@pushary/agent-hooks 0.11.1 → 0.13.0

package/data/cursor-plugin/skills/pushary/SKILL.md

@@ -0,0 +1,297 @@
+---
+name: pushary
+description: Push notifications and human-in-the-loop for AI coding agents. Send alerts when tasks finish, ask questions (yes/no, multiple choice, or free text) via push, and get answers from the user's lock screen. Use these tools proactively — do not wait for the user to ask for notifications. Works with Cursor, Claude Code, Windsurf, Hermes, and any MCP client.
+---
+
+# Pushary — Push Notifications for AI Agents
+
+Pushary is an MCP server that gives you three capabilities:
+
+1. **Send push notifications** to the user's phone or desktop when a task finishes or an error occurs.
+2. **Ask questions** via push — yes/no, multiple choice, or free text — and wait for the user's answer.
+3. **Send rich context notifications** with file changes, error details, next steps, and embedded questions.
+
+Use these tools proactively. Do not wait for the user to ask for notifications.
+
+## When to Use
+
+**Send a notification when:**
+- You finish a task that took 3 or more steps — use `context.type = "task_complete"`
+- A build, test suite, or deployment fails — use `context.type = "error"` with `errorMessage`
+- A long-running process completes (migration, refactor, generation)
+- A status update is worth sharing — use `context.type = "info"`
+
+**Ask with type "confirm" when:**
+- You need confirmation before a destructive or irreversible action
+- Binary decision: proceed or abort
+
+**Ask with type "select" when:**
+- Multiple implementation approaches exist (2-6 options)
+- The user needs to pick from a known set
+
+**Ask with type "input" when:**
+- You need a name, path, value, or free-text decision
+- The options cannot be enumerated in advance
+
+**Do NOT notify when:**
+- The task is trivial or single-step
+- The question can be answered from context without user input
+- You already sent 3 notifications for the current task (unless the user explicitly asked for more)
+
+## Setup
+
+Run the CLI setup (recommended — configures MCP, hooks, permissions, and skill in one step):
+
+```bash
+npx @pushary/agent-hooks@latest setup
+```
+
+Or add Pushary manually to your MCP configuration:
+
+```json
+{
+  "mcpServers": {
+    "pushary": {
+      "type": "http",
+      "url": "https://pushary.com/api/mcp/mcp",
+      "headers": {
+        "Authorization": "Bearer YOUR_API_KEY"
+      }
+    }
+  }
+}
+```
+
+Sign up at https://pushary.com/sign-up?from=ai-coding to get your API key.
+
+After setup, verify with:
+
+```bash
+npx @pushary/agent-hooks@latest doctor
+```
+
+## Tools
+
+### send_notification
+
+Send a one-way push notification to the user. Optionally include structured context for a rich detail page.
+
+**Parameters:**
+
+| Name | Type | Required | Description |
+|------|------|----------|-------------|
+| title | string | Yes | Notification title (max 100 chars, aim for under 60) |
+| body | string | Yes | Notification body (max 500 chars, aim for under 200) |
+| url | string | No | URL opened when tapped. Ignored if context is provided. |
+| agentName | string | No | Identifies which agent sent this (e.g., "Claude Code - myproject") |
+| iconUrl | string | No | Custom notification icon URL |
+| imageUrl | string | No | Large image shown in the notification |
+| subscriberIds | string[] | No | Target specific subscriber IDs |
+| externalIds | string[] | No | Target by external IDs |
+| tags | string[] | No | Target by subscriber tags |
+| context | object | No | Structured context for a rich detail page (see below) |
+
+**Context object:**
+
+| Name | Type | Description |
+|------|------|-------------|
+| type | "task_complete" / "error" / "info" | The kind of notification |
+| summary | string | Short summary of what happened |
+| details | string[] | Bullet-point details |
+| filesChanged | string[] | List of files that were changed |
+| errorMessage | string | Error message (for error type) |
+| errorFile | string | File path where the error occurred |
+| nextSteps | string | Suggested next steps for the user |
+| askQuestion | object | Embed a decision prompt in the notification (see below) |
+
+**Embedded askQuestion:**
+
+| Name | Type | Description |
+|------|------|-------------|
+| question | string | A follow-up question shown below the context |
+| type | "confirm" / "select" / "input" | Question type (default: confirm) |
+| options | string[] | Options for select type (2-6 items) |
+
+When `askQuestion` is provided, the response includes a `linkedCorrelationId` you pass to `wait_for_answer`.
+
+**Example — task completed with context:**
+
+```json
+{
+  "title": "Refactoring complete",
+  "body": "Extracted 3 shared components across 12 files",
+  "agentName": "Claude Code - pushary repo",
+  "context": {
+    "type": "task_complete",
+    "summary": "Extracted shared Button, Modal, and Card components from 12 files",
+    "filesChanged": ["src/components/Button.tsx", "src/components/Modal.tsx", "src/components/Card.tsx"],
+    "nextSteps": "Run the test suite to verify no regressions"
+  }
+}
+```
+
+**Example — error with embedded question:**
+
+```json
+{
+  "title": "Build failed",
+  "body": "TypeScript error in auth.ts:42",
+  "agentName": "Claude Code - api-server",
+  "context": {
+    "type": "error",
+    "errorMessage": "Type 'string' is not assignable to type 'AuthToken'",
+    "errorFile": "src/auth.ts:42",
+    "summary": "The auth token type changed upstream and this file needs updating",
+    "askQuestion": {
+      "question": "Should I update the type or revert the upstream change?",
+      "type": "select",
+      "options": ["Update the type in auth.ts", "Revert the upstream change", "Skip for now"]
+    }
+  }
+}
+```
+
+### ask_user
+
+Send a question to the user via push notification and wait for their answer. By default, this tool **blocks** until the user responds or the timeout is reached — no need to call `wait_for_answer` separately.
