@sanity/ailf 3.4.0 → 3.5.0

package/dist/pipeline/run-context.js

@@ -12,8 +12,13 @@
  *
  * @see docs/decisions/D0032-run-anchored-artifact-store.md (§ Move 5 — Drift Prevention)
  */
+import { execSync } from "node:child_process";
+import { createRequire } from "node:module";
+import * as os from "node:os";
+import { isRunClassification, } from "../_vendor/ailf-shared/index.js";
 import { ConsoleLogger } from "../adapters/loggers/index.js";
 import { tryLoadConfigFile } from "./compiler/config-loader.js";
+const requireFromHere = createRequire(import.meta.url);
 /**
  * Derive `RunContext` from pipeline inputs. The only construction path.
  *
@@ -35,6 +40,21 @@ export function buildRunContext(input) {
         }
         : detectGitMetadata();
     const trigger = detectTrigger();
+    // D0037: caller envelope (from PipelineRequest) takes precedence over
+    // server-env detection — same pattern as `callerGit` for identity
+    // preservation across the --remote boundary.
+    const envelope = input.callerEnvelope;
+    const classification = envelope?.classification ?? detectClassification(log);
+    const owner = envelope?.owner ?? detectOwner();
+    const executor = envelope?.executor ?? detectExecutor();
+    // `tool` and `host` are server-environment facts — they always reflect
+    // where this pipeline is actually running, never what a caller claimed.
+    // Callers cannot override these via the envelope and the wire schema
+    // explicitly doesn't carry them (see pipeline-request.ts).
+    const tool = detectTool(log);
+    const host = detectHost();
+    const labels = envelope?.labels ?? detectLabels();
+    const purpose = envelope?.purpose ?? (process.env.AILF_PURPOSE?.trim() || undefined);
     // Non-literacy modes (agent-harness, mcp-server, etc.) don't use the
     // config/models.ts model matrix — listing those models would be
     // misleading. Only include them for literacy mode where they're the
@@ -44,11 +64,18 @@ export function buildRunContext(input) {
         : [];
     return {
         areas: input.areas,
+        classification,
         evalFingerprint: input.evalFingerprint,
+        executor,
         git,
         graderModel: models.grader.id,
+        host,
+        labels,
+        lineage: input.lineage,
         mode: input.mode,
         models: evaluatedModels,
+        owner,
+        purpose,
         source: {
             baseUrl: input.source.baseUrl,
             dataset: input.source.dataset,
@@ -57,6 +84,7 @@ export function buildRunContext(input) {
             projectId: input.source.projectId,
         },
         taskIds: input.taskIds,
+        tool,
         trigger,
     };
 }
@@ -137,6 +165,144 @@ function detectTrigger() {
     return { type: "manual" };
 }
 // ---------------------------------------------------------------------------
+// Classification, owner, executor, labels, tool, host detection (D0037)
+// ---------------------------------------------------------------------------
+/**
+ * Resolve `classification` from `AILF_CLASSIFICATION`, validated against
+ * the closed enum. Defaults to `"ad-hoc"` so unannotated runs never leak
+ * into the canonical `"official"` series.
+ */
+export function detectClassification(log) {
+    const raw = process.env.AILF_CLASSIFICATION?.trim();
+    if (!raw)
+        return "ad-hoc";
+    if (isRunClassification(raw))
+        return raw;
+    log.warn(`AILF_CLASSIFICATION="${raw}" is not a recognized value; defaulting to "ad-hoc"`);
+    return "ad-hoc";
+}
+/**
+ * Resolve `owner` from `AILF_OWNER_TEAM` (+ optional
+ * `AILF_OWNER_INDIVIDUAL`). `team` is free-form; default is `"unknown"`.
+ */
+export function detectOwner() {
+    const team = process.env.AILF_OWNER_TEAM?.trim() || "unknown";
+    const individual = process.env.AILF_OWNER_INDIVIDUAL?.trim() || undefined;
+    return individual ? { individual, team } : { team };
+}
+/**
+ * Detect who/what invoked the run.
+ *
+ * Priority:
