aemeathcli 1.0.9 → 1.0.11

package/dist/{chunk-Y5XVD2CD.js → chunk-SOQFMNQC.js}

@@ -1,6 +1,6 @@
-import { validatePath, isCommandBlocked, redactSecrets } from './chunk-CS5X3BWX.js';
-import { FileNotFoundError, ExecutionTimeoutError } from './chunk-ZGOHARPV.js';
-import { logger } from './chunk-JAXXTYID.js';
+import { validatePath, isPathAllowed, isCommandBlocked, redactSecrets } from './chunk-VBLLDY4R.js';
+import { FileNotFoundError, ExecutionTimeoutError } from './chunk-473JN6M5.js';
+import { logger } from './chunk-HEKFAKVH.js';
 import { stat, readFile, mkdir, writeFile } from 'fs/promises';
 import { dirname, resolve, extname } from 'path';
 import fg from 'fast-glob';
@@ -72,7 +72,7 @@ var ToolRegistry = class {
         isError: true
       };
     }
-    if (tool.requiresApproval(context.permissionMode, call.arguments)) {
+    if (tool.requiresApproval(context, call.arguments)) {
       return {
         toolCallId: call.id,
         name: call.name,
@@ -82,7 +82,7 @@ var ToolRegistry = class {
     }
     try {
       logger.debug({ toolName: call.name, args: redactToolArgs(call.arguments) }, "Executing tool");
-      const result = await tool.execute(call.arguments);
+      const result = await tool.execute(call.arguments, context);
       return {
         ...result,
         toolCallId: call.id,
@@ -168,10 +168,6 @@ function formatWithLineNumbers(content, offset, limit) {
     return `${lineNum}	${truncated}`;
   }).join("\n");
 }
-var projectRoot = process.cwd();
-function setReadProjectRoot(root) {
-  projectRoot = root;
-}
 function createReadTool() {
   return {
     definition: {
@@ -201,10 +197,10 @@ function createReadTool() {
       ]
     },
     category: "file",
-    requiresApproval: (_mode, _args) => {
+    requiresApproval: (_context, _args) => {
       return false;
     },
-    execute: async (args) => {
+    execute: async (args, context) => {
       const filePath = args["file_path"];
       if (typeof filePath !== "string" || filePath.length === 0) {
         return {
@@ -214,6 +210,8 @@ function createReadTool() {
           isError: true
         };
       }
+      const projectRoot = context.projectRoot;
+      const allowedPaths = context.allowedPaths;
       let resolvedPath;
       try {
         resolvedPath = validatePath(filePath, projectRoot);
@@ -221,6 +219,14 @@ function createReadTool() {
         const msg = err instanceof Error ? err.message : "Path validation failed";
         return { toolCallId: "", name: "read", content: msg, isError: true };
       }
+      if (!isPathAllowed(resolvedPath, allowedPaths, projectRoot)) {
+        return {
+          toolCallId: "",
+          name: "read",
+          content: `Access denied: ${resolvedPath} is outside the configured allowed paths.`,
+          isError: true
+        };
+      }
       let fileStat;
       try {
         fileStat = await stat(resolvedPath);
@@ -300,10 +306,6 @@ function isConfigFile(filePath) {
   const base = filePath.split("/").pop() ?? "";
   return CONFIG_EXTENSIONS.has(ext) || SENSITIVE_FILENAMES.has(base);
 }
-var projectRoot2 = process.cwd();
-function setWriteProjectRoot(root) {
-  projectRoot2 = root;
-}
 function createWriteTool() {
   return {
     definition: {
@@ -325,10 +327,10 @@ function createWriteTool() {
       ]
     },
     category: "file",
-    requiresApproval: (mode, _args) => {
-      return mode === "strict" || mode === "standard";
+    requiresApproval: (context, _args) => {
+      return context.permissionMode === "strict" || context.permissionMode === "standard";
     },
-    execute: async (args) => {
+    execute: async (args, context) => {
       const filePath = args["file_path"];
       const content = args["content"];
       if (typeof filePath !== "string" || filePath.length === 0) {
@@ -347,13 +349,23 @@ function createWriteTool() {
           isError: true
         };
       }
+      const projectRoot = context.projectRoot;
+      const allowedPaths = context.allowedPaths;
       let resolvedPath;
       try {
-        resolvedPath = validatePath(filePath, projectRoot2);
+        resolvedPath = validatePath(filePath, projectRoot);
       } catch (err) {
         const msg = err instanceof Error ? err.message : "Path validation failed";
