@synkro-sh/cli 1.3.31 → 1.3.32

package/dist/bootstrap.js

@@ -1118,51 +1118,68 @@ if [ "$USE_LOCAL" = "true" ]; then
     VERDICT_JSON='{"ok":true,"violations":[]}'
   fi
 
-  LOCAL_BODY=$(jq -n \\
-    --argjson verdict "$VERDICT_JSON" \\
-    --arg file_path "$FILE_PATH" \\
-    --arg tool_name "$TOOL_NAME" \\
-    --arg content "$PROPOSED" \\
-    --arg file_before "$FILE_BEFORE" \\
-    --argjson diff "$DIFF_FIELD" \\
-    --arg user_intent "$USER_INTENT" \\
-    --argjson recent_actions "$RECENT_ACTIONS" \\
-    --arg session_id "$SESSION_ID" \\
-    --arg tool_use_id "$TOOL_USE_ID" \\
-    --arg cwd "$CWD" \\
-    --arg permission_mode "$PERMISSION_MODE" \\
-    --arg headless_flag "$HEADLESS_FLAG" \\
-    --arg repo "$GIT_REPO" \\
-    '{
-      verdict: $verdict,
-      file_path: $file_path,
-      tool_name: $tool_name,
-      content: $content,
-      file_before: (if ($file_before | length) > 0 then $file_before else null end),
-      diff: $diff,
-      user_intent: (if ($user_intent | length) > 0 then $user_intent else null end),
-      recent_actions: $recent_actions,
-      session_id: (if ($session_id | length) > 0 then $session_id else null end),
-      tool_use_id: (if ($tool_use_id | length) > 0 then $tool_use_id else null end),
-      cwd: (if ($cwd | length) > 0 then $cwd else null end),
-      permission_mode: (if ($permission_mode | length) > 0 then $permission_mode else null end),
-      headless: ($headless_flag == "1"),
-      repo: (if ($repo | length) > 0 then $repo else null end)
-    }')
-
-  RESP=$(curl -sS -X POST "\${GATEWAY_URL}/api/v1/precheck-edit/local-verdict" \\
-    -H "Content-Type: application/json" \\
-    -H "Authorization: Bearer $JWT" \\
-    -d "$LOCAL_BODY" \\
-    --max-time 5 2>/dev/null || echo "")
+  if [ "$SYNKRO_CAPTURE_DEPTH" = "local_only" ]; then
+    # No file content / diff / intent / actions leave the device. Synthesize
+    # the hook response from the local verdict only.
+    OK=$(echo "$VERDICT_JSON" | jq -r '.ok // true' 2>/dev/null)
+    if [ "$OK" = "false" ]; then
+      FIRST_REASON=$(echo "$VERDICT_JSON" | jq -r '.violations[0].reason // "policy violation"' 2>/dev/null)
+      RULE_ID=$(echo "$VERDICT_JSON" | jq -r '.violations[0].rule_id // "local_violation"' 2>/dev/null)
+      if [ "$IS_HEADLESS" = "1" ]; then DEC="deny"; else DEC="ask"; fi
+      RESP=$(jq -n \\
+        --arg dec "$DEC" \\
+        --arg reason "[synkro] $RULE_ID: $FIRST_REASON" \\
+        '{ hookSpecificOutput: { hookEventName: "PreToolUse", permissionDecision: $dec, permissionDecisionReason: $reason, additionalContext: $reason }, reason: $reason }')
+    else
+      RESP=$(jq -n '{ hookSpecificOutput: { hookEventName: "PreToolUse", permissionDecision: "allow" }, reason: "" }')
+    fi
+  else
+    LOCAL_BODY=$(jq -n \\
+      --argjson verdict "$VERDICT_JSON" \\
+      --arg file_path "$FILE_PATH" \\
+      --arg tool_name "$TOOL_NAME" \\
+      --arg content "$PROPOSED" \\
+      --arg file_before "$FILE_BEFORE" \\
+      --argjson diff "$DIFF_FIELD" \\
+      --arg user_intent "$USER_INTENT" \\
+      --argjson recent_actions "$RECENT_ACTIONS" \\
+      --arg session_id "$SESSION_ID" \\
+      --arg tool_use_id "$TOOL_USE_ID" \\
+      --arg cwd "$CWD" \\
+      --arg permission_mode "$PERMISSION_MODE" \\
+      --arg headless_flag "$HEADLESS_FLAG" \\
+      --arg repo "$GIT_REPO" \\
+      '{
+        verdict: $verdict,
+        file_path: $file_path,
+        tool_name: $tool_name,
+        content: $content,
+        file_before: (if ($file_before | length) > 0 then $file_before else null end),
+        diff: $diff,
+        user_intent: (if ($user_intent | length) > 0 then $user_intent else null end),
+        recent_actions: $recent_actions,
+        session_id: (if ($session_id | length) > 0 then $session_id else null end),
+        tool_use_id: (if ($tool_use_id | length) > 0 then $tool_use_id else null end),
+        cwd: (if ($cwd | length) > 0 then $cwd else null end),
+        permission_mode: (if ($permission_mode | length) > 0 then $permission_mode else null end),
+        headless: ($headless_flag == "1"),
+        repo: (if ($repo | length) > 0 then $repo else null end)
+      }')
 