+ * 1. GitHub Actions context → `{ type: "system", name: "github-actions", ... }`
+ * 2. CLI context → `{ type: "user", surface: "cli", ... }` with git-config
+ *    or OS username fallback. Email capture gated by
+ *    `AILF_CAPTURE_EMAIL` (default on; set `0` to opt out).
+ *
+ * Every identity field is optional — missing git, containers, or masked
+ * env vars must never block a run.
+ */
+export function detectExecutor() {
+    if (process.env.GITHUB_ACTIONS === "true") {
+        return {
+            name: "github-actions",
+            runId: process.env.GITHUB_RUN_ID?.trim() || undefined,
+            type: "system",
+            workflow: process.env.GITHUB_WORKFLOW?.trim() || undefined,
+        };
+    }
+    const surface = resolveExecutorSurface();
+    const githubActor = process.env.GITHUB_ACTOR?.trim() || undefined;
+    const name = detectGitConfig("user.name") ?? githubActor ?? osUsername() ?? undefined;
+    const email = shouldCaptureEmail() ? detectGitConfig("user.email") : undefined;
+    const exec = { surface, type: "user" };
+    if (name)
+        exec.name = name;
+    if (email)
+        exec.email = email;
+    if (githubActor)
+        exec.githubActor = githubActor;
+    return exec;
+}
+function resolveExecutorSurface() {
+    const explicit = process.env.AILF_EXECUTOR_SURFACE?.trim();
+    if (explicit === "cli" || explicit === "studio" || explicit === "api") {
+        return explicit;
+    }
+    return "cli";
+}
+function shouldCaptureEmail() {
+    const raw = process.env.AILF_CAPTURE_EMAIL?.trim().toLowerCase();
+    if (raw === "0" || raw === "false" || raw === "no")
+        return false;
+    return true;
+}
+function detectGitConfig(key) {
+    try {
+        const value = execSync(`git config --get ${key}`, {
+            encoding: "utf8",
+            stdio: ["ignore", "pipe", "ignore"],
+            timeout: 500,
+        }).trim();
+        return value || undefined;
+    }
+    catch {
+        return undefined;
+    }
+}
+function osUsername() {
+    try {
+        return os.userInfo().username || undefined;
+    }
+    catch {
+        return undefined;
+    }
+}
+/**
+ * Parse `AILF_LABELS` (comma-separated) into a trimmed unique list.
+ * Returns undefined when empty so absent labels stay absent.
+ */
+function detectLabels() {
+    const raw = process.env.AILF_LABELS;
+    if (!raw)
+        return undefined;
+    const labels = raw
+        .split(",")
+        .map((label) => label.trim())
+        .filter(Boolean);
+    if (labels.length === 0)
+        return undefined;
+    return Array.from(new Set(labels));
+}
+/**
+ * Resolve `tool` — which AILF/Node ran the eval. Captured on every new
+ * run so cross-version trend comparisons can isolate framework changes
+ * from doc changes.
+ */
+export function detectTool(log) {
+    const nodeVersion = process.version;
+    let ailfVersion;
+    try {
+        const pkg = requireFromHere("../../package.json");
+        ailfVersion = pkg.version;
+    }
+    catch (err) {
+        log.warn(`Could not read @sanity/ailf package.json for tool.ailfVersion: ${err instanceof Error ? err.message : String(err)}`);
+    }
+    return { ailfVersion: ailfVersion ?? "unknown", nodeVersion };
+}
+/**
+ * Resolve `host` — platform + arch + CI provider. Hostname is
+ * intentionally excluded (leaks identity without filtering benefit).
+ */
+export function detectHost() {
+    const ci = process.env.GITHUB_ACTIONS === "true" ? "github-actions" : undefined;
+    const host = { arch: os.arch(), platform: os.platform() };
+    if (ci)
+        host.ci = ci;
+    return host;
+}
+// ---------------------------------------------------------------------------
 // Model config loading
 // ---------------------------------------------------------------------------
 /**

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@sanity/ailf",
-  "version": "3.4.0",
+  "version": "3.5.0",
   "private": false,
   "publishConfig": {
     "access": "public"