+
+**Parameters:**
+
+| Name | Type | Required | Description |
+|------|------|----------|-------------|
+| question | string | Yes | The question to ask (max 500 chars) |
+| type | "confirm" / "select" / "input" | No | Question type (default: confirm) |
+| options | string[] | No | Choices for select type (2-6 options). Required when type is select. |
+| placeholder | string | No | Placeholder text for input type (max 200 chars) |
+| context | string | No | What the agent is working on, shown above the question (max 500 chars) |
+| wait | boolean | No | Wait for the answer before returning (default: true). Set false for manual polling. |
+| timeoutMs | integer | No | Max wait time in ms (max 55000). Uses site policy if omitted. |
+| agentName | string | No | Identifies which agent is asking. Format: "{Agent} - {project}" (e.g., "Claude Code - myproject") |
+| callbackUrl | string | No | Webhook URL to POST the answer to when the user responds |
+| subscriberIds | string[] | No | Target specific subscriber IDs |
+| externalIds | string[] | No | Target by external IDs |
+| tags | string[] | No | Target by subscriber tags |
+
+**Returns (when wait=true, default):**
+- `{ "answered": true, "value": "yes", "correlationId": "uuid" }` — user responded
+- `{ "answered": false, "timedOut": true, "correlationId": "uuid" }` — timeout reached
+
+**Returns (when wait=false):**
+- `{ "correlationId": "uuid", "status": "pending", "expiresInSeconds": 600 }` — use `wait_for_answer` to poll
+
+**Example — confirm (yes/no):**
+
+```json
+{
+  "question": "Delete the 3 unused migration files?",
+  "type": "confirm",
+  "context": "Cleaning up old database migrations in db/migrate/",
+  "agentName": "Claude Code - myproject"
+}
+```
+
+**Example — select (multiple choice):**
+
+```json
+{
+  "question": "Which auth strategy should I use?",
+  "type": "select",
+  "options": ["JWT tokens", "Session cookies", "OAuth2 + PKCE"],
+  "context": "Setting up authentication for the new API endpoints",
+  "agentName": "Claude Code - api-server"
+}
+```
+
+**Example — input (free text):**
+
+```json
+{
+  "question": "What should the new API endpoint path be?",
+  "type": "input",
+  "placeholder": "/api/v2/...",
+  "context": "Creating a new REST endpoint for user preferences",
+  "agentName": "Cursor - frontend"
+}
+```
+
+### wait_for_answer
+
+Poll for the user's response to a question sent via `ask_user` with `wait: false`. Not needed when using the default blocking mode.
+
+**Parameters:**
+
+| Name | Type | Required | Description |
+|------|------|----------|-------------|
+| correlationId | string (uuid) | Yes | The correlationId from ask_user |
+| timeoutMs | integer | No | How long to wait (default 30000, max 55000) |
+
+**Returns:**
+- `{ "answered": true, "value": "yes" }` — user responded
+- `{ "answered": false }` — timeout reached, no answer yet
+
+### cancel_question
+
+Cancel a pending question so it can no longer be answered. Use when the question becomes irrelevant (e.g., you found the answer another way or the user responded in chat).
+
+**Parameters:**
+
+| Name | Type | Required | Description |
+|------|------|----------|-------------|
+| correlationId | string (uuid) | Yes | The correlationId of the question to cancel |
+
+## Permission Gating (REQUIRED)
+
+Before executing any of the following, you MUST call `ask_user` with type "confirm" and wait for approval. Do NOT proceed without an explicit "yes" from the user:
+
+- File deletion (`rm`, `unlink`, any destructive file operation)
+- Database mutations (`DROP`, `DELETE`, `TRUNCATE`, migrations)
+- Deployment commands (`deploy`, `push`, `publish`, `release`)
+- System administration (`systemctl`, `service`, package install/remove)
+- Git operations that rewrite history (`reset --hard`, `push --force`, `rebase`)
+- Network configuration changes (firewall, DNS, proxy)
+- Any command the user has flagged as dangerous
+
+If `ask_user` returns `answered: false`, do NOT execute the command. Send a notification that the operation was skipped due to no response.
+
+This is not optional. Treat it as a hard constraint, not a suggestion.
+
+## Human-in-the-Loop Flow
+
+One tool call — `ask_user` blocks and returns the answer:
+
+```
+result = ask_user({
+  question: "Which auth strategy should I use?",
+  type: "select",
+  options: ["JWT tokens", "Session cookies", "OAuth2 + PKCE"],
+  context: "Setting up authentication for the new API",
+  agentName: "Claude Code - myproject"
+})
+
+if result.answered:
+    // result.value = "JWT tokens" — proceed with the chosen approach
+else:
+    // user did not respond — pick the safe default or notify and skip
+```
+
+If the user answers in chat before the push response arrives, continue normally and call `cancel_question` with the `correlationId` to clean up.
+
+## Identifying Your Agent
+
+Always pass `agentName` when you are one of multiple possible agents the user may be running. The user sees this in the notification title to know which agent is asking.
+
+**Format:** `{Agent Type} - {project or context}`
+
+**Examples:**
+- `"Claude Code - pushary repo"`
+- `"Hermes - daily-briefing"`
+- `"Cursor - frontend refactor"`
+
+## Notification Etiquette
+
+- **Titles under 60 characters.** They get truncated on phone lock screens.
+- **Bodies under 200 characters.** Concise summaries, not full explanations.
+- **Max 3 notifications per task** unless the user explicitly requests more.
+- **Use context for detail.** Put file lists, error traces, and next steps in the context object — not the notification body.
+- **Write questions as if talking to a busy person.** The user is on their phone, possibly away from their computer. Be specific: "Delete the 3 unused migration files?" is better than "Should I clean up?"
+- **Pick the right question type.** Use confirm for binary decisions, select when options are known, input when they are not.

