@probelabs/visor 0.1.137-ee → 0.1.138-ee

package/dist/index.js

@@ -1,8 +1,8 @@
 #!/usr/bin/env node
-process.env.VISOR_VERSION = '0.1.137';
-process.env.PROBE_VERSION = '0.6.0-rc255';
-process.env.VISOR_COMMIT_SHA = 'a74b6b242d3982499434e47f42967eefb37671f7';
-process.env.VISOR_COMMIT_SHORT = 'a74b6b2';
+process.env.VISOR_VERSION = '0.1.138';
+process.env.PROBE_VERSION = '0.6.0-rc257';
+process.env.VISOR_COMMIT_SHA = '0fe252c4d2e04567b4f5d72d73796d0abc3a88f7';
+process.env.VISOR_COMMIT_SHORT = '0fe252c';
 /******/ (() => { // webpackBootstrap
 /******/ 	var __webpack_modules__ = ({
 
@@ -160950,6 +160950,7 @@ const fallback_ndjson_1 = __nccwpck_require__(35938);
 const trace_helpers_1 = __nccwpck_require__(75338);
 const ws_server_1 = __nccwpck_require__(82620);
 const open_1 = __importDefault(__nccwpck_require__(19106));
+const github_auth_1 = __nccwpck_require__(11347);
 /**
  * Execute a single check in sandbox mode (--run-check).
  * Reads CheckRunPayload from argument or stdin, executes one check,
@@ -161872,6 +161873,36 @@ async function main() {
             : null;
         // Build execution context for providers
         const executionContext = {};
+        // Set up GitHub authentication (optional in CLI mode)
+        // Resolves from CLI flags first, then environment variables
+        {
+            const authOpts = {
+                token: options.githubToken,
+                appId: options.githubAppId,
+                privateKey: options.githubPrivateKey,
+                installationId: options.githubInstallationId,
+            };
+            // Fall back to environment variables if no explicit CLI flags
+            if (!authOpts.token && !authOpts.appId) {
+                Object.assign(authOpts, (0, github_auth_1.resolveAuthFromEnvironment)());
+            }
+            if (authOpts.token || authOpts.appId) {
+                try {
+                    const authResult = await (0, github_auth_1.createAuthenticatedOctokit)(authOpts);
+                    if (authResult) {
+                        // Inject token + git credentials into process.env for child processes
+                        (0, github_auth_1.injectGitHubCredentials)(authResult.token);
+                        // Set Octokit on execution context for in-process API calls
+                        executionContext.octokit = authResult.octokit;
+                        logger_1.logger.info(`🔑 GitHub auth: ${authResult.authType}`);
+                    }
+                }
+                catch (err) {
+                    logger_1.logger.warn(`⚠️  GitHub auth failed: ${err instanceof Error ? err.message : String(err)}`);
+                    logger_1.logger.warn('Continuing without GitHub API access');
+                }
+            }
+        }
         // Set CLI message for human-input checks if provided
         if (options.message !== undefined) {
             executionContext.cliMessage = options.message;
@@ -163095,6 +163126,10 @@ class CLI {
             .option('--workspace-name <name>', 'Workspace directory name (overrides VISOR_WORKSPACE_NAME)')
             .option('--workspace-project-name <name>', 'Main project folder name inside workspace (overrides VISOR_WORKSPACE_PROJECT)')
             .option('--watch', 'Watch config file for changes and reload automatically (requires --config)')
+            .option('--github-token <token>', 'GitHub token for API operations (env: GITHUB_TOKEN)')
+            .option('--github-app-id <id>', 'GitHub App ID (env: GITHUB_APP_ID)')
+            .option('--github-private-key <key>', 'GitHub App private key, PEM content or file path (env: GITHUB_APP_PRIVATE_KEY)')
+            .option('--github-installation-id <id>', 'GitHub App installation ID, auto-detected if omitted')
             .addHelpText('after', this.getExamplesText())
             .exitOverride(); // Prevent automatic process.exit for better error handling
         // Add validation for options
@@ -163151,6 +163186,10 @@ class CLI {
                 .option('--workspace-name <name>', 'Workspace directory name (overrides VISOR_WORKSPACE_NAME)')
                 .option('--workspace-project-name <name>', 'Main project folder name inside workspace (overrides VISOR_WORKSPACE_PROJECT)')
                 .option('--watch', 'Watch config file for changes and reload automatically (requires --config)')
+                .option('--github-token <token>', 'GitHub token for API operations (env: GITHUB_TOKEN)')
+                .option('--github-app-id <id>', 'GitHub App ID (env: GITHUB_APP_ID)')
+                .option('--github-private-key <key>', 'GitHub App private key, PEM content or file path (env: GITHUB_APP_PRIVATE_KEY)')
+                .option('--github-installation-id <id>', 'GitHub App installation ID, auto-detected if omitted')
                 .allowUnknownOption(false)
                 .allowExcessArguments(false) // Don't allow positional arguments
                 .addHelpText('after', this.getExamplesText())
@@ -163220,6 +163259,10 @@ class CLI {
                 workspaceName: options.workspaceName,
                 workspaceProjectName: options.workspaceProjectName,
                 watch: Boolean(options.watch),
+                githubToken: options.githubToken,
+                githubAppId: options.githubAppId,
+                githubPrivateKey: options.githubPrivateKey,
+                githubInstallationId: options.githubInstallationId,
             };
         }
         catch (error) {
@@ -174111,6 +174154,182 @@ class GitRepositoryAnalyzer {
 exports.GitRepositoryAnalyzer = GitRepositoryAnalyzer;
 
 
+/***/ }),
+
+/***/ 11347:
+/***/ (function(__unused_webpack_module, exports, __nccwpck_require__) {
+
+"use strict";
+
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", ({ value: true }));
+exports.createAuthenticatedOctokit = createAuthenticatedOctokit;
+exports.resolveAuthFromEnvironment = resolveAuthFromEnvironment;
+exports.resolvePrivateKey = resolvePrivateKey;
+exports.injectGitHubCredentials = injectGitHubCredentials;
+const rest_1 = __nccwpck_require__(47432);
+const fs = __importStar(__nccwpck_require__(79896));
+const path = __importStar(__nccwpck_require__(16928));
+/**
+ * Create an authenticated Octokit instance.
+ * Returns undefined if no credentials are provided (auth is optional in CLI mode).
+ *
+ * For token auth: uses the token directly.
+ * For GitHub App auth: creates JWT-authenticated client, resolves installation ID,
+ * then extracts an installation access token for environment propagation.
+ */
+async function createAuthenticatedOctokit(options) {
+    const { token, appId, installationId, owner, repo } = options;
+    const privateKey = options.privateKey ? resolvePrivateKey(options.privateKey) : undefined;
+    // Prefer GitHub App authentication if app credentials are provided
+    if (appId && privateKey) {
+        const { createAppAuth } = await Promise.resolve().then(() => __importStar(__nccwpck_require__(76479)));
+        let finalInstallationId;
+        if (installationId) {
+            finalInstallationId = parseInt(installationId, 10);
+            if (isNaN(finalInstallationId) || finalInstallationId <= 0) {
+                throw new Error('Invalid installation-id. It must be a positive integer.');
+            }
+        }
+        // Auto-detect installation ID if not provided
+        if (!finalInstallationId && owner && repo) {
+            const appOctokit = new rest_1.Octokit({
+                authStrategy: createAppAuth,
+                auth: { appId, privateKey },
+            });
+            try {
+                const { data: installation } = await appOctokit.rest.apps.getRepoInstallation({
+                    owner,
+                    repo,
+                });
+                finalInstallationId = installation.id;
+            }
+            catch {
+                throw new Error('GitHub App installation ID could not be auto-detected. ' +
+                    'Provide --github-installation-id or ensure the app is installed on the repository.');
+            }
+        }
+        if (!finalInstallationId) {
+            throw new Error('GitHub App installation ID is required. Provide --github-installation-id or set owner/repo for auto-detection.');
+        }
+        // Create the authenticated Octokit instance
+        const octokit = new rest_1.Octokit({
+            authStrategy: createAppAuth,
+            auth: {
+                appId,
+                privateKey,
+                installationId: finalInstallationId,
+            },
+        });
+        // Extract the installation access token for environment propagation
+        const authResult = (await octokit.auth({ type: 'installation' }));
+        return {
+            octokit,
+            authType: 'github-app',
+            token: authResult.token,
+        };
+    }
+    // Fall back to token authentication
+    if (token) {
+        return {
+            octokit: new rest_1.Octokit({ auth: token }),
+            authType: 'token',
+            token,
+        };
+    }
+    // No credentials provided
+    return undefined;
+}
+/**
+ * Resolve GitHub auth options from environment variables.
+ * Used as fallback when no explicit CLI arguments are provided.