-  if echo "$RESP" | grep -qE '"detail":"Token has expired|"detail":"Invalid or expired token'; then
-    if refresh_jwt; then
-      RESP=$(curl -sS -X POST "\${GATEWAY_URL}/api/v1/precheck-edit/local-verdict" \\
-        -H "Content-Type: application/json" \\
-        -H "Authorization: Bearer $JWT" \\
-        -d "$LOCAL_BODY" \\
-        --max-time 5 2>/dev/null || echo "")
+    RESP=$(curl -sS -X POST "\${GATEWAY_URL}/api/v1/precheck-edit/local-verdict" \\
+      -H "Content-Type: application/json" \\
+      -H "Authorization: Bearer $JWT" \\
+      -d "$LOCAL_BODY" \\
+      --max-time 5 2>/dev/null || echo "")
+
+    if echo "$RESP" | grep -qE '"detail":"Token has expired|"detail":"Invalid or expired token'; then
+      if refresh_jwt; then
+        RESP=$(curl -sS -X POST "\${GATEWAY_URL}/api/v1/precheck-edit/local-verdict" \\
+          -H "Content-Type: application/json" \\
+          -H "Authorization: Bearer $JWT" \\
+          -d "$LOCAL_BODY" \\
+          --max-time 5 2>/dev/null || echo "")
+      fi
     fi
   fi
 else
@@ -1402,32 +1419,57 @@ if [ -n "$SESSION_ID" ] && [ -n "$TOOL_USE_ID" ]; then
   ) &
 fi
 
-# Resolve tier (cached 60 min) \u2014 same logic as the other hooks.
+# Resolve tier + capture_depth (cached 60 min).
 TIER_CACHE_FILE="$HOME/.synkro/.tier-cache-\${SYNKRO_USER_ID:-default}"
+CD_CACHE_FILE="\${TIER_CACHE_FILE}.cd"
 SYNKRO_INFERENCE_TIER=""
+SYNKRO_CAPTURE_DEPTH=""
 if find "$TIER_CACHE_FILE" -mmin -60 2>/dev/null | grep -q .; then
   SYNKRO_INFERENCE_TIER=$(cat "$TIER_CACHE_FILE" 2>/dev/null || true)
+  SYNKRO_CAPTURE_DEPTH=$(cat "$CD_CACHE_FILE" 2>/dev/null || true)
 fi
 if [ -z "$SYNKRO_INFERENCE_TIER" ]; then
   ME_RESP=$(curl -sS "\${GATEWAY_URL}/api/v1/cli/me" -H "Authorization: Bearer $JWT" --max-time 2 2>/dev/null || echo "")
   if [ -n "$ME_RESP" ]; then
     SYNKRO_INFERENCE_TIER=$(echo "$ME_RESP" | jq -r '.tier // empty' 2>/dev/null || true)
     [ -n "$SYNKRO_INFERENCE_TIER" ] && printf '%s' "$SYNKRO_INFERENCE_TIER" > "$TIER_CACHE_FILE" 2>/dev/null || true
+    SYNKRO_CAPTURE_DEPTH=$(echo "$ME_RESP" | jq -r '.capture_depth // empty' 2>/dev/null || true)
+    [ -n "$SYNKRO_CAPTURE_DEPTH" ] && printf '%s' "$SYNKRO_CAPTURE_DEPTH" > "$CD_CACHE_FILE" 2>/dev/null || true
   fi
 fi
 SYNKRO_INFERENCE_TIER="\${SYNKRO_INFERENCE_TIER:-fast}"
+SYNKRO_CAPTURE_DEPTH="\${SYNKRO_CAPTURE_DEPTH:-full}"
+
+USE_LOCAL=false
+if [ "$SYNKRO_CAPTURE_DEPTH" = "local_only" ] && command -v claude >/dev/null 2>&1; then
+  USE_LOCAL=true
+elif [ "$SYNKRO_INFERENCE_TIER" = "free" ] && command -v claude >/dev/null 2>&1; then
+  USE_LOCAL=true
+fi
 
