akemon 0.3.6 → 0.3.7

package/dist/software-agent-peripheral.js

@@ -11,13 +11,17 @@
  * transport to app-server or a true persistent interactive session.
  */
 import { randomUUID } from "crypto";
-import { spawn, spawnSync } from "child_process";
+import { spawnSync } from "child_process";
 import { existsSync, mkdirSync, readdirSync, readFileSync, unlinkSync, writeFileSync } from "fs";
 import { isAbsolute, join, relative, resolve as resolvePath } from "path";
-import { StringDecoder } from "string_decoder";
 import { SIG, sig } from "./types.js";
 import { sendTaskEnd, sendTaskStart, sendTaskStream } from "./relay-client.js";
-import { redactSecrets, StreamingRedactor } from "./redaction.js";
+import { redactSecrets } from "./redaction.js";
+import { terminateProcessTree } from "./runtime-platform.js";
+import { actorRef } from "./akemon-message.js";
+import { appendPermissionAuditRecordSync } from "./permission-audit.js";
+import { logBestEffortError } from "./best-effort.js";
+import { CodexExecTransport, } from "./software-agent-transport.js";
 const defaultTaskRelay = {
     sendTaskStart,
     sendTaskStream,
@@ -78,12 +82,19 @@ export class CodexSoftwareAgentPeripheral {
     activeTaskId = null;
     activeWorkdir = null;
     sessionId = randomUUID();
+    transport;
     constructor(config) {
         this.config = {
             ...config,
             envPolicy: normalizeSoftwareAgentEnvPolicy(config.envPolicy),
             envAllowlist: normalizeSoftwareAgentEnvAllowlist(config.envAllowlist),
         };
+        this.transport = config.transport || new CodexExecTransport({
+            command: config.command || "codex",
+            model: config.model,
+            sandbox: config.sandbox || "workspace-write",
+            spawnImpl: config.spawnImpl,
+        });
         this.id = config.id || "software-agent:codex";
         this.name = config.name || "Codex CLI Software Agent";
     }
@@ -103,18 +114,9 @@ export class CodexSoftwareAgentPeripheral {
     async resetSession() {
         const activePid = this.activeChild?.pid;
         if (activePid) {
-            const processGroupId = -activePid;
-            try {
-                process.kill(processGroupId, "SIGTERM");
-            }
-            catch { }
-            setTimeout(() => {
-                try {
-                    process.kill(processGroupId, "SIGKILL");
-                }
-                catch { }
-            }, 3000).unref();
+            terminateProcessTree(activePid, { signal: "SIGTERM", forceAfterMs: 3000 });
         }
+        await this.transport.reset?.();
         this.activeChild = null;
         this.activeTaskId = null;
         this.activeWorkdir = null;
@@ -127,8 +129,9 @@ export class CodexSoftwareAgentPeripheral {
             sessionId: this.sessionId,
             activeTaskId: this.activeTaskId,
             activeWorkdir: this.activeWorkdir,
-            busy: !!this.activeChild,
-            transport: "codex-exec",
+            busy: !!this.activeTaskId || !!this.activeChild,
+            transport: this.transport.kind,
+            transportContract: this.transport.describe(currentWorkdir),
             baseWorkdir: resolvePath(this.config.workdir),
             workdirStatus: this.collectWorkdirStatus(currentWorkdir),
             taskLedgerDir: this.config.taskLedgerDir,
@@ -155,7 +158,17 @@ export class CodexSoftwareAgentPeripheral {
         return sig(SIG.SOFTWARE_AGENT_RESPONSE, { ...result }, this.id);
     }
     async sendTask(envelope, taskOptions) {
-        if (this.activeChild) {
+        if (this.activeTaskId || this.activeChild) {
+            this.writePermissionAudit({
+                envelope,
+                taskId: envelope.taskId,
+                workdir: envelope.workdir || this.config.workdir,
+                decision: {
+                    result: "denied",
+                    mode: "automatic",
+                    reason: `Software agent busy (task=${this.activeTaskId})`,
+                },
+            });
             throw new Error(`Software agent busy (task=${this.activeTaskId})`);
         }
         const { signal, observer } = normalizeSoftwareAgentTaskOptions(taskOptions);
@@ -179,17 +192,11 @@ export class CodexSoftwareAgentPeripheral {
         const prompt = contextSession
             ? buildContextPacketLaunchPrompt(effectiveEnvelope, contextSession.audit.packetPath)
             : buildTaskEnvelopePrompt(effectiveEnvelope);
-        const { cmd, args } = buildCodexExecCommand({
-            command: this.config.command || "codex",
