npm - @renseiai/agentfactory - Versions diffs - 0.8.19 → 0.8.21 - Mend

@renseiai/agentfactory 0.8.19 → 0.8.21

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (87) hide show

package/dist/src/config/repository-config.d.ts +7 -0
package/dist/src/config/repository-config.d.ts.map +1 -1
package/dist/src/config/repository-config.js +15 -1
package/dist/src/config/repository-config.test.js +1 -1
package/dist/src/governor/decision-engine-adapter.js +5 -10
package/dist/src/governor/decision-engine-adapter.test.js +13 -14
package/dist/src/governor/decision-engine.js +3 -7
package/dist/src/governor/decision-engine.test.js +5 -5
package/dist/src/index.d.ts +1 -0
package/dist/src/index.d.ts.map +1 -1
package/dist/src/index.js +1 -0
package/dist/src/merge-queue/adapters/local.d.ts +68 -0
package/dist/src/merge-queue/adapters/local.d.ts.map +1 -0
package/dist/src/merge-queue/adapters/local.js +136 -0
package/dist/src/merge-queue/adapters/local.test.d.ts +2 -0
package/dist/src/merge-queue/adapters/local.test.d.ts.map +1 -0
package/dist/src/merge-queue/adapters/local.test.js +176 -0
package/dist/src/merge-queue/index.d.ts +13 -5
package/dist/src/merge-queue/index.d.ts.map +1 -1
package/dist/src/merge-queue/index.js +13 -6
package/dist/src/merge-queue/merge-queue.integration.test.js +19 -0
package/dist/src/merge-queue/merge-worker.d.ts.map +1 -1
package/dist/src/merge-queue/merge-worker.js +29 -0
package/dist/src/merge-queue/types.d.ts +1 -1
package/dist/src/merge-queue/types.d.ts.map +1 -1
package/dist/src/orchestrator/index.d.ts +4 -0
package/dist/src/orchestrator/index.d.ts.map +1 -1
package/dist/src/orchestrator/index.js +3 -0
package/dist/src/orchestrator/orchestrator.d.ts +31 -0
package/dist/src/orchestrator/orchestrator.d.ts.map +1 -1
package/dist/src/orchestrator/orchestrator.js +263 -11
package/dist/src/orchestrator/parse-work-result.d.ts.map +1 -1
package/dist/src/orchestrator/parse-work-result.js +3 -1
package/dist/src/orchestrator/parse-work-result.test.js +6 -0
package/dist/src/orchestrator/quality-baseline.d.ts +83 -0
package/dist/src/orchestrator/quality-baseline.d.ts.map +1 -0
package/dist/src/orchestrator/quality-baseline.js +313 -0
package/dist/src/orchestrator/quality-baseline.test.d.ts +2 -0
package/dist/src/orchestrator/quality-baseline.test.d.ts.map +1 -0
package/dist/src/orchestrator/quality-baseline.test.js +448 -0
package/dist/src/orchestrator/quality-ratchet.d.ts +70 -0
package/dist/src/orchestrator/quality-ratchet.d.ts.map +1 -0
package/dist/src/orchestrator/quality-ratchet.js +162 -0
package/dist/src/orchestrator/quality-ratchet.test.d.ts +2 -0
package/dist/src/orchestrator/quality-ratchet.test.d.ts.map +1 -0
package/dist/src/orchestrator/quality-ratchet.test.js +335 -0
package/dist/src/orchestrator/types.d.ts +2 -0
package/dist/src/orchestrator/types.d.ts.map +1 -1
package/dist/src/providers/codex-app-server-provider.d.ts +37 -1
package/dist/src/providers/codex-app-server-provider.d.ts.map +1 -1
package/dist/src/providers/codex-app-server-provider.js +290 -35
package/dist/src/providers/codex-app-server-provider.test.js +72 -12
package/dist/src/providers/codex-approval-bridge.d.ts +49 -0
package/dist/src/providers/codex-approval-bridge.d.ts.map +1 -0
package/dist/src/providers/codex-approval-bridge.js +117 -0
package/dist/src/providers/codex-approval-bridge.test.d.ts +2 -0
package/dist/src/providers/codex-approval-bridge.test.d.ts.map +1 -0
package/dist/src/providers/codex-approval-bridge.test.js +188 -0
package/dist/src/providers/types.d.ts +25 -0
package/dist/src/providers/types.d.ts.map +1 -1
package/dist/src/routing/types.d.ts +1 -1
package/dist/src/templates/adapters.d.ts +25 -0
package/dist/src/templates/adapters.d.ts.map +1 -1
package/dist/src/templates/adapters.js +70 -0
package/dist/src/templates/adapters.test.js +49 -0
package/dist/src/templates/index.d.ts +1 -0
package/dist/src/templates/index.d.ts.map +1 -1
package/dist/src/templates/registry.d.ts +8 -0
package/dist/src/templates/registry.d.ts.map +1 -1
package/dist/src/templates/registry.js +11 -0
package/dist/src/templates/types.d.ts +22 -0
package/dist/src/templates/types.d.ts.map +1 -1
package/dist/src/templates/types.js +12 -0
package/dist/src/tools/index.d.ts +2 -0
package/dist/src/tools/index.d.ts.map +1 -1
package/dist/src/tools/index.js +1 -0
package/dist/src/tools/registry.d.ts +9 -1
package/dist/src/tools/registry.d.ts.map +1 -1
package/dist/src/tools/registry.js +13 -1
package/dist/src/tools/stdio-server-entry.d.ts +25 -0
package/dist/src/tools/stdio-server-entry.d.ts.map +1 -0
package/dist/src/tools/stdio-server-entry.js +205 -0
package/dist/src/tools/stdio-server.d.ts +87 -0
package/dist/src/tools/stdio-server.d.ts.map +1 -0
package/dist/src/tools/stdio-server.js +138 -0
package/dist/src/workflow/workflow-types.d.ts +3 -3
package/package.json +3 -2