         return { toolCallId: "", name: "write", content: msg, isError: true };
       }
+      if (!isPathAllowed(resolvedPath, allowedPaths, projectRoot)) {
+        return {
+          toolCallId: "",
+          name: "write",
+          content: `Access denied: ${resolvedPath} is outside the configured allowed paths.`,
+          isError: true
+        };
+      }
       const parentDir = dirname(resolvedPath);
       try {
         await mkdir(parentDir, { recursive: true });
@@ -399,10 +411,6 @@ function createWriteTool() {
     }
   };
 }
-var projectRoot3 = process.cwd();
-function setEditProjectRoot(root) {
-  projectRoot3 = root;
-}
 function createEditTool() {
   return {
     definition: {
@@ -437,10 +445,10 @@ function createEditTool() {
       ]
     },
     category: "file",
-    requiresApproval: (mode, _args) => {
-      return mode === "strict" || mode === "standard";
+    requiresApproval: (context, _args) => {
+      return context.permissionMode === "strict" || context.permissionMode === "standard";
     },
-    execute: async (args) => {
+    execute: async (args, context) => {
       const filePath = args["file_path"];
       const oldString = args["old_string"];
       const newString = args["new_string"];
@@ -477,13 +485,23 @@ function createEditTool() {
           isError: true
         };
       }
+      const projectRoot = context.projectRoot;
+      const allowedPaths = context.allowedPaths;
       let resolvedPath;
       try {
-        resolvedPath = validatePath(filePath, projectRoot3);
+        resolvedPath = validatePath(filePath, projectRoot);
       } catch (err) {
         const msg = err instanceof Error ? err.message : "Path validation failed";
         return { toolCallId: "", name: "edit", content: msg, isError: true };
       }
+      if (!isPathAllowed(resolvedPath, allowedPaths, projectRoot)) {
+        return {
+          toolCallId: "",
+          name: "edit",
+          content: `Access denied: ${resolvedPath} is outside the configured allowed paths.`,
+          isError: true
+        };
+      }
       try {
         const fileStat = await stat(resolvedPath);
         if (!fileStat.isFile()) {
@@ -545,10 +563,6 @@ function createEditTool() {
   };
 }
 var MAX_RESULTS = 1e3;
-var projectRoot4 = process.cwd();
-function setGlobProjectRoot(root) {
-  projectRoot4 = root;
-}
 function createGlobTool() {
   return {
     definition: {
@@ -570,10 +584,10 @@ function createGlobTool() {
       ]
     },
     category: "search",
-    requiresApproval: (_mode, _args) => {
+    requiresApproval: (_context, _args) => {
       return false;
     },
-    execute: async (args) => {
+    execute: async (args, context) => {
       const pattern = args["pattern"];
       if (typeof pattern !== "string" || pattern.length === 0) {
         return {
@@ -583,12 +597,22 @@ function createGlobTool() {
           isError: true
         };
       }
+      const projectRoot = context.projectRoot;
+      const allowedPaths = context.allowedPaths;
       let searchPath;
       if (typeof args["path"] === "string" && args["path"].length > 0) {
-        const resolved = resolve(projectRoot4, args["path"]);
-        searchPath = validatePath(resolved, projectRoot4);
+        const resolved = resolve(projectRoot, args["path"]);
+        searchPath = validatePath(resolved, projectRoot);
       } else {
-        searchPath = projectRoot4;
+        searchPath = projectRoot;
+      }
+      if (!isPathAllowed(searchPath, allowedPaths, projectRoot)) {
+        return {
+          toolCallId: "",
+          name: "glob",
+          content: `Access denied: ${searchPath} is outside the configured allowed paths.`,
+          isError: true
+        };
       }
       let matchedPaths;
       try {
@@ -742,10 +766,6 @@ function applyLimits(output, headLimit, offset) {
   }
   return result;
 }
-var projectRoot5 = process.cwd();
-function setGrepProjectRoot(root) {
-  projectRoot5 = root;
-}
 function createGrepTool() {
   return {
     definition: {
@@ -833,10 +853,10 @@ function createGrepTool() {
       ]
     },
     category: "search",
-    requiresApproval: (_mode, _args) => {
+    requiresApproval: (_context, _args) => {
       return false;
     },
-    execute: async (args) => {
+    execute: async (args, context) => {