+ */
+function resolveAuthFromEnvironment() {
+    return {
+        token: process.env.GITHUB_TOKEN || process.env.GH_TOKEN,
+        appId: process.env.GITHUB_APP_ID,
+        privateKey: process.env.GITHUB_APP_PRIVATE_KEY,
+        installationId: process.env.GITHUB_APP_INSTALLATION_ID,
+        owner: process.env.GITHUB_REPOSITORY_OWNER || process.env.GITHUB_REPOSITORY?.split('/')[0],
+        repo: process.env.GITHUB_REPOSITORY?.split('/')[1],
+    };
+}
+/**
+ * Resolve private key — supports both inline PEM content and file paths.
+ */
+function resolvePrivateKey(keyOrPath) {
+    if (keyOrPath.includes('-----BEGIN')) {
+        return keyOrPath;
+    }
+    const resolved = path.resolve(keyOrPath);
+    if (fs.existsSync(resolved)) {
+        return fs.readFileSync(resolved, 'utf8');
+    }
+    // Return as-is and let the auth library handle errors
+    return keyOrPath;
+}
+/**
+ * Inject GitHub credentials into process.env for child processes.
+ *
+ * Sets GITHUB_TOKEN/GH_TOKEN for gh CLI, and configures git HTTPS auth
+ * via GIT_CONFIG_COUNT/KEY/VALUE env vars so `git clone`, `git push`, etc.
+ * work automatically against github.com without any local git config.
+ *
+ * Uses git's GIT_CONFIG_COUNT mechanism (git 2.31+, March 2021):
+ * - No temp files or global config mutation
+ * - Inherited by all child processes automatically
+ * - Works regardless of local git configuration
+ */
+function injectGitHubCredentials(token) {
+    // Set for gh CLI and general GitHub API usage
+    process.env.GITHUB_TOKEN = token;
+    process.env.GH_TOKEN = token;
+    // Configure git HTTPS auth via url.<base>.insteadOf
+    // This rewrites all github.com URLs to include the access token
+    const existingCount = parseInt(process.env.GIT_CONFIG_COUNT || '0', 10);
+    const authUrl = `https://x-access-token:${token}@github.com/`;
+    // Rewrite HTTPS URLs
+    process.env[`GIT_CONFIG_KEY_${existingCount}`] = `url.${authUrl}.insteadOf`;
+    process.env[`GIT_CONFIG_VALUE_${existingCount}`] = 'https://github.com/';
+    // Rewrite SSH-style URLs (git@github.com:org/repo)
+    process.env[`GIT_CONFIG_KEY_${existingCount + 1}`] = `url.${authUrl}.insteadOf`;
+    process.env[`GIT_CONFIG_VALUE_${existingCount + 1}`] = 'git@github.com:';
+    process.env.GIT_CONFIG_COUNT = String(existingCount + 2);
+}
+
+
 /***/ }),
 
 /***/ 21367:
@@ -175048,8 +175267,6 @@ exports.run = run;
 // Load environment variables from .env file (override existing to allow .env to take precedence)
 const dotenv = __importStar(__nccwpck_require__(18889));
 dotenv.config({ override: true, quiet: true });
-const rest_1 = __nccwpck_require__(47432);
-const auth_app_1 = __nccwpck_require__(76479);
 const core_1 = __nccwpck_require__(37484);
 const commands_1 = __nccwpck_require__(99153);
 const pr_analyzer_1 = __nccwpck_require__(80100);
@@ -175060,79 +175277,39 @@ const config_1 = __nccwpck_require__(22973);
 const github_reactions_1 = __nccwpck_require__(67997);
 const footer_1 = __nccwpck_require__(6924);
 const json_text_extractor_1 = __nccwpck_require__(49022);
+const github_auth_1 = __nccwpck_require__(11347);
 /**
- * Create an authenticated Octokit instance using either GitHub App || token authentication
+ * Create an authenticated Octokit instance using either GitHub App or token authentication.
+ * Delegates to the shared github-auth module and injects credentials into process.env
+ * so child processes (git, gh CLI, Claude Code agents) can authenticate automatically.
  */
 async function createAuthenticatedOctokit() {
-    const token = (0, core_1.getInput)('github-token');
-    const appId = (0, core_1.getInput)('app-id');
-    const privateKey = (0, core_1.getInput)('private-key');
-    const installationId = (0, core_1.getInput)('installation-id');
-    // Prefer GitHub App authentication if app credentials are provided
-    if (appId && privateKey) {
-        console.log('🔐 Using GitHub App authentication');
-        try {
-            // Note: createAppAuth is used in the Octokit constructor below
-            // If no installation ID provided, try to get it for the current repository
-            let finalInstallationId;
-            // Validate && parse the installation ID if provided
-            if (installationId) {
-                finalInstallationId = parseInt(installationId, 10);
-                if (isNaN(finalInstallationId) || finalInstallationId <= 0) {
-                    throw new Error('Invalid installation-id provided. It must be a positive integer.');
-                }
-            }
-            if (!finalInstallationId) {
-                const owner = (0, core_1.getInput)('owner') || process.env.GITHUB_REPOSITORY_OWNER;
-                const repo = (0, core_1.getInput)('repo') || process.env.GITHUB_REPOSITORY?.split('/')[1];
-                if (owner && repo) {
-                    // Create a temporary JWT-authenticated client to find the installation
-                    const appOctokit = new rest_1.Octokit({
-                        authStrategy: auth_app_1.createAppAuth,
-                        auth: {
-                            appId,
-                            privateKey,
-                        },
-                    });
-                    try {
-                        const { data: installation } = await appOctokit.rest.apps.getRepoInstallation({
-                            owner,
-                            repo,
-                        });
-                        finalInstallationId = installation.id;
-                        console.log(`✅ Auto-detected installation ID: ${finalInstallationId}`);
-                    }
-                    catch {
-                        console.warn('⚠️ Could not auto-detect installation ID. Please check app permissions && installation status.');
-                        throw new Error('GitHub App installation ID is required but could not be auto-detected. Please ensure the app is installed on this repository || provide the `installation-id` manually.');
-                    }
-                }
-            }
-            // Create the authenticated Octokit instance
-            const octokit = new rest_1.Octokit({
-                authStrategy: auth_app_1.createAppAuth,
-                auth: {
-                    appId,
-                    privateKey,
-                    installationId: finalInstallationId,
-                },
-            });
-            return { octokit, authType: 'github-app' };
-        }
-        catch (error) {
-            console.error('❌ GitHub App authentication failed. Please check your App ID, Private Key, && installation permissions.');
-            throw new Error(`GitHub App authentication failed`, { cause: error });
+    const options = {
+        token: (0, core_1.getInput)('github-token'),
+        appId: (0, core_1.getInput)('app-id'),
+        privateKey: (0, core_1.getInput)('private-key'),
+        installationId: (0, core_1.getInput)('installation-id'),
+        owner: (0, core_1.getInput)('owner') || process.env.GITHUB_REPOSITORY_OWNER,
+        repo: (0, core_1.getInput)('repo') || process.env.GITHUB_REPOSITORY?.split('/')[1],
+    };
+    try {
+        const result = await (0, github_auth_1.createAuthenticatedOctokit)(options);
+        if (!result) {
+            throw new Error('Either github-token or app-id/private-key must be provided for authentication');
         }
+        console.log(result.authType === 'github-app'
+            ? '🔐 Using GitHub App authentication'
+            : '🔑 Using GitHub token authentication');
+        // Inject credentials for child processes (git, gh, Claude Code agents)
+        (0, github_auth_1.injectGitHubCredentials)(result.token);
+        return result;
     }
-    // Fall back to token authentication
-    if (token) {
-        console.log('🔑 Using GitHub token authentication');
-        return {
-            octokit: new rest_1.Octokit({ auth: token }),
-            authType: 'token',
