npm - @staff0rd/assist - Versions diffs - 0.282.0 → 0.283.0 - Mend

@staff0rd/assist 0.282.0 → 0.283.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/dist/index.js +54 -31
package/package.json +1 -1

package/dist/index.js CHANGED Viewed

@@ -6,7 +6,7 @@ import { Command } from "commander";
 // package.json
 var package_default = {
   name: "@staff0rd/assist",
-  version: "0.282.0",
+  version: "0.283.0",
   type: "module",
   main: "dist/index.js",
   bin: {
@@ -7273,6 +7273,51 @@ function stripEnvPrefix(parts) {
   return i > 0 ? parts.slice(i) : parts;
 }
+// src/commands/cliHook/findBuiltinDeny.ts
+var BUILTIN_DENIES = [
+  {
+    pattern: "gh pr create",
+    message: "Do not run 'gh pr create' directly. Use 'assist prs raise --title <title> --what <what> --why <why>' instead \u2014 it assembles and validates the body before delegating to gh. Before running it, get explicit approval via the AskUserQuestion tool, regardless of permission mode, with the full proposed title and body in the approve option's preview field so the user actually sees them."
+  },
+  {
+    pattern: "gh pr edit",
+    message: "Do not run 'gh pr edit' directly. Use 'assist prs edit [--title <title>] [--what <what>] [--why <why>] [--how <how>]' instead \u2014 it assembles and validates the body before delegating to gh. Before running it, get explicit approval via the AskUserQuestion tool, regardless of permission mode, with the full proposed title and body in the approve option's preview field so the user actually sees them."
+  },
+  {
+    pattern: "git commit",
+    message: `Do not run 'git commit' directly. Use 'assist commit "<message>"' instead.`
+  }
+];
+function matchesBuiltinDeny(part) {
+  return BUILTIN_DENIES.find(
+    (rule) => part === rule.pattern || part.startsWith(`${rule.pattern} `)
+  );
+}
+function findBuiltinDeny(parts) {
+  const rule = parts.map(matchesBuiltinDeny).find(Boolean);
+  if (!rule) return void 0;
+  return {
+    permissionDecision: "deny",
+    permissionDecisionReason: rule.message
+  };
+}
+function rawDenyRegex(pattern2) {
+  const tokens = pattern2.trim().split(/\s+/).map((token) => token.replace(/[.*+?^${}()|[\]\\]/g, "\\$&")).join("\\s+");
+  return new RegExp(`(?<=^|\\s)${tokens}(?=\\s|$)`);
+}
+var RAW_BUILTIN_DENIES = BUILTIN_DENIES.map((rule) => ({
+  ...rule,
+  regex: rawDenyRegex(rule.pattern)
+}));
+function findBuiltinDenyRaw(rawCommand) {
+  const rule = RAW_BUILTIN_DENIES.find((r) => r.regex.test(rawCommand));
+  if (!rule) return void 0;
+  return {
+    permissionDecision: "deny",
+    permissionDecisionReason: rule.message
+  };
+}
 // src/commands/cliHook/logDeniedToolCall.ts
 import { mkdirSync as mkdirSync8 } from "fs";
 import { homedir as homedir7 } from "os";
@@ -7591,31 +7636,6 @@ function matchesConfigDeny(command) {
   );
 }
-// src/commands/cliHook/findBuiltinDeny.ts
-var BUILTIN_DENIES = [
-  {
-    pattern: "gh pr create",
-    message: "Do not run 'gh pr create' directly. Use 'assist prs raise --title <title> --what <what> --why <why>' instead \u2014 it assembles and validates the body before delegating to gh. Before running it, get explicit approval via the AskUserQuestion tool, regardless of permission mode, with the full proposed title and body in the approve option's preview field so the user actually sees them."
-  },
-  {
-    pattern: "git commit",
-    message: `Do not run 'git commit' directly. Use 'assist commit "<message>"' instead.`
-  }
-];
-function matchesBuiltinDeny(part) {
-  return BUILTIN_DENIES.find(
-    (rule) => part === rule.pattern || part.startsWith(`${rule.pattern} `)
-  );
-}
-function findBuiltinDeny(parts) {
-  const rule = parts.map(matchesBuiltinDeny).find(Boolean);
-  if (!rule) return void 0;
-  return {
-    permissionDecision: "deny",
-    permissionDecisionReason: rule.message
-  };
-}
 // src/commands/cliHook/resolvePermission.ts
 var SUBCOMMAND_READS = [
   {
@@ -7699,7 +7719,7 @@ function tryParseInput(raw) {
 function decide(toolName, rawCommand) {
   const result = splitCompound(rawCommand);
   if (result.ok) return resolvePermission(toolName, result.parts);
-  return findDeny(toolName, [rawCommand]);
+  return findBuiltinDenyRaw(rawCommand) ?? findDeny(toolName, [rawCommand]);
 }
 async function cliHook() {
   const input = tryParseInput(await readStdin());
@@ -7726,17 +7746,20 @@ async function cliHook() {
 }
 // src/commands/cliHook/cliHookCheck.ts
-function reportDeny(toolName, parts) {
-  const denied = findDeny(toolName, parts);
-  if (!denied) return false;
-  console.log(`denied: ${denied.permissionDecisionReason}`);
+function reportDecision(decision) {
+  if (!decision) return false;
+  console.log(`denied: ${decision.permissionDecisionReason}`);
   process.exitCode = 1;
   return true;
 }
+function reportDeny(toolName, parts) {
+  return reportDecision(findDeny(toolName, parts));
+}
 function cliHookCheck(command, toolName = "Bash") {
   const trimmed = command.trim();
   const result = splitCompound(trimmed);
   if (!result.ok) {
+    if (reportDecision(findBuiltinDenyRaw(trimmed))) return;
     if (reportDeny(toolName, [trimmed])) return;
     console.log(`not approved (${result.error})`);
     process.exitCode = 1;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
 	"name": "@staff0rd/assist",
-	"version": "0.282.0",
+	"version": "0.283.0",
 	"type": "module",
 	"main": "dist/index.js",
 	"bin": {