npm - @vm0/cli - Versions diffs - 9.98.2 → 9.100.0 - Mend

@vm0/cli 9.98.2 → 9.100.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/{chunk-3S6PEJ3G.js → chunk-2KKNOZ4M.js} +7592 -7535
package/chunk-2KKNOZ4M.js.map +1 -0
package/index.js +10 -10
package/index.js.map +1 -1
package/package.json +1 -1
package/zero.js +187 -8
package/zero.js.map +1 -1
package/chunk-3S6PEJ3G.js.map +0 -1

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@vm0/cli",
-  "version": "9.98.2",
+  "version": "9.100.0",
   "description": "CLI application",
   "repository": {
     "type": "git",

package/zero.js CHANGED Viewed

@@ -90,6 +90,7 @@ import {
   removeZeroOrgMember,
   renderRunCreated,
   resolveCompose,
+  resolveFirewallPolicies,
   resolveZeroScheduleByAgent,
   saveConfig,
   searchZeroLogs,
@@ -108,7 +109,7 @@ import {
   updateZeroUserPreferences,
   upsertZeroOrgModelProvider,
   withErrorHandler
-} from "./chunk-3S6PEJ3G.js";
+} from "./chunk-2KKNOZ4M.js";
 // src/zero.ts
 import { Command as Command73 } from "commander";
@@ -1268,30 +1269,139 @@ Notes:
 // src/commands/zero/agent/view.ts
 import { Command as Command26 } from "commander";
 import chalk23 from "chalk";
-var viewCommand = new Command26().name("view").description("View a zero agent").argument("<agent-id>", "Agent ID").option("--instructions", "Also show instructions content").addHelpText(
+function getConnectorPermissionInfo(type, resolvedPolicies) {
+  if (!isFirewallConnectorType(type)) {
+    return {
+      type,
+      hasFirewall: false,
+      permissions: [],
+      policies: null,
+      allowed: 0,
+      total: 0
+    };
+  }
+  const policies = resolvedPolicies?.[type] ?? null;
+  const config = getConnectorFirewall(type);
+  const permissions = config.apis.flatMap((a) => {
+    return a.permissions ?? [];
+  });
+  const total = permissions.length;
+  const allowed = policies ? permissions.filter((p) => {
+    return policies[p.name] === "allow";
+  }).length : 0;
+  return { type, hasFirewall: true, permissions, policies, allowed, total };
+}
+function formatConnectorIdentity(connector) {
+  if (!connector) return "";
+  if (connector.externalUsername) return `@${connector.externalUsername}`;
+  if (connector.externalEmail) return connector.externalEmail;
+  return "";
+}
+function formatConnectorSummary(info, identity) {
+  const id = formatConnectorIdentity(identity);
+  const idStr = id ? ` ${id}` : "";
+  if (!info.hasFirewall) return `${info.type}${idStr}`;
+  if (!info.policies) return `${info.type}${idStr} (full access)`;
+  return `${info.type}${idStr} (${info.allowed}/${info.total} allowed)`;
+}
+function printAccountLine(connector) {
+  if (!connector) return;
+  let identity = "";
+  if (connector.externalUsername && connector.externalEmail) {
+    identity = `@${connector.externalUsername} (${connector.externalEmail})`;
+  } else if (connector.externalUsername) {
+    identity = `@${connector.externalUsername}`;
+  } else if (connector.externalEmail) {
+    identity = connector.externalEmail;
+  }
+  if (!identity) return;
+  if (connector.needsReconnect) {
+    identity += ` ${chalk23.yellow("(needs reconnect)")}`;
+  }
+  console.log(`  Account: ${identity}`);
+}
+var viewCommand = new Command26().name("view").description("View a zero agent").argument("<agent-id>", "Agent ID").option("--instructions", "Also show instructions content").option("--permissions", "Show full permission details for each connector").addHelpText(
   "after",
   `
 Examples:
   View basic info:         zero agent view <agent-id>
   Include instructions:    zero agent view <agent-id> --instructions
+  Show permissions:        zero agent view <agent-id> --permissions
   View yourself:           zero agent view $ZERO_AGENT_ID --instructions`