-        };
+    catch (error) {
+        if (options.appId && options.privateKey) {
+            console.error('❌ GitHub App authentication failed. Please check your App ID, Private Key, and installation permissions.');
+        }
+        throw error;
     }
-    throw new Error('Either github-token || app-id/private-key must be provided for authentication');
 }
 async function run() {
     try {
@@ -249683,6 +249860,7 @@ var require_ChecksumStream = __commonJS({
       checksum;
       source;
       base64Encoder;
+      pendingCallback = null;
       constructor({ expectedChecksum, checksum, source, checksumSourceLocation, base64Encoder }) {
         super();
         if (typeof source.pipe === "function") {
@@ -249697,11 +249875,20 @@ var require_ChecksumStream = __commonJS({
         this.source.pipe(this);
       }
       _read(size) {
+        if (this.pendingCallback) {
+          const callback = this.pendingCallback;
+          this.pendingCallback = null;
+          callback();
+        }
       }
       _write(chunk, encoding, callback) {
         try {
           this.checksum.update(chunk);
-          this.push(chunk);
+          const canPushMore = this.push(chunk);
+          if (!canPushMore) {
+            this.pendingCallback = callback;
+            return;
+          }
         } catch (e5) {
           return callback(e5);
         }
@@ -284997,6 +285184,10 @@ function getValidParamsForTool(toolName) {
   }
   return [];
 }
+function unescapeXmlEntities(str) {
+  if (typeof str !== "string") return str;
+  return str.replace(/&lt;/g, "<").replace(/&gt;/g, ">").replace(/&quot;/g, '"').replace(/&apos;/g, "'").replace(/&amp;/g, "&");
+}
 function parseXmlToolCall(xmlString, validTools = DEFAULT_VALID_TOOLS) {
   let earliestToolName = null;
   let earliestOpenIndex = Infinity;
@@ -285053,10 +285244,10 @@ function parseXmlToolCall(xmlString, validTools = DEFAULT_VALID_TOOLS) {
       }
       paramCloseIndex = nextTagIndex;
     }
-    let paramValue = innerContent.substring(
+    let paramValue = unescapeXmlEntities(innerContent.substring(
       paramOpenIndex + paramOpenTag.length,
       paramCloseIndex
-    ).trim();
+    ).trim());
     if (paramValue.toLowerCase() === "true") {
       paramValue = true;
     } else if (paramValue.toLowerCase() === "false") {
@@ -285070,7 +285261,7 @@ function parseXmlToolCall(xmlString, validTools = DEFAULT_VALID_TOOLS) {
     params[paramName] = paramValue;
   }
   if (toolName === "attempt_completion") {
-    params["result"] = innerContent.trim();
+    params["result"] = unescapeXmlEntities(innerContent.trim());
     if (params.command) {
       delete params.command;
     }
@@ -330449,6 +330640,7 @@ __export(schemaUtils_exports, {
   replaceMermaidDiagramsInMarkdown: () => replaceMermaidDiagramsInMarkdown,
   sanitizeMarkdownEscapesInJson: () => sanitizeMarkdownEscapesInJson,
   tryAutoWrapForSimpleSchema: () => tryAutoWrapForSimpleSchema,
+  tryExtractValidJsonPrefix: () => tryExtractValidJsonPrefix,
   tryMaidAutoFix: () => tryMaidAutoFix,
   validateAndFixMermaidResponse: () => validateAndFixMermaidResponse,
   validateJsonResponse: () => validateJsonResponse,
@@ -330835,6 +331027,13 @@ function validateJsonResponse(response, options = {}) {
         errorPosition = response.indexOf(problematicToken);
       }
     }
+    const prefixResult = tryExtractValidJsonPrefix(responseToValidate, { schema, debug });
+    if (prefixResult && prefixResult.isValid) {
+      if (debug) {
+        console.log(`[DEBUG] JSON validation: Recovered valid JSON prefix (${prefixResult.extracted.length} chars) from response with trailing content`);
+      }
+      return { isValid: true, parsed: prefixResult.parsed };
+    }
     let enhancedError = error2.message;
     let errorContext = null;
     if (errorPosition !== null && errorPosition >= 0 && response && response.length > 0) {
@@ -330885,6 +331084,84 @@ ${errorContext.pointer}`);
     };
   }
 }
+function tryExtractValidJsonPrefix(response, options = {}) {
+  const { schema = null, debug = false } = options;
+  if (!response || typeof response !== "string") {
+    return null;
+  }
+  const trimmed = response.trim();
+  if (trimmed.length === 0) {
+    return null;
+  }
+  const firstChar = trimmed[0];
+  if (firstChar !== "{" && firstChar !== "[") {
+    return null;
+  }
+  try {
+    JSON.parse(trimmed);
+    return null;
+  } catch {
+  }
+  const openChar = firstChar;
+  const closeChar = openChar === "{" ? "}" : "]";
+  let depth = 0;
+  let inString = false;
+  let escapeNext = false;
+  let endPos = -1;
+  for (let i5 = 0; i5 < trimmed.length; i5++) {
+    const char = trimmed[i5];
+    if (escapeNext) {
+      escapeNext = false;
+      continue;
+    }
+    if (char === "\\" && inString) {
+      escapeNext = true;
+      continue;
+    }
+    if (char === '"') {
+      inString = !inString;
+      continue;
+    }
+    if (inString) {
+      continue;
+    }
+    if (char === openChar) {
+      depth++;
+    } else if (char === closeChar) {
+      depth--;
+      if (depth === 0) {
+        endPos = i5 + 1;
+        break;
+      }
+    }
+  }
+  if (endPos <= 0 || endPos >= trimmed.length) {
+    return null;
+  }
+  const remainder = trimmed.substring(endPos).trim();
+  if (remainder.length === 0) {
+    return null;
+  }
+  const prefix = trimmed.substring(0, endPos);
+  try {
+    const parsed = JSON.parse(prefix);
+    if (debug) {
+      console.log(`[DEBUG] tryExtractValidJsonPrefix: Extracted valid JSON prefix (${prefix.length} chars), stripped trailing content (${remainder.length} chars)`);
+    }
+    if (schema) {
+      const schemaValidation = validateJsonResponse(prefix, { debug, schema });
+      if (!schemaValidation.isValid) {
+        if (debug) {
+          console.log(`[DEBUG] tryExtractValidJsonPrefix: Prefix is valid JSON but fails schema validation: ${schemaValidation.error}`);
+        }
+        return null;
+      }
+    }
+    return { isValid: true, parsed, extracted: prefix };
+  } catch {
+    return null;
+  }
+}
 function validateXmlResponse(response) {
   const xmlPattern = /<\/?[\w\s="'.-]+>/g;
   const tags = response.match(xmlPattern);
@@ -332986,7 +333263,7 @@ function parseXmlMcpToolCall(xmlString, mcpToolNames = []) {
       let match2;
       while ((match2 = paramPattern.exec(content)) !== null) {
         const [, paramName, paramValue] = match2;
-        params[paramName] = paramValue.trim();
+        params[paramName] = unescapeXmlEntities(paramValue.trim());
       }
     }
     return { toolName, params };
@@ -333036,7 +333313,7 @@ function parseNativeXmlTool(xmlString, toolName) {
   while ((match2 = paramPattern.exec(content)) !== null) {
     const [, paramName, paramValue] = match2;
     if (paramName !== "params") {
-      params[paramName] = paramValue.trim();
+      params[paramName] = unescapeXmlEntities(paramValue.trim());
     }
   }
   if (Object.keys(params).length > 0) {
@@ -333051,6 +333328,7 @@ var init_xmlBridge = __esm({
     init_client2();
     init_config();
     init_xmlParsingUtils();
+    init_common2();
     MCPXmlBridge = class {
       constructor(options = {}) {
         this.debug = options.debug || false;
@@ -341264,10 +341542,10 @@ var init_FallbackManager = __esm({
       // Use custom provider list
     };
     DEFAULT_MODELS = {
-      anthropic: "claude-sonnet-4-5-20250929",
-      openai: "gpt-4o",
-      google: "gemini-2.0-flash-exp",
-      bedrock: "anthropic.claude-sonnet-4-20250514-v1:0"
+      anthropic: "claude-sonnet-4-6",
+      openai: "gpt-5.2",
+      google: "gemini-2.5-flash",
+      bedrock: "anthropic.claude-sonnet-4-6"
     };
     FallbackManager = class {
       /**
@@ -351684,95 +351962,102 @@ var init_bashDefaults = __esm({
       "dir",
       "pwd",
       "cd",
-      "cd:*",
       // File reading commands
       "cat",
-      "cat:*",
       "head",
-      "head:*",
       "tail",
-      "tail:*",
       "less",
       "more",