package/dist/src/providers/codex-approval-bridge.js ADDED Viewed

@@ -0,0 +1,117 @@
+/**
+ * Codex Approval Bridge (SUP-1747)
+ *
+ * Evaluates Codex App Server `requestApproval` events against deny patterns
+ * ported from Claude's `autonomousCanUseTool` callback (claude-provider.ts:33-112).
+ *
+ * When the Codex App Server's `approvalPolicy` is set to `'onRequest'`, every
+ * tool execution flows through this bridge. The bridge auto-approves safe commands
+ * and declines destructive patterns — giving Codex the same safety guardrails as Claude
+ * without requiring human interaction.
+ *
+ * Architecture:
+ *   App Server emits → requestApproval notification
+ *   Approval Bridge evaluates → deny patterns + permission config
+ *   Bridge responds → accept | decline | acceptForSession
+ */
+/**
+ * Hardcoded safety deny patterns — always active regardless of template config.
+ * These mirror the deny-list in Claude's `autonomousCanUseTool` callback.
+ */
+export const SAFETY_DENY_PATTERNS = [
+    // 1. rm of filesystem root
+    { pattern: /rm\s+(-[a-z]*f[a-z]*\s+)?\/\s*$/, reason: 'rm of filesystem root blocked' },
+    // 2. worktree remove/prune — orchestrator manages worktree lifecycle
+    { pattern: /git\s+worktree\s+(remove|prune)/, reason: 'worktree remove/prune blocked per project rules' },
+    // 3. hard reset
+    { pattern: /git\s+reset\s+--hard/, reason: 'reset --hard blocked' },
+    // 4. force push (evaluated separately for --force-with-lease exception)
+    // Handled in evaluateCommandApproval directly
+    // 5. branch switching — agents must not change the checked-out branch
+    { pattern: /git\s+(checkout|switch)\b/, reason: 'git checkout/switch blocked — agents must not change the checked-out branch' },
+];
+// ---------------------------------------------------------------------------
+// Command Approval
+// ---------------------------------------------------------------------------
+/**
+ * Evaluate a shell command against safety deny patterns and optional
+ * template-level permission patterns.
+ *
+ * Evaluation order:
+ *   1. Safety deny patterns (always checked first, cannot be overridden)
+ *   2. Template deny patterns (from `tools.disallow`)
+ *   3. Template allow patterns (from `tools.allow`, if present)
+ *   4. Default: acceptForSession
+ */
+export function evaluateCommandApproval(command, permissionConfig) {
+    const cmd = command.trim();
+    if (!cmd)
+        return { action: 'acceptForSession' };
+    // --- Safety deny patterns (always enforced) ---
+    // Check basic deny patterns
+    for (const { pattern, reason } of SAFETY_DENY_PATTERNS) {
+        if (pattern.test(cmd)) {
+            return { action: 'decline', reason };
+        }
+    }
+    // Force push — special handling for --force-with-lease exception
+    if (/git\s+push\b/.test(cmd) && /(--force\b|-f\b)/.test(cmd)) {
+        if (/--force-with-lease/.test(cmd)) {
+            // --force-with-lease to main/master is still blocked
+            if (/\b(main|master)\b/.test(cmd)) {
+                return { action: 'decline', reason: 'force push to main/master blocked' };
+            }
+            // --force-with-lease on feature branches is allowed
+            return { action: 'acceptForSession', reason: '--force-with-lease on feature branch allowed' };
+        }
+        return { action: 'decline', reason: 'force push blocked — use --force-with-lease for safety' };
+    }
+    // --- Template deny patterns (from tools.disallow) ---
+    if (permissionConfig?.deniedCommandPatterns) {
+        for (const { pattern, reason } of permissionConfig.deniedCommandPatterns) {
+            if (pattern.test(cmd)) {
+                return { action: 'decline', reason };
+            }
+        }
+    }
+    // --- Template allow patterns (from tools.allow) ---
+    // If allow patterns are defined, only matching commands are accepted.
+    // Commands that don't match any allow pattern are declined.
+    if (permissionConfig?.allowedCommandPatterns && permissionConfig.allowedCommandPatterns.length > 0) {
+        for (const pattern of permissionConfig.allowedCommandPatterns) {
+            if (pattern.test(cmd)) {
+                return { action: 'acceptForSession' };
+            }
+        }
+        return { action: 'decline', reason: 'command not in allowed list' };
+    }
+    // Default: accept for session (auto-approve for remainder of session)
+    return { action: 'acceptForSession' };
+}
+// ---------------------------------------------------------------------------
+// File Change Approval
+// ---------------------------------------------------------------------------
+/**
+ * Evaluate a file change (write/edit) against safety rules and optional
+ * template-level permissions.
+ */
+export function evaluateFileChangeApproval(filePath, cwd, permissionConfig) {
+    // Block writes outside worktree root
+    if (!filePath.startsWith(cwd)) {
+        return { action: 'decline', reason: 'file change outside worktree blocked' };
+    }
+    // Block .git directory modifications
+    if (/\/\.git(\/|$)/.test(filePath)) {
+        return { action: 'decline', reason: '.git directory modification blocked' };
+    }
+    // Template-level file permission restrictions
+    if (permissionConfig) {
+        if (!permissionConfig.allowFileEdits && filePath !== cwd) {
+            return { action: 'decline', reason: 'file edits blocked by template' };
+        }
+        if (!permissionConfig.allowFileWrites && filePath !== cwd) {
+            return { action: 'decline', reason: 'file writes blocked by template' };
+        }
+    }
+    return { action: 'acceptForSession' };
+}

package/dist/src/providers/codex-approval-bridge.test.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export {};
2	+ //# sourceMappingURL=codex-approval-bridge.test.d.ts.map

package/dist/src/providers/codex-approval-bridge.test.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"codex-approval-bridge.test.d.ts","sourceRoot":"","sources":["../../../src/providers/codex-approval-bridge.test.ts"],"names":[],"mappings":""}