package/dist/bin/pushary-clean.js

@@ -2,7 +2,7 @@
 import {
   removeClaudeMcpServers,
   removePusharySettings
-} from "../chunk-5GFUI5N6.js";
+} from "../chunk-5MA3CPZB.js";
 import {
   execNpm
 } from "../chunk-RSHN2AQ7.js";
@@ -24,6 +24,7 @@ var CLAUDE_SETTINGS_LOCAL = join(homedir(), ".claude", "settings.local.json");
 var CLAUDE_JSON = join(homedir(), ".claude.json");
 var SKILL_DIR = join(homedir(), ".claude", "skills", "pushary");
 var CURSOR_MCP = join(".cursor", "mcp.json");
+var CURSOR_PLUGIN_DIR = join(homedir(), ".cursor", "plugins", "local", "pushary");
 var SHELL_FILES = [".zshrc", ".zprofile", ".bashrc", ".bash_profile"].map((f) => join(homedir(), f));
 var readJson = (path) => {
   try {
@@ -86,6 +87,12 @@ var main = async () => {
   } else {
     console.log(`  ${skip} Cursor MCP config ${dim("(not found)")}`);
   }
+  if (existsSync(CURSOR_PLUGIN_DIR)) {
+    rmSync(CURSOR_PLUGIN_DIR, { recursive: true });
+    console.log(`  ${check} Cursor plugin ${dim("(removed from ~/.cursor/plugins/local)")}`);
+  } else {
+    console.log(`  ${skip} Cursor plugin ${dim("(not installed)")}`);
+  }
   if (existsSync(SKILL_DIR)) {
     rmSync(SKILL_DIR, { recursive: true });
     console.log(`  ${check} Skill directory ${dim("(removed)")}`);