       "view",
       // File information and metadata
       "file",
-      "file:*",
       "stat",
-      "stat:*",
       "wc",
-      "wc:*",
       "du",
-      "du:*",
       "df",
-      "df:*",
       "realpath",
-      "realpath:*",
-      // Search and find commands (read-only) - find restricted to safe operations
+      // Search and find commands (read-only)
+      // Note: bare 'find' allows all find variants; dangerous ones (find -exec) are blocked by deny list
       "find",
-      "find:-name:*",
-      "find:-type:*",
-      "find:-size:*",
-      "find:-mtime:*",
-      "find:-newer:*",
-      "find:-path:*",
-      "find:-iname:*",
-      "find:-maxdepth:*",
-      "find:-mindepth:*",
-      "find:-print",
       "grep",
-      "grep:*",
       "egrep",
-      "egrep:*",
       "fgrep",
-      "fgrep:*",
       "rg",
-      "rg:*",
       "ag",
-      "ag:*",
       "ack",
-      "ack:*",
       "which",
-      "which:*",
       "whereis",
-      "whereis:*",
       "locate",
-      "locate:*",
       "type",
-      "type:*",
       "command",
-      "command:*",
       // Tree and structure visualization
       "tree",
-      "tree:*",
       // Git read-only operations
       "git:status",
       "git:log",
-      "git:log:*",
       "git:diff",
-      "git:diff:*",
       "git:show",
-      "git:show:*",
       "git:branch",
-      "git:branch:*",
       "git:tag",
-      "git:tag:*",
       "git:describe",
-      "git:describe:*",
       "git:remote",
-      "git:remote:*",
-      "git:config:*",
+      "git:config",
       "git:blame",
-      "git:blame:*",
       "git:shortlog",
       "git:reflog",
       "git:ls-files",
       "git:ls-tree",
+      "git:ls-remote",
       "git:rev-parse",
       "git:rev-list",
+      "git:cat-file",
+      "git:diff-tree",
+      "git:diff-files",
+      "git:diff-index",
+      "git:for-each-ref",
+      "git:merge-base",
+      "git:name-rev",
+      "git:count-objects",
+      "git:verify-commit",
+      "git:verify-tag",
+      "git:check-ignore",
+      "git:check-attr",
+      "git:stash:list",
+      "git:stash:show",
+      "git:worktree:list",
+      "git:notes:list",
+      "git:notes:show",
       "git:--version",
       "git:help",
-      "git:help:*",
+      // GitHub CLI (gh) read-only operations
+      "gh:--version",
+      "gh:help",
+      "gh:status",
+      "gh:auth:status",
+      "gh:issue:list",
+      "gh:issue:view",
+      "gh:issue:status",
+      "gh:pr:list",
+      "gh:pr:view",
+      "gh:pr:status",
+      "gh:pr:diff",
+      "gh:pr:checks",
+      "gh:repo:list",
+      "gh:repo:view",
+      "gh:release:list",
+      "gh:release:view",
+      "gh:run:list",
+      "gh:run:view",
+      "gh:workflow:list",
+      "gh:workflow:view",
+      "gh:gist:list",
+      "gh:gist:view",
+      "gh:search:issues",
+      "gh:search:prs",
+      "gh:search:repos",
+      "gh:search:code",
+      "gh:search:commits",
+      "gh:api",
       // Package managers (information only)
       "npm:list",
       "npm:ls",
@@ -351833,7 +352118,6 @@ var init_bashDefaults = __esm({
       "sqlite3:--version",
       // System information
       "uname",
-      "uname:*",
       "hostname",
       "whoami",
       "id",
@@ -351844,23 +352128,17 @@ var init_bashDefaults = __esm({
       "w",
       "users",
       "sleep",
-      "sleep:*",
       // Environment and shell
       "env",
       "printenv",
       "echo",
-      "echo:*",
       "printf",
-      "printf:*",
       "export",
-      "export:*",
       "set",
       "unset",
       // Process information (read-only)
       "ps",
-      "ps:*",
       "pgrep",
-      "pgrep:*",
       "jobs",
       "top:-n:1",
       // Network information (read-only)
@@ -351875,39 +352153,24 @@ var init_bashDefaults = __esm({
       // Text processing and utilities (awk removed - too powerful)
       "sed:-n:*",
       "cut",
-      "cut:*",
       "sort",
-      "sort:*",
       "uniq",
-      "uniq:*",
       "tr",
-      "tr:*",
       "column",
-      "column:*",
       "paste",
-      "paste:*",
       "join",
-      "join:*",
       "comm",
-      "comm:*",
       "diff",
-      "diff:*",
       "cmp",
-      "cmp:*",
       "patch:--dry-run:*",
       // Hashing and encoding (read-only)
       "md5sum",
-      "md5sum:*",
       "sha1sum",
-      "sha1sum:*",
       "sha256sum",
-      "sha256sum:*",
       "base64",
       "base64:-d",
       "od",
-      "od:*",
       "hexdump",
-      "hexdump:*",
       // Archive and compression (list/view only)
       "tar:-tf:*",
       "tar:-tzf:*",
@@ -351917,15 +352180,11 @@ var init_bashDefaults = __esm({
       "gunzip:-l:*",
       // Help and documentation
       "man",
-      "man:*",
       "--help",
       "help",
       "info",
-      "info:*",
       "whatis",
-      "whatis:*",
       "apropos",
-      "apropos:*",
       // Make (dry run and info)
       "make:-n",
       "make:--dry-run",
@@ -351948,36 +352207,30 @@ var init_bashDefaults = __esm({
       "rm:-rf",
       "rm:-f:/",
       "rm:/",
-      "rm:-rf:*",
       "rmdir",
       "chmod:777",
       "chmod:-R:777",
       "chown",
       "chgrp",
       "dd",
-      "dd:*",
       "shred",
-      "shred:*",
       // Dangerous find operations that can execute arbitrary commands
-      "find:-exec:*",
-      "find:*:-exec:*",
-      "find:-execdir:*",
-      "find:*:-execdir:*",
-      "find:-ok:*",
-      "find:*:-ok:*",
-      "find:-okdir:*",
-      "find:*:-okdir:*",
+      "find:-exec",
+      "find:*:-exec",
+      "find:-execdir",
+      "find:*:-execdir",
+      "find:-ok",
+      "find:*:-ok",
+      "find:-okdir",
+      "find:*:-okdir",
       // Powerful scripting tools that can execute arbitrary commands
       "awk",
-      "awk:*",
       "perl",
-      "perl:*",
       "python:-c:*",
       "node:-e:*",
       // System administration and modification
-      "sudo:*",
+      "sudo",
       "su",
-      "su:*",
       "passwd",
       "adduser",
       "useradd",
@@ -352015,11 +352268,11 @@ var init_bashDefaults = __esm({
       "composer:install",
       "composer:update",
       "composer:remove",
-      "apt:*",
-      "apt-get:*",
-      "yum:*",
-      "dnf:*",
-      "zypper:*",
+      "apt",
+      "apt-get",
+      "yum",
+      "dnf",
+      "zypper",
       "brew:install",
       "brew:uninstall",
       "brew:upgrade",
@@ -352027,11 +352280,11 @@ var init_bashDefaults = __esm({
       "conda:remove",
       "conda:update",
       // Service and system control
-      "systemctl:*",
-      "service:*",
-      "chkconfig:*",
-      "initctl:*",
-      "upstart:*",
+      "systemctl",
+      "service",
+      "chkconfig",
+      "initctl",
+      "upstart",
       // Network operations that could be dangerous
       "curl:-d:*",
       "curl:--data:*",
@@ -352040,32 +352293,21 @@ var init_bashDefaults = __esm({
       "wget:-O:/",
       "wget:--post-data:*",
       "ssh",
-      "ssh:*",
       "scp",
-      "scp:*",
       "sftp",
-      "sftp:*",
-      "rsync:*",
+      "rsync",
       "nc",
-      "nc:*",
       "netcat",
-      "netcat:*",
       "telnet",
-      "telnet:*",
       "ftp",
-      "ftp:*",
       // Process control and termination
       "kill",
-      "kill:*",
       "killall",
-      "killall:*",
       "pkill",
-      "pkill:*",
-      "nohup:*",
-      "disown:*",
+      "nohup",
+      "disown",
       // System control and shutdown
       "shutdown",
-      "shutdown:*",
       "reboot",
       "halt",
       "poweroff",
@@ -352073,50 +352315,92 @@ var init_bashDefaults = __esm({
       "telinit",
       // Kernel and module operations
       "insmod",
-      "insmod:*",
       "rmmod",
-      "rmmod:*",
       "modprobe",
-      "modprobe:*",
       "sysctl:-w:*",
       // Dangerous git operations
       "git:push",
-      "git:push:*",
       "git:force",
-      "git:reset:--hard:*",
-      "git:clean:-fd",
-      "git:rm:*",
+      "git:reset",
+      "git:clean",
