artificial-code 1.17.13 → 1.17.15

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (749) hide show
  1. package/bin/ac +56 -31
  2. package/bin/ac.js +224 -0
  3. package/package.json +18 -148
  4. package/AGENTS.md +0 -131
  5. package/Dockerfile +0 -18
  6. package/bunfig.toml +0 -7
  7. package/git +0 -0
  8. package/migration/20260511173437_session-metadata/migration.sql +0 -1
  9. package/migration/20260511173437_session-metadata/snapshot.json +0 -1500
  10. package/parsers-config.ts +0 -1
  11. package/script/bench-search.ts +0 -94
  12. package/script/bench-test-suite.ts +0 -52
  13. package/script/build.ts +0 -243
  14. package/script/generate.ts +0 -14
  15. package/script/httpapi-exercise.ts +0 -1
  16. package/script/postinstall.mjs +0 -189
  17. package/script/profile-test-files.ts +0 -42
  18. package/script/publish.ts +0 -213
  19. package/script/run-workspace-server +0 -106
  20. package/script/schema.ts +0 -77
  21. package/script/time.ts +0 -6
  22. package/script/trace-imports.ts +0 -153
  23. package/specs/effect/error-boundaries-plan.md +0 -235
  24. package/specs/effect/errors.md +0 -207
  25. package/specs/effect/facades.md +0 -218
  26. package/specs/effect/guide.md +0 -247
  27. package/specs/effect/instance-context.md +0 -13
  28. package/specs/effect/loose-ends.md +0 -30
  29. package/specs/effect/migration.md +0 -62
  30. package/specs/effect/routes.md +0 -61
  31. package/specs/effect/schema.md +0 -88
  32. package/specs/effect/server-package.md +0 -58
  33. package/specs/effect/todo.md +0 -241
  34. package/specs/effect/tools.md +0 -88
  35. package/specs/openapi-translation-cleanup.md +0 -204
  36. package/specs/tui-plugins.md +0 -544
  37. package/specs/v2/api.ts +0 -67
  38. package/specs/v2/message-shape.md +0 -136
  39. package/specs/v2/notifications.md +0 -13
  40. package/specs/v2/tui-command-shim.md +0 -67
  41. package/src/account/account.ts +0 -461
  42. package/src/account/repo.ts +0 -171
  43. package/src/account/schema.ts +0 -99
  44. package/src/account/url.ts +0 -8
  45. package/src/acp/agent.ts +0 -95
  46. package/src/acp/config-option.ts +0 -203
  47. package/src/acp/content.ts +0 -269
  48. package/src/acp/directory.ts +0 -212
  49. package/src/acp/error.ts +0 -97
  50. package/src/acp/event.ts +0 -342
  51. package/src/acp/permission.ts +0 -254
  52. package/src/acp/profile.ts +0 -42
  53. package/src/acp/service.ts +0 -1097
  54. package/src/acp/session.ts +0 -232
  55. package/src/acp/tool.ts +0 -364
  56. package/src/acp/usage.ts +0 -239
  57. package/src/agent/agent.ts +0 -453
  58. package/src/agent/generate.txt +0 -75
  59. package/src/agent/prompt/compaction.txt +0 -9
  60. package/src/agent/prompt/explore.txt +0 -18
  61. package/src/agent/prompt/summary.txt +0 -11
  62. package/src/agent/prompt/title.txt +0 -44
  63. package/src/agent/subagent-permissions.ts +0 -27
  64. package/src/audio.d.ts +0 -14
  65. package/src/auth/index.ts +0 -97
  66. package/src/background/job.ts +0 -37
  67. package/src/bus/global.ts +0 -22
  68. package/src/cli/bootstrap.ts +0 -11
  69. package/src/cli/cmd/account.ts +0 -264
  70. package/src/cli/cmd/acp.ts +0 -73
  71. package/src/cli/cmd/agent.ts +0 -259
  72. package/src/cli/cmd/attach.ts +0 -148
  73. package/src/cli/cmd/cmd.ts +0 -7
  74. package/src/cli/cmd/db.ts +0 -62
  75. package/src/cli/cmd/debug/agent.handler.ts +0 -193
  76. package/src/cli/cmd/debug/agent.ts +0 -27
  77. package/src/cli/cmd/debug/config.ts +0 -14
  78. package/src/cli/cmd/debug/file.ts +0 -73
  79. package/src/cli/cmd/debug/index.ts +0 -87
  80. package/src/cli/cmd/debug/lsp.ts +0 -50
  81. package/src/cli/cmd/debug/ripgrep.ts +0 -79
  82. package/src/cli/cmd/debug/scrap.ts +0 -16
  83. package/src/cli/cmd/debug/skill.ts +0 -15
  84. package/src/cli/cmd/debug/snapshot.ts +0 -50
  85. package/src/cli/cmd/debug/startup.ts +0 -11
  86. package/src/cli/cmd/debug/v2.ts +0 -42
  87. package/src/cli/cmd/export.ts +0 -292
  88. package/src/cli/cmd/generate.ts +0 -54
  89. package/src/cli/cmd/github.handler.ts +0 -1593
  90. package/src/cli/cmd/github.shared.ts +0 -30
  91. package/src/cli/cmd/github.ts +0 -42
  92. package/src/cli/cmd/import.ts +0 -224
  93. package/src/cli/cmd/mcp.ts +0 -840
  94. package/src/cli/cmd/models.ts +0 -66
  95. package/src/cli/cmd/plug.ts +0 -230
  96. package/src/cli/cmd/pr.ts +0 -115
  97. package/src/cli/cmd/prompt-display.ts +0 -1
  98. package/src/cli/cmd/providers.ts +0 -534
  99. package/src/cli/cmd/run/demo.ts +0 -1274
  100. package/src/cli/cmd/run/entry.body.ts +0 -205
  101. package/src/cli/cmd/run/footer.command.tsx +0 -1064
  102. package/src/cli/cmd/run/footer.menu.tsx +0 -351
  103. package/src/cli/cmd/run/footer.permission.tsx +0 -472
  104. package/src/cli/cmd/run/footer.prompt.tsx +0 -1306
  105. package/src/cli/cmd/run/footer.question.tsx +0 -573
  106. package/src/cli/cmd/run/footer.subagent.tsx +0 -173
  107. package/src/cli/cmd/run/footer.ts +0 -1129
  108. package/src/cli/cmd/run/footer.view.tsx +0 -943
  109. package/src/cli/cmd/run/footer.width.ts +0 -27
  110. package/src/cli/cmd/run/permission.shared.ts +0 -256
  111. package/src/cli/cmd/run/prompt.editor.ts +0 -157
  112. package/src/cli/cmd/run/prompt.shared.ts +0 -153
  113. package/src/cli/cmd/run/question.shared.ts +0 -340
  114. package/src/cli/cmd/run/runtime.boot.ts +0 -202
  115. package/src/cli/cmd/run/runtime.lifecycle.ts +0 -406
  116. package/src/cli/cmd/run/runtime.queue.ts +0 -349
  117. package/src/cli/cmd/run/runtime.shared.ts +0 -17
  118. package/src/cli/cmd/run/runtime.stdin.ts +0 -37
  119. package/src/cli/cmd/run/runtime.ts +0 -814
  120. package/src/cli/cmd/run/scrollback.shared.ts +0 -92
  121. package/src/cli/cmd/run/scrollback.surface.ts +0 -431
  122. package/src/cli/cmd/run/scrollback.writer.tsx +0 -352
  123. package/src/cli/cmd/run/session-data.ts +0 -1113
  124. package/src/cli/cmd/run/session-replay.ts +0 -374
  125. package/src/cli/cmd/run/session.shared.ts +0 -196
  126. package/src/cli/cmd/run/splash.ts +0 -280
  127. package/src/cli/cmd/run/stream.transport.ts +0 -1462
  128. package/src/cli/cmd/run/stream.ts +0 -175
  129. package/src/cli/cmd/run/subagent-data.ts +0 -876
  130. package/src/cli/cmd/run/theme.ts +0 -690
  131. package/src/cli/cmd/run/tool.ts +0 -1486
  132. package/src/cli/cmd/run/trace.ts +0 -94
  133. package/src/cli/cmd/run/turn-summary.ts +0 -47
  134. package/src/cli/cmd/run/types.ts +0 -350
  135. package/src/cli/cmd/run/variant.shared.ts +0 -216
  136. package/src/cli/cmd/run.ts +0 -1011
  137. package/src/cli/cmd/serve.ts +0 -24
  138. package/src/cli/cmd/session.ts +0 -147
  139. package/src/cli/cmd/stats.ts +0 -393
  140. package/src/cli/cmd/tui.ts +0 -305
  141. package/src/cli/cmd/uninstall.ts +0 -353
  142. package/src/cli/cmd/upgrade.ts +0 -74
  143. package/src/cli/cmd/web.ts +0 -84
  144. package/src/cli/effect/prompt.ts +0 -37
  145. package/src/cli/effect-cmd.ts +0 -96
