@schuttdev/gigai 0.4.0-beta.0 → 0.4.0-beta.1

package/dist/{chunk-WUAGWZNA.js → chunk-NFKBLW3D.js}

@@ -3,10 +3,12 @@ import {
   ErrorCode,
   GigaiError,
   canExecuteCommand,
-  canUseSudo
-} from "./chunk-XL27JFUS.js";
+  canUseSudo,
+  expandTilde,
+  validateCommandArgs
+} from "./chunk-ROMGFLOH.js";
 
-// ../server/dist/chunk-NYES5MEC.mjs
+// ../server/dist/chunk-BO7QE6T2.mjs
 import { spawn } from "child_process";
 var MAX_OUTPUT_SIZE = 10 * 1024 * 1024;
 async function execCommandSafe(command, args, config, tier = "strict") {
@@ -20,13 +22,18 @@ async function execCommandSafe(command, args, config, tier = "strict") {
   if (!check.allowed) {
     throw new GigaiError(ErrorCode.COMMAND_NOT_ALLOWED, check.reason);
   }
+  const argCheck = validateCommandArgs(tier, command, args);
+  if (!argCheck.allowed) {
+    throw new GigaiError(ErrorCode.COMMAND_NOT_ALLOWED, argCheck.reason);
+  }
   for (const arg of args) {
     if (arg.includes("\0")) {
       throw new GigaiError(ErrorCode.VALIDATION_ERROR, "Null byte in argument");
     }
   }
+  const expandedArgs = args.map(expandTilde);
   return new Promise((resolve, reject) => {
-    const child = spawn(command, args, {
+    const child = spawn(command, expandedArgs, {
       shell: false,
       stdio: ["ignore", "pipe", "pipe"]
     });

package/dist/{chunk-XL27JFUS.js → chunk-ROMGFLOH.js}

@@ -1,6 +1,6 @@
 #!/usr/bin/env node
 
-// ../server/dist/chunk-NQN6AX3Q.mjs
+// ../server/dist/chunk-NO4R43QM.mjs
 import { resolve } from "path";
 import { homedir } from "os";
 var DEFAULT_SECURITY = { default: "strict", overrides: {} };
@@ -93,6 +93,48 @@ function canExecuteCommand(tier, command, allowlist) {
       return { allowed: true };
   }
 }
+var PROTECTED_PATHS = /* @__PURE__ */ new Set([
+  "/",
+  "/bin",
+  "/boot",
+  "/dev",
+  "/etc",
+  "/home",
+  "/lib",
+  "/opt",
+  "/proc",
+  "/root",
+  "/sbin",
+  "/sys",
+  "/usr",
+  "/var",
+  "/Users",
+  "/System",
+  "/Library",
+  "/Applications"
+]);
+function hasRecursiveFlag(args) {
+  for (const a of args) {
+    if (a === "--") break;
+    if (a === "-r" || a === "-R" || a === "--recursive") return true;
+    if (a.startsWith("-") && !a.startsWith("--") && /[rR]/.test(a)) return true;
+  }
+  return false;
+}
+function validateCommandArgs(tier, command, args) {
+  if (tier === "unrestricted") return { allowed: true };
+  if (command === "rm" && hasRecursiveFlag(args)) {
+    const home = homedir();
+    for (const arg of args) {
+      if (arg.startsWith("-")) continue;
+      const resolved = resolve(arg);
+      if (PROTECTED_PATHS.has(resolved) || resolved === home) {
+        return { allowed: false, reason: `Refusing to recursively remove critical path: ${resolved}` };
+      }
+    }
+  }
+  return { allowed: true };
+}
 function canUseSudo(allowSudo) {
   if (allowSudo === false) return { allowed: false, reason: "sudo is not allowed" };
   return { allowed: true };
@@ -136,6 +178,11 @@ function canAccessPath(tier, resolvedPath, allowedPaths) {
       return { allowed: true };
   }
 }
+function expandTilde(p) {
+  if (p === "~") return homedir();
+  if (p.startsWith("~/")) return homedir() + p.slice(1);
+  return p;
+}
 function shouldInjectSeparator(tier) {
   return tier === "strict";
 }
@@ -408,8 +455,10 @@ var GigaiConfigSchema = z.object({
 export {
   getEffectiveTier,
   canExecuteCommand,
+  validateCommandArgs,
   canUseSudo,
   canAccessPath,
+  expandTilde,
   shouldInjectSeparator,
   encrypt,
   decrypt,

package/dist/{chunk-FR2BGYIC.js → chunk-VCFG6XXN.js}

@@ -2,10 +2,11 @@
 import {
   ErrorCode,
   GigaiError,
-  canAccessPath
-} from "./chunk-XL27JFUS.js";
+  canAccessPath,
+  expandTilde
+} from "./chunk-ROMGFLOH.js";
 