package/dist/src/providers/codex-approval-bridge.test.js ADDED Viewed

@@ -0,0 +1,188 @@
+import { describe, it, expect } from 'vitest';
+import { evaluateCommandApproval, evaluateFileChangeApproval, SAFETY_DENY_PATTERNS, } from './codex-approval-bridge.js';
+// ---------------------------------------------------------------------------
+// evaluateCommandApproval — Safety Deny Patterns
+// ---------------------------------------------------------------------------
+describe('evaluateCommandApproval', () => {
+    describe('safety deny patterns (always enforced)', () => {
+        it('blocks rm of filesystem root', () => {
+            const result = evaluateCommandApproval('rm -rf / ');
+            expect(result.action).toBe('decline');
+            expect(result.reason).toContain('rm of filesystem root');
+        });
+        it('blocks rm -f /', () => {
+            const result = evaluateCommandApproval('rm -f / ');
+            expect(result.action).toBe('decline');
+        });
+        it('allows rm of normal directories', () => {
+            const result = evaluateCommandApproval('rm -rf /tmp/test');
+            expect(result.action).toBe('acceptForSession');
+        });
+        it('blocks git worktree remove', () => {
+            const result = evaluateCommandApproval('git worktree remove /path/to/worktree');
+            expect(result.action).toBe('decline');
+            expect(result.reason).toContain('worktree remove/prune');
+        });
+        it('blocks git worktree prune', () => {
+            const result = evaluateCommandApproval('git worktree prune');
+            expect(result.action).toBe('decline');
+            expect(result.reason).toContain('worktree remove/prune');
+        });
+        it('allows git worktree add', () => {
+            const result = evaluateCommandApproval('git worktree add /path/to/worktree');
+            expect(result.action).toBe('acceptForSession');
+        });
+        it('blocks git reset --hard', () => {
+            const result = evaluateCommandApproval('git reset --hard HEAD');
+            expect(result.action).toBe('decline');
+            expect(result.reason).toContain('reset --hard');
+        });
+        it('allows git reset --soft', () => {
+            const result = evaluateCommandApproval('git reset --soft HEAD~1');
+            expect(result.action).toBe('acceptForSession');
+        });
+        it('blocks git push --force', () => {
+            const result = evaluateCommandApproval('git push --force origin feature');
+            expect(result.action).toBe('decline');
+            expect(result.reason).toContain('force push blocked');
+        });
+        it('blocks git push -f', () => {
+            const result = evaluateCommandApproval('git push -f origin feature');
+            expect(result.action).toBe('decline');
+        });
+        it('allows --force-with-lease on feature branches', () => {
+            const result = evaluateCommandApproval('git push --force-with-lease origin feature-branch');
+            expect(result.action).toBe('acceptForSession');
+        });
+        it('blocks --force-with-lease on main', () => {
+            const result = evaluateCommandApproval('git push --force-with-lease origin main');
+            expect(result.action).toBe('decline');
+            expect(result.reason).toContain('main/master');
+        });
+        it('blocks --force-with-lease on master', () => {
+            const result = evaluateCommandApproval('git push --force-with-lease origin master');
+            expect(result.action).toBe('decline');
+        });
+        it('blocks git checkout', () => {
+            const result = evaluateCommandApproval('git checkout main');
+            expect(result.action).toBe('decline');
+            expect(result.reason).toContain('checkout/switch blocked');
+        });
+        it('blocks git switch', () => {
+            const result = evaluateCommandApproval('git switch develop');
+            expect(result.action).toBe('decline');
+            expect(result.reason).toContain('checkout/switch blocked');
+        });
+    });
+    describe('safe commands (default accept)', () => {
+        it('accepts empty command', () => {
+            const result = evaluateCommandApproval('');
+            expect(result.action).toBe('acceptForSession');
+        });
+        it('accepts pnpm install', () => {
+            const result = evaluateCommandApproval('pnpm install');
+            expect(result.action).toBe('acceptForSession');
+        });
+        it('accepts git commit', () => {
+            const result = evaluateCommandApproval('git commit -m "fix: something"');
+            expect(result.action).toBe('acceptForSession');
+        });
+        it('accepts git push (no force)', () => {
+            const result = evaluateCommandApproval('git push origin feature-branch');
+            expect(result.action).toBe('acceptForSession');
+        });
+        it('accepts ls, cat, grep', () => {
+            expect(evaluateCommandApproval('ls -la').action).toBe('acceptForSession');
+            expect(evaluateCommandApproval('cat file.txt').action).toBe('acceptForSession');
+            expect(evaluateCommandApproval('grep -r pattern .').action).toBe('acceptForSession');
+        });
+    });
+    describe('template permission patterns', () => {
+        const permissionConfig = {
+            allowedCommandPatterns: [/^pnpm\b/, /^git\s+commit\b/, /^git\s+push\b/],
+            deniedCommandPatterns: [
+                { pattern: /^npm\b/, reason: 'npm blocked by template' },
+            ],
+            allowFileEdits: true,
+            allowFileWrites: true,
+        };
+        it('declines commands matching template deny patterns', () => {
+            const result = evaluateCommandApproval('npm install', permissionConfig);
+            expect(result.action).toBe('decline');
+            expect(result.reason).toContain('npm blocked by template');
+        });
+        it('accepts commands matching template allow patterns', () => {
+            const result = evaluateCommandApproval('pnpm install', permissionConfig);
+            expect(result.action).toBe('acceptForSession');
+        });
+        it('declines commands not in allow list when allow patterns are defined', () => {
+            const result = evaluateCommandApproval('cargo build', permissionConfig);
+            expect(result.action).toBe('decline');
+            expect(result.reason).toContain('not in allowed list');
+        });
+        it('safety patterns take precedence over template allow patterns', () => {
+            // git checkout is allowed by template (matches git push pattern? no)
+            // but blocked by safety
+            const result = evaluateCommandApproval('git checkout main', permissionConfig);
+            expect(result.action).toBe('decline');
+            expect(result.reason).toContain('checkout/switch blocked');
+        });
+    });
+    it('has the expected number of safety deny patterns', () => {
+        // 4 patterns in the array + force push handled separately = 5 total deny cases
+        expect(SAFETY_DENY_PATTERNS.length).toBe(4);
+    });
+});
+// ---------------------------------------------------------------------------
+// evaluateFileChangeApproval
+// ---------------------------------------------------------------------------
+describe('evaluateFileChangeApproval', () => {
+    const cwd = '/home/user/worktree';
+    it('accepts file changes within worktree', () => {
+        const result = evaluateFileChangeApproval('/home/user/worktree/src/index.ts', cwd);
+        expect(result.action).toBe('acceptForSession');
+    });
+    it('blocks file changes outside worktree', () => {
+        const result = evaluateFileChangeApproval('/etc/passwd', cwd);
+        expect(result.action).toBe('decline');
+        expect(result.reason).toContain('outside worktree');
+    });
+    it('blocks .git directory modifications', () => {
+        const result = evaluateFileChangeApproval('/home/user/worktree/.git/config', cwd);
+        expect(result.action).toBe('decline');
+        expect(result.reason).toContain('.git directory');
+    });
+    it('blocks .git file at root', () => {
+        const result = evaluateFileChangeApproval('/home/user/worktree/.git', cwd);
+        expect(result.action).toBe('decline');
+        expect(result.reason).toContain('.git directory');
+    });
+    it('allows files with .git in the name but not .git directory', () => {
+        const result = evaluateFileChangeApproval('/home/user/worktree/.gitignore', cwd);
+        expect(result.action).toBe('acceptForSession');
+    });
+    describe('template permission restrictions', () => {
+        it('blocks file edits when template disallows', () => {
+            const config = {
+                allowedCommandPatterns: [],
+                deniedCommandPatterns: [],
+                allowFileEdits: false,
+                allowFileWrites: true,
+            };
+            const result = evaluateFileChangeApproval('/home/user/worktree/src/index.ts', cwd, config);
+            expect(result.action).toBe('decline');
+            expect(result.reason).toContain('file edits blocked');
+        });
+        it('blocks file writes when template disallows', () => {
+            const config = {
+                allowedCommandPatterns: [],
+                deniedCommandPatterns: [],
+                allowFileEdits: true,
+                allowFileWrites: false,
+            };
+            const result = evaluateFileChangeApproval('/home/user/worktree/src/index.ts', cwd, config);
+            expect(result.action).toBe('decline');
+            expect(result.reason).toContain('file writes blocked');
+        });
+    });
+});

package/dist/src/providers/types.d.ts CHANGED Viewed

@@ -88,6 +88,31 @@ export interface AgentSpawnConfig {
      * When omitted, the provider's default applies.
      */
     maxTurns?: number;
+    /**
+     * Stdio MCP server configurations for Codex provider (SUP-1744).
+     * Created by ToolRegistry.createStdioServerConfigs() from registered plugins.
+     * Passed to Codex app-server via config/batchWrite so it can spawn and
+     * connect to these tool servers.
+     */
+    mcpStdioServers?: Array<{
+        name: string;
+        command: string;
+        args: string[];
+        env?: Record<string, string>;
+    }>;
+    /**
+     * Persistent system instructions for Codex App Server (SUP-1746).
+     * Passed via `instructions` on `thread/start`. Contains safety rules,
+     * project instructions (AGENTS.md), and work-type context.
+     * Separate from `prompt` which contains only the task-specific directive.
+     */
+    baseInstructions?: string;
+    /**
+     * Structured permission config for Codex approval bridge (SUP-1748).
+     * Translates template `tools.allow` / `tools.disallow` into patterns
+     * consumed by the approval bridge for runtime tool evaluation.
+     */
+    permissionConfig?: import('../templates/adapters.js').CodexPermissionConfig;
 }
 /**
  * Handle to a running agent session.