+      "git:rm",
       "git:commit",
       "git:merge",
       "git:rebase",
       "git:cherry-pick",
       "git:stash:drop",
+      "git:stash:pop",
+      "git:stash:push",
+      "git:stash:clear",
+      "git:branch:-d",
+      "git:branch:-D",
+      "git:branch:--delete",
+      "git:tag:-d",
+      "git:tag:--delete",
+      "git:remote:remove",
+      "git:remote:rm",
+      "git:checkout:--force",
+      "git:checkout:-f",
+      "git:submodule:deinit",
+      "git:notes:add",
+      "git:notes:remove",
+      "git:worktree:add",
+      "git:worktree:remove",
+      // Dangerous GitHub CLI (gh) write operations
+      "gh:issue:create",
+      "gh:issue:close",
+      "gh:issue:delete",
+      "gh:issue:edit",
+      "gh:issue:reopen",
+      "gh:issue:comment",
+      "gh:pr:create",
+      "gh:pr:close",
+      "gh:pr:merge",
+      "gh:pr:edit",
+      "gh:pr:reopen",
+      "gh:pr:review",
+      "gh:pr:comment",
+      "gh:repo:create",
+      "gh:repo:delete",
+      "gh:repo:fork",
+      "gh:repo:rename",
+      "gh:repo:archive",
+      "gh:repo:clone",
+      "gh:release:create",
+      "gh:release:delete",
+      "gh:release:edit",
+      "gh:run:cancel",
+      "gh:run:rerun",
+      "gh:workflow:run",
+      "gh:workflow:enable",
+      "gh:workflow:disable",
+      "gh:gist:create",
+      "gh:gist:delete",
+      "gh:gist:edit",
+      "gh:secret:set",
+      "gh:secret:delete",
+      "gh:variable:set",
+      "gh:variable:delete",
+      "gh:label:create",
+      "gh:label:delete",
+      "gh:ssh-key:add",
+      "gh:ssh-key:delete",
       // File system mounting and partitioning
       "mount",
-      "mount:*",
       "umount",
-      "umount:*",
       "fdisk",
-      "fdisk:*",
       "parted",
-      "parted:*",
       "mkfs",
-      "mkfs:*",
       "fsck",
-      "fsck:*",
       // Cron and scheduling
       "crontab",
-      "crontab:*",
       "at",
-      "at:*",
       "batch",
-      "batch:*",
       // Compression with potential overwrite
       "tar:-xf:*",
       "unzip",
-      "unzip:*",
-      "gzip:*",
-      "gunzip:*",
+      "gzip",
+      "gunzip",
       // Build and compilation that might modify files
       "make",
       "make:install",
@@ -352129,11 +352413,8 @@ var init_bashDefaults = __esm({
       "gradle:build",
       // Docker operations that could modify state
       "docker:run",
-      "docker:run:*",
       "docker:exec",
-      "docker:exec:*",
       "docker:build",
-      "docker:build:*",
       "docker:pull",
       "docker:push",
       "docker:rm",
@@ -352147,22 +352428,15 @@ var init_bashDefaults = __esm({
       "mongo:--eval:*",
       // Text editors that could modify files
       "vi",
-      "vi:*",
       "vim",
-      "vim:*",
       "nano",
-      "nano:*",
       "emacs",
-      "emacs:*",
       "sed:-i:*",
       "perl:-i:*",
       // Potentially dangerous utilities
       "eval",
-      "eval:*",
       "exec",
-      "exec:*",
       "source",
-      "source:*",
       "bash:-c:*",
       "sh:-c:*",
       "zsh:-c:*"
@@ -352441,9 +352715,19 @@ var init_bashPermissions = __esm({
     BashPermissionChecker = class {
       /**
        * Create a permission checker
+       *
+       * Priority order (highest to lowest):
+       *   1. Custom deny  — always blocks (user explicitly blocked it)
+       *   2. Custom allow — overrides default deny (user explicitly allowed it)
+       *   3. Default deny — blocks by default
+       *   4. Allow list   — allows recognized safe commands
+       *
+       * This means `--bash-allow "git:push"` overrides the default deny for git:push
+       * without requiring `--no-default-bash-deny`.
+       *
        * @param {Object} config - Configuration options
-       * @param {string[]} [config.allow] - Additional allow patterns
-       * @param {string[]} [config.deny] - Additional deny patterns
+       * @param {string[]} [config.allow] - Additional allow patterns (override default deny)
+       * @param {string[]} [config.deny] - Additional deny patterns (always win)
        * @param {boolean} [config.disableDefaultAllow] - Disable default allow list
        * @param {boolean} [config.disableDefaultDeny] - Disable default deny list
        * @param {boolean} [config.debug] - Enable debug logging
@@ -352452,40 +352736,22 @@ var init_bashPermissions = __esm({
       constructor(config = {}) {
         this.debug = config.debug || false;
         this.tracer = config.tracer || null;
-        this.allowPatterns = [];
-        if (!config.disableDefaultAllow) {
-          this.allowPatterns.push(...DEFAULT_ALLOW_PATTERNS);
-          if (this.debug) {
-            console.log(`[BashPermissions] Added ${DEFAULT_ALLOW_PATTERNS.length} default allow patterns`);
-          }
-        }
-        if (config.allow && Array.isArray(config.allow)) {
-          this.allowPatterns.push(...config.allow);
-          if (this.debug) {
-            console.log(`[BashPermissions] Added ${config.allow.length} custom allow patterns:`, config.allow);
-          }
-        }
-        this.denyPatterns = [];
-        if (!config.disableDefaultDeny) {
-          this.denyPatterns.push(...DEFAULT_DENY_PATTERNS);
-          if (this.debug) {
-            console.log(`[BashPermissions] Added ${DEFAULT_DENY_PATTERNS.length} default deny patterns`);
-          }
-        }
-        if (config.deny && Array.isArray(config.deny)) {
-          this.denyPatterns.push(...config.deny);
-          if (this.debug) {
-            console.log(`[BashPermissions] Added ${config.deny.length} custom deny patterns:`, config.deny);
-          }
-        }
+        this.defaultAllowPatterns = config.disableDefaultAllow ? [] : [...DEFAULT_ALLOW_PATTERNS];
+        this.customAllowPatterns = config.allow && Array.isArray(config.allow) ? [...config.allow] : [];
+        this.allowPatterns = [...this.defaultAllowPatterns, ...this.customAllowPatterns];
+        this.defaultDenyPatterns = config.disableDefaultDeny ? [] : [...DEFAULT_DENY_PATTERNS];
+        this.customDenyPatterns = config.deny && Array.isArray(config.deny) ? [...config.deny] : [];
+        this.denyPatterns = [...this.defaultDenyPatterns, ...this.customDenyPatterns];
         if (this.debug) {
+          console.log(`[BashPermissions] Default allow: ${this.defaultAllowPatterns.length}, Custom allow: ${this.customAllowPatterns.length}`);
+          console.log(`[BashPermissions] Default deny: ${this.defaultDenyPatterns.length}, Custom deny: ${this.customDenyPatterns.length}`);
           console.log(`[BashPermissions] Total patterns - Allow: ${this.allowPatterns.length}, Deny: ${this.denyPatterns.length}`);
         }
         this.recordBashEvent("permissions.initialized", {
           allowPatternCount: this.allowPatterns.length,
           denyPatternCount: this.denyPatterns.length,
-          hasCustomAllowPatterns: !!(config.allow && config.allow.length > 0),
-          hasCustomDenyPatterns: !!(config.deny && config.deny.length > 0),
+          hasCustomAllowPatterns: this.customAllowPatterns.length > 0,
+          hasCustomDenyPatterns: this.customDenyPatterns.length > 0,
           disableDefaultAllow: !!config.disableDefaultAllow,
           disableDefaultDeny: !!config.disableDefaultDeny
         });
@@ -352555,8 +352821,11 @@ var init_bashPermissions = __esm({
           console.log(`[BashPermissions] Checking simple command: "${command}"`);
           console.log(`[BashPermissions] Parsed: ${parsed.command} with args: [${parsed.args.join(", ")}]`);
         }
-        if (matchesAnyPattern(parsed, this.denyPatterns)) {
-          const matchedPatterns = this.denyPatterns.filter((pattern) => matchesPattern(parsed, pattern));
+        if (matchesAnyPattern(parsed, this.customDenyPatterns)) {
+          const matchedPatterns = this.customDenyPatterns.filter((pattern) => matchesPattern(parsed, pattern));
+          if (this.debug) {
+            console.log(`[BashPermissions] DENIED - matches custom deny pattern: ${matchedPatterns[0]}`);