  146. package/src/cli/error.ts +0 -130
  147. package/src/cli/heap.ts +0 -45
  148. package/src/cli/logo.ts +0 -1
  149. package/src/cli/network.ts +0 -80
  150. package/src/cli/tui/layer.ts +0 -8
  151. package/src/cli/tui/validate-session.ts +0 -29
  152. package/src/cli/tui/worker.ts +0 -80
  153. package/src/cli/ui.ts +0 -132
  154. package/src/cli/upgrade.ts +0 -53
  155. package/src/command/index.ts +0 -177
  156. package/src/command/template/initialize.txt +0 -66
  157. package/src/command/template/review.txt +0 -101
  158. package/src/config/agent.ts +0 -59
  159. package/src/config/command.ts +0 -39
  160. package/src/config/config.ts +0 -680
  161. package/src/config/entry-name.ts +0 -19
  162. package/src/config/managed.ts +0 -69
  163. package/src/config/markdown.ts +0 -36
  164. package/src/config/parse.ts +0 -79
  165. package/src/config/paths.ts +0 -45
  166. package/src/config/plugin.ts +0 -79
  167. package/src/config/tui-cwd.ts +0 -5
  168. package/src/config/tui-host-attention.ts +0 -21
  169. package/src/config/tui-migrate.ts +0 -132
  170. package/src/config/tui.ts +0 -276
  171. package/src/config/variable.ts +0 -91
  172. package/src/control-plane/adapters/index.ts +0 -41
  173. package/src/control-plane/adapters/worktree.ts +0 -96
  174. package/src/control-plane/dev/README.md +0 -19
  175. package/src/control-plane/dev/debug-workspace-plugin.ts +0 -73
  176. package/src/control-plane/types.ts +0 -59
  177. package/src/control-plane/util.ts +0 -39
  178. package/src/control-plane/workspace-adapter-runtime.ts +0 -51
  179. package/src/control-plane/workspace-context.ts +0 -26
  180. package/src/control-plane/workspace.ts +0 -964
  181. package/src/effect/app-node-builder-v1.ts +0 -12
  182. package/src/effect/app-runtime.ts +0 -135
  183. package/src/effect/bootstrap-runtime.ts +0 -19
  184. package/src/effect/bridge.ts +0 -84
  185. package/src/effect/config-service.ts +0 -67
  186. package/src/effect/instance-ref.ts +0 -11
  187. package/src/effect/instance-registry.ts +0 -12
  188. package/src/effect/instance-state.ts +0 -69
  189. package/src/effect/promise.ts +0 -17
  190. package/src/effect/run-service.ts +0 -47
  191. package/src/effect/runner.ts +0 -217
  192. package/src/effect/runtime-flags.ts +0 -77
  193. package/src/env/index.ts +0 -41
  194. package/src/event-manifest.ts +0 -3
  195. package/src/event-v2-bridge.ts +0 -71
  196. package/src/format/formatter.ts +0 -404
  197. package/src/format/index.ts +0 -203
  198. package/src/git/index.ts +0 -348
  199. package/src/id/id.ts +0 -80
  200. package/src/ide/index.ts +0 -54
  201. package/src/image/image.ts +0 -172
  202. package/src/index.ts +0 -142
  203. package/src/installation/index.ts +0 -336
  204. package/src/lsp/client.ts +0 -650
  205. package/src/lsp/diagnostic.ts +0 -29
  206. package/src/lsp/language.ts +0 -121
  207. package/src/lsp/launch.ts +0 -21
  208. package/src/lsp/lsp.ts +0 -507
  209. package/src/lsp/server.ts +0 -1983
  210. package/src/markdown.d.ts +0 -4
  211. package/src/mcp/auth.ts +0 -163
  212. package/src/mcp/catalog.ts +0 -170
  213. package/src/mcp/index.ts +0 -1012
  214. package/src/mcp/oauth-callback.ts +0 -194
  215. package/src/mcp/oauth-provider.ts +0 -259
  216. package/src/node.ts +0 -4
  217. package/src/patch/index.ts +0 -686
  218. package/src/permission/arity.ts +0 -163
  219. package/src/permission/evaluate.ts +0 -1
  220. package/src/permission/index.ts +0 -218
  221. package/src/plugin/azure.ts +0 -26
  222. package/src/plugin/cloudflare.ts +0 -76
  223. package/src/plugin/digitalocean.ts +0 -325
  224. package/src/plugin/github-copilot/copilot.ts +0 -414
  225. package/src/plugin/github-copilot/models.ts +0 -246
  226. package/src/plugin/index.ts +0 -314
  227. package/src/plugin/install.ts +0 -439
  228. package/src/plugin/loader.ts +0 -237
  229. package/src/plugin/meta.ts +0 -188
  230. package/src/plugin/openai/README.md +0 -31
  231. package/src/plugin/openai/codex.ts +0 -556
  232. package/src/plugin/openai/ws-pool.ts +0 -270
  233. package/src/plugin/openai/ws.ts +0 -381
  234. package/src/plugin/pty-environment.ts +0 -24
  235. package/src/plugin/shared.ts +0 -323
  236. package/src/plugin/snowflake-cortex.ts +0 -507
  237. package/src/plugin/tui/internal.ts +0 -10
  238. package/src/plugin/tui/runtime.ts +0 -1131
  239. package/src/plugin/xai.ts +0 -626
  240. package/src/project/bootstrap-service.ts +0 -9
  241. package/src/project/bootstrap.ts +0 -58
  242. package/src/project/instance-context.ts +0 -24
  243. package/src/project/instance-runtime.ts +0 -16
  244. package/src/project/instance-store.ts +0 -213
  245. package/src/project/project.ts +0 -483
  246. package/src/project/vcs.ts +0 -423
  247. package/src/provider/auth.ts +0 -229
  248. package/src/provider/error.ts +0 -188
  249. package/src/provider/model-status.ts +0 -8
  250. package/src/provider/provider.ts +0 -1977
  251. package/src/provider/transform.ts +0 -1561
  252. package/src/question/index.ts +0 -161
  253. package/src/question/schema.ts +0 -4
  254. package/src/server/auth.ts +0 -48
  255. package/src/server/event.ts +0 -10
  256. package/src/server/global-lifecycle.ts +0 -28
  257. package/src/server/init-projectors.ts +0 -3
  258. package/src/server/mdns.ts +0 -47
  259. package/src/server/projectors.ts +0 -1
  260. package/src/server/proxy-util.ts +0 -48
  261. package/src/server/routes/instance/httpapi/AGENTS.md +0 -39
  262. package/src/server/routes/instance/httpapi/api.ts +0 -97
  263. package/src/server/routes/instance/httpapi/errors.ts +0 -193
  264. package/src/server/routes/instance/httpapi/groups/config.ts +0 -65
  265. package/src/server/routes/instance/httpapi/groups/control-plane.ts +0 -35
  266. package/src/server/routes/instance/httpapi/groups/control.ts +0 -76
  267. package/src/server/routes/instance/httpapi/groups/event.ts +0 -29
  268. package/src/server/routes/instance/httpapi/groups/experimental.ts +0 -275
  269. package/src/server/routes/instance/httpapi/groups/file.ts +0 -185
  270. package/src/server/routes/instance/httpapi/groups/global.ts +0 -136
  271. package/src/server/routes/instance/httpapi/groups/instance.ts +0 -206
  272. package/src/server/routes/instance/httpapi/groups/mcp.ts +0 -156
  273. package/src/server/routes/instance/httpapi/groups/metadata.ts +0 -18
  274. package/src/server/routes/instance/httpapi/groups/permission.ts +0 -61
  275. package/src/server/routes/instance/httpapi/groups/project-copy.ts +0 -32
  276. package/src/server/routes/instance/httpapi/groups/project.ts +0 -93
  277. package/src/server/routes/instance/httpapi/groups/provider.ts +0 -101
  278. package/src/server/routes/instance/httpapi/groups/pty.ts +0 -172
  279. package/src/server/routes/instance/httpapi/groups/query.ts +0 -12
  280. package/src/server/routes/instance/httpapi/groups/question.ts +0 -74
  281. package/src/server/routes/instance/httpapi/groups/session.ts +0 -462