package/dist/bin/pushary-codex.js

@@ -1,16 +1,17 @@
 #!/usr/bin/env node
 import {
   reportEvent
-} from "../chunk-AB4KX4XT.js";
+} from "../chunk-WCGKLHCL.js";
 import {
   askUser,
   getMachineId,
   waitForAnswer
-} from "../chunk-OF5WIOYS.js";
+} from "../chunk-CH53PBQN.js";
 import "../chunk-3MIR7ODJ.js";
 import {
   getApiKey
 } from "../chunk-VUNL35KE.js";
+import "../chunk-22CV7V7A.js";
 
 // bin/pushary-codex.ts
 import { basename } from "path";

package/dist/bin/pushary-doctor.js

@@ -1,12 +1,12 @@
 #!/usr/bin/env node
-import {
-  execNpm
-} from "../chunk-RSHN2AQ7.js";
 import {
   callMcpTool,
   sendMcpRequest
 } from "../chunk-3MIR7ODJ.js";
 import "../chunk-VUNL35KE.js";
+import {
+  execNpm
+} from "../chunk-RSHN2AQ7.js";
 
 // bin/pushary-doctor.ts
 import { existsSync, readFileSync } from "fs";
@@ -103,9 +103,11 @@ var main = async () => {
     const hasPreHook = JSON.stringify(hooks?.PreToolUse ?? []).includes("pushary-hook");
     const hasPostHook = JSON.stringify(hooks?.PostToolUse ?? []).includes("pushary-post-hook");
     const hasStopHook = JSON.stringify(hooks?.Stop ?? []).includes("pushary-stop-hook");
+    const hasPromptHook = JSON.stringify(hooks?.UserPromptSubmit ?? []).includes("pushary-prompt-hook");
     check(hasPreHook, "Claude Code: PreToolUse hook");
     check(hasPostHook, "Claude Code: PostToolUse hook");
     check(hasStopHook, "Claude Code: Stop hook");
+    check(hasPromptHook, "Claude Code: UserPromptSubmit hook", hasPromptHook ? void 0 : "missing, re-run setup to register it");
     const preHookCommand = extractHookCommand(hooks?.PreToolUse, "pushary-hook");
     if (preHookCommand) {
       const resolves = commandResolves(preHookCommand);

package/dist/bin/pushary-hook.js

@@ -1,11 +1,11 @@
 #!/usr/bin/env node
 import {
   handlePreToolUse
-} from "../chunk-W5KRWUNE.js";
-import "../chunk-IBWCHA5M.js";
-import "../chunk-OF5WIOYS.js";
+} from "../chunk-RNWPCELY.js";
+import "../chunk-CH53PBQN.js";
 import "../chunk-3MIR7ODJ.js";
 import "../chunk-VUNL35KE.js";
+import "../chunk-22CV7V7A.js";
 
 // bin/pushary-hook.ts
 var main = async () => {

package/dist/bin/pushary-post-hook.js

@@ -1,10 +1,11 @@
 #!/usr/bin/env node
 import {
   handlePostToolUse
-} from "../chunk-AB4KX4XT.js";
-import "../chunk-OF5WIOYS.js";
+} from "../chunk-WCGKLHCL.js";
+import "../chunk-CH53PBQN.js";
 import "../chunk-3MIR7ODJ.js";
 import "../chunk-VUNL35KE.js";
+import "../chunk-22CV7V7A.js";
 
 // bin/pushary-post-hook.ts
 var main = async () => {

package/dist/bin/pushary-prompt-hook.d.ts

@@ -0,0 +1 @@
+#!/usr/bin/env node

package/dist/bin/pushary-prompt-hook.js

@@ -0,0 +1,25 @@
+#!/usr/bin/env node
+import {
+  handleUserPrompt
+} from "../chunk-WCGKLHCL.js";
+import "../chunk-CH53PBQN.js";
+import "../chunk-3MIR7ODJ.js";
+import "../chunk-VUNL35KE.js";
+import "../chunk-22CV7V7A.js";
+
+// bin/pushary-prompt-hook.ts
+var main = async () => {
+  let rawInput = "";
+  for await (const chunk of process.stdin) {
+    rawInput += chunk;
+  }
+  if (!rawInput.trim()) {
+    process.exit(0);
+  }
+  try {
+    const input = JSON.parse(rawInput);
+    await handleUserPrompt(input);
+  } catch {
+  }
+};
+main();

package/dist/bin/pushary-setup.js

@@ -3,18 +3,18 @@ import {
   addClaudeMcpServer,
   addPusharyHooks,
   addPusharyToolPermissions
-} from "../chunk-5GFUI5N6.js";
+} from "../chunk-5MA3CPZB.js";
 import {
   execNpm,
   npmErrorMessage
 } from "../chunk-RSHN2AQ7.js";
 import {
   isValidApiKey
-} from "../chunk-IBWCHA5M.js";
+} from "../chunk-22CV7V7A.js";
 
 // bin/pushary-setup.ts
-import { existsSync, readFileSync, writeFileSync, appendFileSync, mkdirSync } from "fs";
-import { join, dirname } from "path";
+import { existsSync, readFileSync, writeFileSync, appendFileSync, mkdirSync, cpSync, rmSync } from "fs";
+import { join, dirname, basename } from "path";
 import { homedir } from "os";
 import { execSync } from "child_process";
 import { checkbox, input, confirm } from "@inquirer/prompts";
@@ -176,8 +176,7 @@ var printConnectInstructions = async (apiKey) => {
 // bin/pushary-setup.ts
 var CLAUDE_SETTINGS = join(homedir(), ".claude", "settings.json");
 var CLAUDE_JSON = join(homedir(), ".claude.json");
-var CURSOR_MCP = join(".cursor", "mcp.json");
-var CURSOR_RULES_DIR = join(".cursor", "rules");
+var CURSOR_PLUGIN_DIR = join(homedir(), ".cursor", "plugins", "local", "pushary");
 var CLAUDE_SKILL_DIR = join(homedir(), ".claude", "skills", "pushary");
 var CODEX_SKILL_DIR = join(homedir(), ".codex", "skills", "pushary");
 var SHELL_FILES = [".zshrc", ".zprofile", ".bashrc", ".bash_profile"].map((f) => join(homedir(), f));
@@ -297,19 +296,6 @@ var installSkillToDir = async (dir, label) => {
     writeFileSync(join(dir, "SKILL.md"), content, "utf-8");
   });
 };
-var installCursorRule = async () => {
-  await spinner("Installing Pushary rules", async () => {
-    const content = await fetchSkillContent();
-    const body = content.replace(/^---[\s\S]*?---\n*/m, "");
-    const mdc = `---
-alwaysApply: true
----
-
-${body}`;
-    if (!existsSync(CURSOR_RULES_DIR)) mkdirSync(CURSOR_RULES_DIR, { recursive: true });
-    writeFileSync(join(CURSOR_RULES_DIR, "pushary.mdc"), mdc, "utf-8");
-  });
-};
 var setupClaudeCode = async (apiKey) => {
   console.log(`
   ${bold2("Setting up Claude Code")}
@@ -324,7 +310,7 @@ var setupClaudeCode = async (apiKey) => {
     addPusharyToolPermissions(settings);
   });
   await installGlobally();
-  await spinner("Adding hooks (PreToolUse, PostToolUse, Stop)", async () => {
+  await spinner("Adding hooks (PreToolUse, PostToolUse, UserPromptSubmit, Stop)", async () => {
     let binDir;
     try {
       binDir = join(execNpm("prefix -g --no-workspaces", { timeout: 5e3 }).toString().trim(), "bin");
@@ -469,22 +455,45 @@ var setupCodex = async (_apiKey) => {
   console.log(`  ${dim2("\u2022")} Auto-allowed tools: no permission prompts for Pushary MCP calls`);
   console.log(`  ${dim2("\u2022")} Notify handler: captures turn completions and approval requests`);
 };
+var resolveBundledPlugin = () => {
+  const dir = dirname(fileURLToPath(import.meta.url));
+  const candidates = [
+    join(dir, "..", "..", "data", "cursor-plugin"),
+    join(dir, "..", "data", "cursor-plugin"),
+    join(dir, "..", "..", "..", "cursor-plugin"),
+    join(dir, "..", "..", "cursor-plugin")
+  ];
+  return candidates.find((p) => existsSync(join(p, ".cursor-plugin", "plugin.json"))) ?? null;
+};
 var setupCursor = async (apiKey) => {
   console.log(`
   ${bold2("Setting up Cursor")}
 `);
-  await spinner("Adding MCP server to .cursor/mcp.json", async () => {
-    const config = readJson(CURSOR_MCP);
-    const mcpServers = config.mcpServers ?? {};
-    mcpServers.pushary = {
-      type: "http",
-      url: "https://pushary.com/api/mcp/mcp",
-      headers: { Authorization: `Bearer ${apiKey}` }
-    };
-    config.mcpServers = mcpServers;
-    writeJson(CURSOR_MCP, config);
+  const source = resolveBundledPlugin();
+  if (!source) throw new Error("bundled Cursor plugin not found in this package");
+  await spinner("Installing Pushary plugin", async () => {
+    rmSync(CURSOR_PLUGIN_DIR, { recursive: true, force: true });
+    cpSync(source, CURSOR_PLUGIN_DIR, {
+      recursive: true,
+      filter: (p) => !["tools", "node_modules", ".git", ".DS_Store"].includes(basename(p))
+    });
+  });
+  await spinner("Linking your API key", async () => {
+    const mcpPath = join(CURSOR_PLUGIN_DIR, "mcp.json");
+    const mcp = readJson(mcpPath);
+    const servers = mcp.mcpServers ?? {};
+    if (servers.pushary) {
+      servers.pushary.headers = { ...servers.pushary.headers, Authorization: `Bearer ${apiKey}` };
+      mcp.mcpServers = servers;
+      writeJson(mcpPath, mcp);
+    }
   });
-  await installCursorRule();
+  console.log();
+  console.log(`  ${dim2("What this configured:")}`);
+  console.log(`  ${dim2("\u2022")} Plugin installed to ~/.cursor/plugins/local/pushary`);
+  console.log(`  ${dim2("\u2022")} MCP tools, the always-on rule, the skill, and the permission gate`);
+  console.log(`  ${dim2("\u2022")} Risky shell commands route to push approval before they run`);
+  console.log(`  ${dim2("\u2022")} Restart Cursor (or run Developer: Reload Window) to load it`);
 };
 var saveApiKey = async (apiKey) => {
   await spinner("Saving API key to shell profile", async () => {

