@theokit/sdk 2.8.0 → 2.10.0

package/dist/eval.js

@@ -1,12 +1,12 @@
 import { randomUUID, randomBytes, createHash } from 'crypto';
-import { readFile, unlink, mkdir, open, rename, statfs, stat, rm, readdir, appendFile, access } from 'fs/promises';
+import { mkdir, writeFile, readFile, unlink, open, rename, statfs, stat, rm, readdir, appendFile, access } from 'fs/promises';
 import { join, dirname, resolve, sep, relative, isAbsolute } from 'path';
 import { z, toJSONSchema } from 'zod';
 import { readFileSync, mkdirSync, appendFileSync, readdirSync, existsSync, realpathSync, lstatSync, readlinkSync } from 'fs';
 import { AsyncLocalStorage } from 'async_hooks';
 import { createRequire } from 'module';
 import { homedir } from 'os';
-import { spawn } from 'child_process';
+import { execFile, spawn } from 'child_process';
 import { fileURLToPath } from 'url';
 
 var __defProp = Object.defineProperty;
@@ -3288,6 +3288,18 @@ async function writeVersionedJson(path, data2, currentVersion) {
   await atomicWriteJson(path, file);
 }
 
+// src/internal/plugins/enabled-names.ts
+function isPluginArray(plugins) {
+  return Array.isArray(plugins);
+}
+function asPluginsSettings(plugins) {
+  if (plugins === void 0) return void 0;
+  return isPluginArray(plugins) ? void 0 : plugins;
+}
+function enabledPluginNames(plugins) {
+  return asPluginsSettings(plugins)?.enabled ?? [];
+}
+
 // src/internal/runtime/registry/agent-registry-store.ts
 var SCHEMA_VERSION = 1;
 var LEGACY_SCHEMA_VERSION_STRING = "1.0";
@@ -3301,7 +3313,9 @@ function stripSecretsFromOptions(options) {
     cloud: serializeCloud(options.cloud),
     memory: serializeMemory(options.memory),
     skills: serializeEnabledList(options.skills),
-    plugins: serializeEnabledList(options.plugins),
+    // Code-`Plugin` objects are closures and cannot be persisted (like custom
+    // tools); only the named-enable settings form is serialized.
+    plugins: serializeEnabledList(asPluginsSettings(options.plugins)),
     context: serializeContext(options.context),
     providers: serializeProviders(options.providers),
     agents: serializeAgents(options.agents)
@@ -3609,8 +3623,9 @@ function serializeSkills(skills) {
   return { enabled: [...skills.enabled] };
 }
 function serializePlugins(plugins) {
-  if (plugins?.enabled === void 0 || plugins.enabled.length === 0) return void 0;
-  return { enabled: [...plugins.enabled] };
+  const enabled = enabledPluginNames(plugins);
+  if (enabled.length === 0) return void 0;
+  return { enabled: [...enabled] };
 }
 function serializeMcp(mcpServers) {
   if (mcpServers === void 0) return void 0;
@@ -3793,11 +3808,8 @@ function defaultLocalTools(request) {
       tools.push(`mcp_${sanitizeMcpName(name)}_call`);
     }
   }
-  const plugins = request.agentOptions.plugins;
-  if (plugins?.enabled !== void 0) {
-    for (const _pluginName of plugins.enabled) {
-      tools.push("mcp_search_provider_web_search");
-    }
+  for (const _pluginName of enabledPluginNames(request.agentOptions.plugins)) {
+    tools.push("mcp_search_provider_web_search");
   }
   return tools;
 }
@@ -7040,7 +7052,7 @@ function resolveRoute(route, modelProvider, plugins) {
     if (modelName !== void 0) base.model = modelName;
     return base;
   }
-  if (plugins?.enabled !== void 0 && plugins.enabled.length > 0) {
+  if (enabledPluginNames(plugins).length > 0) {
     return {
       capability: route.capability,
       provider: route.provider,
@@ -8043,7 +8055,7 @@ function bootstrapSubmanagers(args) {
       args.settingSourcesIncludeProject
     );
   }
-  const providerCount = (args.options.providers?.routes?.length ?? 0) + (args.options.plugins?.enabled?.length ?? 0);
+  const providerCount = (args.options.providers?.routes?.length ?? 0) + enabledPluginNames(args.options.plugins).length;
   if (providerCount > 0 || args.options.providers !== void 0) {
     out.providers = new ProvidersManagerImpl(
       args.options.model,
@@ -8063,7 +8075,9 @@ function bootstrapSubmanagers(args) {
   if (args.options.plugins !== void 0 || args.settingSourcesIncludePlugins) {
     out.pluginsManager = new PluginsManager(
       args.workspaceCwd,
-      args.options.plugins?.enabled,
+      // The array (code-`Plugin`) form has no named-enable list; `undefined`
+      // here preserves "no filter / load all file-discovered plugins".
+      asPluginsSettings(args.options.plugins)?.enabled,
       args.settingSourcesIncludePlugins,
       false,
       void 0
@@ -15355,7 +15369,7 @@ var Agent = class _Agent {
     const runtime = options.cloud !== void 0 ? "cloud" : "local";
     const span = telemetry.startSpan(SPAN_NAMES.AGENT_CREATE, {
       runtime,
-      pluginCount: options.plugins?.enabled?.length ?? 0
+      pluginCount: enabledPluginNames(options.plugins).length
     });
     try {
       const agent = await runCreateUnderSpan(options, span);
@@ -16190,6 +16204,118 @@ async function llmJudgeScore(options) {
   return parseScore(judgement.text, rubric);
 }
 