  282. package/src/server/routes/instance/httpapi/groups/sync.ts +0 -113
  283. package/src/server/routes/instance/httpapi/groups/tui.ts +0 -208
  284. package/src/server/routes/instance/httpapi/groups/workspace.ts +0 -141
  285. package/src/server/routes/instance/httpapi/handlers/config.ts +0 -34
  286. package/src/server/routes/instance/httpapi/handlers/control-plane.ts +0 -37
  287. package/src/server/routes/instance/httpapi/handlers/control.ts +0 -43
  288. package/src/server/routes/instance/httpapi/handlers/event.ts +0 -99
  289. package/src/server/routes/instance/httpapi/handlers/experimental.ts +0 -193
  290. package/src/server/routes/instance/httpapi/handlers/file.ts +0 -139
  291. package/src/server/routes/instance/httpapi/handlers/global.ts +0 -156
  292. package/src/server/routes/instance/httpapi/handlers/instance.ts +0 -110
  293. package/src/server/routes/instance/httpapi/handlers/mcp.ts +0 -111
  294. package/src/server/routes/instance/httpapi/handlers/permission.ts +0 -41
  295. package/src/server/routes/instance/httpapi/handlers/project-copy.ts +0 -83
  296. package/src/server/routes/instance/httpapi/handlers/project.ts +0 -63
  297. package/src/server/routes/instance/httpapi/handlers/provider.ts +0 -113
  298. package/src/server/routes/instance/httpapi/handlers/pty.ts +0 -273
  299. package/src/server/routes/instance/httpapi/handlers/question.ts +0 -54
  300. package/src/server/routes/instance/httpapi/handlers/session-errors.ts +0 -21
  301. package/src/server/routes/instance/httpapi/handlers/session.ts +0 -442
  302. package/src/server/routes/instance/httpapi/handlers/sync.ts +0 -89
  303. package/src/server/routes/instance/httpapi/handlers/tui.ts +0 -131
  304. package/src/server/routes/instance/httpapi/handlers/workspace.ts +0 -102
  305. package/src/server/routes/instance/httpapi/lifecycle.ts +0 -54
  306. package/src/server/routes/instance/httpapi/middleware/authorization.ts +0 -150
  307. package/src/server/routes/instance/httpapi/middleware/compression.ts +0 -64
  308. package/src/server/routes/instance/httpapi/middleware/cors-vary.ts +0 -29
  309. package/src/server/routes/instance/httpapi/middleware/error.ts +0 -43
  310. package/src/server/routes/instance/httpapi/middleware/fence.ts +0 -25
  311. package/src/server/routes/instance/httpapi/middleware/instance-context.ts +0 -43
  312. package/src/server/routes/instance/httpapi/middleware/proxy.ts +0 -108
  313. package/src/server/routes/instance/httpapi/middleware/schema-error.ts +0 -41
  314. package/src/server/routes/instance/httpapi/middleware/workspace-routing.ts +0 -250
  315. package/src/server/routes/instance/httpapi/public.ts +0 -537
  316. package/src/server/routes/instance/httpapi/server.ts +0 -322
  317. package/src/server/routes/instance/httpapi/websocket-tracker.ts +0 -60
  318. package/src/server/server.ts +0 -226
  319. package/src/server/shared/fence.ts +0 -60
  320. package/src/server/shared/pty-ticket.ts +0 -15
  321. package/src/server/shared/public-ui.ts +0 -12
  322. package/src/server/shared/tui-control.ts +0 -28
  323. package/src/server/shared/ui.ts +0 -108
  324. package/src/server/shared/workspace-routing.ts +0 -38
  325. package/src/server/tui-event.ts +0 -1
  326. package/src/session/compaction.ts +0 -562
  327. package/src/session/instruction.ts +0 -237
  328. package/src/session/llm/AGENTS.md +0 -90
  329. package/src/session/llm/ai-sdk.ts +0 -288
  330. package/src/session/llm/native-request.ts +0 -196
  331. package/src/session/llm/native-runtime.ts +0 -195
  332. package/src/session/llm/request.ts +0 -226
  333. package/src/session/llm.ts +0 -404
  334. package/src/session/message-error.ts +0 -14
  335. package/src/session/message-v2.ts +0 -734
  336. package/src/session/message.ts +0 -148
  337. package/src/session/overflow.ts +0 -34
  338. package/src/session/processor.ts +0 -716
  339. package/src/session/prompt/anthropic.txt +0 -105
  340. package/src/session/prompt/beast.txt +0 -147
  341. package/src/session/prompt/build-switch.txt +0 -5
  342. package/src/session/prompt/codex.txt +0 -79
  343. package/src/session/prompt/copilot-gpt-5.txt +0 -143
  344. package/src/session/prompt/default.txt +0 -95
  345. package/src/session/prompt/gemini.txt +0 -155
  346. package/src/session/prompt/gpt.txt +0 -107
  347. package/src/session/prompt/kimi.txt +0 -95
  348. package/src/session/prompt/plan-mode.txt +0 -70
  349. package/src/session/prompt/plan-reminder-anthropic.txt +0 -67
  350. package/src/session/prompt/plan.txt +0 -26
  351. package/src/session/prompt/trinity.txt +0 -97
  352. package/src/session/prompt.ts +0 -1630
  353. package/src/session/reminders.ts +0 -92
  354. package/src/session/retry.ts +0 -201
  355. package/src/session/revert.ts +0 -146
  356. package/src/session/run-state.ts +0 -151
  357. package/src/session/schema.ts +0 -26
  358. package/src/session/session.ts +0 -1018
  359. package/src/session/status.ts +0 -56
  360. package/src/session/summary.ts +0 -160
  361. package/src/session/system.ts +0 -143
  362. package/src/session/todo.ts +0 -74
  363. package/src/session/tools.ts +0 -583
  364. package/src/share/session.ts +0 -58
  365. package/src/share/share-next.ts +0 -371
  366. package/src/skill/discovery.ts +0 -140
  367. package/src/skill/index.ts +0 -354
  368. package/src/snapshot/index.ts +0 -807
  369. package/src/sql.d.ts +0 -4
  370. package/src/storage/schema.ts +0 -5
  371. package/src/storage/storage.ts +0 -327
  372. package/src/sync/README.md +0 -179
  373. package/src/sync/schema.ts +0 -11
  374. package/src/temporary.ts +0 -31
  375. package/src/tool/apply_patch.ts +0 -313
  376. package/src/tool/apply_patch.txt +0 -33
  377. package/src/tool/edit.ts +0 -737
  378. package/src/tool/edit.txt +0 -10
  379. package/src/tool/external-directory.ts +0 -49
  380. package/src/tool/glob.ts +0 -76
  381. package/src/tool/glob.txt +0 -6
  382. package/src/tool/grep.ts +0 -112
  383. package/src/tool/grep.txt +0 -8
  384. package/src/tool/invalid.ts +0 -21
  385. package/src/tool/json-schema.ts +0 -164
  386. package/src/tool/lsp.ts +0 -113
  387. package/src/tool/lsp.txt +0 -24
  388. package/src/tool/mcp-websearch.ts +0 -96
  389. package/src/tool/plan-enter.txt +0 -14
  390. package/src/tool/plan-exit.txt +0 -13
  391. package/src/tool/plan.ts +0 -79
  392. package/src/tool/question.ts +0 -44
  393. package/src/tool/question.txt +0 -10
  394. package/src/tool/read.ts +0 -386
  395. package/src/tool/read.txt +0 -14
  396. package/src/tool/registry.ts +0 -420
  397. package/src/tool/schema.ts +0 -14
  398. package/src/tool/shell/id.ts +0 -19
  399. package/src/tool/shell/prompt.ts +0 -293
  400. package/src/tool/shell/shell.txt +0 -21
  401. package/src/tool/shell.ts +0 -645
  402. package/src/tool/skill.ts +0 -70
  403. package/src/tool/skill.txt +0 -5
  404. package/src/tool/task.ts +0 -346
  405. package/src/tool/task.txt +0 -19
  406. package/src/tool/todo.ts +0 -46
  407. package/src/tool/todowrite.txt +0 -44