package/dist/src/providers/types.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/providers/types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,qCAAqC;AACrC,MAAM,MAAM,iBAAiB,GAAG,QAAQ,GAAG,OAAO,GAAG,KAAK,GAAG,WAAW,GAAG,KAAK,CAAA;AAEhF;;;;;GAKG;AACH;;;;;;;;GAQG;AACH,MAAM,WAAW,yBAAyB;IACxC,sEAAsE;IACtE,wBAAwB,EAAE,OAAO,CAAA;IACjC,oDAAoD;IACpD,qBAAqB,EAAE,OAAO,CAAA;CAC/B;AAED,MAAM,WAAW,aAAa;IAC5B,0BAA0B;IAC1B,QAAQ,CAAC,IAAI,EAAE,iBAAiB,CAAA;IAEhC,yDAAyD;IACzD,QAAQ,CAAC,YAAY,EAAE,yBAAyB,CAAA;IAEhD,gCAAgC;IAChC,KAAK,CAAC,MAAM,EAAE,gBAAgB,GAAG,WAAW,CAAA;IAE5C,8CAA8C;IAC9C,MAAM,CAAC,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,gBAAgB,GAAG,WAAW,CAAA;CACjE;AAED;;;GAGG;AACH,MAAM,WAAW,gBAAgB;IAC/B,2CAA2C;IAC3C,MAAM,EAAE,MAAM,CAAA;IACd,sCAAsC;IACtC,GAAG,EAAE,MAAM,CAAA;IACX,yDAAyD;IACzD,GAAG,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;IAC3B,+CAA+C;IAC/C,eAAe,EAAE,eAAe,CAAA;IAChC,4DAA4D;IAC5D,UAAU,EAAE,OAAO,CAAA;IACnB,wDAAwD;IACxD,cAAc,EAAE,OAAO,CAAA;IACvB;;;;;OAKG;IACH,YAAY,CAAC,EAAE,MAAM,EAAE,CAAA;IACvB;;;OAGG;IACH,gBAAgB,CAAC,EAAE,CAAC,GAAG,EAAE,MAAM,GAAG,SAAS,KAAK,IAAI,CAAA;IACpD;;;OAGG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,gCAAgC,EAAE,eAAe,CAAC,CAAA;IACrF;;;OAGG;IACH,YAAY,CAAC,EAAE,MAAM,EAAE,CAAA;IACvB;;;;OAIG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAA;~~CAClB~~;AAED;;;GAGG;AACH,MAAM,WAAW,WAAW;IAC1B,uEAAuE;IACvE,SAAS,EAAE,MAAM,GAAG,IAAI,CAAA;IACxB,iDAAiD;IACjD,MAAM,EAAE,aAAa,CAAC,UAAU,CAAC,CAAA;IACjC;;;OAGG;IACH,aAAa,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAC1C;;OAEG;IACH,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,CAAA;CACtB;AAED;;;GAGG;AACH,MAAM,MAAM,UAAU,GAClB,cAAc,GACd,gBAAgB,GAChB,uBAAuB,GACvB,iBAAiB,GACjB,oBAAoB,GACpB,sBAAsB,GACtB,gBAAgB,GAChB,eAAe,CAAA;AAEnB,yDAAyD;AACzD,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAA;IACZ,SAAS,EAAE,MAAM,CAAA;IACjB,GAAG,EAAE,OAAO,CAAA;CACb;AAED,4DAA4D;AAC5D,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,QAAQ,CAAA;IACd,OAAO,EAAE,MAAM,CAAA;IACf,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,GAAG,EAAE,OAAO,CAAA;CACb;AAED,4BAA4B;AAC5B,MAAM,WAAW,uBAAuB;IACtC,IAAI,EAAE,gBAAgB,CAAA;IACtB,IAAI,EAAE,MAAM,CAAA;IACZ,GAAG,EAAE,OAAO,CAAA;CACb;AAED,+BAA+B;AAC/B,MAAM,WAAW,iBAAiB;IAChC,IAAI,EAAE,UAAU,CAAA;IAChB,QAAQ,EAAE,MAAM,CAAA;IAChB,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;IAC9B,YAAY,CAAC,EAAE,OAAO,2BAA2B,EAAE,YAAY,CAAA;IAC/D,GAAG,EAAE,OAAO,CAAA;CACb;AAED,4BAA4B;AAC5B,MAAM,WAAW,oBAAoB;IACnC,IAAI,EAAE,aAAa,CAAA;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,OAAO,EAAE,MAAM,CAAA;IACf,OAAO,EAAE,OAAO,CAAA;IAChB,GAAG,EAAE,OAAO,CAAA;CACb;AAED,qCAAqC;AACrC,MAAM,WAAW,sBAAsB;IACrC,IAAI,EAAE,eAAe,CAAA;IACrB,QAAQ,EAAE,MAAM,CAAA;IAChB,cAAc,EAAE,MAAM,CAAA;IACtB,GAAG,EAAE,OAAO,CAAA;CACb;AAED,wCAAwC;AACxC,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,QAAQ,CAAA;IACd,OAAO,EAAE,OAAO,CAAA;IAChB,2CAA2C;IAC3C,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,uCAAuC;IACvC,MAAM,CAAC,EAAE,MAAM,EAAE,CAAA;IACjB,0FAA0F;IAC1F,YAAY,CAAC,EAAE,MAAM,CAAA;IACrB,sBAAsB;IACtB,IAAI,CAAC,EAAE,aAAa,CAAA;IACpB,GAAG,EAAE,OAAO,CAAA;CACb;AAED,kBAAkB;AAClB,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,OAAO,CAAA;IACb,OAAO,EAAE,MAAM,CAAA;IACf,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,GAAG,EAAE,OAAO,CAAA;CACb;AAED,gCAAgC;AAChC,MAAM,WAAW,aAAa;IAC5B,WAAW,CAAC,EAAE,MAAM,CAAA;IACpB,YAAY,CAAC,EAAE,MAAM,CAAA;IACrB,YAAY,CAAC,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAA;CAClB"}
1	+ {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/providers/types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,qCAAqC;AACrC,MAAM,MAAM,iBAAiB,GAAG,QAAQ,GAAG,OAAO,GAAG,KAAK,GAAG,WAAW,GAAG,KAAK,CAAA;AAEhF;;;;;GAKG;AACH;;;;;;;;GAQG;AACH,MAAM,WAAW,yBAAyB;IACxC,sEAAsE;IACtE,wBAAwB,EAAE,OAAO,CAAA;IACjC,oDAAoD;IACpD,qBAAqB,EAAE,OAAO,CAAA;CAC/B;AAED,MAAM,WAAW,aAAa;IAC5B,0BAA0B;IAC1B,QAAQ,CAAC,IAAI,EAAE,iBAAiB,CAAA;IAEhC,yDAAyD;IACzD,QAAQ,CAAC,YAAY,EAAE,yBAAyB,CAAA;IAEhD,gCAAgC;IAChC,KAAK,CAAC,MAAM,EAAE,gBAAgB,GAAG,WAAW,CAAA;IAE5C,8CAA8C;IAC9C,MAAM,CAAC,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,gBAAgB,GAAG,WAAW,CAAA;CACjE;AAED;;;GAGG;AACH,MAAM,WAAW,gBAAgB;IAC/B,2CAA2C;IAC3C,MAAM,EAAE,MAAM,CAAA;IACd,sCAAsC;IACtC,GAAG,EAAE,MAAM,CAAA;IACX,yDAAyD;IACzD,GAAG,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;IAC3B,+CAA+C;IAC/C,eAAe,EAAE,eAAe,CAAA;IAChC,4DAA4D;IAC5D,UAAU,EAAE,OAAO,CAAA;IACnB,wDAAwD;IACxD,cAAc,EAAE,OAAO,CAAA;IACvB;;;;;OAKG;IACH,YAAY,CAAC,EAAE,MAAM,EAAE,CAAA;IACvB;;;OAGG;IACH,gBAAgB,CAAC,EAAE,CAAC,GAAG,EAAE,MAAM,GAAG,SAAS,KAAK,IAAI,CAAA;IACpD;;;OAGG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,gCAAgC,EAAE,eAAe,CAAC,CAAA;IACrF;;;OAGG;IACH,YAAY,CAAC,EAAE,MAAM,EAAE,CAAA;IACvB;;;;OAIG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB;;;;;OAKG;IACH,eAAe,CAAC,EAAE,KAAK,CAAC;QACtB,IAAI,EAAE,MAAM,CAAA;QACZ,OAAO,EAAE,MAAM,CAAA;QACf,IAAI,EAAE,MAAM,EAAE,CAAA;QACd,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;KAC7B,CAAC,CAAA;IACF;;;;;OAKG;IACH,gBAAgB,CAAC,EAAE,MAAM,CAAA;IACzB;;;;OAIG;IACH,gBAAgB,CAAC,EAAE,OAAO,0BAA0B,EAAE,qBAAqB,CAAA;CAC5E;AAED;;;GAGG;AACH,MAAM,WAAW,WAAW;IAC1B,uEAAuE;IACvE,SAAS,EAAE,MAAM,GAAG,IAAI,CAAA;IACxB,iDAAiD;IACjD,MAAM,EAAE,aAAa,CAAC,UAAU,CAAC,CAAA;IACjC;;;OAGG;IACH,aAAa,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAC1C;;OAEG;IACH,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,CAAA;CACtB;AAED;;;GAGG;AACH,MAAM,MAAM,UAAU,GAClB,cAAc,GACd,gBAAgB,GAChB,uBAAuB,GACvB,iBAAiB,GACjB,oBAAoB,GACpB,sBAAsB,GACtB,gBAAgB,GAChB,eAAe,CAAA;AAEnB,yDAAyD;AACzD,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAA;IACZ,SAAS,EAAE,MAAM,CAAA;IACjB,GAAG,EAAE,OAAO,CAAA;CACb;AAED,4DAA4D;AAC5D,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,QAAQ,CAAA;IACd,OAAO,EAAE,MAAM,CAAA;IACf,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,GAAG,EAAE,OAAO,CAAA;CACb;AAED,4BAA4B;AAC5B,MAAM,WAAW,uBAAuB;IACtC,IAAI,EAAE,gBAAgB,CAAA;IACtB,IAAI,EAAE,MAAM,CAAA;IACZ,GAAG,EAAE,OAAO,CAAA;CACb;AAED,+BAA+B;AAC/B,MAAM,WAAW,iBAAiB;IAChC,IAAI,EAAE,UAAU,CAAA;IAChB,QAAQ,EAAE,MAAM,CAAA;IAChB,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;IAC9B,YAAY,CAAC,EAAE,OAAO,2BAA2B,EAAE,YAAY,CAAA;IAC/D,GAAG,EAAE,OAAO,CAAA;CACb;AAED,4BAA4B;AAC5B,MAAM,WAAW,oBAAoB;IACnC,IAAI,EAAE,aAAa,CAAA;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,OAAO,EAAE,MAAM,CAAA;IACf,OAAO,EAAE,OAAO,CAAA;IAChB,GAAG,EAAE,OAAO,CAAA;CACb;AAED,qCAAqC;AACrC,MAAM,WAAW,sBAAsB;IACrC,IAAI,EAAE,eAAe,CAAA;IACrB,QAAQ,EAAE,MAAM,CAAA;IAChB,cAAc,EAAE,MAAM,CAAA;IACtB,GAAG,EAAE,OAAO,CAAA;CACb;AAED,wCAAwC;AACxC,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,QAAQ,CAAA;IACd,OAAO,EAAE,OAAO,CAAA;IAChB,2CAA2C;IAC3C,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,uCAAuC;IACvC,MAAM,CAAC,EAAE,MAAM,EAAE,CAAA;IACjB,0FAA0F;IAC1F,YAAY,CAAC,EAAE,MAAM,CAAA;IACrB,sBAAsB;IACtB,IAAI,CAAC,EAAE,aAAa,CAAA;IACpB,GAAG,EAAE,OAAO,CAAA;CACb;AAED,kBAAkB;AAClB,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,OAAO,CAAA;IACb,OAAO,EAAE,MAAM,CAAA;IACf,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,GAAG,EAAE,OAAO,CAAA;CACb;AAED,gCAAgC;AAChC,MAAM,WAAW,aAAa;IAC5B,WAAW,CAAC,EAAE,MAAM,CAAA;IACpB,YAAY,CAAC,EAAE,MAAM,CAAA;IACrB,YAAY,CAAC,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAA;CAClB"}