package/dist/bin/pushary-stop-hook.js

@@ -1,10 +1,11 @@
 #!/usr/bin/env node
 import {
   handleStop
-} from "../chunk-AB4KX4XT.js";
-import "../chunk-OF5WIOYS.js";
+} from "../chunk-WCGKLHCL.js";
+import "../chunk-CH53PBQN.js";
 import "../chunk-3MIR7ODJ.js";
 import "../chunk-VUNL35KE.js";
+import "../chunk-22CV7V7A.js";
 
 // bin/pushary-stop-hook.ts
 var main = async () => {

package/dist/chunk-22CV7V7A.js

@@ -0,0 +1,38 @@
+// ../contracts/src/index.ts
+var APPROVAL_MODES = ["push_only", "terminal_only", "push_first", "notify_only"];
+var isApprovalMode = (value) => typeof value === "string" && APPROVAL_MODES.includes(value);
+var MATCH_RANKS = ["none", "tool", "prefix", "exact"];
+var matchRankWeight = (rank) => MATCH_RANKS.indexOf(rank);
+var matchToolPattern = (pattern, toolName, arg) => {
+  const open = pattern.indexOf("(");
+  if (open === -1 || !pattern.endsWith(")")) {
+    return pattern === toolName ? "tool" : "none";
+  }
+  if (pattern.slice(0, open) !== toolName || arg === void 0) return "none";
+  const inner = pattern.slice(open + 1, -1);
+  if (inner.endsWith(":*")) {
+    return arg.startsWith(inner.slice(0, -2)) ? "prefix" : "none";
+  }
+  return arg === inner ? "exact" : "none";
+};
+var POLICY_ARG_KEYS = {
+  Bash: "command",
+  Edit: "file_path",
+  Write: "file_path"
+};
+var extractPolicyArg = (toolName, toolInput) => {
+  const key = POLICY_ARG_KEYS[toolName];
+  if (!key) return void 0;
+  const value = toolInput[key];
+  return typeof value === "string" ? value : void 0;
+};
+var API_KEY_PATTERN = /^pk_[a-f0-9]+\.[a-f0-9]+$/;
+var isValidApiKey = (value) => API_KEY_PATTERN.test(value);
+
+export {
+  isApprovalMode,
+  matchRankWeight,
+  matchToolPattern,
+  extractPolicyArg,
+  isValidApiKey
+};