+          }
           const result2 = {
             allowed: false,
             reason: `Command matches deny pattern: ${matchedPatterns[0]}`,
@@ -352569,7 +352838,31 @@ var init_bashPermissions = __esm({
             parsedCommand: parsed.command,
             reason: "matches_deny_pattern",
             matchedPattern: matchedPatterns[0],
-            isComplex: false
+            isComplex: false,
+            isCustomDeny: true
+          });
+          return result2;
+        }
+        const matchesCustomAllow = matchesAnyPattern(parsed, this.customAllowPatterns);
+        if (!matchesCustomAllow && matchesAnyPattern(parsed, this.defaultDenyPatterns)) {
+          const matchedPatterns = this.defaultDenyPatterns.filter((pattern) => matchesPattern(parsed, pattern));
+          if (this.debug) {
+            console.log(`[BashPermissions] DENIED - matches default deny pattern: ${matchedPatterns[0]}`);
+          }
+          const result2 = {
+            allowed: false,
+            reason: `Command matches deny pattern: ${matchedPatterns[0]}`,
+            command,
+            parsed,
+            matchedPatterns
+          };
+          this.recordBashEvent("permission.denied", {
+            command,
+            parsedCommand: parsed.command,
+            reason: "matches_deny_pattern",
+            matchedPattern: matchedPatterns[0],
+            isComplex: false,
+            isCustomDeny: false
           });
           return result2;
         }
@@ -352594,15 +352887,21 @@ var init_bashPermissions = __esm({
           allowed: true,
           command,
           parsed,
-          isComplex: false
+          isComplex: false,
+          overriddenDeny: matchesCustomAllow && matchesAnyPattern(parsed, this.defaultDenyPatterns)
         };
         if (this.debug) {
-          console.log(`[BashPermissions] ALLOWED - command passed all checks`);
+          if (result.overriddenDeny) {
+            console.log(`[BashPermissions] ALLOWED - custom allow overrides default deny`);
+          } else {
+            console.log(`[BashPermissions] ALLOWED - command passed all checks`);
+          }
         }
         this.recordBashEvent("permission.allowed", {
           command,
           parsedCommand: parsed.command,
-          isComplex: false
+          isComplex: false,
+          overriddenDeny: result.overriddenDeny || false
         });
         return result;
       }
@@ -352771,9 +353070,19 @@ var init_bashPermissions = __esm({
               deniedReason = parsed.error || "Component contains nested complex constructs";
               break;
             }
-            if (matchesAnyPattern(parsed, this.denyPatterns)) {
+            if (matchesAnyPattern(parsed, this.customDenyPatterns)) {
+              if (this.debug) {
+                console.log(`[BashPermissions] Component "${component}" matches custom deny pattern`);
+              }
+              allAllowed = false;
+              deniedComponent = component;
+              deniedReason = "Component matches deny pattern";
+              break;
+            }
+            const componentMatchesCustomAllow = matchesAnyPattern(parsed, this.customAllowPatterns);
+            if (!componentMatchesCustomAllow && matchesAnyPattern(parsed, this.defaultDenyPatterns)) {
               if (this.debug) {
-                console.log(`[BashPermissions] Component "${component}" matches deny pattern`);
+                console.log(`[BashPermissions] Component "${component}" matches default deny pattern`);
               }
               allAllowed = false;
               deniedComponent = component;
@@ -352853,6 +353162,10 @@ var init_bashPermissions = __esm({
         return {
           allowPatterns: this.allowPatterns.length,
           denyPatterns: this.denyPatterns.length,
+          customAllowPatterns: this.customAllowPatterns.length,
+          customDenyPatterns: this.customDenyPatterns.length,
+          defaultAllowPatterns: this.defaultAllowPatterns.length,
+          defaultDenyPatterns: this.defaultDenyPatterns.length,
           totalPatterns: this.allowPatterns.length + this.denyPatterns.length
         };
       }
@@ -353235,8 +353548,8 @@ Common reasons:
 2. The command is not in the allow list (not a recognized safe command)
 
 If you believe this command should be allowed, you can:
-- Use the --bash-allow option to add specific patterns
-- Use the --no-default-bash-deny flag to remove default restrictions (not recommended)
+- Use the --bash-allow option to add specific patterns (overrides default deny list)
+  Example: --bash-allow "git:push" allows git push while keeping all other deny rules
 
 For code exploration, try these safe alternatives:
 - ls, cat, head, tail for file operations
@@ -356260,7 +356573,7 @@ var init_ProbeAgent = __esm({
               }
               this.clientApiProvider = "claude-code";
               this.provider = null;
-              this.model = this.clientApiModel || "claude-3-5-sonnet-20241022";
+              this.model = this.clientApiModel || "claude-sonnet-4-6";
               this.apiType = "claude-code";
             } else if (codexAvailable) {
               if (this.debug) {
@@ -356269,7 +356582,7 @@ var init_ProbeAgent = __esm({
               }
               this.clientApiProvider = "codex";
               this.provider = null;
-              this.model = this.clientApiModel || "gpt-4o";
+              this.model = this.clientApiModel || "gpt-5.2";
               this.apiType = "codex";
             } else {
               throw new Error("No API key provided and neither claude nor codex command found. Please either:\n1. Set an API key: ANTHROPIC_API_KEY, OPENAI_API_KEY, GOOGLE_GENERATIVE_AI_API_KEY, or AWS credentials\n2. Install claude command from https://docs.claude.com/en/docs/claude-code\n3. Install codex command from https://openai.com/codex");
@@ -356507,7 +356820,7 @@ var init_ProbeAgent = __esm({
         }
         if (this.clientApiProvider === "claude-code" || process.env.USE_CLAUDE_CODE === "true") {
           this.provider = null;
-          this.model = modelName || "claude-3-5-sonnet-20241022";
+          this.model = modelName || "claude-sonnet-4-6";
           this.apiType = "claude-code";
           if (this.debug) {
             console.log("[DEBUG] Claude Code engine selected - will use built-in access if available");
@@ -356874,7 +357187,7 @@ var init_ProbeAgent = __esm({
           apiKey,
           ...apiUrl && { baseURL: apiUrl }
         });
-        this.model = modelName || "claude-sonnet-4-5-20250929";
+        this.model = modelName || "claude-sonnet-4-6";
         this.apiType = "anthropic";
         if (this.debug) {
           console.log(`Using Anthropic API with model: ${this.model}${apiUrl ? ` (URL: ${apiUrl})` : ""}`);
@@ -356889,7 +357202,7 @@ var init_ProbeAgent = __esm({
           apiKey,
           ...apiUrl && { baseURL: apiUrl }
         });
-        this.model = modelName || "gpt-5-thinking";
+        this.model = modelName || "gpt-5.2";
         this.apiType = "openai";
         if (this.debug) {
           console.log(`Using OpenAI API with model: ${this.model}${apiUrl ? ` (URL: ${apiUrl})` : ""}`);
@@ -356993,7 +357306,7 @@ var init_ProbeAgent = __esm({
           config.baseURL = baseURL;
         }
         this.provider = createAmazonBedrock(config);
-        this.model = modelName || "anthropic.claude-sonnet-4-20250514-v1:0";
+        this.model = modelName || "anthropic.claude-sonnet-4-6";
         this.apiType = "bedrock";
         if (this.debug) {
           const authMethod = apiKey ? "API Key" : "AWS Credentials";
@@ -357052,7 +357365,7 @@ var init_ProbeAgent = __esm({
               allowedTools: this.allowedTools,
               // Pass tool filtering configuration
               model: this.model
-              // Pass model name (e.g., gpt-4o, o3, etc.)
+              // Pass model name (e.g., gpt-5.2, o3, etc.)