-            workdir,
-            model: this.config.model,
-            sandbox: this.config.sandbox || "workspace-write",
-        });
+        const transportDescriptor = this.transport.describe(workdir);
         const startedAt = Date.now();
         const startedAtIso = new Date(startedAt).toISOString();
         const relay = this.config.taskRelay || defaultTaskRelay;
-        const commandLine = [cmd, ...args].join(" ");
-        const spawnImpl = this.config.spawnImpl || spawn;
+        const commandLine = transportDescriptor.commandLine;
         const timeoutMs = envelope.timeoutMs || this.config.defaultTimeoutMs || DEFAULT_TIMEOUT_MS;
         const workdirStatus = this.collectWorkdirStatus(workdir);
         const taskMetadata = {
@@ -202,12 +209,25 @@ export class CodexSoftwareAgentPeripheral {
             allowlist: this.config.envAllowlist,
             sourceEnv: this.config.sourceEnv,
         });
+        this.writePermissionAudit({
+            envelope: effectiveEnvelope,
+            taskId,
+            workdir,
+            workdirSafety,
+            commandLine,
+            environment: childEnvironment.audit,
+            decision: {
+                result: "allowed",
+                mode: "owner-approved",
+                reason: "Owner local endpoint accepted the software-agent task envelope.",
+            },
+        });
         const baseTaskRecord = () => ({
             schemaVersion: 1,
             taskId,
             agentId: this.id,
             sessionId: this.sessionId,
-            transport: "codex-exec",
+            transport: this.transport.kind,
             commandLine,
             envelope: effectiveEnvelope,
             startedAt: startedAtIso,
@@ -215,211 +235,103 @@ export class CodexSoftwareAgentPeripheral {
             contextSession: contextSession?.audit,
             workdirStatus,
         });
-        return new Promise((resolve) => {
-            this.activeTaskId = taskId;
-            this.activeWorkdir = workdir;
-            this.writeTaskRecord({
-                ...baseTaskRecord(),
-                status: "running",
-                updatedAt: startedAtIso,
+        this.activeTaskId = taskId;
+        this.activeWorkdir = workdir;
+        this.writeTaskRecord({
+            ...baseTaskRecord(),
+            status: "running",
+            updatedAt: startedAtIso,
+        });
+        const origin = "software_agent";
+        relay.sendTaskStart(taskId, origin, commandLine);
+        observer?.onStart?.({ taskId, origin, commandLine, ...taskMetadata });
+        this.bus?.emit(SIG.TASK_STARTED, sig(SIG.TASK_STARTED, {
+            taskId,
+            taskType: "software_agent",
+            description: effectiveEnvelope.goal,
+            peripheral: this.id,
+            sessionId: this.sessionId,
+        }, this.id));
+        let transportResult;
+        try {
+            transportResult = await this.transport.run({
+                taskId,
+                prompt,
+                workdir,
+                env: childEnvironment.env,
+                timeoutMs,
+                signal,
+                startedAt,
+                onStream: (event) => {
+                    relay.sendTaskStream(event.taskId, event.stream, event.chunk);
+                    observer?.onStream?.(event);
+                },
+                onProcessStart: (child) => {
+                    this.activeChild = child;
+                },
+                onProcessEnd: (child) => {
+                    if (this.activeChild === child)
+                        this.activeChild = null;
+                },
             });
-            const origin = "software_agent";
-            relay.sendTaskStart(taskId, origin, commandLine);
-            observer?.onStart?.({ taskId, origin, commandLine, ...taskMetadata });
-            this.bus?.emit(SIG.TASK_STARTED, sig(SIG.TASK_STARTED, {
+        }
+        catch (err) {
+            transportResult = {
                 taskId,
-                taskType: "software_agent",
-                description: effectiveEnvelope.goal,
-                peripheral: this.id,
-                sessionId: this.sessionId,
-            }, this.id));
-            let child;
-            try {
-                child = spawnImpl(cmd, args, {
-                    cwd: workdir,
-                    env: childEnvironment.env,
-                    stdio: ["pipe", "pipe", "pipe"],
-                    detached: true,
-                });
-            }
-            catch (err) {
-                this.activeChild = null;