  408. package/src/tool/tool.ts +0 -183
  409. package/src/tool/truncate.ts +0 -156
  410. package/src/tool/truncation-dir.ts +0 -4
  411. package/src/tool/webfetch.ts +0 -192
  412. package/src/tool/webfetch.txt +0 -13
  413. package/src/tool/websearch.ts +0 -143
  414. package/src/tool/websearch.txt +0 -14
  415. package/src/tool/write.ts +0 -104
  416. package/src/tool/write.txt +0 -8
  417. package/src/util/archive.ts +0 -17
  418. package/src/util/bom.ts +0 -27
  419. package/src/util/data-url.ts +0 -9
  420. package/src/util/defer.ts +0 -10
  421. package/src/util/effect-http-client.ts +0 -11
  422. package/src/util/error.ts +0 -1
  423. package/src/util/filesystem.ts +0 -251
  424. package/src/util/html.ts +0 -8
  425. package/src/util/iife.ts +0 -3
  426. package/src/util/lazy.ts +0 -20
  427. package/src/util/local-context.ts +0 -25
  428. package/src/util/locale.ts +0 -2
  429. package/src/util/media.ts +0 -26
  430. package/src/util/process.ts +0 -177
  431. package/src/util/proxy-env.ts +0 -72
  432. package/src/util/queue.ts +0 -32
  433. package/src/util/record.ts +0 -1
  434. package/src/util/repository.ts +0 -232
  435. package/src/util/rpc.ts +0 -66
  436. package/src/util/signal.ts +0 -12
  437. package/src/util/timeout.ts +0 -13
  438. package/src/util/token.ts +0 -1
  439. package/src/util/wildcard.ts +0 -59
  440. package/src/worktree/index.ts +0 -623
  441. package/test/AGENTS.md +0 -204
  442. package/test/EFFECT_TEST_MIGRATION.md +0 -169
  443. package/test/account/repo.test.ts +0 -355
  444. package/test/account/service.test.ts +0 -456
  445. package/test/acp/config-option.test.ts +0 -229
  446. package/test/acp/content.test.ts +0 -235
  447. package/test/acp/directory.test.ts +0 -188
  448. package/test/acp/error.test.ts +0 -67
  449. package/test/acp/event.test.ts +0 -751
  450. package/test/acp/permission.test.ts +0 -401
  451. package/test/acp/service-session.test.ts +0 -1248
  452. package/test/acp/session.test.ts +0 -201
  453. package/test/acp/tool.test.ts +0 -298
  454. package/test/acp/usage.test.ts +0 -318
  455. package/test/agent/agent.test.ts +0 -755
  456. package/test/agent/plan-mode-subagent-bypass.test.ts +0 -160
  457. package/test/agent/plugin-agent-regression.test.ts +0 -51
  458. package/test/auth/auth.test.ts +0 -75
  459. package/test/background/job.test.ts +0 -244
  460. package/test/cli/account.test.ts +0 -30
  461. package/test/cli/acp/acp-test-client.ts +0 -97
  462. package/test/cli/acp/config-options.test.ts +0 -103
  463. package/test/cli/acp/helpers.ts +0 -96
  464. package/test/cli/acp/initialize-auth.test.ts +0 -61
  465. package/test/cli/acp/lifecycle.test.ts +0 -118
  466. package/test/cli/acp/prompt-content.test.ts +0 -97
  467. package/test/cli/acp/skills.test.ts +0 -38
  468. package/test/cli/cmd/tui/attention.test.ts +0 -484
  469. package/test/cli/effect-cmd-instance-als.test.ts +0 -40
  470. package/test/cli/error.test.ts +0 -95
  471. package/test/cli/github-action.test.ts +0 -199
  472. package/test/cli/github-remote.test.ts +0 -90
  473. package/test/cli/help/__snapshots__/help-snapshots.test.ts.snap +0 -623
  474. package/test/cli/help/help-snapshots.test.ts +0 -140
  475. package/test/cli/import.test.ts +0 -54
  476. package/test/cli/mcp-add.test.ts +0 -74
  477. package/test/cli/plugin-auth-picker.test.ts +0 -120
  478. package/test/cli/run/entry.body.test.ts +0 -536
  479. package/test/cli/run/footer.menu.test.ts +0 -43
  480. package/test/cli/run/footer.view.test.tsx +0 -1375
  481. package/test/cli/run/footer.width.test.ts +0 -35
  482. package/test/cli/run/permission.shared.test.ts +0 -144
  483. package/test/cli/run/prompt.editor.test.ts +0 -101
  484. package/test/cli/run/prompt.shared.test.ts +0 -101
  485. package/test/cli/run/question.shared.test.ts +0 -115
  486. package/test/cli/run/run-process.test.ts +0 -331
  487. package/test/cli/run/runtime.boot.test.ts +0 -283
  488. package/test/cli/run/runtime.queue.test.ts +0 -481
  489. package/test/cli/run/runtime.stdin.test.ts +0 -71
  490. package/test/cli/run/runtime.test.ts +0 -238
  491. package/test/cli/run/scrollback.surface.test.ts +0 -1092
  492. package/test/cli/run/session-data.test.ts +0 -593
  493. package/test/cli/run/session-replay.test.ts +0 -691
  494. package/test/cli/run/session.shared.test.ts +0 -247
  495. package/test/cli/run/stream.test.ts +0 -56
  496. package/test/cli/run/stream.transport.test.ts +0 -2363
  497. package/test/cli/run/subagent-data.test.ts +0 -547
  498. package/test/cli/run/theme.test.ts +0 -177
  499. package/test/cli/run/variant.shared.test.ts +0 -218
  500. package/test/cli/serve/serve-process.test.ts +0 -61
  501. package/test/cli/smokes/read-only.test.ts +0 -115
  502. package/test/cli/tui/attach.test.ts +0 -11
  503. package/test/cli/tui/editor-context-zed.test.ts +0 -379
  504. package/test/cli/tui/editor-context.test.tsx +0 -297
  505. package/test/cli/tui/plugin-add.test.ts +0 -110
  506. package/test/cli/tui/plugin-install.test.ts +0 -87
  507. package/test/cli/tui/plugin-lifecycle.test.ts +0 -224
  508. package/test/cli/tui/plugin-loader-entrypoint.test.ts +0 -485
  509. package/test/cli/tui/plugin-loader-pure.test.ts +0 -72
  510. package/test/cli/tui/plugin-loader.test.ts +0 -1332
  511. package/test/cli/tui/plugin-toggle.test.ts +0 -264
  512. package/test/cli/tui/thread.test.ts +0 -95
  513. package/test/config/agent-color.test.ts +0 -47
  514. package/test/config/config.test.ts +0 -2027
  515. package/test/config/entry-name.test.ts +0 -57
  516. package/test/config/fixtures/empty-frontmatter.md +0 -4
  517. package/test/config/fixtures/frontmatter.md +0 -28
  518. package/test/config/fixtures/markdown-header.md +0 -11
  519. package/test/config/fixtures/no-frontmatter.md +0 -1
  520. package/test/config/fixtures/weird-model-id.md +0 -13
  521. package/test/config/lsp.test.ts +0 -69
  522. package/test/config/markdown.test.ts +0 -228
  523. package/test/config/plugin.test.ts +0 -0
  524. package/test/config/tui.test.ts +0 -894
  525. package/test/control-plane/adapters.test.ts +0 -71
  526. package/test/control-plane/workspace.test.ts +0 -1701
  527. package/test/effect/app-runtime-logger.test.ts +0 -101
  528. package/test/effect/config-service.test.ts +0 -65
  529. package/test/effect/instance-state.test.ts +0 -392
  530. package/test/effect/run-service.test.ts +0 -89
  531. package/test/effect/runner.test.ts +0 -514
  532. package/test/effect/runtime-flags.test.ts +0 -374
  533. package/test/event-manifest.test.ts +0 -24
  534. package/test/fake/account.ts +0 -9
  535. package/test/fake/auth.ts +0 -8
  536. package/test/fake/npm.ts +0 -8
  537. package/test/fake/provider.ts +0 -82
  538. package/test/fake/skill.ts +0 -8
  539. package/test/filesystem/filesystem.test.ts +0 -318
  540. package/test/fixture/agent-plugin.constants.ts +0 -6
  541. package/test/fixture/agent-plugin.ts +0 -12
  542. package/test/fixture/config.ts +0 -23