package/dist/src/routing/types.d.ts CHANGED Viewed

@@ -49,8 +49,8 @@ export declare const RoutingObservationSchema: z.ZodObject<{
     prCreated: z.ZodBoolean;
     qaResult: z.ZodEnum<{
         failed: "failed";
-        passed: "passed";
         unknown: "unknown";
+        passed: "passed";
     }>;
     totalCostUsd: z.ZodNumber;
     wallClockMs: z.ZodNumber;

package/dist/src/templates/adapters.d.ts CHANGED Viewed

@@ -5,6 +5,23 @@
  */
 import type { ToolPermission, ToolPermissionAdapter } from './types.js';
 import type { AgentProviderName } from '../providers/types.js';
+/**
+ * Structured permission config consumed by the Codex approval bridge.
+ * Produced by `CodexToolPermissionAdapter.buildPermissionConfig()`.
+ */
+export interface CodexPermissionConfig {
+    /** Allowed command patterns from `tools.allow` */
+    allowedCommandPatterns: RegExp[];
+    /** Denied command patterns from `tools.disallow` (additive to safety defaults) */
+    deniedCommandPatterns: Array<{
+        pattern: RegExp;
+        reason: string;
+    }>;
+    /** Whether file edits are allowed (default: true) */
+    allowFileEdits: boolean;
+    /** Whether file writes are allowed (default: true) */
+    allowFileWrites: boolean;
+}
 /**
  * Claude Code tool permission adapter.
  *
@@ -30,6 +47,14 @@ export declare class ClaudeToolPermissionAdapter implements ToolPermissionAdapte
  */
 export declare class CodexToolPermissionAdapter implements ToolPermissionAdapter {
     translatePermissions(permissions: ToolPermission[]): string[];
+    /**
+     * Build a structured permission config for the Codex approval bridge (SUP-1748).
+     *
+     * Translates abstract `tools.allow` and `tools.disallow` from templates
+     * into regex patterns consumed by `evaluateCommandApproval()` and
+     * `evaluateFileChangeApproval()` in the approval bridge.
+     */
+    buildPermissionConfig(allow: ToolPermission[], disallow: ToolPermission[]): CodexPermissionConfig;
     private translateOne;
 }
 /**