-                this.activeTaskId = null;
-                this.activeWorkdir = null;
-                const durationMs = Date.now() - startedAt;
-                const result = {
-                    success: false,
-                    taskId,
-                    output: "",
-                    error: err.message || String(err),
-                    exitCode: null,
-                    durationMs,
-                    ...taskMetadata,
-                };
-                relay.sendTaskEnd(taskId, null, durationMs);
-                observer?.onEnd?.({
-                    taskId,
-                    exitCode: null,
-                    durationMs,
-                    result: redactSecrets(result),
-                    ...taskMetadata,
-                });
-                const completedAt = new Date().toISOString();
-                this.writeTaskRecord({
-                    ...baseTaskRecord(),
-                    status: "failed",
-                    updatedAt: completedAt,
-                    completedAt,
-                    durationMs,
-                    result,
-                    stdoutSummary: summarizeText(""),
-                    stderrSummary: summarizeText(result.error || ""),
-                });
-                if (contextSession) {
-                    writeSoftwareAgentContextSessionState(contextSession.audit.statePath, effectiveEnvelope, result, completedAt);
-                }
-                this.bus?.emit(SIG.TASK_FAILED, sig(SIG.TASK_FAILED, result, this.id));
-                resolve(result);
-                return;
-            }
-            this.activeChild = child;
-            let stdout = "";
-            let stderr = "";
-            let finished = false;
-            let aborted = false;
-            const outDecoder = new StringDecoder("utf8");
-            const errDecoder = new StringDecoder("utf8");
-            const outRedactor = new StreamingRedactor();
-            const errRedactor = new StreamingRedactor();
-            const emitSafeStream = (stream, text) => {
-                if (!text)
-                    return;
-                relay.sendTaskStream(taskId, stream, text);
-                observer?.onStream?.({ taskId, stream, chunk: text });
-            };
-            const finish = (exitCode, error) => {
-                if (finished)
-                    return;
-                finished = true;
-                signal?.removeEventListener("abort", onAbort);
-                clearTimeout(timer);
-                const tailOut = outDecoder.end();
-                const tailErr = errDecoder.end();
-                if (tailOut) {
-                    stdout += tailOut;
-                    emitSafeStream("stdout", outRedactor.push(tailOut));
-                }
-                if (tailErr) {
-                    stderr += tailErr;
-                    emitSafeStream("stderr", errRedactor.push(tailErr));
-                }
-                emitSafeStream("stdout", outRedactor.flush());
-                emitSafeStream("stderr", errRedactor.flush());
-                const durationMs = Date.now() - startedAt;
-                this.activeChild = null;
-                this.activeTaskId = null;
-                this.activeWorkdir = null;
-                const output = stdout.trim() || stderr.trim();
-                const success = !error && !aborted && exitCode === 0;
-                const result = {
-                    success,
-                    taskId,
-                    output,
-                    error: success ? undefined : error || stderr.trim() || `codex exited with code ${exitCode}`,
-                    exitCode,
-                    durationMs,
-                    ...taskMetadata,
-                };
-                relay.sendTaskEnd(taskId, exitCode, durationMs);
-                observer?.onEnd?.({
-                    taskId,
-                    exitCode,
-                    durationMs,
-                    result: redactSecrets(result),
-                    ...taskMetadata,
-                });
-                const completedAt = new Date().toISOString();
-                this.writeTaskRecord({
-                    ...baseTaskRecord(),
-                    status: success ? "completed" : "failed",
-                    updatedAt: completedAt,
-                    completedAt,
-                    durationMs,
-                    result,
-                    stdoutSummary: summarizeText(stdout),
-                    stderrSummary: summarizeText(stderr),
-                });
-                if (contextSession) {