             });
             if (this.debug) {
               console.log("[DEBUG] Using Codex CLI engine with Probe tools");
@@ -358148,8 +358461,8 @@ You are working with a workspace. Available paths: ${workspaceDesc}
           let currentIteration = 0;
           let completionAttempted = false;
           let finalResult = "I was unable to complete your request due to reaching the maximum number of tool iterations.";
-          const baseMaxIterations = this.maxIterations || MAX_TOOL_ITERATIONS;
-          const maxIterations = options.schema ? baseMaxIterations + 4 : baseMaxIterations;
+          const baseMaxIterations = options._maxIterationsOverride || this.maxIterations || MAX_TOOL_ITERATIONS;
+          const maxIterations = options._maxIterationsOverride ? baseMaxIterations : options.schema ? baseMaxIterations + 4 : baseMaxIterations;
           const isClaudeCode = this.clientApiProvider === "claude-code" || process.env.USE_CLAUDE_CODE === "true";
           const isCodex = this.clientApiProvider === "codex" || process.env.USE_CODEX === "true";
           if (isClaudeCode) {
@@ -358307,9 +358620,7 @@ You are working with a workspace. Available paths: ${workspaceDesc}
             let maxResponseTokens = this.maxResponseTokens;
             if (!maxResponseTokens) {
               maxResponseTokens = 4e3;
-              if (this.model && this.model.includes("opus") || this.model && this.model.includes("sonnet") || this.model && this.model.startsWith("gpt-4-")) {
-                maxResponseTokens = 8192;
-              } else if (this.model && this.model.startsWith("gpt-4o")) {
+              if (this.model && this.model.includes("opus") || this.model && this.model.includes("sonnet") || this.model && this.model.startsWith("gpt-4") || this.model && this.model.startsWith("gpt-5")) {
                 maxResponseTokens = 8192;
               } else if (this.model && this.model.startsWith("gemini")) {
                 maxResponseTokens = 32e3;
@@ -359386,13 +359697,16 @@ Convert your previous response content into actual JSON data that follows this s
                     options.schema,
                     0
                   );
+                  const { schema: _unusedSchema1, ...schemaDefCorrectionOptions } = options;
                   finalResult = await this.answer(schemaDefinitionPrompt, [], {
-                    ...options,
+                    ...schemaDefCorrectionOptions,
                     _schemaFormatted: true,
                     _skipValidation: true,
                     // Skip validation in recursive correction calls to prevent loops
-                    _completionPromptProcessed: true
+                    _completionPromptProcessed: true,
                     // Prevent cascading completion prompts in retry calls
+                    _maxIterationsOverride: 3
+                    // Correction should complete in 1-2 iterations (issue #447)
                   });
                   finalResult = cleanSchemaResponse(finalResult);
                   validation = validateJsonResponse(finalResult);
@@ -359440,15 +359754,18 @@ Convert your previous response content into actual JSON data that follows this s
                       retryCount
                     );
                   }
+                  const { schema: _unusedSchema2, ...correctionOptions } = options;
                   finalResult = await this.answer(correctionPrompt, [], {
-                    ...options,
+                    ...correctionOptions,
                     _schemaFormatted: true,
                     _skipValidation: true,
                     // Skip validation in recursive correction calls to prevent loops
                     _disableTools: true,
                     // Only allow attempt_completion - prevent AI from using search/query tools
-                    _completionPromptProcessed: true
+                    _completionPromptProcessed: true,
                     // Prevent cascading completion prompts in retry calls
+                    _maxIterationsOverride: 3
+                    // Correction should complete in 1-2 iterations (issue #447)
                   });
                   finalResult = cleanSchemaResponse(finalResult);
                   validation = validateJsonResponse(finalResult, { debug: this.debug });
@@ -397487,7 +397804,7 @@ module.exports = /*#__PURE__*/JSON.parse('{"100":"Continue","101":"Switching Pro
 /***/ ((module) => {
 
 "use strict";
-module.exports = /*#__PURE__*/JSON.parse('{"name":"@probelabs/visor","version":"0.1.42","main":"dist/index.js","bin":{"visor":"./dist/index.js"},"exports":{".":{"require":"./dist/index.js","import":"./dist/index.js"},"./sdk":{"types":"./dist/sdk/sdk.d.ts","import":"./dist/sdk/sdk.mjs","require":"./dist/sdk/sdk.js"},"./cli":{"require":"./dist/index.js"}},"files":["dist/","defaults/","action.yml","README.md","LICENSE"],"publishConfig":{"access":"public","registry":"https://registry.npmjs.org/"},"scripts":{"build:cli":"ncc build src/index.ts -o dist && cp -r defaults dist/ && cp -r output dist/ && cp -r docs dist/ && cp -r examples dist/ && cp -r src/debug-visualizer/ui dist/debug-visualizer/ && node scripts/inject-version.js && echo \'#!/usr/bin/env node\' | cat - dist/index.js > temp && mv temp dist/index.js && chmod +x dist/index.js","build:sdk":"tsup src/sdk.ts --dts --sourcemap --format esm,cjs --out-dir dist/sdk","build":"./scripts/build-oss.sh","build:ee":"npm run build:cli && npm run build:sdk","test":"jest && npm run test:yaml","test:unit":"jest","prepublishOnly":"npm run build","test:watch":"jest --watch","test:coverage":"jest --coverage","test:ee":"jest --testPathPatterns=\'tests/ee\' --testPathIgnorePatterns=\'/node_modules/\' --no-coverage","test:manual:bash":"RUN_MANUAL_TESTS=true jest tests/manual/bash-config-manual.test.ts","lint":"eslint src tests --ext .ts","lint:fix":"eslint src tests --ext .ts --fix","format":"prettier --write src tests","format:check":"prettier --check src tests","clean":"","clean:traces":"node scripts/clean-traces.js","prebuild":"npm run clean && node scripts/generate-config-schema.js","pretest":"npm run clean:traces && node scripts/generate-config-schema.js && npm run build:cli","pretest:unit":"npm run clean:traces && node scripts/generate-config-schema.js && npm run build:cli","test:with-build":"npm run build:cli && jest","test:yaml":"node dist/index.js test --progress compact","test:yaml:parallel":"node dist/index.js test --progress compact --max-parallel 4","prepare":"husky","pre-commit":"lint-staged","deploy:site":"cd site && npx wrangler pages deploy . --project-name=visor-site --commit-dirty=true","deploy:worker":"npx wrangler deploy","deploy":"npm run deploy:site && npm run deploy:worker","publish:ee":"./scripts/publish-ee.sh","release":"./scripts/release.sh","release:patch":"./scripts/release.sh patch","release:minor":"./scripts/release.sh minor","release:major":"./scripts/release.sh major","release:prerelease":"./scripts/release.sh prerelease","docs:validate":"node scripts/validate-readme-links.js","workshop:setup":"npm install -D reveal-md@6.1.2","workshop:serve":"cd workshop && reveal-md slides.md -w","workshop:export":"reveal-md workshop/slides.md --static workshop/build","workshop:pdf":"reveal-md workshop/slides.md --print workshop/Visor-Workshop.pdf --print-size letter","workshop:pdf:ci":"reveal-md workshop/slides.md --print workshop/Visor-Workshop.pdf --print-size letter --puppeteer-launch-args=\\"--no-sandbox --disable-dev-shm-usage\\"","workshop:pdf:a4":"reveal-md workshop/slides.md --print workshop/Visor-Workshop-A4.pdf --print-size A4","workshop:build":"npm run workshop:export && npm run workshop:pdf","simulate:issue":"TS_NODE_TRANSPILE_ONLY=1 ts-node scripts/simulate-gh-run.ts --event issues --action opened --debug","simulate:comment":"TS_NODE_TRANSPILE_ONLY=1 ts-node scripts/simulate-gh-run.ts --event issue_comment --action created --debug"},"keywords":["code-review","ai","github-action","cli","pr-review","visor"],"author":"Probe Labs","license":"MIT","description":"AI workflow engine for code review, assistants, and automation — orchestrate checks, MCP tools, and AI providers with YAML-driven