-if [ "$SYNKRO_INFERENCE_TIER" = "free" ] && command -v claude >/dev/null 2>&1; then
-  # \u2500\u2500\u2500 FREE TIER: grade via the persistent claude daemon (mode=edit). \u2500\u2500\u2500
+if [ "$USE_LOCAL" = "true" ]; then
+  # \u2500\u2500\u2500 LOCAL GRADING: grade via the persistent claude daemon (mode=edit). \u2500\u2500\u2500
 
-  # Fetch org guardrail rules relevant to this file content.
-  ORG_RULES=$(printf '%s' "$FILE_CONTENT" | head -c 8000 \\
-    | jq -Rs '{content: .}' \\
-    | curl -sS "\${GATEWAY_URL}/api/v1/cli/pr-rules?top_k=20" \\
-    -X POST -H "Content-Type: application/json" \\
-    -H "Authorization: Bearer $JWT" \\
-    -d @- --max-time 2 2>/dev/null \\
-    | jq -c '[.rules[]? | {rule_id, text, severity, category}]' 2>/dev/null || echo "[]")
+  # In local_only: GET all rules (no content sent), cache 1h. Otherwise POST with content.
+  RULES_CACHE="$HOME/.synkro/.rules-cache-edit-capture"
+  if [ "$SYNKRO_CAPTURE_DEPTH" = "local_only" ]; then
+    if find "$RULES_CACHE" -mmin -60 2>/dev/null | grep -q .; then
+      ORG_RULES=$(cat "$RULES_CACHE" 2>/dev/null || echo "[]")
+    else
+      ORG_RULES=$(curl -sS "\${GATEWAY_URL}/api/v1/cli/pr-rules" \\
+        -H "Authorization: Bearer $JWT" --max-time 2 2>/dev/null \\
+        | jq -c '[.rules[]? | {rule_id, text, severity, category}]' 2>/dev/null || echo "[]")
+      [ -n "$ORG_RULES" ] && [ "$ORG_RULES" != "null" ] && printf '%s' "$ORG_RULES" > "$RULES_CACHE" 2>/dev/null || true
+    fi
+  else
+    ORG_RULES=$(printf '%s' "$FILE_CONTENT" | head -c 8000 \\
+      | jq -Rs '{content: .}' \\
+      | curl -sS "\${GATEWAY_URL}/api/v1/cli/pr-rules?top_k=20" \\
+      -X POST -H "Content-Type: application/json" \\
+      -H "Authorization: Bearer $JWT" \\
+      -d @- --max-time 2 2>/dev/null \\
+      | jq -c '[.rules[]? | {rule_id, text, severity, category}]' 2>/dev/null || echo "[]")
+  fi
   if [ -z "$ORG_RULES" ] || [ "$ORG_RULES" = "null" ]; then ORG_RULES="[]"; fi
 
   GRADER_PROMPT_FILE=$(mktemp -t synkro-edit-capture.XXXXXX)
@@ -1701,6 +1743,12 @@ CREDS_PATH="\${SYNKRO_CREDENTIALS_PATH:-$HOME/.synkro/credentials.json}"
 
 if [ ! -f "$CREDS_PATH" ]; then echo '{}'; exit 0; fi
 if [ "\${SYNKRO_TRANSCRIPT_CONSENT:-yes}" = "no" ]; then echo '{}'; exit 0; fi
+
+# Hard-skip in local_only privacy mode \u2014 conversation content must never leave the device.
+CD_CACHE_FILE="$HOME/.synkro/.tier-cache-\${SYNKRO_USER_ID:-default}.cd"
+SYNKRO_CAPTURE_DEPTH=$(cat "$CD_CACHE_FILE" 2>/dev/null || echo "full")
+if [ "$SYNKRO_CAPTURE_DEPTH" = "local_only" ]; then echo '{}'; exit 0; fi
+
 JWT=$(jq -r '.access_token // empty' "$CREDS_PATH" 2>/dev/null)
 if [ -z "$JWT" ]; then echo '{}'; exit 0; fi
 
@@ -3554,7 +3602,7 @@ function writeConfigEnv(opts) {
     `SYNKRO_CREDENTIALS_PATH=${shellQuoteSingle(credsPath)}`,
     `SYNKRO_TIER=${shellQuoteSingle(safeTier)}`,
     `SYNKRO_INFERENCE=${shellQuoteSingle(safeInference)}`,
-    `SYNKRO_VERSION=${shellQuoteSingle("1.3.31")}`
+    `SYNKRO_VERSION=${shellQuoteSingle("1.3.32")}`
   ];
   if (safeUserId) lines.push(`SYNKRO_USER_ID=${shellQuoteSingle(safeUserId)}`);
   if (safeOrgId) lines.push(`SYNKRO_ORG_ID=${shellQuoteSingle(safeOrgId)}`);