-                    writeSoftwareAgentContextSessionState(contextSession.audit.statePath, effectiveEnvelope, result, completedAt);
-                }
-                this.bus?.emit(success ? SIG.TASK_COMPLETED : SIG.TASK_FAILED, sig(success ? SIG.TASK_COMPLETED : SIG.TASK_FAILED, {
-                    ...result,
-                    taskLabel: `software_agent:${this.id}`,
-                }, this.id));
-                resolve(result);
-            };
-            const onAbort = () => {
-                if (aborted || !child.pid)
-                    return;
-                aborted = true;
-                try {
-                    process.kill(-child.pid, "SIGTERM");
-                }
-                catch { }
-                setTimeout(() => {
-                    try {
-                        process.kill(-child.pid, "SIGKILL");
-                    }
-                    catch { }
-                }, 3000).unref();
+                stdout: "",
+                stderr: "",
+                error: err.message || String(err),
+                exitCode: null,
+                durationMs: Date.now() - startedAt,
+                aborted: false,
+                success: false,
             };
-            const timer = setTimeout(() => {
-                if (!child.pid)
-                    return;
-                aborted = true;
-                try {
-                    process.kill(-child.pid, "SIGTERM");
-                }
-                catch { }
-                setTimeout(() => {
-                    try {
-                        process.kill(-child.pid, "SIGKILL");
-                    }
-                    catch { }
-                }, 3000).unref();
-            }, timeoutMs);
-            if (signal) {
-                if (signal.aborted)
-                    onAbort();
-                else
-                    signal.addEventListener("abort", onAbort, { once: true });
-            }
-            child.stdin?.on("error", () => { });
-            child.stdin?.write(prompt);
-            child.stdin?.end();
-            child.stdout?.on("data", (chunk) => {
-                const text = outDecoder.write(chunk);
-                if (!text)
-                    return;
-                stdout += text;
-                emitSafeStream("stdout", outRedactor.push(text));
-            });
-            child.stderr?.on("data", (chunk) => {
-                const text = errDecoder.write(chunk);
-                if (!text)
-                    return;
-                stderr += text;
-                emitSafeStream("stderr", errRedactor.push(text));
-            });
-            child.on("close", (code) => {
-                child.unref();
-                finish(code);
-            });
-            child.on("error", (err) => {
-                child.unref();
-                finish(null, err.message);
-            });
+        }
+        finally {
+            this.activeChild = null;
+            this.activeTaskId = null;
+            this.activeWorkdir = null;
+        }
+        const output = transportResult.stdout.trim() || transportResult.stderr.trim();
+        const transportLabel = this.transport.kind === "codex-exec" ? "codex" : this.transport.kind;
+        const result = {
+            success: transportResult.success,
+            taskId,
+            output,
+            error: transportResult.success
+                ? undefined
+                : transportResult.error || transportResult.stderr.trim() || `${transportLabel} exited with code ${transportResult.exitCode}`,
+            exitCode: transportResult.exitCode,
+            durationMs: transportResult.durationMs,
+            ...taskMetadata,
+        };
+        relay.sendTaskEnd(taskId, transportResult.exitCode, transportResult.durationMs);
+        observer?.onEnd?.({
+            taskId,
+            exitCode: transportResult.exitCode,
+            durationMs: transportResult.durationMs,
+            result: redactSecrets(result),
+            ...taskMetadata,
+        });
+        const completedAt = new Date().toISOString();
+        this.writeTaskRecord({
+            ...baseTaskRecord(),
+            status: result.success ? "completed" : "failed",
+            updatedAt: completedAt,
+            completedAt,
+            durationMs: transportResult.durationMs,
+            result,
+            stdoutSummary: summarizeText(transportResult.stdout),
+            stderrSummary: summarizeText(transportResult.stderr || result.error || ""),
         });
+        if (contextSession) {
+            writeSoftwareAgentContextSessionState(contextSession.audit.statePath, effectiveEnvelope, result, completedAt);
+        }
+        this.bus?.emit(result.success ? SIG.TASK_COMPLETED : SIG.TASK_FAILED, sig(result.success ? SIG.TASK_COMPLETED : SIG.TASK_FAILED, {
+            ...result,
+            taskLabel: `software_agent:${this.id}`,
+        }, this.id));
+        return result;
     }
     writeTaskRecord(record) {
         const dir = this.config.taskLedgerDir;
@@ -427,14 +339,54 @@ export class CodexSoftwareAgentPeripheral {
             return;
         try {
             mkdirSync(dir, { recursive: true });
-            const safeTaskId = safeTaskFilename(record.taskId);
-            writeFileSync(join(dir, `${safeTaskId}.json`), `${JSON.stringify(redactSecrets(record), null, 2)}\n`);
+            writeFileSync(softwareAgentTaskRecordPath(dir, record.taskId), `${JSON.stringify(redactSecrets(record), null, 2)}\n`);
             pruneSoftwareAgentTaskRecords(dir, this.config.taskLedgerMaxRecords, record.taskId);
         }
         catch (err) {
             console.error(`[software-agent] Failed to write task ledger: ${err.message || String(err)}`);
         }
     }
+    writePermissionAudit(input) {
+        if (!this.config.agentName)
+            return;
+        try {
+            const requesterKind = input.envelope.sourceModule === "owner-http" ? "owner" : "system";
+            appendPermissionAuditRecordSync(this.config.agentName, {
+                actionKind: "software-agent-task",
+                action: "software-agent.run",
+                requestedBy: actorRef(requesterKind, input.envelope.sourceModule || "owner", "local"),
+                performedBy: actorRef("agent", this.config.agentName, "software-agent"),
+                target: actorRef("external", this.id, "software-agent"),
+                sourceModule: input.envelope.sourceModule,
+                peripheralId: this.id,
+                riskLevel: input.envelope.riskLevel,
+                roleScope: input.envelope.roleScope,
+                memoryScope: input.envelope.memoryScope,
+                workdir: input.workdir || input.envelope.workdir,
+                projectScope: input.workdirSafety
+                    ? (input.workdirSafety.outsideBaseWorkdir ? "outside-workdir" : "inside-workdir")
+                    : "unknown",
+                transport: "software-agent",
+                decision: input.decision,
+                allowedActions: input.envelope.allowedActions,
+                forbiddenActions: input.envelope.forbiddenActions,
+                references: {
+                    taskId: input.taskId || input.envelope.taskId,
+                    contextSessionId: input.envelope.contextSessionId,
+                    contextPacketPath: input.envelope.contextPacketPath,
+                },
+                metadata: {
+                    purpose: input.envelope.purpose,
+                    commandLine: input.commandLine,
+                    environment: input.environment,
+                    workMemoryDir: input.envelope.workMemoryDir,
+                },
+            });
+        }
+        catch (error) {
+            logBestEffortError("software-agent audit append", error);
+        }
+    }
     collectWorkdirStatus(workdir) {
         const impl = this.config.gitStatusImpl || readGitWorktreeStatus;
         return impl(workdir);
@@ -686,8 +638,10 @@ export function listSoftwareAgentTaskRecords(taskLedgerDir, limit = 20, opts = {
     }
 }
 export function readSoftwareAgentTaskRecord(taskLedgerDir, taskId) {
-    const file = join(taskLedgerDir, `${safeTaskFilename(taskId)}.json`);
-    return readSoftwareAgentTaskRecordFile(file);
+    return readSoftwareAgentTaskRecordFile(softwareAgentTaskRecordPath(taskLedgerDir, taskId));
+}
+export function softwareAgentTaskRecordPath(taskLedgerDir, taskId) {
+    return join(taskLedgerDir, `${safeTaskFilename(taskId)}.json`);
 }
 export function listSoftwareAgentContextSessions(contextSessionDir, limit = 20) {
     const safeLimit = normalizeTaskRecordLimit(limit);
@@ -1071,16 +1025,3 @@ function compareSoftwareAgentContextSessions(a, b) {
         return bTime - aTime;
     return b.sessionId.localeCompare(a.sessionId);
 }
-function buildCodexExecCommand(opts) {
-    const args = [
-        "exec",
-        "--skip-git-repo-check",
-        "--color", "never",
-        "-s", opts.sandbox,
-        "-C", opts.workdir,
-    ];
-    if (opts.model)
-        args.push("-m", opts.model);
-    args.push("-");
-    return { cmd: opts.command, args };
-}