+// src/sandbox/types.ts
+var SandboxSecurityError = class extends Error {
+  code = "sandbox_security";
+  constructor(message) {
+    super(message);
+    this.name = "SandboxSecurityError";
+  }
+};
+var SHELL_METACHARACTERS = /[;&|`$(){}]/;
+var SandboxBackend = class {
+  config;
+  constructor(config = {}) {
+    this.config = {
+      workDir: config.workDir ?? "/tmp",
+      timeoutMs: config.timeoutMs ?? 3e4,
+      maxOutputBytes: config.maxOutputBytes ?? 5 * 1024 * 1024
+    };
+  }
+  async readFile(path) {
+    const result = await this.execute(`cat ${this.shellEscape(path)}`);
+    if (result.exitCode !== 0) {
+      throw new Error(`readFile failed: ${result.stderr}`);
+    }
+    return result.stdout;
+  }
+  async writeFile(path, content) {
+    await this.uploadFile(path, content);
+  }
+  async glob(pattern, cwd) {
+    const dir = cwd ?? this.config.workDir ?? ".";
+    const result = await this.execute(
+      `find ${this.shellEscape(dir)} -name ${this.shellEscape(pattern)} -type f 2>/dev/null`
+    );
+    if (result.exitCode !== 0) return [];
+    return result.stdout.trim().split("\n").filter(Boolean);
+  }
+  async grep(pattern, path) {
+    const target = path ?? ".";
+    const result = await this.execute(
+      `grep -rn ${this.shellEscape(pattern)} ${this.shellEscape(target)} 2>/dev/null`
+    );
+    if (result.exitCode !== 0) return [];
+    return result.stdout.trim().split("\n").filter(Boolean);
+  }
+  async listDir(path) {
+    const result = await this.execute(`ls -1 ${this.shellEscape(path)}`);
+    if (result.exitCode !== 0) return [];
+    return result.stdout.trim().split("\n").filter(Boolean);
+  }
+  validateCommand(command) {
+    if (SHELL_METACHARACTERS.test(command)) {
+      throw new SandboxSecurityError(
+        `Command contains shell metacharacters: ${command.slice(0, 80)}`
+      );
+    }
+  }
+  truncateOutput(output) {
+    const max = this.config.maxOutputBytes ?? 5 * 1024 * 1024;
+    if (Buffer.byteLength(output) > max) {
+      return `${output.slice(0, max)}
+...(truncated)`;
+    }
+    return output;
+  }
+  shellEscape(arg) {
+    return shellEscapePosix(arg);
+  }
+};
+
+// src/sandbox/local-sandbox.ts
+var LocalSandbox = class extends SandboxBackend {
+  constructor(config = {}) {
+    super(config);
+  }
+  async execute(command, opts) {
+    const timeout = opts?.timeoutMs ?? this.config.timeoutMs ?? 3e4;
+    const max = this.config.maxOutputBytes ?? 5 * 1024 * 1024;
+    return new Promise((resolve3) => {
+      const child = execFile(
+        "/bin/sh",
+        ["-c", command],
+        {
+          cwd: this.config.workDir,
+          timeout,
+          maxBuffer: max,
+          encoding: "utf-8"
+        },
+        (error, stdout, stderr) => {
+          resolve3(this.buildResult(error, stdout ?? "", stderr ?? ""));
+        }
+      );
+      child.on("error", () => {
+        resolve3({ stdout: "", stderr: "spawn error", exitCode: 1, timedOut: false });
+      });
+    });
+  }
+  buildResult(error, stdout, stderr) {
+    const timedOut = error !== null && "killed" in error && error.killed;
+    return {
+      stdout: this.truncateOutput(stdout),
+      stderr: this.truncateOutput(stderr),
+      exitCode: timedOut ? 124 : error ? 1 : 0,
+      timedOut
+    };
+  }
+  async uploadFile(path, content) {
+    const fullPath = path.startsWith("/") ? path : `${this.config.workDir}/${path}`;
+    await mkdir(dirname(fullPath), { recursive: true });
+    await writeFile(fullPath, content, "utf-8");
+  }
+};
+
 // src/scorers.ts
 var JSON_SHAPE_MAX_BYTES = 1e6;
 function makeStringScorer(name, caseSensitive, compare) {
@@ -16293,7 +16419,7 @@ var Scorers = {
    * that rejects shell metacharacters in `execute` is unsupported for this scorer.
    */
   verifyGate(opts) {
-    const { sandbox, repoDir, failToPass, passToPass, command } = opts;
+    const { sandbox = new LocalSandbox(), repoDir, failToPass, passToPass, command } = opts;
     return {
       name: "verify-gate",
       score: async () => {