-// ../server/dist/chunk-XK4BHB3B.mjs
+// ../server/dist/chunk-HXHM5BKW.mjs
 import {
   readFile as fsReadFile,
   writeFile as fsWriteFile,
@@ -17,7 +18,7 @@ import { spawn } from "child_process";
 var MAX_OUTPUT_SIZE = 10 * 1024 * 1024;
 var MAX_READ_SIZE = 2 * 1024 * 1024;
 async function validatePath(targetPath, allowedPaths, tier = "strict") {
-  const resolved = resolve(targetPath);
+  const resolved = resolve(expandTilde(targetPath));
   let real;
   try {
     real = await realpath(resolved);

package/dist/{dist-SDKK67CH.js → dist-XQICZQ57.js}

@@ -1,7 +1,7 @@
 #!/usr/bin/env node
 import {
   execCommandSafe
-} from "./chunk-WUAGWZNA.js";
+} from "./chunk-NFKBLW3D.js";
 import {
   editBuiltin,
   globBuiltin,
@@ -11,7 +11,7 @@ import {
   readFileSafe,
   searchFilesSafe,
   writeBuiltin
-} from "./chunk-FR2BGYIC.js";
+} from "./chunk-VCFG6XXN.js";
 import {
   ErrorCode,
   GigaiConfigSchema,
@@ -21,7 +21,7 @@ import {
   generateEncryptionKey,
   getEffectiveTier,
   shouldInjectSeparator
-} from "./chunk-XL27JFUS.js";
+} from "./chunk-ROMGFLOH.js";
 
 // ../server/dist/index.mjs
 import { parseArgs } from "util";
@@ -48,7 +48,7 @@ import { nanoid as nanoid3 } from "nanoid";
 import { dirname as dirname2 } from "path";
 import { readFileSync } from "fs";
 import { resolve as resolve2 } from "path";
-import { platform, hostname as hostname2 } from "os";
+import { platform, hostname as hostname2, userInfo } from "os";
 import { platform as platform2 } from "os";
 import { writeFile as writeFile2, readFile as readFile2, unlink, mkdir } from "fs/promises";
 import { join } from "path";
@@ -800,7 +800,7 @@ var cronPlugin = fp5(async (server, opts) => {
   const executor = async (tool, args) => {
     const entry = server.registry.get(tool);
     if (entry.type === "builtin") {
-      const { execCommandSafe: execCommandSafe2 } = await import("./shell-F2MZGP6N-WUIBVJZF.js");
+      const { execCommandSafe: execCommandSafe2 } = await import("./shell-IBJTGIEW-UEOHS5M2.js");
       const {
         readFileSafe: readFileSafe2,
         listDirSafe: listDirSafe2,
@@ -810,7 +810,7 @@ var cronPlugin = fp5(async (server, opts) => {
         editBuiltin: editBuiltin2,
         globBuiltin: globBuiltin2,
         grepBuiltin: grepBuiltin2
-      } = await import("./filesystem-FTLLT7JC-3DA3AAA7.js");
+      } = await import("./filesystem-CVLQFP7T-VBJWEKEE.js");
       const builtinConfig = entry.config.config ?? {};
       switch (entry.config.builtin) {
         case "filesystem": {
@@ -891,7 +891,8 @@ async function healthRoutes(server) {
       version: startupVersion,
       uptime: Date.now() - startTime,
       platform: platform(),
-      hostname: hostname2()
+      hostname: hostname2(),
+      homeDir: userInfo().homedir
     };
   });
 }

package/dist/{filesystem-FTLLT7JC-3DA3AAA7.js → filesystem-CVLQFP7T-VBJWEKEE.js}

@@ -9,8 +9,8 @@ import {
   searchFilesSafe,
   validatePath,
   writeBuiltin
-} from "./chunk-FR2BGYIC.js";
-import "./chunk-XL27JFUS.js";
+} from "./chunk-VCFG6XXN.js";
+import "./chunk-ROMGFLOH.js";
 export {
   editBuiltin,
   globBuiltin,

package/dist/index.js

@@ -4,12 +4,12 @@
 import { defineCommand, runMain } from "citty";
 
 // src/version.ts
-var VERSION = "0.4.0-beta.0";
+var VERSION = "0.4.0-beta.1";
 
 // src/index.ts
 async function requireServer() {
   try {
-    return await import("./dist-SDKK67CH.js");
+    return await import("./dist-XQICZQ57.js");
   } catch {
     console.error("Server dependencies not installed.");
     console.error("Run: npm install -g @schuttdev/gigai");

package/dist/{shell-F2MZGP6N-WUIBVJZF.js → shell-IBJTGIEW-UEOHS5M2.js}

@@ -1,8 +1,8 @@
 #!/usr/bin/env node
 import {
   execCommandSafe
-} from "./chunk-WUAGWZNA.js";
-import "./chunk-XL27JFUS.js";
+} from "./chunk-NFKBLW3D.js";
+import "./chunk-ROMGFLOH.js";
 export {
   execCommandSafe
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@schuttdev/gigai",
-  "version": "0.4.0-beta.0",
+  "version": "0.4.0-beta.1",
   "type": "module",
   "license": "MIT",
   "bin": {