@rnbsolucoes/axion-code 0.1.17 → 0.1.18

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. package/README.md +13 -4
  2. package/npm/releases/linux-x64/axion-code +0 -0
  3. package/npm/releases/win32-x64/axion-code.exe +0 -0
  4. package/package.json +1 -1
package/README.md CHANGED
@@ -286,7 +286,14 @@ dispatcher before mutating filesystem, shell or MCP tools are enabled.
286
286
  Provider stream `tool_call` events now open the TUI approval menu when the
287
287
  active permission mode requires review. Approve/Deny records the audited
288
288
  decision and returns focus to the chat input. Actual tool execution remains
289
- blocked until the guarded dispatcher is enabled.
289
+ limited to the guarded dispatcher allow-list.
290
+
291
+ `axion tool run` exposes the first guarded dispatcher surface. It currently
292
+ supports `Read`, `Glob`, `Grep`, `Write` and `Edit` inside the active workspace.
293
+ When the active permission mode requires approval, execution is allowed only if
294
+ the supplied approval is already approved and matches the exact redacted tool
295
+ request. Shell, MCP, browser, process and unknown tools remain unsupported even
296
+ when an approval exists.
290
297
 
291
298
  Examples:
292
299
 
@@ -297,6 +304,8 @@ axion permission inspect mcp__serena__replace_symbol_body "{}" --mode full_permi
297
304
  axion permission request Bash "{\"command\":\"npm install left-pad\"}" --mode full_permission --session smoke --turn turn-1 --json
298
305
  axion permission approvals --session smoke --decision pending --json
299
306
  axion permission resolve <approval-id> --deny --reason "not needed" --json
307
+ axion tool run Read "{\"path\":\"README.md\"}" --mode full_permission --json
308
+ axion tool run Write "{\"path\":\"notes/out.txt\",\"content\":\"approved\"}" --session smoke --turn turn-1 --approval <approval-id> --mode request_permission --json
300
309
  ```
301
310
 
302
311
  Security invariants:
@@ -346,9 +355,9 @@ This is a functional direction MVP, not the full harness:
346
355
  deferred until the Nexus beta handoff;
347
356
  - terminal logo uses Sixel when available and falls back to width-bounded ANSI/block rendering;
348
357
  - initial chat splash shows the Axion logo and system name until the first interaction;
349
- - no mutating tool execution yet; the approval/sandbox classification,
350
- persisted approval queue and TUI approval menu are implemented and
351
- inspectable;
358
+ - guarded dispatcher execution is limited to workspace-local `Read`, `Glob`,
359
+ `Grep`, `Write` and `Edit`; shell, MCP, browser, process and unknown tools
360
+ remain blocked;
352
361
  - no executable Pi RPC bridge yet;
353
362
  - no MCP transport execution yet;
354
363
  - native subagent execution is prompt-isolated and provider/model-inherited; richer multi-subagent orchestration, streaming and budget telemetry remain next-cycle items.
package/npm/releases/linux-x64/axion-code CHANGED
Binary file
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@rnbsolucoes/axion-code",
3
- "version": "0.1.17",
3
+ "version": "0.1.18",
4
4
  "description": "Axion Code CLI harness for the Axion ecosystem.",
5
5
  "type": "module",
6
6
  "repository": {