  543. package/test/fixture/db.ts +0 -11
  544. package/test/fixture/fixture.test.ts +0 -26
  545. package/test/fixture/fixture.ts +0 -228
  546. package/test/fixture/flag.ts +0 -20
  547. package/test/fixture/flock-worker.ts +0 -72
  548. package/test/fixture/lsp/fake-lsp-server.js +0 -249
  549. package/test/fixture/mcp-session-recovery.ts +0 -50
  550. package/test/fixture/plug-worker.ts +0 -93
  551. package/test/fixture/plugin-meta-worker.ts +0 -19
  552. package/test/fixture/plugin.ts +0 -10
  553. package/test/fixture/skills/agents-sdk/SKILL.md +0 -152
  554. package/test/fixture/skills/agents-sdk/references/callable.md +0 -92
  555. package/test/fixture/skills/cloudflare/SKILL.md +0 -211
  556. package/test/fixture/skills/index.json +0 -6
  557. package/test/fixture/tui-environment.tsx +0 -32
  558. package/test/fixture/tui-plugin.ts +0 -355
  559. package/test/fixture/tui-runtime.ts +0 -56
  560. package/test/fixture/tui-sdk.ts +0 -82
  561. package/test/fixture/workspace.ts +0 -34
  562. package/test/fixtures/recordings/session/native-anthropic-tool-loop.json +0 -49
  563. package/test/fixtures/recordings/session/native-openai-oauth-tool-loop.json +0 -45
  564. package/test/fixtures/recordings/session/native-zen-tool-loop.json +0 -49
  565. package/test/format/format.test.ts +0 -235
  566. package/test/git/git.test.ts +0 -179
  567. package/test/ide/ide.test.ts +0 -82
  568. package/test/image/fixtures/picture-5mb-base64.png +0 -0
  569. package/test/image/image.test.ts +0 -121
  570. package/test/installation/installation.test.ts +0 -240
  571. package/test/lib/cli-process.ts +0 -535
  572. package/test/lib/effect.ts +0 -177
  573. package/test/lib/filesystem.ts +0 -10
  574. package/test/lib/llm-server.ts +0 -779
  575. package/test/lib/snapshot.ts +0 -73
  576. package/test/lib/test-provider.ts +0 -37
  577. package/test/lib/websocket.ts +0 -46
  578. package/test/lsp/client.test.ts +0 -488
  579. package/test/lsp/index.test.ts +0 -231
  580. package/test/lsp/jdtls-root.test.ts +0 -459
  581. package/test/lsp/launch.test.ts +0 -22
  582. package/test/lsp/lifecycle.test.ts +0 -160
  583. package/test/mcp/auth.test.ts +0 -78
  584. package/test/mcp/catalog.test.ts +0 -47
  585. package/test/mcp/headers.test.ts +0 -127
  586. package/test/mcp/lifecycle.test.ts +0 -1304
  587. package/test/mcp/oauth-auto-connect.test.ts +0 -367
  588. package/test/mcp/oauth-browser.test.ts +0 -243
  589. package/test/mcp/oauth-callback.test.ts +0 -114
  590. package/test/mcp/oauth-provider.test.ts +0 -102
  591. package/test/mcp/session-recovery.test.ts +0 -27
  592. package/test/patch/patch.test.ts +0 -384
  593. package/test/permission/arity.test.ts +0 -33
  594. package/test/permission/next.test.ts +0 -1174
  595. package/test/permission-task.test.ts +0 -319
  596. package/test/plugin/auth-override.test.ts +0 -101
  597. package/test/plugin/cloudflare.test.ts +0 -68
  598. package/test/plugin/codex.test.ts +0 -256
  599. package/test/plugin/github-copilot-models.test.ts +0 -332
  600. package/test/plugin/install-concurrency.test.ts +0 -140
  601. package/test/plugin/install.test.ts +0 -570
  602. package/test/plugin/loader-shared.test.ts +0 -1306
  603. package/test/plugin/meta.test.ts +0 -137
  604. package/test/plugin/openai-rollout.test.ts +0 -17
  605. package/test/plugin/openai-ws.test.ts +0 -884
  606. package/test/plugin/shared.test.ts +0 -88
  607. package/test/plugin/snowflake-cortex.test.ts +0 -278
  608. package/test/plugin/trigger.test.ts +0 -108
  609. package/test/plugin/workspace-adapter.test.ts +0 -111
  610. package/test/plugin/xai.test.ts +0 -620
  611. package/test/preload.ts +0 -92
  612. package/test/project/instance-bootstrap.test.ts +0 -115
  613. package/test/project/instance.test.ts +0 -248
  614. package/test/project/migrate-global.test.ts +0 -168
  615. package/test/project/project-directory.test.ts +0 -202
  616. package/test/project/project.test.ts +0 -808
  617. package/test/project/vcs.test.ts +0 -335
  618. package/test/project/worktree-remove.test.ts +0 -128
  619. package/test/project/worktree.test.ts +0 -324
  620. package/test/provider/amazon-bedrock.test.ts +0 -361
  621. package/test/provider/cf-ai-gateway-e2e.test.ts +0 -132
  622. package/test/provider/digitalocean.test.ts +0 -124
  623. package/test/provider/gitlab-duo.test.ts +0 -412
  624. package/test/provider/header-timeout.test.ts +0 -234
  625. package/test/provider/model-status.test.ts +0 -61
  626. package/test/provider/provider.test.ts +0 -1912
  627. package/test/provider/transform.test.ts +0 -4742
  628. package/test/question/question.test.ts +0 -459
  629. package/test/server/AGENTS.md +0 -15
  630. package/test/server/auth.test.ts +0 -59
  631. package/test/server/global-bus.ts +0 -31
  632. package/test/server/global-session-list.test.ts +0 -108
  633. package/test/server/httpapi-authorization.test.ts +0 -174
  634. package/test/server/httpapi-compression.test.ts +0 -151
  635. package/test/server/httpapi-config.test.ts +0 -110
  636. package/test/server/httpapi-control-plane.test.ts +0 -63
  637. package/test/server/httpapi-cors-vary.test.ts +0 -63
  638. package/test/server/httpapi-cors.test.ts +0 -122
  639. package/test/server/httpapi-error-middleware.test.ts +0 -101
  640. package/test/server/httpapi-event.test.ts +0 -94
  641. package/test/server/httpapi-exercise/assertions.ts +0 -64
  642. package/test/server/httpapi-exercise/backend.ts +0 -144
  643. package/test/server/httpapi-exercise/dsl.ts +0 -210
  644. package/test/server/httpapi-exercise/environment.ts +0 -40
  645. package/test/server/httpapi-exercise/index.ts +0 -1814
  646. package/test/server/httpapi-exercise/report.ts +0 -66
  647. package/test/server/httpapi-exercise/routing.ts +0 -96
  648. package/test/server/httpapi-exercise/runner.ts +0 -267
  649. package/test/server/httpapi-exercise/runtime.ts +0 -52
  650. package/test/server/httpapi-exercise/types.ts +0 -127
  651. package/test/server/httpapi-experimental.test.ts +0 -298
  652. package/test/server/httpapi-file.test.ts +0 -83
  653. package/test/server/httpapi-global.test.ts +0 -66
  654. package/test/server/httpapi-instance-context.test.ts +0 -337
  655. package/test/server/httpapi-instance-route-auth.test.ts +0 -81
  656. package/test/server/httpapi-instance.test.ts +0 -265
  657. package/test/server/httpapi-layer.ts +0 -33
  658. package/test/server/httpapi-listen.test.ts +0 -465
  659. package/test/server/httpapi-mcp-oauth.test.ts +0 -73
  660. package/test/server/httpapi-mcp.test.ts +0 -223
  661. package/test/server/httpapi-mdns.test.ts +0 -79
  662. package/test/server/httpapi-promptasync-context.test.ts +0 -212
  663. package/test/server/httpapi-provider.test.ts +0 -401
  664. package/test/server/httpapi-pty.test.ts +0 -299
  665. package/test/server/httpapi-public-openapi.test.ts +0 -350
  666. package/test/server/httpapi-query-schema-drift.test.ts +0 -330
