@posthog/agent 2.3.403 → 2.3.418

package/dist/server/bin.cjs

@@ -3912,7 +3912,7 @@ function isSupportedReasoningEffort(adapter, modelId, value) {
 }
 
 // src/server/agent-server.ts
-var import_promises5 = require("fs/promises");
+var import_promises6 = require("fs/promises");
 var import_node_path8 = require("path");
 var import_node_url2 = require("url");
 var import_sdk5 = require("@agentclientprotocol/sdk");
@@ -8266,12 +8266,12 @@ function isTaskError(result) {
 function getErrorMessage(result) {
   return Buffer.concat([...result.stdOut, ...result.stdErr]);
 }
-function errorDetectionHandler(overwrite = false, isError = isTaskError, errorMessage = getErrorMessage) {
+function errorDetectionHandler(overwrite = false, isError = isTaskError, errorMessage2 = getErrorMessage) {
   return (error, result) => {
     if (!overwrite && error || !isError(result)) {
       return error;
     }
-    return errorMessage(result);
+    return errorMessage2(result);
   };
 }
 function errorDetectionPlugin(config) {
@@ -8723,7 +8723,7 @@ var import_zod3 = require("zod");
 // package.json
 var package_default = {
   name: "@posthog/agent",
-  version: "2.3.403",
+  version: "2.3.418",
   repository: "https://github.com/PostHog/code",
   description: "TypeScript agent framework wrapping Claude Agent SDK with Git-based task execution for PostHog",
   exports: {
@@ -12906,6 +12906,8 @@ var ParseResult = class {
     return this.calls.filter((c) => CAPTURE_METHODS.has(c.method)).map((c) => ({
       name: c.key,
       line: c.line,
+      keyStartCol: c.keyStartCol,
+      keyEndCol: c.keyEndCol,
       dynamic: c.dynamic ?? false,
       viaWrapper: c.viaWrapper,
       inJsx: c.inJsx
@@ -12916,6 +12918,8 @@ var ParseResult = class {
       method: c.method,
       flagKey: c.key,
       line: c.line,
+      keyStartCol: c.keyStartCol,
+      keyEndCol: c.keyEndCol,
       viaWrapper: c.viaWrapper,
       inJsx: c.inJsx
     }));
@@ -13065,6 +13069,15 @@ var PostHogEnricher = class {
       settled[4]
     );
   }
+  /**
+   * Detect wrapper functions (functions that internally call a PostHog SDK
+   * method) defined in the given source. Used by callers like `enrichSource`
+   * to pick up same-file wrappers such as `track(...)` without threading
+   * through filesystem I/O.
+   */
+  async findWrappersInSource(source, languageId) {
+    return this.detector.findWrappers(source, languageId);
+  }
   async parseFile(filePath) {
     const ext = path32.extname(filePath).toLowerCase();
     const languageId = EXT_TO_LANG_ID[ext];
@@ -13265,6 +13278,7 @@ async function withTimeout(operation, timeoutMs) {
   return Promise.race([operationPromise, timeoutPromise]);
 }
 var IS_ROOT = typeof process !== "undefined" && (process.geteuid?.() ?? process.getuid?.()) === 0;
+var ALLOW_BYPASS = !IS_ROOT || !!process.env.IS_SANDBOX;
 function unreachable(value, logger) {
   let valueAsString;
   try {
@@ -15056,7 +15070,6 @@ function normalizeAskUserQuestionInput(input) {
 }
 