package/dist/src/templates/adapters.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"adapters.d.ts","sourceRoot":"","sources":["../../../src/templates/adapters.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,qBAAqB,EAAE,MAAM,YAAY,CAAA;AACvE,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAA;~~AAE9D~~;;;;;;;GAOG;AACH,qBAAa,2BAA4B,YAAW,qBAAqB;IACvE,oBAAoB,CAAC,WAAW,EAAE,cAAc,EAAE,GAAG,MAAM,EAAE;IAI7D,OAAO,CAAC,YAAY;CAwBrB;AAED;;;;;;;;;;GAUG;AACH,qBAAa,0BAA2B,YAAW,qBAAqB;IACtE,oBAAoB,CAAC,WAAW,EAAE,cAAc,EAAE,GAAG,MAAM,EAAE;IAI7D,OAAO,CAAC,YAAY;CAWrB;~~AAED~~;;;;;;;GAOG;AACH,qBAAa,6BAA8B,YAAW,qBAAqB;IACzE,oBAAoB,CAAC,WAAW,EAAE,cAAc,EAAE,GAAG,MAAM,EAAE;IAI7D,OAAO,CAAC,YAAY;CAWrB;AAED;;GAEG;AACH,wBAAgB,2BAA2B,CAAC,QAAQ,EAAE,iBAAiB,GAAG,qBAAqB,CAa9F"}
1	+ {"version":3,"file":"adapters.d.ts","sourceRoot":"","sources":["../../../src/templates/adapters.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,qBAAqB,EAAE,MAAM,YAAY,CAAA;AACvE,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAA;AAM9D;;;GAGG;AACH,MAAM,WAAW,qBAAqB;IACpC,kDAAkD;IAClD,sBAAsB,EAAE,MAAM,EAAE,CAAA;IAChC,kFAAkF;IAClF,qBAAqB,EAAE,KAAK,CAAC;QAAE,OAAO,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE,CAAC,CAAA;IACjE,qDAAqD;IACrD,cAAc,EAAE,OAAO,CAAA;IACvB,sDAAsD;IACtD,eAAe,EAAE,OAAO,CAAA;CACzB;AAED;;;;;;;GAOG;AACH,qBAAa,2BAA4B,YAAW,qBAAqB;IACvE,oBAAoB,CAAC,WAAW,EAAE,cAAc,EAAE,GAAG,MAAM,EAAE;IAI7D,OAAO,CAAC,YAAY;CAwBrB;AAED;;;;;;;;;;GAUG;AACH,qBAAa,0BAA2B,YAAW,qBAAqB;IACtE,oBAAoB,CAAC,WAAW,EAAE,cAAc,EAAE,GAAG,MAAM,EAAE;IAI7D;;;;;;OAMG;IACH,qBAAqB,CACnB,KAAK,EAAE,cAAc,EAAE,EACvB,QAAQ,EAAE,cAAc,EAAE,GACzB,qBAAqB;IAsCxB,OAAO,CAAC,YAAY;CAWrB;AAkCD;;;;;;;GAOG;AACH,qBAAa,6BAA8B,YAAW,qBAAqB;IACzE,oBAAoB,CAAC,WAAW,EAAE,cAAc,EAAE,GAAG,MAAM,EAAE;IAI7D,OAAO,CAAC,YAAY;CAWrB;AAED;;GAEG;AACH,wBAAgB,2BAA2B,CAAC,QAAQ,EAAE,iBAAiB,GAAG,qBAAqB,CAa9F"}

package/dist/src/templates/adapters.js CHANGED Viewed

@@ -53,6 +53,49 @@ export class CodexToolPermissionAdapter {
     translatePermissions(permissions) {
         return permissions.map(p => this.translateOne(p));
     }
+    /**
+     * Build a structured permission config for the Codex approval bridge (SUP-1748).
+     *
+     * Translates abstract `tools.allow` and `tools.disallow` from templates
+     * into regex patterns consumed by `evaluateCommandApproval()` and
+     * `evaluateFileChangeApproval()` in the approval bridge.
+     */
+    buildPermissionConfig(allow, disallow) {
+        const allowedCommandPatterns = [];
+        const deniedCommandPatterns = [];
+        let allowFileEdits = true;
+        let allowFileWrites = true;
+        // Process allow list → allowed command patterns
+        for (const permission of allow) {
+            if (typeof permission !== 'string' && 'shell' in permission) {
+                allowedCommandPatterns.push(shellGlobToRegex(permission.shell));
+            }
+        }
+        // Process disallow list → denied patterns + file permission flags
+        for (const permission of disallow) {
+            if (typeof permission === 'string') {
+                if (permission === 'file-edit') {
+                    allowFileEdits = false;
+                }
+                else if (permission === 'file-write') {
+                    allowFileWrites = false;
+                }
+                // 'user-input' is a no-op for Codex (non-interactive)
+            }
+            else if ('shell' in permission) {
+                deniedCommandPatterns.push({
+                    pattern: shellGlobToRegex(permission.shell),
+                    reason: `${permission.shell} blocked by template`,
+                });
+            }
+        }
+        return {
+            allowedCommandPatterns,
+            deniedCommandPatterns,
+            allowFileEdits,
+            allowFileWrites,
+        };
+    }
     translateOne(permission) {
         if (typeof permission === 'string') {
             return permission;
@@ -63,6 +106,33 @@ export class CodexToolPermissionAdapter {
         return String(permission);
     }
 }
+/**
+ * Convert a shell glob pattern (e.g., "pnpm *", "git commit *") to a regex.
+ *
+ * The pattern "pnpm *" matches any command starting with "pnpm".
+ * The pattern "git commit *" matches "git commit" followed by anything.
+ */
+function shellGlobToRegex(glob) {
+    // Split on the last space to separate command from glob
+    const lastSpace = glob.lastIndexOf(' ');
+    if (lastSpace === -1) {
+        // No glob part — match command prefix (e.g., "pnpm" matches "pnpm install")
+        return new RegExp(`^${escapeRegex(glob)}\\b`);
+    }
+    const command = glob.substring(0, lastSpace);
+    const globPart = glob.substring(lastSpace + 1);
+    if (globPart === '*') {
+        // "git commit *" → matches "git commit" followed by anything
+        return new RegExp(`^${escapeRegex(command)}\\b`);
+    }
+    // More specific globs: escape and convert * to .*
+    const escapedCommand = escapeRegex(command);
+    const regexGlob = escapeRegex(globPart).replace(/\\\*/g, '.*');
+    return new RegExp(`^${escapedCommand}\\s+${regexGlob}`);
+}
+function escapeRegex(str) {
+    return str.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+}
 /**
  * Spring AI tool permission adapter.
  *