  667. package/test/server/httpapi-reference.test.ts +0 -63
  668. package/test/server/httpapi-schema-error-body.test.ts +0 -166
  669. package/test/server/httpapi-sdk.test.ts +0 -913
  670. package/test/server/httpapi-session.test.ts +0 -1090
  671. package/test/server/httpapi-sync.test.ts +0 -149
  672. package/test/server/httpapi-ui.test.ts +0 -456
  673. package/test/server/httpapi-v2-location.test.ts +0 -126
  674. package/test/server/httpapi-v2-pty.test.ts +0 -250
  675. package/test/server/httpapi-workspace-routing.test.ts +0 -552
  676. package/test/server/httpapi-workspace.test.ts +0 -506
  677. package/test/server/negative-tokens-regression.test.ts +0 -84
  678. package/test/server/project-copy.test.ts +0 -127
  679. package/test/server/project-init-git.test.ts +0 -118
  680. package/test/server/proxy-util.test.ts +0 -113
  681. package/test/server/sdk-error-shape.test.ts +0 -81
  682. package/test/server/sdk-v1-smoke.test.ts +0 -57
  683. package/test/server/session-actions.test.ts +0 -110
  684. package/test/server/session-diff-missing-patch.test.ts +0 -97
  685. package/test/server/session-list.test.ts +0 -302
  686. package/test/server/session-messages.test.ts +0 -180
  687. package/test/server/session-select.test.ts +0 -67
  688. package/test/server/workspace-proxy.test.ts +0 -181
  689. package/test/server/workspace-routing.test.ts +0 -94
  690. package/test/server/worktree-endpoint-repro.test.ts +0 -307
  691. package/test/session/compaction.test.ts +0 -1819
  692. package/test/session/instruction.test.ts +0 -264
  693. package/test/session/llm-native-recorded.test.ts +0 -413
  694. package/test/session/llm-native.test.ts +0 -761
  695. package/test/session/llm.test.ts +0 -2003
  696. package/test/session/message-v2.test.ts +0 -1661
  697. package/test/session/messages-pagination.test.ts +0 -1057
  698. package/test/session/processor-effect.test.ts +0 -1067
  699. package/test/session/prompt.test.ts +0 -2402
  700. package/test/session/retry.test.ts +0 -440
  701. package/test/session/revert-compact.test.ts +0 -638
  702. package/test/session/schema-decoding.test.ts +0 -313
  703. package/test/session/session-schema.test.ts +0 -78
  704. package/test/session/session.test.ts +0 -253
  705. package/test/session/snapshot-tool-race.test.ts +0 -189
  706. package/test/session/structured-output-integration.test.ts +0 -235
  707. package/test/session/structured-output.test.ts +0 -387
  708. package/test/session/system.test.ts +0 -142
  709. package/test/share/share-next.test.ts +0 -324
  710. package/test/skill/discovery.test.ts +0 -186
  711. package/test/skill/skill.test.ts +0 -585
  712. package/test/snapshot/snapshot.test.ts +0 -1218
  713. package/test/storage/storage.test.ts +0 -297
  714. package/test/tool/__snapshots__/parameters.test.ts.snap +0 -466
  715. package/test/tool/__snapshots__/tool.test.ts.snap +0 -9
  716. package/test/tool/apply_patch.test.ts +0 -529
  717. package/test/tool/edit.test.ts +0 -574
  718. package/test/tool/external-directory.test.ts +0 -156
  719. package/test/tool/fixtures/large-image.png +0 -0
  720. package/test/tool/fixtures/models-api.json +0 -117299
  721. package/test/tool/glob.test.ts +0 -132
  722. package/test/tool/grep.test.ts +0 -221
  723. package/test/tool/lsp.test.ts +0 -184
  724. package/test/tool/parameters.test.ts +0 -290
  725. package/test/tool/question.test.ts +0 -133
  726. package/test/tool/read.test.ts +0 -608
  727. package/test/tool/registry.test.ts +0 -493
  728. package/test/tool/shell.test.ts +0 -1199
  729. package/test/tool/skill.test.ts +0 -134
  730. package/test/tool/task.test.ts +0 -905
  731. package/test/tool/tool-define.test.ts +0 -154
  732. package/test/tool/truncation.test.ts +0 -264
  733. package/test/tool/webfetch.test.ts +0 -119
  734. package/test/tool/websearch.test.ts +0 -99
  735. package/test/tool/write.test.ts +0 -279
  736. package/test/util/data-url.test.ts +0 -14
  737. package/test/util/error.test.ts +0 -16
  738. package/test/util/filesystem.test.ts +0 -656
  739. package/test/util/glob.test.ts +0 -164
  740. package/test/util/html.test.ts +0 -15
  741. package/test/util/iife.test.ts +0 -36
  742. package/test/util/lazy.test.ts +0 -50
  743. package/test/util/module.test.ts +0 -59
  744. package/test/util/process.test.ts +0 -128
  745. package/test/util/repository.test.ts +0 -93
  746. package/test/util/timeout.test.ts +0 -21
  747. package/test/util/wildcard.test.ts +0 -90
  748. package/test/v2/session-message-updater.test.ts +0 -269
  749. package/tsconfig.json +0 -16
@@ -1,1174 +0,0 @@
1
- import { PermissionV1 } from "@ac/core/v1/permission"
2
- import { test, expect } from "bun:test"
3
- import os from "os"
4
- import { Cause, Deferred, Effect, Exit, Fiber, Layer } from "effect"
5
- import { EventV2Bridge } from "../../src/event-v2-bridge"
6
- import { CrossSpawnSpawner } from "@ac/core/cross-spawn-spawner"
7
- import { Permission } from "../../src/permission"
8
- import { InstanceBootstrap } from "../../src/project/bootstrap"
9
- import { InstanceStore } from "../../src/project/instance-store"
10
- import { TestInstance, tmpdirScoped } from "../fixture/fixture"
11
- import { testEffect } from "../lib/effect"
12
- import { MessageID, SessionID } from "../../src/session/schema"
13
- import { AppNodeBuilder } from "@ac/core/effect/app-node-builder"
14
- import { LayerNode } from "@ac/core/effect/layer-node"
15
-
16
- const noopBootstrap = Layer.succeed(InstanceBootstrap.Service, InstanceBootstrap.Service.of({ run: Effect.void }))
17
- const env = AppNodeBuilder.build(
18
- LayerNode.group([Permission.node, EventV2Bridge.node, CrossSpawnSpawner.node, InstanceStore.node]),
19
- [[InstanceStore.bootstrapNode, noopBootstrap]],
20
- )
21
- const it = testEffect(env)
22
-
23
- const rejectAll = (message?: string) =>
24
- Effect.gen(function* () {
25
- const permission = yield* Permission.Service
26
- for (const req of yield* permission.list()) {
27
- yield* permission.reply({
28
- requestID: req.id,
29
- reply: "reject",
30
- message,
31
- })
32
- }
33
- })
34
-
35
- const waitForPending = (count: number) =>
36
- Effect.gen(function* () {
37
- const permission = yield* Permission.Service
38
- return yield* Effect.gen(function* () {
39
- while (true) {
40
- const list = yield* permission.list()
41
- if (list.length === count) return list
42
- yield* Effect.sleep("10 millis")
43
- }
44
- }).pipe(
45
- Effect.timeoutOrElse({
46
- duration: "1 second",
47
- orElse: () => Effect.fail(new Error(`timed out waiting for ${count} pending permission request(s)`)),
48
- }),
49
- )
50
- })
51
-
52
- const fail = <A, E, R>(self: Effect.Effect<A, E, R>) =>
53
- Effect.gen(function* () {
54
- const exit = yield* self.pipe(Effect.exit)
55
- if (Exit.isFailure(exit)) return Cause.squash(exit.cause)
56
- throw new Error("expected permission effect to fail")
57
- })
58
-
59
- const ask = (input: Parameters<Permission.Interface["ask"]>[0]) =>
60