       const pattern = args["pattern"];
       if (typeof pattern !== "string" || pattern.length === 0) {
         return {
@@ -846,12 +866,22 @@ function createGrepTool() {
           isError: true
         };
       }
+      const projectRoot = context.projectRoot;
+      const allowedPaths = context.allowedPaths;
       let searchPath;
       if (typeof args["path"] === "string" && args["path"].length > 0) {
-        const resolved = resolve(projectRoot5, args["path"]);
-        searchPath = validatePath(resolved, projectRoot5);
+        const resolved = resolve(projectRoot, args["path"]);
+        searchPath = validatePath(resolved, projectRoot);
       } else {
-        searchPath = projectRoot5;
+        searchPath = projectRoot;
+      }
+      if (!isPathAllowed(searchPath, allowedPaths, projectRoot)) {
+        return {
+          toolCallId: "",
+          name: "grep",
+          content: `Access denied: ${searchPath} is outside the configured allowed paths.`,
+          isError: true
+        };
       }
       const outputMode = args["output_mode"] === "content" || args["output_mode"] === "count" ? args["output_mode"] : "files_with_matches";
       const headLimit = typeof args["head_limit"] === "number" ? args["head_limit"] : DEFAULT_HEAD_LIMIT;
@@ -984,14 +1014,6 @@ function truncateOutput(output) {
   }
   return output.substring(0, MAX_OUTPUT_LENGTH2) + "\n...(truncated)";
 }
-var workingDirectory = process.cwd();
-var blockedCommands = [];
-function setBashWorkingDirectory(dir) {
-  workingDirectory = dir;
-}
-function setBashBlockedCommands(commands) {
-  blockedCommands = commands;
-}
 function createBashTool() {
   return {
     definition: {
@@ -1020,17 +1042,18 @@ function createBashTool() {
       ]
     },
     category: "shell",
-    requiresApproval: (mode, args) => {
+    requiresApproval: (context, args) => {
       const command = typeof args["command"] === "string" ? args["command"] : "";
+      const blockedCommands = context.blockedCommands;
       if (isDangerousCommand(command) || isCommandBlocked(command, blockedCommands)) {
         return true;
       }
-      if (mode === "strict") {
+      if (context.permissionMode === "strict") {
         return true;
       }
       return false;
     },
-    execute: async (args) => {
+    execute: async (args, context) => {
       const command = args["command"];
       if (typeof command !== "string" || command.length === 0) {
         return {
@@ -1040,6 +1063,10 @@ function createBashTool() {
           isError: true
         };
       }
+      const workingDirectory = context.workingDirectory;
+      const blockedCommands = context.blockedCommands;
+      const allowedPaths = context.allowedPaths;
+      const projectRoot = context.projectRoot;
       const lowerCommand = command.toLowerCase().trim();
       for (const pattern of DANGEROUS_PATTERNS) {
         if (lowerCommand.includes(pattern)) {
@@ -1059,6 +1086,14 @@ function createBashTool() {
           isError: true
         };
       }
+      if (!isPathAllowed(workingDirectory, allowedPaths, projectRoot)) {
+        return {
+          toolCallId: "",
+          name: "bash",
+          content: `Access denied: working directory ${workingDirectory} is outside the configured allowed paths.`,
+          isError: true
+        };
+      }
       let timeoutMs = DEFAULT_TIMEOUT_MS;
       if (typeof args["timeout"] === "number") {
         timeoutMs = Math.max(1e3, Math.min(args["timeout"], MAX_TIMEOUT_MS));
@@ -1149,7 +1184,7 @@ function createWebSearchTool() {
       ]
     },
     category: "web",
-    requiresApproval: (_mode, _args) => {
+    requiresApproval: (_context, _args) => {
       return false;
     },
     execute: async (args) => {
@@ -1237,6 +1272,9 @@ function isPrivateHostname(hostname) {
   const ipMatch = /^(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})$/.exec(hostname);
   if (ipMatch) {
     const [, a, b] = ipMatch;
+    if (a === void 0 || b === void 0) {
+      return false;
+    }
     const first = parseInt(a, 10);
     const second = parseInt(b, 10);
     if (first === 127) return true;
@@ -1304,9 +1342,7 @@ function createWebFetchTool() {
       ]
     },
     category: "web",
-    requiresApproval: (_mode, _args) => {
-      return false;
-    },
+    requiresApproval: (_context, _args) => false,
     execute: async (args) => {
       const rawUrl = args["url"];
       if (typeof rawUrl !== "string" || rawUrl.length === 0) {
@@ -1332,7 +1368,9 @@ function createWebFetchTool() {
       }
       logger.debug({ url, timeout: timeoutMs }, "Fetching URL");
       const controller = new AbortController();
-      const timeoutId = setTimeout(() => controller.abort(), timeoutMs);
+      const timeoutId = setTimeout(() => {
+        controller.abort();
+      }, timeoutMs);
       try {
         const response = await fetch(url, {
           signal: controller.signal,
@@ -1463,10 +1501,6 @@ function truncateOutput2(output) {
   }
   return output.substring(0, MAX_OUTPUT_LENGTH3) + "\n...(truncated)";
 }
-var workingDirectory2 = process.cwd();
-function setGitWorkingDirectory(dir) {
-  workingDirectory2 = dir;
-}
 function createGitTool() {
   return {
     definition: {
@@ -1482,7 +1516,7 @@ function createGitTool() {
       ]
     },
     category: "git",
-    requiresApproval: (mode, args) => {
+    requiresApproval: (context, args) => {
       const command = typeof args["command"] === "string" ? args["command"] : "";
       const subcommand = parseGitSubcommand(command);
       if (hasDangerousFlags(command)) {
@@ -1491,15 +1525,15 @@ function createGitTool() {
       if (subcommand && READ_ONLY_SUBCOMMANDS.has(subcommand)) {
         return false;
       }
-      if (mode === "strict") {
+      if (context.permissionMode === "strict") {
         return true;
       }
-      if (subcommand === "push" && mode === "standard") {
+      if (subcommand === "push" && context.permissionMode === "standard") {
         return true;
       }
       return false;
     },
-    execute: async (args) => {
+    execute: async (args, context) => {
       const command = args["command"];
       if (typeof command !== "string" || command.length === 0) {
         return {
@@ -1509,6 +1543,7 @@ function createGitTool() {
           isError: true
         };
       }
+      const workingDirectory = context.workingDirectory;
       const trimmedCommand = command.trim();
       if (!trimmedCommand.startsWith("git ")) {
         return {
@@ -1536,10 +1571,10 @@ function createGitTool() {
           isError: true
         };
       }
-      logger.debug({ command: trimmedCommand, subcommand, cwd: workingDirectory2 }, "Executing git command");
+      logger.debug({ command: trimmedCommand, subcommand, cwd: workingDirectory }, "Executing git command");
       try {
         const result = await execaCommand(trimmedCommand, {
-          cwd: workingDirectory2,
+          cwd: workingDirectory,
           timeout: GIT_TIMEOUT_MS,
           reject: false,
           env: {
@@ -1583,15 +1618,7 @@ function createGitTool() {
 }
 
 // src/tools/index.ts
-function createDefaultRegistry(context) {
-  setReadProjectRoot(context.projectRoot);
-  setWriteProjectRoot(context.projectRoot);
-  setEditProjectRoot(context.projectRoot);
-  setGlobProjectRoot(context.projectRoot);
-  setGrepProjectRoot(context.projectRoot);
-  setBashWorkingDirectory(context.workingDirectory);
-  setBashBlockedCommands(context.blockedCommands);
-  setGitWorkingDirectory(context.workingDirectory);
+function createDefaultRegistry(_context) {
   const registry = new ToolRegistry();
   registry.register(createReadTool());
   registry.register(createWriteTool());
@@ -1605,6 +1632,6 @@ function createDefaultRegistry(context) {
   return registry;
 }
 
-export { ToolRegistry, createBashTool, createDefaultRegistry, createEditTool, createGitTool, createGlobTool, createGrepTool, createReadTool, createWebFetchTool, createWebSearchTool, createWriteTool, setBashBlockedCommands, setBashWorkingDirectory, setEditProjectRoot, setGitWorkingDirectory, setGlobProjectRoot, setGrepProjectRoot, setReadProjectRoot, setWebSearchProvider, setWriteProjectRoot };
-//# sourceMappingURL=chunk-Y5XVD2CD.js.map
-//# sourceMappingURL=chunk-Y5XVD2CD.js.map
+export { ToolRegistry, createBashTool, createDefaultRegistry, createEditTool, createGitTool, createGlobTool, createGrepTool, createReadTool, createWebFetchTool, createWebSearchTool, createWriteTool, setWebSearchProvider };
+//# sourceMappingURL=chunk-SOQFMNQC.js.map
+//# sourceMappingURL=chunk-SOQFMNQC.js.map