package/dist/src/templates/adapters.test.js CHANGED Viewed

@@ -77,6 +77,55 @@ describe('CodexToolPermissionAdapter', () => {
         const result = adapter.translatePermissions([]);
         expect(result).toEqual([]);
     });
+    describe('buildPermissionConfig (SUP-1748)', () => {
+        it('builds permission config from allow and disallow lists', () => {
+            const config = adapter.buildPermissionConfig([{ shell: 'pnpm *' }, { shell: 'git commit *' }], [{ shell: 'git checkout *' }, 'user-input']);
+            expect(config.allowedCommandPatterns).toHaveLength(2);
+            expect(config.deniedCommandPatterns).toHaveLength(1);
+            expect(config.allowFileEdits).toBe(true);
+            expect(config.allowFileWrites).toBe(true);
+        });
+        it('allowed patterns match expected commands', () => {
+            const config = adapter.buildPermissionConfig([{ shell: 'pnpm *' }], []);
+            expect(config.allowedCommandPatterns[0].test('pnpm install')).toBe(true);
+            expect(config.allowedCommandPatterns[0].test('pnpm run build')).toBe(true);
+            expect(config.allowedCommandPatterns[0].test('npm install')).toBe(false);
+        });
+        it('denied patterns match expected commands', () => {
+            const config = adapter.buildPermissionConfig([], [{ shell: 'git *' }]);
+            expect(config.deniedCommandPatterns[0].pattern.test('git push')).toBe(true);
+            expect(config.deniedCommandPatterns[0].pattern.test('git commit')).toBe(true);
+            expect(config.deniedCommandPatterns[0].reason).toContain('blocked by template');
+        });
+        it('sets allowFileEdits to false when file-edit is in disallow', () => {
+            const config = adapter.buildPermissionConfig([], ['file-edit']);
+            expect(config.allowFileEdits).toBe(false);
+            expect(config.allowFileWrites).toBe(true);
+        });
+        it('sets allowFileWrites to false when file-write is in disallow', () => {
+            const config = adapter.buildPermissionConfig([], ['file-write']);
+            expect(config.allowFileEdits).toBe(true);
+            expect(config.allowFileWrites).toBe(false);
+        });
+        it('ignores user-input in disallow (non-interactive)', () => {
+            const config = adapter.buildPermissionConfig([], ['user-input']);
+            expect(config.deniedCommandPatterns).toHaveLength(0);
+            expect(config.allowFileEdits).toBe(true);
+            expect(config.allowFileWrites).toBe(true);
+        });
+        it('handles empty allow and disallow lists', () => {
+            const config = adapter.buildPermissionConfig([], []);
+            expect(config.allowedCommandPatterns).toHaveLength(0);
+            expect(config.deniedCommandPatterns).toHaveLength(0);
+            expect(config.allowFileEdits).toBe(true);
+            expect(config.allowFileWrites).toBe(true);
+        });
+        it('multi-word commands create correct regex', () => {
+            const config = adapter.buildPermissionConfig([{ shell: 'git commit *' }], []);
+            expect(config.allowedCommandPatterns[0].test('git commit -m "message"')).toBe(true);
+            expect(config.allowedCommandPatterns[0].test('git push origin main')).toBe(false);
+        });
+    });
 });
 describe('SpringAiToolPermissionAdapter', () => {
     const adapter = new SpringAiToolPermissionAdapter();

package/dist/src/templates/index.d.ts CHANGED Viewed

@@ -9,6 +9,7 @@ export { TemplateRegistry, type TemplateValidationResult } from './registry.js';
 export { generateTemplateSchema, extractTemplateVariables, type TemplateSchemaOptions } from './schema.js';
 export { loadTemplatesFromDir, loadTemplateFile, loadPartialsFromDir, getBuiltinDefaultsDir, getBuiltinPartialsDir, } from './loader.js';
 export { ClaudeToolPermissionAdapter, CodexToolPermissionAdapter, createToolPermissionAdapter } from './adapters.js';
+export type { CodexPermissionConfig } from './adapters.js';
 export { renderPromptWithFallback } from './renderer.js';
 export type { AgentDefinition, AgentDefinitionFrontmatter } from './agent-definition.js';
 export { parseAgentDefinition, parseAgentDefinitionFile, AgentDefinitionFrontmatterSchema } from './agent-definition.js';

package/dist/src/templates/index.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/templates/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,YAAY,EACV,gBAAgB,EAChB,eAAe,EACf,eAAe,EACf,cAAc,EACd,qBAAqB,EACrB,sBAAsB,GACvB,MAAM,YAAY,CAAA;AAEnB,OAAO,EACL,sBAAsB,EACtB,qBAAqB,EACrB,qBAAqB,EACrB,mBAAmB,EACnB,oBAAoB,EACpB,wBAAwB,EACxB,uBAAuB,GACxB,MAAM,YAAY,CAAA;AAEnB,OAAO,EAAE,gBAAgB,EAAE,KAAK,wBAAwB,EAAE,MAAM,eAAe,CAAA;AAE/E,OAAO,EAAE,sBAAsB,EAAE,wBAAwB,EAAE,KAAK,qBAAqB,EAAE,MAAM,aAAa,CAAA;AAE1G,OAAO,EACL,oBAAoB,EACpB,gBAAgB,EAChB,mBAAmB,EACnB,qBAAqB,EACrB,qBAAqB,GACtB,MAAM,aAAa,CAAA;AAEpB,OAAO,EAAE,2BAA2B,EAAE,0BAA0B,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAA;~~AAEpH~~,OAAO,EAAE,wBAAwB,EAAE,MAAM,eAAe,CAAA;AAExD,YAAY,EAAE,eAAe,EAAE,0BAA0B,EAAE,MAAM,uBAAuB,CAAA;AACxF,OAAO,EAAE,oBAAoB,EAAE,wBAAwB,EAAE,gCAAgC,EAAE,MAAM,uBAAuB,CAAA"}
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/templates/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,YAAY,EACV,gBAAgB,EAChB,eAAe,EACf,eAAe,EACf,cAAc,EACd,qBAAqB,EACrB,sBAAsB,GACvB,MAAM,YAAY,CAAA;AAEnB,OAAO,EACL,sBAAsB,EACtB,qBAAqB,EACrB,qBAAqB,EACrB,mBAAmB,EACnB,oBAAoB,EACpB,wBAAwB,EACxB,uBAAuB,GACxB,MAAM,YAAY,CAAA;AAEnB,OAAO,EAAE,gBAAgB,EAAE,KAAK,wBAAwB,EAAE,MAAM,eAAe,CAAA;AAE/E,OAAO,EAAE,sBAAsB,EAAE,wBAAwB,EAAE,KAAK,qBAAqB,EAAE,MAAM,aAAa,CAAA;AAE1G,OAAO,EACL,oBAAoB,EACpB,gBAAgB,EAChB,mBAAmB,EACnB,qBAAqB,EACrB,qBAAqB,GACtB,MAAM,aAAa,CAAA;AAEpB,OAAO,EAAE,2BAA2B,EAAE,0BAA0B,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAA;AACpH,YAAY,EAAE,qBAAqB,EAAE,MAAM,eAAe,CAAA;AAE1D,OAAO,EAAE,wBAAwB,EAAE,MAAM,eAAe,CAAA;AAExD,YAAY,EAAE,eAAe,EAAE,0BAA0B,EAAE,MAAM,uBAAuB,CAAA;AACxF,OAAO,EAAE,oBAAoB,EAAE,wBAAwB,EAAE,gCAAgC,EAAE,MAAM,uBAAuB,CAAA"}