- Effect.gen(function* () {
61
- const permission = yield* Permission.Service
62
- return yield* permission.ask(input)
63
- })
64
-
65
- const reply = (input: Parameters<Permission.Interface["reply"]>[0]) =>
66
- Effect.gen(function* () {
67
- const permission = yield* Permission.Service
68
- return yield* permission.reply(input)
69
- })
70
-
71
- const list = () =>
72
- Effect.gen(function* () {
73
- const permission = yield* Permission.Service
74
- return yield* permission.list()
75
- })
76
-
77
- // fromConfig tests
78
-
79
- test("fromConfig - string value becomes wildcard rule", () => {
80
- const result = Permission.fromConfig({ bash: "allow" })
81
- expect(result).toEqual([{ permission: "bash", pattern: "*", action: "allow" }])
82
- })
83
-
84
- test("fromConfig - object value converts to rules array", () => {
85
- const result = Permission.fromConfig({ bash: { "*": "allow", rm: "deny" } })
86
- expect(result).toEqual([
87
- { permission: "bash", pattern: "*", action: "allow" },
88
- { permission: "bash", pattern: "rm", action: "deny" },
89
- ])
90
- })
91
-
92
- test("fromConfig - mixed string and object values", () => {
93
- const result = Permission.fromConfig({
94
- bash: { "*": "allow", rm: "deny" },
95
- edit: "allow",
96
- webfetch: "ask",
97
- })
98
- expect(result).toEqual([
99
- { permission: "bash", pattern: "*", action: "allow" },
100
- { permission: "bash", pattern: "rm", action: "deny" },
101
- { permission: "edit", pattern: "*", action: "allow" },
102
- { permission: "webfetch", pattern: "*", action: "ask" },
103
- ])
104
- })
105
-
106
- test("fromConfig - empty object", () => {
107
- const result = Permission.fromConfig({})
108
- expect(result).toEqual([])
109
- })
110
-
111
- test("fromConfig - expands tilde to home directory", () => {
112
- const result = Permission.fromConfig({ external_directory: { "~/projects/*": "allow" } })
113
- expect(result).toEqual([{ permission: "external_directory", pattern: `${os.homedir()}/projects/*`, action: "allow" }])
114
- })
115
-
116
- test("fromConfig - expands $HOME to home directory", () => {
117
- const result = Permission.fromConfig({ external_directory: { "$HOME/projects/*": "allow" } })
118
- expect(result).toEqual([{ permission: "external_directory", pattern: `${os.homedir()}/projects/*`, action: "allow" }])
119
- })
120
-
121
- test("fromConfig - expands $HOME without trailing slash", () => {
122
- const result = Permission.fromConfig({ external_directory: { $HOME: "allow" } })
123
- expect(result).toEqual([{ permission: "external_directory", pattern: os.homedir(), action: "allow" }])
124
- })
125
-
126
- test("fromConfig - does not expand tilde in middle of path", () => {
127
- const result = Permission.fromConfig({ external_directory: { "/some/~/path": "allow" } })
128
- expect(result).toEqual([{ permission: "external_directory", pattern: "/some/~/path", action: "allow" }])
129
- })
130
-
131
- // Permission precedence follows config insertion order. `evaluate()` uses the
132
- // last matching rule, so later config entries intentionally override earlier
133
- // entries even when a wildcard appears after a specific permission.
134
-
135
- test("fromConfig - preserves top-level config key order", () => {
136
- const wildcardFirst = Permission.fromConfig({ "*": "deny", bash: "allow" })
137
- const specificFirst = Permission.fromConfig({ bash: "allow", "*": "deny" })
138
-
139
- expect(wildcardFirst.map((r) => r.permission)).toEqual(["*", "bash"])
140
- expect(specificFirst.map((r) => r.permission)).toEqual(["bash", "*"])
141
-
142
- expect(Permission.evaluate("bash", "ls", wildcardFirst).action).toBe("allow")
143
- expect(Permission.evaluate("bash", "ls", specificFirst).action).toBe("deny")
144
- })
145
-
146
- test("fromConfig - wildcard acts as fallback when it appears before specifics", () => {
147
- const ruleset = Permission.fromConfig({ "*": "ask", bash: "allow" })
148
- expect(Permission.evaluate("edit", "foo.ts", ruleset).action).toBe("ask")
149
- expect(Permission.evaluate("bash", "ls", ruleset).action).toBe("allow")
150
- })
151
-
152
- test("fromConfig - top-level ordering is not sorted by wildcard specificity", () => {
153
- const ruleset = Permission.fromConfig({
154
- bash: "allow",
155
- "*": "ask",
156
- edit: "deny",
157
- "mcp_*": "allow",
158
- })
159
- expect(ruleset.map((r) => r.permission)).toEqual(["bash", "*", "edit", "mcp_*"])
160
- })
161
-
162
- test("fromConfig - sub-pattern insertion order inside a tool key is preserved", () => {
163
- const ruleset = Permission.fromConfig({ bash: { "*": "deny", "git *": "allow" } })
164
- expect(ruleset.map((r) => r.pattern)).toEqual(["*", "git *"])
165
- expect(Permission.evaluate("bash", "rm foo", ruleset).action).toBe("deny")
166
- expect(Permission.evaluate("bash", "git status", ruleset).action).toBe("allow")
167
- })
168
-
169
- test("fromConfig - documented fallback-first example", () => {
170
- const ruleset = Permission.fromConfig({ "*": "ask", bash: "allow", edit: "deny" })
171
- expect(Permission.evaluate("bash", "ls", ruleset).action).toBe("allow")
172
- expect(Permission.evaluate("edit", "foo.ts", ruleset).action).toBe("deny")
173
- expect(Permission.evaluate("read", "foo.ts", ruleset).action).toBe("ask")
174
- })
175
-
176
- test("fromConfig - expands exact tilde to home directory", () => {
177
- const result = Permission.fromConfig({ external_directory: { "~": "allow" } })
178
- expect(result).toEqual([{ permission: "external_directory", pattern: os.homedir(), action: "allow" }])
179
- })
180
-
181
- test("evaluate - matches expanded tilde pattern", () => {
182
- const ruleset = Permission.fromConfig({ external_directory: { "~/projects/*": "allow" } })
183
- const result = Permission.evaluate("external_directory", `${os.homedir()}/projects/file.txt`, ruleset)
184
- expect(result.action).toBe("allow")
185
- })
186
-
187
- test("evaluate - matches expanded $HOME pattern", () => {
188
- const ruleset = Permission.fromConfig({ external_directory: { "$HOME/projects/*": "allow" } })
189
- const result = Permission.evaluate("external_directory", `${os.homedir()}/projects/file.txt`, ruleset)
190
- expect(result.action).toBe("allow")
191
- })
192
-
193
- // merge tests
194
-
195
- test("merge - simple concatenation", () => {
196
- const result = Permission.merge(
197
- [{ permission: "bash", pattern: "*", action: "allow" }],
198
- [{ permission: "bash", pattern: "*", action: "deny" }],
199
- )
200
- expect(result).toEqual([
201
- { permission: "bash", pattern: "*", action: "allow" },
202
- { permission: "bash", pattern: "*", action: "deny" },
203
- ])
204
- })
205
-
206
- test("merge - adds new permission", () => {
207
- const result = Permission.merge(
208
- [{ permission: "bash", pattern: "*", action: "allow" }],
209
- [{ permission: "edit", pattern: "*", action: "deny" }],
210
- )
211
- expect(result).toEqual([
212
- { permission: "bash", pattern: "*", action: "allow" },
213