 ).action(
   withErrorHandler(
     async (agentId, options) => {
-      const agent = await getZeroAgent(agentId);
+      const [agent, connectorTypes, connectorIdentities] = await Promise.all([
+        getZeroAgent(agentId),
+        getZeroAgentUserConnectors(agentId),
+        listZeroConnectors().catch(() => {
+          return { connectors: [] };
+        })
+      ]);
+      const identityMap = new Map(
+        connectorIdentities.connectors.map((c) => {
+          return [c.type, c];
+        })
+      );
       console.log(chalk23.bold(agent.agentId));
       if (agent.displayName) console.log(chalk23.dim(agent.displayName));
       console.log();
       console.log(`Agent ID:     ${agent.agentId}`);
-      const connectors = await getZeroAgentUserConnectors(agentId);
-      if (connectors.length > 0)
-        console.log(`Connectors:   ${connectors.join(", ")}`);
+      const resolvedPolicies = resolveFirewallPolicies(
+        agent.firewallPolicies,
+        connectorTypes
+      );
+      const connectorInfos = connectorTypes.map((type) => {
+        return getConnectorPermissionInfo(type, resolvedPolicies);
+      });
+      if (connectorInfos.length > 0) {
+        const summaries = connectorInfos.map((info) => {
+          return formatConnectorSummary(info, identityMap.get(info.type));
+        });
+        console.log(`Connectors:   ${summaries.join(", ")}`);
+      }
       if (agent.customSkills?.length > 0) {
         console.log(`Skills:       ${agent.customSkills.join(", ")}`);
       }
       if (agent.description)
         console.log(`Description:  ${agent.description}`);
       if (agent.sound) console.log(`Sound:        ${agent.sound}`);
+      if (options.permissions && connectorInfos.length > 0) {
+        console.log();
+        for (const info of connectorInfos) {
+          if (!info.hasFirewall) {
+            console.log(chalk23.dim(`\u2500\u2500 ${info.type} \u2500\u2500`));
+            printAccountLine(identityMap.get(info.type));
+            console.log("  No firewall configured.");
+            continue;
+          }
+          if (!info.policies) {
+            console.log(chalk23.dim(`\u2500\u2500 ${info.type} (full access) \u2500\u2500`));
+            printAccountLine(identityMap.get(info.type));
+            console.log(
+              "  No permission rules configured \u2014 all API calls allowed."
+            );
+            continue;
+          }
+          console.log(
+            chalk23.dim(
+              `\u2500\u2500 ${info.type} (${info.allowed}/${info.total} allowed) \u2500\u2500`
+            )
+          );
+          printAccountLine(identityMap.get(info.type));
+          const nameWidth = Math.max(
+            ...info.permissions.map((p) => {
+              return p.name.length;
+            })
+          );
+          for (const perm of info.permissions) {
+            const policy = info.policies[perm.name] ?? "deny";
+            const icon = policy === "allow" ? chalk23.green("\u2713") : policy === "ask" ? chalk23.yellow("?") : chalk23.dim("\u2717");
+            const desc = perm.description ?? "";
+            console.log(`  ${icon} ${perm.name.padEnd(nameWidth)}  ${desc}`);
+          }
+        }
+      }
       if (options.instructions) {
         console.log();
         const result = await getZeroAgentInstructions(agentId);
@@ -2101,7 +2211,7 @@ Notes:
     const isConnected = connector !== null;
     const hasPermission = enabledTypes !== null && enabledTypes.includes(connectorType);
     if (!isConnected) {
-      const url = `${platformUrl.origin}/connectors`;
+      const url = `${platformUrl.origin}/connectors/${connectorType}/connect`;
       console.log(