package/dist/src/templates/registry.d.ts CHANGED Viewed

@@ -74,6 +74,14 @@ export declare class TemplateRegistry {
      * Get disallowed tools for a work type (optionally with strategy).
      */
     getDisallowedTools(workType: AgentWorkType, strategy?: string): ToolPermission[] | undefined;
+    /**
+     * Get the raw allow and disallow permission arrays for a work type (SUP-1748).
+     * Used by the orchestrator to build Codex permission configs via the adapter.
+     */
+    getRawToolPermissions(workType: AgentWorkType, strategy?: string): {
+        allow: ToolPermission[];
+        disallow: ToolPermission[];
+    };
     /**
      * Register a partial template for use in Handlebars rendering.
      */

package/dist/src/templates/registry.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"registry.d.ts","sourceRoot":"","sources":["../../../src/templates/registry.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAGH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAC9C,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,+BAA+B,CAAA;AAClE,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,sBAAsB,EACtB,cAAc,EACd,qBAAqB,EACtB,MAAM,YAAY,CAAA;AAOnB,OAAO,EAA0B,KAAK,qBAAqB,EAAE,MAAM,aAAa,CAAA;AAEhF;;;;;;GAMG;AACH,qBAAa,gBAAgB;IAC3B;;;OAGG;IACH,OAAO,CAAC,SAAS,CAAsC;IACvD,OAAO,CAAC,UAAU,CAAmB;IACrC,OAAO,CAAC,qBAAqB,CAAC,CAAuB;;IAcrD;;OAEG;IACH,MAAM,CAAC,MAAM,CAAC,MAAM,GAAE,sBAA2B,GAAG,gBAAgB;IAMpE;;;;;;OAMG;IACH,UAAU,CAAC,MAAM,GAAE,sBAA2B,GAAG,IAAI;IA4CrD;;OAEG;IACH,wBAAwB,CAAC,OAAO,EAAE,qBAAqB,GAAG,IAAI;IAI9D;;;;;;;;OAQG;IACH,WAAW,CAAC,QAAQ,EAAE,aAAa,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,gBAAgB,GAAG,SAAS;IASrF;;OAEG;IACH,WAAW,CAAC,QAAQ,EAAE,aAAa,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO;IAQhE;;OAEG;IACH,sBAAsB,IAAI,MAAM,EAAE;IAIlC;;;;OAIG;IACH,YAAY,CAAC,QAAQ,EAAE,aAAa,EAAE,OAAO,EAAE,eAAe,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI;IAkBjG;;;OAGG;IACH,kBAAkB,CAAC,QAAQ,EAAE,aAAa,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,GAAG,SAAS;IAgBpF;;OAEG;IACH,kBAAkB,CAAC,QAAQ,EAAE,aAAa,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,cAAc,EAAE,GAAG,SAAS;IAK5F;;OAEG;IACH,eAAe,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,IAAI;IAIpD;;;;;;OAMG;IACH,SAAS,CAAC,YAAY,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,qBAAqB,GAAG,WAAW,GAAG,IAAI;IAMpF;;;;;;;OAOG;IACH,cAAc,CACZ,YAAY,EAAE,MAAM,EACpB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAC9B,wBAAwB;CAS5B;AAMD,MAAM,WAAW,wBAAwB;IACvC,KAAK,EAAE,OAAO,CAAA;IACd,MAAM,EAAE,MAAM,EAAE,CAAA;CACjB"}
1	+ {"version":3,"file":"registry.d.ts","sourceRoot":"","sources":["../../../src/templates/registry.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAGH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAC9C,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,+BAA+B,CAAA;AAClE,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,sBAAsB,EACtB,cAAc,EACd,qBAAqB,EACtB,MAAM,YAAY,CAAA;AAOnB,OAAO,EAA0B,KAAK,qBAAqB,EAAE,MAAM,aAAa,CAAA;AAEhF;;;;;;GAMG;AACH,qBAAa,gBAAgB;IAC3B;;;OAGG;IACH,OAAO,CAAC,SAAS,CAAsC;IACvD,OAAO,CAAC,UAAU,CAAmB;IACrC,OAAO,CAAC,qBAAqB,CAAC,CAAuB;;IAcrD;;OAEG;IACH,MAAM,CAAC,MAAM,CAAC,MAAM,GAAE,sBAA2B,GAAG,gBAAgB;IAMpE;;;;;;OAMG;IACH,UAAU,CAAC,MAAM,GAAE,sBAA2B,GAAG,IAAI;IA4CrD;;OAEG;IACH,wBAAwB,CAAC,OAAO,EAAE,qBAAqB,GAAG,IAAI;IAI9D;;;;;;;;OAQG;IACH,WAAW,CAAC,QAAQ,EAAE,aAAa,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,gBAAgB,GAAG,SAAS;IASrF;;OAEG;IACH,WAAW,CAAC,QAAQ,EAAE,aAAa,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO;IAQhE;;OAEG;IACH,sBAAsB,IAAI,MAAM,EAAE;IAIlC;;;;OAIG;IACH,YAAY,CAAC,QAAQ,EAAE,aAAa,EAAE,OAAO,EAAE,eAAe,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI;IAkBjG;;;OAGG;IACH,kBAAkB,CAAC,QAAQ,EAAE,aAAa,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,GAAG,SAAS;IAgBpF;;OAEG;IACH,kBAAkB,CAAC,QAAQ,EAAE,aAAa,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,cAAc,EAAE,GAAG,SAAS;IAK5F;;;OAGG;IACH,qBAAqB,CAAC,QAAQ,EAAE,aAAa,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG;QACjE,KAAK,EAAE,cAAc,EAAE,CAAA;QACvB,QAAQ,EAAE,cAAc,EAAE,CAAA;KAC3B;IAQD;;OAEG;IACH,eAAe,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,IAAI;IAIpD;;;;;;OAMG;IACH,SAAS,CAAC,YAAY,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,qBAAqB,GAAG,WAAW,GAAG,IAAI;IAMpF;;;;;;;OAOG;IACH,cAAc,CACZ,YAAY,EAAE,MAAM,EACpB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAC9B,wBAAwB;CAS5B;AAMD,MAAM,WAAW,wBAAwB;IACvC,KAAK,EAAE,OAAO,CAAA;IACd,MAAM,EAAE,MAAM,EAAE,CAAA;CACjB"}

package/dist/src/templates/registry.js CHANGED Viewed

@@ -169,6 +169,17 @@ export class TemplateRegistry {
         const template = this.getTemplate(workType, strategy);
         return template?.tools?.disallow;
     }
+    /**
+     * Get the raw allow and disallow permission arrays for a work type (SUP-1748).
+     * Used by the orchestrator to build Codex permission configs via the adapter.
+     */
+    getRawToolPermissions(workType, strategy) {
+        const template = this.getTemplate(workType, strategy);
+        return {
+            allow: template?.tools?.allow ?? [],
+            disallow: template?.tools?.disallow ?? [],
+        };
+    }
     /**
      * Register a partial template for use in Handlebars rendering.
      */