only, no mutations allowed` : "";
   return `${BASE_SYSTEM_PROMPT}
 # Operator Mode
@@ -286483,7 +286519,7 @@ You are operating in interactive operator mode. The human operator will guide yo
 Target: ${target || "unknown"}
 Stage: ${operatorState.currentStage}
-Command approval: ${operatorState.requireApproval ? "enabled — the operator will approve each tool call" : "disabled — tool calls execute automatically"}`;
+Command approval: ${operatorState.requireApproval ? "enabled — the operator will approve each tool call" : "disabled — tool calls execute automatically"}${modeNote}`;
 }
 function resolveInputFocused(status, dialogStackLength, externalDialogOpen) {
   return status !== "running" && dialogStackLength === 0 && !externalDialogOpen;
@@ -286653,6 +286689,7 @@ function OperatorDashboard({
   const [lastApprovedAction, setLastApprovedAction] = import_react79.useState(null);
   const [verboseMode, setVerboseMode] = import_react79.useState(false);
   const [expandedLogs, setExpandedLogs] = import_react79.useState(false);
+  const [agentMode, setAgentMode] = import_react79.useState("default");
   const tokenUsageRef = import_react79.useRef(tokenUsage);
   import_react79.useEffect(() => {
     tokenUsageRef.current = tokenUsage;
@@ -287095,7 +287132,10 @@ function OperatorDashboard({
       messages: nextMessages,
       stopWhen: [stepCountIs(1e4)],
       target: initialConfig?.target,
-      activeTools: [...ALL_TOOL_NAMES],
+      activeTools: [
+        ...agentMode === "plan" ? PLAN_MODE_TOOL_NAMES : ALL_TOOL_NAMES
+      ],
+      mode: agentMode,
       abortSignal: controller.signal,
       authConfig: buildAuthConfig(config3.data),
       approvalGate: approvalGateRef.current,
@@ -287111,7 +287151,7 @@ function OperatorDashboard({
       if (session) {
         agentResult = await runOffensiveSecurityAgent({
           ...commonInput,
-          system: buildOperatorSystemPrompt(initialConfig?.target, operatorState),
+          system: buildOperatorSystemPrompt(initialConfig?.target, operatorState, agentMode),
           session
         });
       } else {
@@ -287127,7 +287167,7 @@ function OperatorDashboard({
         };
         agentResult = await runOffensiveSecurityAgent({
           ...commonInput,
-          system: buildOperatorSystemPrompt(initialConfig?.target, operatorState),
+          system: buildOperatorSystemPrompt(initialConfig?.target, operatorState, agentMode),
           sessionConfig,
           onNameGenerated: (name26) => {
             pendingNameRef.current = name26;
@@ -287192,6 +287232,7 @@ function OperatorDashboard({
     model.id,
     config3.data,
     operatorState,
+    agentMode,
     addTokenUsage,
     appendText,
     addStreamingToolCall,
@@ -287382,6 +287423,9 @@ function OperatorDashboard({
       return { ...prev, requireApproval: newVal };
     });
   }, []);
+  const toggleMode = import_react79.useCallback(() => {
+    setAgentMode((prev) => prev === "default" ? "plan" : "default");
+  }, []);
   useKeyboard((key) => {
     if (status === "running" && queuedMessages.length > 0 && !inputValue.trim()) {
       if (key.name === "up") {
@@ -287453,6 +287497,9 @@ function OperatorDashboard({
       case "toggle-approval":
         toggleApproval();
         return;
+      case "toggle-mode":
+        toggleMode();
+        return;
       case "approve":
         handleApprove();
         return;
@@ -287548,6 +287595,10 @@ function OperatorDashboard({
             flexDirection: "row",
             gap: 2,
             children: [
+              /* @__PURE__ */ import_jsx_dev_runtime2.jsxDEV("text", {
+                fg: agentMode === "plan" ? colors2.warning : colors2.primary,
+                children: agentMode === "plan" ? "PLAN" : "DEFAULT"
+              }, undefined, false, undefined, this),
               /* @__PURE__ */ import_jsx_dev_runtime2.jsxDEV("text", {
                 fg: operatorState.requireApproval ? colors2.warning : colors2.primary,
                 children: operatorState.requireApproval ? "APPROVAL ON" : "APPROVAL OFF"
@@ -287591,7 +287642,7 @@ function OperatorDashboard({
         focused: status === "running" ? selectedQueueIndex < 0 : resolveInputFocused(status, stack.length, externalDialogOpen),
         status: status === "waiting" ? "running" : status,
         mode: "operator",
-        operatorMode: operatorState.mode,
+        operatorMode: agentMode === "plan" ? "plan" : operatorState.mode,
         verboseMode,
         expandedLogs,
         pendingApproval: currentPending,

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@pensar/apex",
-  "version": "0.0.99",
+  "version": "0.0.100-canary.c40b1a25",
   "description": "AI-powered penetration testing CLI tool with terminal UI",
   "module": "src/tui/index.tsx",
   "main": "build/index.js",