 // src/execution-mode.ts
-var ALLOW_BYPASS = !IS_ROOT;
 var availableModes = [
   {
     id: "default",
@@ -15099,7 +15112,7 @@ function isCodeExecutionMode(mode) {
   return CODE_EXECUTION_MODES.includes(mode);
 }
 function getAvailableModes() {
-  return IS_ROOT ? availableModes.filter((m) => m.id !== "bypassPermissions") : availableModes;
+  return ALLOW_BYPASS ? availableModes : availableModes.filter((m) => m.id !== "bypassPermissions");
 }
 var CODEX_NATIVE_MODES = ["auto", "read-only", "full-access"];
 function isCodexNativeMode(mode) {
@@ -15232,10 +15245,9 @@ function buildPermissionOptions(toolName, toolInput, repoRoot, suggestions) {
   }
   return permissionOptions("Yes, always allow");
 }
-var ALLOW_BYPASS2 = !IS_ROOT || !!process.env.IS_SANDBOX;
 function buildExitPlanModePermissionOptions() {
   const options = [];
-  if (ALLOW_BYPASS2) {
+  if (ALLOW_BYPASS) {
     options.push({
       kind: "allow_always",
       name: "Yes, bypass all permissions",
@@ -15338,17 +15350,8 @@ async function requestPlanApproval(context, updatedInput) {
   });
 }
 async function applyPlanApproval(response, context, updatedInput) {
-  const { session } = context;
   if (response.outcome?.outcome === "selected" && (response.outcome.optionId === "auto" || response.outcome.optionId === "default" || response.outcome.optionId === "acceptEdits" || response.outcome.optionId === "bypassPermissions")) {
-    session.permissionMode = response.outcome.optionId;
-    await session.query.setPermissionMode(response.outcome.optionId);
-    await context.client.sessionUpdate({
-      sessionId: context.sessionId,
-      update: {
-        sessionUpdate: "current_mode_update",
-        currentModeId: response.outcome.optionId
-      }
-    });
+    await context.applySessionMode(response.outcome.optionId);
     await context.updateConfigOption("mode", response.outcome.optionId);
     return {
       behavior: "allow",
@@ -15369,9 +15372,8 @@ async function applyPlanApproval(response, context, updatedInput) {
   return { behavior: "deny", message, interrupt: !feedback };
 }
 async function handleEnterPlanModeTool(context) {
-  const { session, toolInput } = context;
-  session.permissionMode = "plan";
-  await session.query.setPermissionMode("plan");
+  const { toolInput } = context;
+  await context.applySessionMode("plan");
   await context.updateConfigOption("mode", "plan");
   return {
     behavior: "allow",
@@ -15979,7 +15981,7 @@ function buildSessionOptions(params) {
     stderr: (err2) => params.logger.error(err2),
     cwd: params.cwd,
     includePartialMessages: true,
-    allowDangerouslySkipPermissions: !IS_ROOT,
+    allowDangerouslySkipPermissions: !IS_ROOT || !!process.env.IS_SANDBOX,
     permissionMode: params.permissionMode,
     canUseTool: params.canUseTool,
     executable: "node",
@@ -17071,6 +17073,15 @@ var ClaudeAcpAgent = class extends BaseAcpAgent {
         configOptions: this.session.configOptions
       }
     });
+    if (configId === "mode") {
+      await this.client.sessionUpdate({
+        sessionId: this.sessionId,
+        update: {
+          sessionUpdate: "current_mode_update",
+          currentModeId: value
+        }
+      });
+    }
   }
   async applySessionMode(modeId) {
     if (!CODE_EXECUTION_MODES.includes(modeId)) {
@@ -17293,6 +17304,7 @@ var ClaudeAcpAgent = class extends BaseAcpAgent {
       fileContentCache: this.fileContentCache,
       logger: this.logger,
       updateConfigOption: (configId, value) => this.updateConfigOption(configId, value),
+      applySessionMode: (modeId) => this.applySessionMode(modeId),
       allowedDomains
     });
   }
@@ -18275,6 +18287,15 @@ var CodexAcpAgent = class extends BaseAcpAgent {
     if (response.configOptions) {
       this.sessionState.configOptions = response.configOptions;
     }
+    if (params.configId === "mode" && typeof params.value === "string") {
+      await this.client.sessionUpdate({
+        sessionId: this.sessionId,
+        update: {
+          sessionUpdate: "current_mode_update",
+          currentModeId: params.value
+        }
+      });
+    }
     return response;
   }
   async authenticate(_params) {
@@ -19477,14 +19498,14 @@ var PostHogAPIClient = class {
   async apiRequest(endpoint, options = {}) {
     const response = await this.performRequestWithRetry(endpoint, options);
     if (!response.ok) {
-      let errorMessage;
+      let errorMessage2;
       try {
         const errorResponse = await response.json();
-        errorMessage = `Failed request: [${response.status}] ${JSON.stringify(errorResponse)}`;
+        errorMessage2 = `Failed request: [${response.status}] ${JSON.stringify(errorResponse)}`;
       } catch {
-        errorMessage = `Failed request: [${response.status}] ${response.statusText}`;
+        errorMessage2 = `Failed request: [${response.status}] ${response.statusText}`;
       }
-      throw new Error(errorMessage);
+      throw new Error(errorMessage2);
     }
     return response.json();
   }
@@ -20270,6 +20291,72 @@ var SessionLogWriter = class _SessionLogWriter {
   }
 };
 
+// src/server/agentsh-runtime.ts
+var import_node_child_process5 = require("child_process");
+var import_promises5 = require("fs/promises");
+var import_node_util2 = require("util");
+var AGENTSH_SESSION_ID_FILE = "/tmp/agentsh-session-id";
+var execFileAsync2 = (0, import_node_util2.promisify)(import_node_child_process5.execFile);
+function errorMessage(error) {
+  return error instanceof Error ? error.message : String(error);
+}
+function parseAgentshVersion(output) {
+  const version = `${output.stdout}
+${output.stderr}`.split("\n").map((line) => line.trim()).find(Boolean);
+  return version ?? null;
+}
+async function getAgentshVersion() {
+  const { stdout, stderr } = await execFileAsync2("agentsh", ["--version"], {
+    timeout: 5e3
+  });
+  return { stdout, stderr };
+}
+async function resolveAgentshRuntimeInfo({
+  sessionIdPath = AGENTSH_SESSION_ID_FILE,
+  readSessionId = async (path16) => (0, import_promises5.readFile)(path16, "utf8"),
+  getVersion = getAgentshVersion
+} = {}) {
+  let sessionId;
+  try {
+    sessionId = (await readSessionId(sessionIdPath)).trim();
+  } catch (error) {
+    const code = error.code;
+    if (code === "ENOENT") {
+      return null;
+    }
+    throw error;
+  }
+  if (!sessionId) {
+    return null;
+  }
+  try {
+    const output = await getVersion();
+    return {
+      sessionId,
+      version: parseAgentshVersion(output)
+    };
+  } catch (error) {
+    return {
+      sessionId,
+      version: null,
+      versionLookupError: errorMessage(error)
+    };
+  }
+}
+async function logAgentshRuntimeInfo(logger, options) {
+  const agentsh = await resolveAgentshRuntimeInfo(options);
+  if (!agentsh) {
+    return;
+  }
+  logger.debug(`Agentsh session ID: ${agentsh.sessionId}`);
+  logger.debug(`Agentsh hardening version: ${agentsh.version ?? "unknown"}`);
+  if (agentsh.versionLookupError) {
+    logger.debug(
+      `Agentsh version lookup failed: ${agentsh.versionLookupError}`
+    );
+  }
+}
+
 // src/server/cloud-prompt.ts
 function normalizeCloudPromptContent(content) {
   if (typeof content === "string") {
@@ -20592,7 +20679,7 @@ var AgentServer = class {
     return this.getRuntimeAdapter() === "codex" ? "auto" : "default";
   }
   shouldRelayPermissionToClient(mode) {
-    return mode === "default" || mode === "auto";
+    return mode === "default" || mode === "auto" || mode === "read-only";
   }
   createApp() {
     const app = new import_hono.Hono();
@@ -21109,6 +21196,7 @@ var AgentServer = class {
     this.logger.debug(
       `Agent version: ${this.config.version ?? package_default.version}`
     );
+    await logAgentshRuntimeInfo(this.logger);
     this.logger.debug(`Initial permission mode: ${initialPermissionMode}`);
     this.posthogAPI.updateTaskRun(payload.task_id, payload.run_id, {
       status: "in_progress"
@@ -21127,12 +21215,12 @@ var AgentServer = class {
   }
   classifyAndSignalFailure(payload, phase, error) {
     const { classification, message } = this.extractErrorClassification(error);
-    const errorMessage = classification === "upstream_stream_terminated" ? "Upstream LLM stream terminated" : classification === "upstream_connection_error" ? "Upstream LLM connection error" : message || "Agent error";
+    const errorMessage2 = classification === "upstream_stream_terminated" ? "Upstream LLM stream terminated" : classification === "upstream_connection_error" ? "Upstream LLM connection error" : message || "Agent error";
     this.logger.error(`send_${phase}_task_message_failed`, {
       classification,
       message
     });
-    return this.signalTaskComplete(payload, "error", errorMessage);
+    return this.signalTaskComplete(payload, "error", errorMessage2);
   }
   async sendInitialTaskMessage(payload, prefetchedRun) {
     if (!this.session) return;
@@ -21440,9 +21528,9 @@ Continue from where you left off. The user is waiting for your response.`
       runId,
       artifact.id ?? safeName
     );
-    await (0, import_promises5.mkdir)(artifactDir, { recursive: true });
+    await (0, import_promises6.mkdir)(artifactDir, { recursive: true });
     const artifactPath = (0, import_node_path8.join)(artifactDir, safeName);
-    await (0, import_promises5.writeFile)(artifactPath, Buffer.from(data));
+    await (0, import_promises6.writeFile)(artifactPath, Buffer.from(data));
     return resourceLink((0, import_node_url2.pathToFileURL)(artifactPath).toString(), artifact.name, {
       ...artifact.content_type ? { mimeType: artifact.content_type } : {},
       ...typeof artifact.size === "number" ? { size: artifact.size } : {}
@@ -21654,7 +21742,7 @@ ${attributionInstructions}
       });
     }
   }
-  async signalTaskComplete(payload, stopReason, errorMessage) {
+  async signalTaskComplete(payload, stopReason, errorMessage2) {
     if (this.session?.payload.run_id === payload.run_id) {
       try {
         await this.session.logWriter.flush(payload.run_id, {
@@ -21678,7 +21766,7 @@ ${attributionInstructions}
     try {
       await this.posthogAPI.updateTaskRun(payload.task_id, payload.run_id, {
         status,
-        error_message: errorMessage ?? "Agent error"
+        error_message: errorMessage2 ?? "Agent error"
       });
       this.logger.debug("Task completion signaled", { status, stopReason });
     } catch (error) {