pipelines","repository":{"type":"git","url":"git+https://github.com/probelabs/visor.git"},"bugs":{"url":"https://github.com/probelabs/visor/issues"},"homepage":"https://github.com/probelabs/visor#readme","dependencies":{"@actions/core":"^1.11.1","@apidevtools/swagger-parser":"^12.1.0","@modelcontextprotocol/sdk":"^1.25.3","@nyariv/sandboxjs":"github:probelabs/SandboxJS#f1c13b8eee98734a8ea024061eada4aa9a9ff2e9","@octokit/action":"^8.0.2","@octokit/auth-app":"^8.1.0","@octokit/core":"^7.0.3","@octokit/rest":"^22.0.0","@probelabs/probe":"^0.6.0-rc255","@types/commander":"^2.12.0","@types/uuid":"^10.0.0","acorn":"^8.16.0","acorn-walk":"^8.3.5","ajv":"^8.17.1","ajv-formats":"^3.0.1","better-sqlite3":"^11.0.0","blessed":"^0.1.81","cli-table3":"^0.6.5","commander":"^14.0.0","deepmerge":"^4.3.1","dotenv":"^17.2.3","ignore":"^7.0.5","js-yaml":"^4.1.0","jsonpath-plus":"^10.4.0","liquidjs":"^10.21.1","minimatch":"^10.2.2","node-cron":"^3.0.3","open":"^9.1.0","simple-git":"^3.28.0","uuid":"^11.1.0","ws":"^8.18.3"},"optionalDependencies":{"@anthropic/claude-code-sdk":"npm:null@*","@open-policy-agent/opa-wasm":"^1.10.0","@opentelemetry/api":"^1.9.0","@opentelemetry/core":"^1.30.1","@opentelemetry/exporter-trace-otlp-grpc":"^0.203.0","@opentelemetry/exporter-trace-otlp-http":"^0.203.0","@opentelemetry/instrumentation":"^0.203.0","@opentelemetry/resources":"^1.30.1","@opentelemetry/sdk-metrics":"^1.30.1","@opentelemetry/sdk-node":"^0.203.0","@opentelemetry/sdk-trace-base":"^1.30.1","@opentelemetry/semantic-conventions":"^1.30.1","knex":"^3.1.0","mysql2":"^3.11.0","pg":"^8.13.0","tedious":"^19.0.0"},"devDependencies":{"@eslint/js":"^9.34.0","@kie/act-js":"^2.6.2","@kie/mock-github":"^2.0.1","@swc/core":"^1.13.2","@swc/jest":"^0.2.37","@types/better-sqlite3":"^7.6.0","@types/blessed":"^0.1.27","@types/jest":"^30.0.0","@types/js-yaml":"^4.0.9","@types/node":"^24.3.0","@types/node-cron":"^3.0.11","@types/ws":"^8.18.1","@typescript-eslint/eslint-plugin":"^8.42.0","@typescript-eslint/parser":"^8.42.0","@vercel/ncc":"^0.38.4","eslint":"^9.34.0","eslint-config-prettier":"^10.1.8","eslint-plugin-prettier":"^5.5.4","husky":"^9.1.7","jest":"^30.1.3","lint-staged":"^16.1.6","prettier":"^3.6.2","reveal-md":"^6.1.2","ts-json-schema-generator":"^1.5.1","ts-node":"^10.9.2","tsup":"^8.5.0","typescript":"^5.9.2","wrangler":"^3.0.0"},"peerDependenciesMeta":{"@anthropic/claude-code-sdk":{"optional":true}},"directories":{"test":"tests"},"lint-staged":{"src/**/*.{ts,js}":["eslint --fix","prettier --write"],"tests/**/*.{ts,js}":["eslint --fix","prettier --write"],"*.{json,md,yml,yaml}":["prettier --write"]}}');
+module.exports = /*#__PURE__*/JSON.parse('{"name":"@probelabs/visor","version":"0.1.42","main":"dist/index.js","bin":{"visor":"./dist/index.js"},"exports":{".":{"require":"./dist/index.js","import":"./dist/index.js"},"./sdk":{"types":"./dist/sdk/sdk.d.ts","import":"./dist/sdk/sdk.mjs","require":"./dist/sdk/sdk.js"},"./cli":{"require":"./dist/index.js"}},"files":["dist/","defaults/","action.yml","README.md","LICENSE"],"publishConfig":{"access":"public","registry":"https://registry.npmjs.org/"},"scripts":{"build:cli":"ncc build src/index.ts -o dist && cp -r defaults dist/ && cp -r output dist/ && cp -r docs dist/ && cp -r examples dist/ && cp -r src/debug-visualizer/ui dist/debug-visualizer/ && node scripts/inject-version.js && echo \'#!/usr/bin/env node\' | cat - dist/index.js > temp && mv temp dist/index.js && chmod +x dist/index.js","build:sdk":"tsup src/sdk.ts --dts --sourcemap --format esm,cjs --out-dir dist/sdk","build":"./scripts/build-oss.sh","build:ee":"npm run build:cli && npm run build:sdk","test":"jest && npm run test:yaml","test:unit":"jest","prepublishOnly":"npm run build","test:watch":"jest --watch","test:coverage":"jest --coverage","test:ee":"jest --testPathPatterns=\'tests/ee\' --testPathIgnorePatterns=\'/node_modules/\' --no-coverage","test:manual:bash":"RUN_MANUAL_TESTS=true jest tests/manual/bash-config-manual.test.ts","lint":"eslint src tests --ext .ts","lint:fix":"eslint src tests --ext .ts --fix","format":"prettier --write src tests","format:check":"prettier --check src tests","clean":"","clean:traces":"node scripts/clean-traces.js","prebuild":"npm run clean && node scripts/generate-config-schema.js","pretest":"npm run clean:traces && node scripts/generate-config-schema.js && npm run build:cli","pretest:unit":"npm run clean:traces && node scripts/generate-config-schema.js && npm run build:cli","test:with-build":"npm run build:cli && jest","test:yaml":"node dist/index.js test --progress compact","test:yaml:parallel":"node dist/index.js test --progress compact --max-parallel 4","prepare":"husky","pre-commit":"lint-staged","deploy:site":"cd site && npx wrangler pages deploy . --project-name=visor-site --commit-dirty=true","deploy:worker":"npx wrangler deploy","deploy":"npm run deploy:site && npm run deploy:worker","publish:ee":"./scripts/publish-ee.sh","release":"./scripts/release.sh","release:patch":"./scripts/release.sh patch","release:minor":"./scripts/release.sh minor","release:major":"./scripts/release.sh major","release:prerelease":"./scripts/release.sh prerelease","docs:validate":"node scripts/validate-readme-links.js","workshop:setup":"npm install -D reveal-md@6.1.2","workshop:serve":"cd workshop && reveal-md slides.md -w","workshop:export":"reveal-md workshop/slides.md --static workshop/build","workshop:pdf":"reveal-md workshop/slides.md --print workshop/Visor-Workshop.pdf --print-size letter","workshop:pdf:ci":"reveal-md workshop/slides.md --print workshop/Visor-Workshop.pdf --print-size letter --puppeteer-launch-args=\\"--no-sandbox --disable-dev-shm-usage\\"","workshop:pdf:a4":"reveal-md workshop/slides.md --print workshop/Visor-Workshop-A4.pdf --print-size A4","workshop:build":"npm run workshop:export && npm run workshop:pdf","simulate:issue":"TS_NODE_TRANSPILE_ONLY=1 ts-node scripts/simulate-gh-run.ts --event issues --action opened --debug","simulate:comment":"TS_NODE_TRANSPILE_ONLY=1 ts-node scripts/simulate-gh-run.ts --event issue_comment --action created --debug"},"keywords":["code-review","ai","github-action","cli","pr-review","visor"],"author":"Probe Labs","license":"MIT","description":"AI workflow engine for code review, assistants, and automation — orchestrate checks, MCP tools, and AI providers with YAML-driven pipelines","repository":{"type":"git","url":"git+https://github.com/probelabs/visor.git"},"bugs":{"url":"https://github.com/probelabs/visor/issues"},"homepage":"https://github.com/probelabs/visor#readme","dependencies":{"@actions/core":"^1.11.1","@apidevtools/swagger-parser":"^12.1.0","@modelcontextprotocol/sdk":"^1.25.3","@nyariv/sandboxjs":"github:probelabs/SandboxJS#f1c13b8eee98734a8ea024061eada4aa9a9ff2e9","@octokit/action":"^8.0.2","@octokit/auth-app":"^8.1.0","@octokit/core":"^7.0.3","@octokit/rest":"^22.0.0","@probelabs/probe":"^0.6.0-rc257","@types/commander":"^2.12.0","@types/uuid":"^10.0.0","acorn":"^8.16.0","acorn-walk":"^8.3.5","ajv":"^8.17.1","ajv-formats":"^3.0.1","better-sqlite3":"^11.0.0","blessed":"^0.1.81","cli-table3":"^0.6.5","commander":"^14.0.0","deepmerge":"^4.3.1","dotenv":"^17.2.3","ignore":"^7.0.5","js-yaml":"^4.1.0","jsonpath-plus":"^10.4.0","liquidjs":"^10.21.1","minimatch":"^10.2.2","node-cron":"^3.0.3","open":"^9.1.0","simple-git":"^3.28.0","uuid":"^11.1.0","ws":"^8.18.3"},"optionalDependencies":{"@anthropic/claude-code-sdk":"npm:null@*","@open-policy-agent/opa-wasm":"^1.10.0","@opentelemetry/api":"^1.9.0","@opentelemetry/core":"^1.30.1","@opentelemetry/exporter-trace-otlp-grpc":"^0.203.0","@opentelemetry/exporter-trace-otlp-http":"^0.203.0","@opentelemetry/instrumentation":"^0.203.0","@opentelemetry/resources":"^1.30.1","@opentelemetry/sdk-metrics":"^1.30.1","@opentelemetry/sdk-node":"^0.203.0","@opentelemetry/sdk-trace-base":"^1.30.1","@opentelemetry/semantic-conventions":"^1.30.1","knex":"^3.1.0","mysql2":"^3.11.0","pg":"^8.13.0","tedious":"^19.0.0"},"devDependencies":{"@eslint/js":"^9.34.0","@kie/act-js":"^2.6.2","@kie/mock-github":"^2.0.1","@swc/core":"^1.13.2","@swc/jest":"^0.2.37","@types/better-sqlite3":"^7.6.0","@types/blessed":"^0.1.27","@types/jest":"^30.0.0","@types/js-yaml":"^4.0.9","@types/node":"^24.3.0","@types/node-cron":"^3.0.11","@types/ws":"^8.18.1","@typescript-eslint/eslint-plugin":"^8.42.0","@typescript-eslint/parser":"^8.42.0","@vercel/ncc":"^0.38.4","eslint":"^9.34.0","eslint-config-prettier":"^10.1.8","eslint-plugin-prettier":"^5.5.4","husky":"^9.1.7","jest":"^30.1.3","lint-staged":"^16.1.6","prettier":"^3.6.2","reveal-md":"^6.1.2","ts-json-schema-generator":"^1.5.1","ts-node":"^10.9.2","tsup":"^8.5.0","typescript":"^5.9.2","wrangler":"^3.0.0"},"peerDependenciesMeta":{"@anthropic/claude-code-sdk":{"optional":true}},"directories":{"test":"tests"},"lint-staged":{"src/**/*.{ts,js}":["eslint --fix","prettier --write"],"tests/**/*.{ts,js}":["eslint --fix","prettier --write"],"*.{json,md,yml,yaml}":["prettier --write"]}}');
 
 /***/ })