         `The ${label} connector is not connected. Ask the user to connect it at: [Connect ${label}](${url})`
       );
@@ -3730,6 +3840,44 @@ import chalk47 from "chalk";
 function isInsideSandbox() {
   return !!process.env.ZERO_AGENT_ID;
 }
+function formatConnectorIdentity2(connector) {
+  let identity = "";
+  if (connector.externalUsername && connector.externalEmail) {
+    identity = `@${connector.externalUsername} (${connector.externalEmail})`;
+  } else if (connector.externalUsername) {
+    identity = `@${connector.externalUsername}`;
+  } else if (connector.externalEmail) {
+    identity = connector.externalEmail;
+  }
+  if (connector.needsReconnect) {
+    identity += ` ${chalk47.yellow("(needs reconnect)")}`;
+  }
+  return identity;
+}
+function printConnectorPermissions(type, resolvedPolicies) {
+  if (!isFirewallConnectorType(type)) return;
+  const policies = resolvedPolicies?.[type] ?? null;
+  if (!policies) {
+    console.log(chalk47.dim("    full access \u2014 no permission rules configured"));
+    return;
+  }
+  const config = getConnectorFirewall(type);
+  const permissions = config.apis.flatMap((a) => {
+    return a.permissions ?? [];
+  });
+  if (permissions.length === 0) return;
+  const nameWidth = Math.max(
+    ...permissions.map((p) => {
+      return p.name.length;
+    })
+  );
+  for (const perm of permissions) {
+    const policy = policies[perm.name] ?? "deny";
+    const icon = policy === "allow" ? chalk47.green("\u2713") : policy === "ask" ? chalk47.yellow("?") : chalk47.dim("\u2717");
+    const desc = perm.description ?? "";
+    console.log(`    ${icon} ${perm.name.padEnd(nameWidth)}  ${desc}`);
+  }
+}
 async function showSandboxInfo() {
   const agentId = process.env.ZERO_AGENT_ID;
   const payload = decodeZeroTokenPayload();
@@ -3741,6 +3889,36 @@ async function showSandboxInfo() {
     console.log(chalk47.bold("Capabilities:"));
     console.log(`  ${payload.capabilities.join(", ")}`);
   }
+  try {
+    const [connectorsResult, agentResult, enabledResult] = await Promise.allSettled([
+      listZeroConnectors(),
+      getZeroAgent(agentId),
+      getZeroAgentUserConnectors(agentId)
+    ]);
+    if (connectorsResult.status === "rejected") return;
+    const identities = connectorsResult.value.connectors.filter((c) => {
+      return c.externalUsername !== null || c.externalEmail !== null;
+    });
+    if (identities.length === 0) return;
+    let resolvedPolicies = null;
+    const permissionDataAvailable = agentResult.status === "fulfilled" && enabledResult.status === "fulfilled";
+    if (permissionDataAvailable) {
+      resolvedPolicies = resolveFirewallPolicies(
+        agentResult.value.firewallPolicies,
+        enabledResult.value
+      );
+    }
+    console.log();
+    console.log(chalk47.bold("Connected Services:"));
+    for (const connector of identities) {
+      const identity = formatConnectorIdentity2(connector);
+      console.log(`  ${connector.type.padEnd(14)}${identity}`);
+      if (permissionDataAvailable) {
+        printConnectorPermissions(connector.type, resolvedPolicies);
+      }
+    }
+  } catch {
+  }
 }
 async function showLocalInfo() {
   const token = await getToken();
@@ -4458,6 +4636,7 @@ Examples:
 var COMMAND_CAPABILITY_MAP = {
   agent: "agent:read",
   skill: "agent:read",
+  connector: "connector:read",
   run: "agent-run:write",
   schedule: "schedule:read",
   doctor: null,
@@ -4499,7 +4678,7 @@ function registerZeroCommands(prog, commands) {
 var program = new Command73();
 program.name("zero").description(
   "Zero CLI \u2014 interact with the zero platform from inside the sandbox"
-).version("9.98.2").addHelpText(
+).version("9.100.0").addHelpText(
   "after",
   `
 Examples: