ai-cmd 1.0.1

package/dist/exec/runCommand.d.ts

@@ -0,0 +1,11 @@
+export interface RunCommandOptions {
+    cwd?: string;
+    env?: NodeJS.ProcessEnv;
+    stdio?: "inherit" | "pipe";
+}
+export declare function needsShellExecution(command: string): boolean;
+export declare function runCommand(command: string, options?: RunCommandOptions): Promise<{
+    exitCode: number;
+    stdout: string;
+    stderr: string;
+}>;

package/dist/exec/runCommand.js

@@ -0,0 +1,57 @@
+import { execa, execaCommand } from "execa";
+import { parse as parseShellCommand } from "shell-quote";
+import { ExecutionError } from "../utils/errors.js";
+const SHELL_REQUIRED_PATTERN = /[|&;<>()$`*?[\]{}]|\b(?:if|then|fi|for|do|done|while|case)\b|^\s*[A-Za-z_][A-Za-z0-9_]*=/;
+export function needsShellExecution(command) {
+    return SHELL_REQUIRED_PATTERN.test(command);
+}
+export async function runCommand(command, options = {}) {
+    try {
+        if (needsShellExecution(command)) {
+            const executionOptions = {
+                ...(options.cwd ? { cwd: options.cwd } : {}),
+                ...(options.env ? { env: options.env } : {}),
+                stdio: options.stdio ?? "inherit",
+                reject: false,
+                shell: true
+            };
+            const result = await execaCommand(command, {
+                ...executionOptions
+            });
+            if (result.exitCode !== 0) {
+                throw new ExecutionError(`Command failed with exit code ${result.exitCode}.`, result.stderr || result.stdout);
+            }
+            return {
+                exitCode: result.exitCode ?? 0,
+                stdout: result.stdout ?? "",
+                stderr: result.stderr ?? ""
+            };
+        }
+        const tokens = parseShellCommand(command).filter((part) => typeof part === "string");
+        const [file, ...args] = tokens;
+        if (!file) {
+            throw new ExecutionError("No executable command was produced.");
+        }
+        const result = await execa(file, args, {
+            ...(options.cwd ? { cwd: options.cwd } : {}),
+            ...(options.env ? { env: options.env } : {}),
+            stdio: options.stdio ?? "inherit",
+            reject: false
+        });
+        if (result.exitCode !== 0) {
+            throw new ExecutionError(`Command failed with exit code ${result.exitCode}.`, result.stderr || result.stdout);
+        }
+        return {
+            exitCode: result.exitCode ?? 0,
+            stdout: result.stdout ?? "",
+            stderr: result.stderr ?? ""
+        };
+    }
+    catch (error) {
+        if (error instanceof ExecutionError) {
+            throw error;
+        }
+        throw new ExecutionError("Failed to execute command.", error);
+    }
+}
+//# sourceMappingURL=runCommand.js.map

package/dist/exec/runCommand.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"runCommand.js","sourceRoot":"","sources":["../../src/exec/runCommand.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,YAAY,EAAE,MAAM,OAAO,CAAC;AAC5C,OAAO,EAAE,KAAK,IAAI,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAEzD,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAQpD,MAAM,sBAAsB,GAC1B,0FAA0F,CAAC;AAE7F,MAAM,UAAU,mBAAmB,CAAC,OAAe;IACjD,OAAO,sBAAsB,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;AAC9C,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,UAAU,CAC9B,OAAe,EACf,UAA6B,EAAE;IAE/B,IAAI,CAAC;QACH,IAAI,mBAAmB,CAAC,OAAO,CAAC,EAAE,CAAC;YACjC,MAAM,gBAAgB,GAAG;gBACvB,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;gBAC5C,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;gBAC5C,KAAK,EAAE,OAAO,CAAC,KAAK,IAAI,SAAS;gBACjC,MAAM,EAAE,KAAc;gBACtB,KAAK,EAAE,IAAa;aACrB,CAAC;YACF,MAAM,MAAM,GAAG,MAAM,YAAY,CAAC,OAAO,EAAE;gBACzC,GAAG,gBAAgB;aACpB,CAAC,CAAC;YAEH,IAAI,MAAM,CAAC,QAAQ,KAAK,CAAC,EAAE,CAAC;gBAC1B,MAAM,IAAI,cAAc,CACtB,iCAAiC,MAAM,CAAC,QAAQ,GAAG,EACnD,MAAM,CAAC,MAAM,IAAI,MAAM,CAAC,MAAM,CAC/B,CAAC;YACJ,CAAC;YAED,OAAO;gBACL,QAAQ,EAAE,MAAM,CAAC,QAAQ,IAAI,CAAC;gBAC9B,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,EAAE;gBAC3B,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,EAAE;aAC5B,CAAC;QACJ,CAAC;QAED,MAAM,MAAM,GAAG,iBAAiB,CAAC,OAAO,CAAC,CAAC,MAAM,CAC9C,CAAC,IAAI,EAAkB,EAAE,CAAC,OAAO,IAAI,KAAK,QAAQ,CACnD,CAAC;QACF,MAAM,CAAC,IAAI,EAAE,GAAG,IAAI,CAAC,GAAG,MAAM,CAAC;QAE/B,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,cAAc,CAAC,qCAAqC,CAAC,CAAC;QAClE,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,IAAI,EAAE,IAAI,EAAE;YACrC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC5C,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC5C,KAAK,EAAE,OAAO,CAAC,KAAK,IAAI,SAAS;YACjC,MAAM,EAAE,KAAK;SACd,CAAC,CAAC;QAEH,IAAI,MAAM,CAAC,QAAQ,KAAK,CAAC,EAAE,CAAC;YAC1B,MAAM,IAAI,cAAc,CACtB,iCAAiC,MAAM,CAAC,QAAQ,GAAG,EACnD,MAAM,CAAC,MAAM,IAAI,MAAM,CAAC,MAAM,CAC/B,CAAC;QACJ,CAAC;QAED,OAAO;YACL,QAAQ,EAAE,MAAM,CAAC,QAAQ,IAAI,CAAC;YAC9B,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,EAAE;YAC3B,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,EAAE;SAC5B,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,cAAc,EAAE,CAAC;YACpC,MAAM,KAAK,CAAC;QACd,CAAC;QAED,MAAM,IAAI,cAAc,CAAC,4BAA4B,EAAE,KAAK,CAAC,CAAC;IAChE,CAAC;AACH,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,5 @@
+export * from "./types/index.js";
+export * from "./config/userConfig.js";
+export * from "./core/generateCommand.js";
+export * from "./platform/detectPlatform.js";
+export * from "./safety/classifyRisk.js";

package/dist/index.js

@@ -0,0 +1,6 @@
+export * from "./types/index.js";
+export * from "./config/userConfig.js";
+export * from "./core/generateCommand.js";
+export * from "./platform/detectPlatform.js";
+export * from "./safety/classifyRisk.js";
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,kBAAkB,CAAC;AACjC,cAAc,wBAAwB,CAAC;AACvC,cAAc,2BAA2B,CAAC;AAC1C,cAAc,8BAA8B,CAAC;AAC7C,cAAc,0BAA0B,CAAC"}

package/dist/platform/detectPlatform.d.ts

@@ -0,0 +1,9 @@
+import type { OperatingSystem, PlatformContext } from "../types/index.js";
+export type InferOperatingSystemOptions = {
+    platform: NodeJS.Platform;
+    env?: NodeJS.ProcessEnv;
+    procVersion?: string;
+};
+export declare function inferOperatingSystem(options: InferOperatingSystemOptions): OperatingSystem;
+export declare function detectOperatingSystem(): Promise<OperatingSystem>;
+export declare function detectPlatformContext(): Promise<PlatformContext>;

package/dist/platform/detectPlatform.js

@@ -0,0 +1,49 @@
+import { readFile } from "node:fs/promises";
+import path from "node:path";
+import { detectServiceManager } from "./detectServiceManager.js";
+import { detectShell } from "./detectShell.js";
+export function inferOperatingSystem(options) {
+    if (options.platform === "darwin") {
+        return "macos";
+    }
+    if (options.platform === "linux") {
+        const wslEnv = options.env?.WSL_DISTRO_NAME ||
+            options.env?.WSL_INTEROP ||
+            options.procVersion?.toLowerCase().includes("microsoft");
+        return wslEnv ? "wsl" : "linux";
+    }
+    if (options.platform === "freebsd" || options.platform === "openbsd") {
+        return "unix";
+    }
+    return "unsupported";
+}
+async function readProcVersion() {
+    try {
+        return await readFile("/proc/version", "utf8");
+    }
+    catch {
+        return undefined;
+    }
+}
+export async function detectOperatingSystem() {
+    const procVersion = process.platform === "linux" ? await readProcVersion() : undefined;
+    return inferOperatingSystem({
+        platform: process.platform,
+        env: process.env,
+        ...(procVersion ? { procVersion } : {})
+    });
+}
+export async function detectPlatformContext() {
+    const os = await detectOperatingSystem();
+    const shell = detectShell();
+    const serviceManager = await detectServiceManager(os);
+    const cwd = process.cwd();
+    return {
+        os,
+        shell,
+        serviceManager,
+        cwd,
+        cwdName: path.basename(cwd) || cwd
+    };
+}
+//# sourceMappingURL=detectPlatform.js.map

package/dist/platform/detectPlatform.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"detectPlatform.js","sourceRoot":"","sources":["../../src/platform/detectPlatform.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAC5C,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,OAAO,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AACjE,OAAO,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAS/C,MAAM,UAAU,oBAAoB,CAClC,OAAoC;IAEpC,IAAI,OAAO,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAClC,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,IAAI,OAAO,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;QACjC,MAAM,MAAM,GACV,OAAO,CAAC,GAAG,EAAE,eAAe;YAC5B,OAAO,CAAC,GAAG,EAAE,WAAW;YACxB,OAAO,CAAC,WAAW,EAAE,WAAW,EAAE,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAE3D,OAAO,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,OAAO,CAAC;IAClC,CAAC;IAED,IAAI,OAAO,CAAC,QAAQ,KAAK,SAAS,IAAI,OAAO,CAAC,QAAQ,KAAK,SAAS,EAAE,CAAC;QACrE,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,OAAO,aAAa,CAAC;AACvB,CAAC;AAED,KAAK,UAAU,eAAe;IAC5B,IAAI,CAAC;QACH,OAAO,MAAM,QAAQ,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;IACjD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,SAAS,CAAC;IACnB,CAAC;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,qBAAqB;IACzC,MAAM,WAAW,GAAG,OAAO,CAAC,QAAQ,KAAK,OAAO,CAAC,CAAC,CAAC,MAAM,eAAe,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IAEvF,OAAO,oBAAoB,CAAC;QAC1B,QAAQ,EAAE,OAAO,CAAC,QAAQ;QAC1B,GAAG,EAAE,OAAO,CAAC,GAAG;QAChB,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;KACxC,CAAC,CAAC;AACL,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,qBAAqB;IACzC,MAAM,EAAE,GAAG,MAAM,qBAAqB,EAAE,CAAC;IACzC,MAAM,KAAK,GAAG,WAAW,EAAE,CAAC;IAC5B,MAAM,cAAc,GAAG,MAAM,oBAAoB,CAAC,EAAE,CAAC,CAAC;IACtD,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC;IAE1B,OAAO;QACL,EAAE;QACF,KAAK;QACL,cAAc;QACd,GAAG;QACH,OAAO,EAAE,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,GAAG;KACnC,CAAC;AACJ,CAAC"}

package/dist/platform/detectServiceManager.d.ts

@@ -0,0 +1,3 @@
+import type { OperatingSystem, ServiceManager } from "../types/index.js";
+export declare function commandExists(command: string, envPath?: string | undefined): Promise<boolean>;
+export declare function detectServiceManager(os: OperatingSystem, exists?: (command: string) => Promise<boolean>): Promise<ServiceManager>;

package/dist/platform/detectServiceManager.js

@@ -0,0 +1,38 @@
+import { access } from "node:fs/promises";
+import path from "node:path";
+import { constants } from "node:fs";
+export async function commandExists(command, envPath = process.env.PATH) {
+    if (!envPath) {
+        return false;
+    }
+    for (const entry of envPath.split(path.delimiter)) {
+        const fullPath = path.join(entry, command);
+        try {
+            await access(fullPath, constants.X_OK);
+            return true;
+        }
+        catch {
+            continue;
+        }
+    }
+    return false;
+}
+export async function detectServiceManager(os, exists = commandExists) {
+    if (os === "macos") {
+        return "launchctl";
+    }
+    if (os !== "linux" && os !== "wsl" && os !== "unix") {
+        return "unknown";
+    }
+    if (await exists("systemctl")) {
+        return "systemctl";
+    }
+    if (await exists("service")) {
+        return "service";
+    }
+    if (await exists("rc-service")) {
+        return "rc-service";
+    }
+    return "unknown";
+}
+//# sourceMappingURL=detectServiceManager.js.map

package/dist/platform/detectServiceManager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"detectServiceManager.js","sourceRoot":"","sources":["../../src/platform/detectServiceManager.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AAIpC,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,OAAe,EACf,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,IAAI;IAE1B,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,KAAK,CAAC;IACf,CAAC;IAED,KAAK,MAAM,KAAK,IAAI,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC;QAClD,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;QAE3C,IAAI,CAAC;YACH,MAAM,MAAM,CAAC,QAAQ,EAAE,SAAS,CAAC,IAAI,CAAC,CAAC;YACvC,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,EAAmB,EACnB,SAAgD,aAAa;IAE7D,IAAI,EAAE,KAAK,OAAO,EAAE,CAAC;QACnB,OAAO,WAAW,CAAC;IACrB,CAAC;IAED,IAAI,EAAE,KAAK,OAAO,IAAI,EAAE,KAAK,KAAK,IAAI,EAAE,KAAK,MAAM,EAAE,CAAC;QACpD,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,IAAI,MAAM,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC;QAC9B,OAAO,WAAW,CAAC;IACrB,CAAC;IAED,IAAI,MAAM,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC;QAC5B,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,IAAI,MAAM,MAAM,CAAC,YAAY,CAAC,EAAE,CAAC;QAC/B,OAAO,YAAY,CAAC;IACtB,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC"}

package/dist/platform/detectShell.d.ts

@@ -0,0 +1,3 @@
+import type { ShellType } from "../types/index.js";
+export declare function inferShellType(shellPath: string | undefined): ShellType;
+export declare function detectShell(shellPath?: string | undefined): ShellType;

package/dist/platform/detectShell.js

@@ -0,0 +1,21 @@
+import path from "node:path";
+export function inferShellType(shellPath) {
+    if (!shellPath) {
+        return "unknown";
+    }
+    const shellName = path.basename(shellPath).toLowerCase();
+    if (shellName.includes("zsh")) {
+        return "zsh";
+    }
+    if (shellName.includes("bash")) {
+        return "bash";
+    }
+    if (shellName === "sh" || shellName.endsWith("/sh")) {
+        return "sh";
+    }
+    return "unknown";
+}
+export function detectShell(shellPath = process.env.SHELL) {
+    return inferShellType(shellPath);
+}
+//# sourceMappingURL=detectShell.js.map

package/dist/platform/detectShell.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"detectShell.js","sourceRoot":"","sources":["../../src/platform/detectShell.ts"],"names":[],"mappings":"AAAA,OAAO,IAAI,MAAM,WAAW,CAAC;AAI7B,MAAM,UAAU,cAAc,CAAC,SAA6B;IAC1D,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE,CAAC;IAEzD,IAAI,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QAC9B,OAAO,KAAK,CAAC;IACf,CAAC;IAED,IAAI,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;QAC/B,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,IAAI,SAAS,KAAK,IAAI,IAAI,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QACpD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,MAAM,UAAU,WAAW,CAAC,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,KAAK;IACvD,OAAO,cAAc,CAAC,SAAS,CAAC,CAAC;AACnC,CAAC"}

package/dist/providers/factory.d.ts

@@ -0,0 +1,2 @@
+import type { AppConfig, AIProvider } from "../types/index.js";
+export declare function createProvider(config: AppConfig): AIProvider;

package/dist/providers/factory.js

@@ -0,0 +1,9 @@
+import { ConfigurationError } from "../utils/errors.js";
+import { OpenAICompatibleProvider } from "./openai.js";
+export function createProvider(config) {
+    if (config.provider === "openai") {
+        return new OpenAICompatibleProvider(config);
+    }
+    throw new ConfigurationError(`Unsupported AI provider: ${config.provider}`);
+}
+//# sourceMappingURL=factory.js.map

package/dist/providers/factory.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"factory.js","sourceRoot":"","sources":["../../src/providers/factory.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAC;AACxD,OAAO,EAAE,wBAAwB,EAAE,MAAM,aAAa,CAAC;AAEvD,MAAM,UAAU,cAAc,CAAC,MAAiB;IAC9C,IAAI,MAAM,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QACjC,OAAO,IAAI,wBAAwB,CAAC,MAAM,CAAC,CAAC;IAC9C,CAAC;IAED,MAAM,IAAI,kBAAkB,CAAC,4BAA4B,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC;AAC9E,CAAC"}

package/dist/providers/openai.d.ts

@@ -0,0 +1,8 @@
+import type { AppConfig, GenerateObjectRequest, ProviderTextResponse } from "../types/index.js";
+import type { AIProvider } from "./types.js";
+export declare class OpenAICompatibleProvider implements AIProvider {
+    private readonly config;
+    readonly name: "openai";
+    constructor(config: AppConfig);
+    generateObject(input: GenerateObjectRequest): Promise<ProviderTextResponse>;
+}

package/dist/providers/openai.js

@@ -0,0 +1,73 @@
+import { ProviderError } from "../utils/errors.js";
+export class OpenAICompatibleProvider {
+    config;
+    name = "openai";
+    constructor(config) {
+        this.config = config;
+    }
+    async generateObject(input) {
+        const controller = new AbortController();
+        const timeout = setTimeout(() => controller.abort(), this.config.timeoutMs);
+        try {
+            const response = await fetch(`${this.config.baseUrl}/chat/completions`, {
+                method: "POST",
+                headers: {
+                    Authorization: `Bearer ${this.config.apiKey}`,
+                    "Content-Type": "application/json"
+                },
+                body: JSON.stringify({
+                    model: this.config.model,
+                    temperature: input.temperature ?? 0.1,
+                    response_format: {
+                        type: "json_object"
+                    },
+                    messages: [
+                        {
+                            role: "system",
+                            content: input.systemPrompt
+                        },
+                        {
+                            role: "user",
+                            content: input.userPrompt
+                        }
+                    ]
+                }),
+                signal: controller.signal
+            });
+            const data = (await response.json());
+            if (!response.ok) {
+                throw new ProviderError(data.error?.message
+                    ? `Provider request failed: ${data.error.message}`
+                    : `Provider request failed with status ${response.status}.`);
+            }
+            const message = data.choices?.[0]?.message?.content;
+            const rawText = Array.isArray(message)
+                ? message
+                    .map((part) => part.text)
+                    .filter((part) => typeof part === "string")
+                    .join("")
+                : message;
+            if (!rawText || rawText.trim().length === 0) {
+                throw new ProviderError("Provider returned an empty response.");
+            }
+            return {
+                provider: this.name,
+                model: this.config.model,
+                rawText
+            };
+        }
+        catch (error) {
+            if (error instanceof ProviderError) {
+                throw error;
+            }
+            if (error.name === "AbortError") {
+                throw new ProviderError(`Provider request timed out after ${this.config.timeoutMs}ms.`, error);
+            }
+            throw new ProviderError("Failed to reach AI provider.", error);
+        }
+        finally {
+            clearTimeout(timeout);
+        }
+    }
+}
+//# sourceMappingURL=openai.js.map

package/dist/providers/openai.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"openai.js","sourceRoot":"","sources":["../../src/providers/openai.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAanD,MAAM,OAAO,wBAAwB;IAGC;IAFpB,IAAI,GAAG,QAAiB,CAAC;IAEzC,YAAoC,MAAiB;QAAjB,WAAM,GAAN,MAAM,CAAW;IAAG,CAAC;IAElD,KAAK,CAAC,cAAc,CACzB,KAA4B;QAE5B,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,OAAO,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAE5E,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,mBAAmB,EAAE;gBACtE,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,aAAa,EAAE,UAAU,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE;oBAC7C,cAAc,EAAE,kBAAkB;iBACnC;gBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;oBACnB,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,KAAK;oBACxB,WAAW,EAAE,KAAK,CAAC,WAAW,IAAI,GAAG;oBACrC,eAAe,EAAE;wBACf,IAAI,EAAE,aAAa;qBACpB;oBACD,QAAQ,EAAE;wBACR;4BACE,IAAI,EAAE,QAAQ;4BACd,OAAO,EAAE,KAAK,CAAC,YAAY;yBAC5B;wBACD;4BACE,IAAI,EAAE,MAAM;4BACZ,OAAO,EAAE,KAAK,CAAC,UAAU;yBAC1B;qBACF;iBACF,CAAC;gBACF,MAAM,EAAE,UAAU,CAAC,MAAM;aAC1B,CAAC,CAAC;YAEH,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAuB,CAAC;YAE3D,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,IAAI,aAAa,CACrB,IAAI,CAAC,KAAK,EAAE,OAAO;oBACjB,CAAC,CAAC,4BAA4B,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE;oBAClD,CAAC,CAAC,uCAAuC,QAAQ,CAAC,MAAM,GAAG,CAC9D,CAAC;YACJ,CAAC;YAED,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC;YACpD,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC;gBACpC,CAAC,CAAC,OAAO;qBACJ,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC;qBACxB,MAAM,CAAC,CAAC,IAAI,EAAkB,EAAE,CAAC,OAAO,IAAI,KAAK,QAAQ,CAAC;qBAC1D,IAAI,CAAC,EAAE,CAAC;gBACb,CAAC,CAAC,OAAO,CAAC;YAEZ,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC5C,MAAM,IAAI,aAAa,CAAC,sCAAsC,CAAC,CAAC;YAClE,CAAC;YAED,OAAO;gBACL,QAAQ,EAAE,IAAI,CAAC,IAAI;gBACnB,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,KAAK;gBACxB,OAAO;aACR,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,aAAa,EAAE,CAAC;gBACnC,MAAM,KAAK,CAAC;YACd,CAAC;YAED,IAAK,KAAe,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;gBAC3C,MAAM,IAAI,aAAa,CACrB,oCAAoC,IAAI,CAAC,MAAM,CAAC,SAAS,KAAK,EAC9D,KAAK,CACN,CAAC;YACJ,CAAC;YAED,MAAM,IAAI,aAAa,CAAC,8BAA8B,EAAE,KAAK,CAAC,CAAC;QACjE,CAAC;gBAAS,CAAC;YACT,YAAY,CAAC,OAAO,CAAC,CAAC;QACxB,CAAC;IACH,CAAC;CACF"}

package/dist/providers/types.d.ts

@@ -0,0 +1 @@
+export type { AIProvider, GenerateObjectRequest, ProviderTextResponse } from "../types/index.js";

package/dist/providers/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/providers/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/providers/types.ts"],"names":[],"mappings":""}

package/dist/safety/classifyRisk.d.ts

@@ -0,0 +1,7 @@
+import type { RiskLevel } from "../types/index.js";
+export interface RiskAssessment {
+    level: RiskLevel;
+    reasons: string[];
+}
+export declare function assessCommandRisk(command: string): RiskAssessment;
+export declare function classifyRisk(command: string): RiskLevel;

package/dist/safety/classifyRisk.js

@@ -0,0 +1,115 @@
+import { parse as parseShellCommand } from "shell-quote";
+import { HIGH_RISK_RULES, MEDIUM_RISK_RULES } from "./dangerousPatterns.js";
+const SAFE_DELETE_TARGETS = new Set([
+    "node_modules",
+    "./node_modules",
+    "dist",
+    "./dist",
+    "build",
+    "./build",
+    ".turbo",
+    "./.turbo",
+    ".next",
+    "./.next",
+    "coverage",
+    "./coverage"
+]);
+function tokenizeCommand(command) {
+    return parseShellCommand(command)
+        .filter((part) => typeof part === "string")
+        .map((part) => part.trim())
+        .filter((part) => part.length > 0);
+}
+function assessRecursiveDelete(command) {
+    if (!/\brm\b/i.test(command) || !/-[^\s]*r/i.test(command) || !/-[^\s]*f/i.test(command)) {
+        return undefined;
+    }
+    const rmSegment = command
+        .split(/\s*(?:&&|\|\||;|\|)\s*/)
+        .find((segment) => /\brm\b/i.test(segment));
+    if (!rmSegment) {
+        return undefined;
+    }
+    const tokens = tokenizeCommand(rmSegment);
+    const rmIndex = tokens.findIndex((token) => token === "rm" || token.endsWith("/rm"));
+    if (rmIndex === -1) {
+        return undefined;
+    }
+    const targets = [];
+    for (const token of tokens.slice(rmIndex + 1)) {
+        if (token.startsWith("-")) {
+            continue;
+        }
+        targets.push(token);
+    }
+    if (targets.length === 0) {
+        return {
+            level: "high",
+            reasons: ["This recursive delete command does not clearly scope its targets."]
+        };
+    }
+    if (targets.some((target) => [
+        "/",
+        "/*",
+        "~",
+        "~/",
+        ".",
+        "./",
+        "..",
+        "../"
+    ].includes(target)) ||
+        targets.some((target) => target.startsWith("/") || target.startsWith("~")) ||
+        targets.some((target) => target.includes("..")) ||
+        targets.some((target) => target.includes("*"))) {
+        return {
+            level: "high",
+            reasons: [
+                "This command can delete files recursively outside the current project."
+            ]
+        };
+    }
+    if (targets.every((target) => SAFE_DELETE_TARGETS.has(target))) {
+        return {
+            level: "medium",
+            reasons: ["This command recursively deletes common project build artifacts."]
+        };
+    }
+    return {
+        level: "high",
+        reasons: ["This command recursively deletes directories with a broad target scope."]
+    };
+}
+export function assessCommandRisk(command) {
+    const reasons = [];
+    const recursiveDeleteRisk = assessRecursiveDelete(command);
+    if (recursiveDeleteRisk?.level === "high") {
+        return recursiveDeleteRisk;
+    }
+    for (const rule of HIGH_RISK_RULES) {
+        if (rule.pattern.test(command)) {
+            reasons.push(rule.reason);
+        }
+    }
+    if (reasons.length > 0) {
+        return {
+            level: "high",
+            reasons
+        };
+    }
+    if (recursiveDeleteRisk?.level === "medium") {
+        reasons.push(...recursiveDeleteRisk.reasons);
+    }
+    for (const rule of MEDIUM_RISK_RULES) {
+        if (rule.pattern.test(command)) {
+            reasons.push(rule.reason);
+        }
+    }
+    return {
+        level: reasons.length > 0 ? "medium" : "low",
+        reasons
+    };
+}
+export function classifyRisk(command) {
+    return assessCommandRisk(command).level;
+}
+//# sourceMappingURL=classifyRisk.js.map

package/dist/safety/classifyRisk.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"classifyRisk.js","sourceRoot":"","sources":["../../src/safety/classifyRisk.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,IAAI,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAEzD,OAAO,EAAE,eAAe,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAC;AAQ5E,MAAM,mBAAmB,GAAG,IAAI,GAAG,CAAC;IAClC,cAAc;IACd,gBAAgB;IAChB,MAAM;IACN,QAAQ;IACR,OAAO;IACP,SAAS;IACT,QAAQ;IACR,UAAU;IACV,OAAO;IACP,SAAS;IACT,UAAU;IACV,YAAY;CACb,CAAC,CAAC;AAEH,SAAS,eAAe,CAAC,OAAe;IACtC,OAAO,iBAAiB,CAAC,OAAO,CAAC;SAC9B,MAAM,CAAC,CAAC,IAAI,EAAkB,EAAE,CAAC,OAAO,IAAI,KAAK,QAAQ,CAAC;SAC1D,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;SAC1B,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;AACvC,CAAC;AAED,SAAS,qBAAqB,CAAC,OAAe;IAC5C,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACzF,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,MAAM,SAAS,GAAG,OAAO;SACtB,KAAK,CAAC,wBAAwB,CAAC;SAC/B,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC;IAE9C,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,MAAM,MAAM,GAAG,eAAe,CAAC,SAAS,CAAC,CAAC;IAC1C,MAAM,OAAO,GAAG,MAAM,CAAC,SAAS,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,KAAK,IAAI,IAAI,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC;IAErF,IAAI,OAAO,KAAK,CAAC,CAAC,EAAE,CAAC;QACnB,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,MAAM,OAAO,GAAa,EAAE,CAAC;IAE7B,KAAK,MAAM,KAAK,IAAI,MAAM,CAAC,KAAK,CAAC,OAAO,GAAG,CAAC,CAAC,EAAE,CAAC;QAC9C,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YAC1B,SAAS;QACX,CAAC;QAED,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACtB,CAAC;IAED,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO;YACL,KAAK,EAAE,MAAM;YACb,OAAO,EAAE,CAAC,mEAAmE,CAAC;SAC/E,CAAC;IACJ,CAAC;IAED,IACE,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CACtB;QACE,GAAG;QACH,IAAI;QACJ,GAAG;QACH,IAAI;QACJ,GAAG;QACH,IAAI;QACJ,IAAI;QACJ,KAAK;KACN,CAAC,QAAQ,CAAC,MAAM,CAAC,CACnB;QACD,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,MAAM,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;QAC1E,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAC/C,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,EAC9C,CAAC;QACD,OAAO;YACL,KAAK,EAAE,MAAM;YACb,OAAO,EAAE;gBACP,wEAAwE;aACzE;SACF,CAAC;IACJ,CAAC;IAED,IAAI,OAAO,CAAC,KAAK,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,mBAAmB,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC;QAC/D,OAAO;YACL,KAAK,EAAE,QAAQ;YACf,OAAO,EAAE,CAAC,kEAAkE,CAAC;SAC9E,CAAC;IACJ,CAAC;IAED,OAAO;QACL,KAAK,EAAE,MAAM;QACb,OAAO,EAAE,CAAC,yEAAyE,CAAC;KACrF,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,OAAe;IAC/C,MAAM,OAAO,GAAa,EAAE,CAAC;IAC7B,MAAM,mBAAmB,GAAG,qBAAqB,CAAC,OAAO,CAAC,CAAC;IAE3D,IAAI,mBAAmB,EAAE,KAAK,KAAK,MAAM,EAAE,CAAC;QAC1C,OAAO,mBAAmB,CAAC;IAC7B,CAAC;IAED,KAAK,MAAM,IAAI,IAAI,eAAe,EAAE,CAAC;QACnC,IAAI,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC5B,CAAC;IACH,CAAC;IAED,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACvB,OAAO;YACL,KAAK,EAAE,MAAM;YACb,OAAO;SACR,CAAC;IACJ,CAAC;IAED,IAAI,mBAAmB,EAAE,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC5C,OAAO,CAAC,IAAI,CAAC,GAAG,mBAAmB,CAAC,OAAO,CAAC,CAAC;IAC/C,CAAC;IAED,KAAK,MAAM,IAAI,IAAI,iBAAiB,EAAE,CAAC;QACrC,IAAI,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC5B,CAAC;IACH,CAAC;IAED,OAAO;QACL,KAAK,EAAE,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,KAAK;QAC5C,OAAO;KACR,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,YAAY,CAAC,OAAe;IAC1C,OAAO,iBAAiB,CAAC,OAAO,CAAC,CAAC,KAAK,CAAC;AAC1C,CAAC"}

package/dist/safety/dangerousPatterns.d.ts

@@ -0,0 +1,8 @@
+import type { RiskLevel } from "../types/index.js";
+export interface RiskRule {
+    risk: RiskLevel;
+    pattern: RegExp;
+    reason: string;
+}
+export declare const HIGH_RISK_RULES: RiskRule[];
+export declare const MEDIUM_RISK_RULES: RiskRule[];

package/dist/safety/dangerousPatterns.js

@@ -0,0 +1,70 @@
+export const HIGH_RISK_RULES = [
+    {
+        risk: "high",
+        pattern: /\b(?:curl|wget)\b[\s\S]*\|\s*(?:sudo\s+)?(?:sh|bash|zsh)\b/i,
+        reason: "This command downloads remote content and executes it in a shell."
+    },
+    {
+        risk: "high",
+        pattern: /\b(?:dd|mkfs(?:\.\w+)?|fdisk|parted)\b/i,
+        reason: "This command can modify or erase disks."
+    },
+    {
+        risk: "high",
+        pattern: /\bchmod\s+-R\s+777\s+\//i,
+        reason: "This command recursively grants unsafe permissions at the filesystem root."
+    },
+    {
+        risk: "high",
+        pattern: /\bgit\s+reset\s+--hard\b/i,
+        reason: "This command can permanently discard uncommitted changes."
+    },
+    {
+        risk: "high",
+        pattern: /\b(?:apt(?:-get)?|yum|dnf|pacman|apk|zypper)\s+(?:purge|remove|autoremove)\b/i,
+        reason: "This command removes system packages and can affect system stability."
+    },
+    {
+        risk: "high",
+        pattern: /\b(?:userdel|groupdel|deluser)\b/i,
+        reason: "This command removes system accounts."
+    }
+];
+export const MEDIUM_RISK_RULES = [
+    {
+        risk: "medium",
+        pattern: /\b(?:systemctl|service|rc-service)\s+(?:restart|stop)\b/i,
+        reason: "This command changes the state of a system service."
+    },
+    {
+        risk: "medium",
+        pattern: /\b(?:launchctl\s+(?:stop|kickstart)|brew\s+services\s+(?:stop|restart))\b/i,
+        reason: "This command changes the state of a macOS service."
+    },
+    {
+        risk: "medium",
+        pattern: /\b(?:npm|pnpm|yarn|bun)\s+(?:install|add|update|upgrade|remove|uninstall)\b/i,
+        reason: "This command changes project dependencies."
+    },
+    {
+        risk: "medium",
+        pattern: /\bdocker\s+compose\s+down\b/i,
+        reason: "This command stops and removes running containers."
+    },
+    {
+        risk: "medium",
+        pattern: /\b(?:kill|killall|pkill)\b/i,
+        reason: "This command stops running processes."
+    },
+    {
+        risk: "medium",
+        pattern: /\b(?:reboot|shutdown)\b/i,
+        reason: "This command disrupts the current system session."
+    },
+    {
+        risk: "medium",
+        pattern: /\bgit\s+clean\s+-f/i,
+        reason: "This command removes untracked files from the repository."
+    }
+];
+//# sourceMappingURL=dangerousPatterns.js.map

package/dist/safety/dangerousPatterns.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dangerousPatterns.js","sourceRoot":"","sources":["../../src/safety/dangerousPatterns.ts"],"names":[],"mappings":"AAQA,MAAM,CAAC,MAAM,eAAe,GAAe;IACzC;QACE,IAAI,EAAE,MAAM;QACZ,OAAO,EAAE,6DAA6D;QACtE,MAAM,EAAE,mEAAmE;KAC5E;IACD;QACE,IAAI,EAAE,MAAM;QACZ,OAAO,EAAE,yCAAyC;QAClD,MAAM,EAAE,yCAAyC;KAClD;IACD;QACE,IAAI,EAAE,MAAM;QACZ,OAAO,EAAE,0BAA0B;QACnC,MAAM,EAAE,4EAA4E;KACrF;IACD;QACE,IAAI,EAAE,MAAM;QACZ,OAAO,EAAE,2BAA2B;QACpC,MAAM,EAAE,2DAA2D;KACpE;IACD;QACE,IAAI,EAAE,MAAM;QACZ,OAAO,EACL,+EAA+E;QACjF,MAAM,EAAE,uEAAuE;KAChF;IACD;QACE,IAAI,EAAE,MAAM;QACZ,OAAO,EAAE,mCAAmC;QAC5C,MAAM,EAAE,uCAAuC;KAChD;CACF,CAAC;AAEF,MAAM,CAAC,MAAM,iBAAiB,GAAe;IAC3C;QACE,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,0DAA0D;QACnE,MAAM,EAAE,qDAAqD;KAC9D;IACD;QACE,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,4EAA4E;QACrF,MAAM,EAAE,oDAAoD;KAC7D;IACD;QACE,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,8EAA8E;QACvF,MAAM,EAAE,4CAA4C;KACrD;IACD;QACE,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,8BAA8B;QACvC,MAAM,EAAE,oDAAoD;KAC7D;IACD;QACE,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,6BAA6B;QACtC,MAAM,EAAE,uCAAuC;KAChD;IACD;QACE,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,0BAA0B;QACnC,MAAM,EAAE,mDAAmD;KAC5D;IACD;QACE,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,qBAAqB;QAC9B,MAAM,EAAE,2DAA2D;KACpE;CACF,CAAC"}

package/dist/safety/executionPolicy.d.ts

@@ -0,0 +1,9 @@
+import type { PromptAdapter, RiskLevel } from "../types/index.js";
+export declare const HIGH_RISK_CONFIRMATION = "EXECUTE HIGH RISK COMMAND";
+export declare function enforceExecutionPolicy(options: {
+    command: string;
+    risk: RiskLevel;
+    yes: boolean;
+    prompt: PromptAdapter;
+    reason?: string;
+}): Promise<void>;

package/dist/safety/executionPolicy.js

@@ -0,0 +1,21 @@
+import { ExecutionPolicyError, UserCancelledError } from "../utils/errors.js";
+export const HIGH_RISK_CONFIRMATION = "EXECUTE HIGH RISK COMMAND";
+export async function enforceExecutionPolicy(options) {
+    const riskLabel = options.risk.toUpperCase();
+    if (options.risk === "high") {
+        const detail = options.reason ?? "This command can make destructive system or filesystem changes.";
+        const confirmation = await options.prompt.text(`Risk: ${riskLabel}\n${detail}\nType ${HIGH_RISK_CONFIRMATION} to continue:`);
+        if (confirmation.trim() !== HIGH_RISK_CONFIRMATION) {
+            throw new ExecutionPolicyError("High-risk command confirmation was not accepted.");
+        }
+        return;
+    }
+    if (options.yes) {
+        return;
+    }
+    const confirmed = await options.prompt.confirm(`Execute this ${options.risk}-risk command?\n${options.command}`, false);
+    if (!confirmed) {
+        throw new UserCancelledError("Command execution cancelled.");
+    }
+}
+//# sourceMappingURL=executionPolicy.js.map

package/dist/safety/executionPolicy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"executionPolicy.js","sourceRoot":"","sources":["../../src/safety/executionPolicy.ts"],"names":[],"mappings":"AACA,OAAO,EACL,oBAAoB,EACpB,kBAAkB,EACnB,MAAM,oBAAoB,CAAC;AAE5B,MAAM,CAAC,MAAM,sBAAsB,GAAG,2BAA2B,CAAC;AAElE,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAAC,OAM5C;IACC,MAAM,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC;IAE7C,IAAI,OAAO,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;QAC5B,MAAM,MAAM,GACV,OAAO,CAAC,MAAM,IAAI,iEAAiE,CAAC;QACtF,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,MAAM,CAAC,IAAI,CAC5C,SAAS,SAAS,KAAK,MAAM,UAAU,sBAAsB,eAAe,CAC7E,CAAC;QAEF,IAAI,YAAY,CAAC,IAAI,EAAE,KAAK,sBAAsB,EAAE,CAAC;YACnD,MAAM,IAAI,oBAAoB,CAAC,kDAAkD,CAAC,CAAC;QACrF,CAAC;QAED,OAAO;IACT,CAAC;IAED,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;QAChB,OAAO;IACT,CAAC;IAED,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,MAAM,CAAC,OAAO,CAC5C,gBAAgB,OAAO,CAAC,IAAI,mBAAmB,OAAO,CAAC,OAAO,EAAE,EAChE,KAAK,CACN,CAAC;IAEF,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,kBAAkB,CAAC,8BAA8B,CAAC,CAAC;IAC/D,CAAC;AACH,CAAC"}