- { permission: "edit", pattern: "*", action: "deny" },
214
- ])
215
- })
216
-
217
- test("merge - concatenates rules for same permission", () => {
218
- const result = Permission.merge(
219
- [{ permission: "bash", pattern: "foo", action: "ask" }],
220
- [{ permission: "bash", pattern: "*", action: "deny" }],
221
- )
222
- expect(result).toEqual([
223
- { permission: "bash", pattern: "foo", action: "ask" },
224
- { permission: "bash", pattern: "*", action: "deny" },
225
- ])
226
- })
227
-
228
- test("merge - multiple rulesets", () => {
229
- const result = Permission.merge(
230
- [{ permission: "bash", pattern: "*", action: "allow" }],
231
- [{ permission: "bash", pattern: "rm", action: "ask" }],
232
- [{ permission: "edit", pattern: "*", action: "allow" }],
233
- )
234
- expect(result).toEqual([
235
- { permission: "bash", pattern: "*", action: "allow" },
236
- { permission: "bash", pattern: "rm", action: "ask" },
237
- { permission: "edit", pattern: "*", action: "allow" },
238
- ])
239
- })
240
-
241
- test("merge - empty ruleset does nothing", () => {
242
- const result = Permission.merge([{ permission: "bash", pattern: "*", action: "allow" }], [])
243
- expect(result).toEqual([{ permission: "bash", pattern: "*", action: "allow" }])
244
- })
245
-
246
- test("merge - preserves rule order", () => {
247
- const result = Permission.merge(
248
- [
249
- { permission: "edit", pattern: "src/*", action: "allow" },
250
- { permission: "edit", pattern: "src/secret/*", action: "deny" },
251
- ],
252
- [{ permission: "edit", pattern: "src/secret/ok.ts", action: "allow" }],
253
- )
254
- expect(result).toEqual([
255
- { permission: "edit", pattern: "src/*", action: "allow" },
256
- { permission: "edit", pattern: "src/secret/*", action: "deny" },
257
- { permission: "edit", pattern: "src/secret/ok.ts", action: "allow" },
258
- ])
259
- })
260
-
261
- test("merge - config permission overrides default ask", () => {
262
- const defaults: PermissionV1.Ruleset = [{ permission: "*", pattern: "*", action: "ask" }]
263
- const config: PermissionV1.Ruleset = [{ permission: "bash", pattern: "*", action: "allow" }]
264
- const merged = Permission.merge(defaults, config)
265
-
266
- expect(Permission.evaluate("bash", "ls", merged).action).toBe("allow")
267
- expect(Permission.evaluate("edit", "foo.ts", merged).action).toBe("ask")
268
- })
269
-
270
- test("merge - config ask overrides default allow", () => {
271
- const defaults: PermissionV1.Ruleset = [{ permission: "bash", pattern: "*", action: "allow" }]
272
- const config: PermissionV1.Ruleset = [{ permission: "bash", pattern: "*", action: "ask" }]
273
- const merged = Permission.merge(defaults, config)
274
-
275
- expect(Permission.evaluate("bash", "ls", merged).action).toBe("ask")
276
- })
277
-
278
- // evaluate tests
279
-
280
- test("evaluate - exact pattern match", () => {
281
- const result = Permission.evaluate("bash", "rm", [{ permission: "bash", pattern: "rm", action: "deny" }])
282
- expect(result.action).toBe("deny")
283
- })
284
-
285
- test("evaluate - wildcard pattern match", () => {
286
- const result = Permission.evaluate("bash", "rm", [{ permission: "bash", pattern: "*", action: "allow" }])
287
- expect(result.action).toBe("allow")
288
- })
289
-
290
- test("evaluate - last matching rule wins", () => {
291
- const result = Permission.evaluate("bash", "rm", [
292
- { permission: "bash", pattern: "*", action: "allow" },
293
- { permission: "bash", pattern: "rm", action: "deny" },
294
- ])
295
- expect(result.action).toBe("deny")
296
- })
297
-
298
- test("evaluate - last matching rule wins (wildcard after specific)", () => {
299
- const result = Permission.evaluate("bash", "rm", [
300
- { permission: "bash", pattern: "rm", action: "deny" },
301
- { permission: "bash", pattern: "*", action: "allow" },
302
- ])
303
- expect(result.action).toBe("allow")
304
- })
305
-
306
- test("evaluate - glob pattern match", () => {
307
- const result = Permission.evaluate("edit", "src/foo.ts", [{ permission: "edit", pattern: "src/*", action: "allow" }])
308
- expect(result.action).toBe("allow")
309
- })
310
-
311
- test("evaluate - last matching glob wins", () => {
312
- const result = Permission.evaluate("edit", "src/components/Button.tsx", [
313
- { permission: "edit", pattern: "src/*", action: "deny" },
314
- { permission: "edit", pattern: "src/components/*", action: "allow" },
315
- ])
316
- expect(result.action).toBe("allow")
317
- })
318
-
319
- test("evaluate - order matters for specificity", () => {
320
- const result = Permission.evaluate("edit", "src/components/Button.tsx", [
321
- { permission: "edit", pattern: "src/components/*", action: "allow" },
322
- { permission: "edit", pattern: "src/*", action: "deny" },
323
- ])
324
- expect(result.action).toBe("deny")
325
- })
326
-
327
- test("evaluate - unknown permission returns ask", () => {
328
- const result = Permission.evaluate("unknown_tool", "anything", [
329
- { permission: "bash", pattern: "*", action: "allow" },
330
- ])
331
- expect(result.action).toBe("ask")
332
- })
333
-
334
- test("evaluate - empty ruleset returns ask", () => {
335
- const result = Permission.evaluate("bash", "rm", [])
336
- expect(result.action).toBe("ask")
337
- })
338
-
339
- test("evaluate - no matching pattern returns ask", () => {
340
- const result = Permission.evaluate("edit", "etc/passwd", [{ permission: "edit", pattern: "src/*", action: "allow" }])
341
- expect(result.action).toBe("ask")
342
- })
343
-
344
- test("evaluate - empty rules array returns ask", () => {
345
- const result = Permission.evaluate("bash", "rm", [])
346
- expect(result.action).toBe("ask")
347
- })
348
-
349
- test("evaluate - multiple matching patterns, last wins", () => {
350
- const result = Permission.evaluate("edit", "src/secret.ts", [
351
- { permission: "edit", pattern: "*", action: "ask" },
352
- { permission: "edit", pattern: "src/*", action: "allow" },
353
- { permission: "edit", pattern: "src/secret.ts", action: "deny" },
354
- ])
355
- expect(result.action).toBe("deny")
356
- })
357
-
358
- test("evaluate - non-matching patterns are skipped", () => {
359
- const result = Permission.evaluate("edit", "src/foo.ts", [
360
- { permission: "edit", pattern: "*", action: "ask" },
361
- { permission: "edit", pattern: "test/*", action: "deny" },
362
- { permission: "edit", pattern: "src/*", action: "allow" },
363
- ])
364
- expect(result.action).toBe("allow")
365
- })
366
-
367
- test("evaluate - exact match at end wins over earlier wildcard", () => {
368
- const result = Permission.evaluate("bash", "/bin/rm", [
369
- { permission: "bash", pattern: "*", action: "allow" },
370
- { permission: "bash", pattern: "/bin/rm", action: "deny" },
371
- ])
372
- expect(result.action).toBe("deny")
373
- })
374
-
375
- test("evaluate - wildcard at end overrides earlier exact match", () => {
376
- const result = Permission.evaluate("bash", "/bin/rm", [
377
- { permission: "bash", pattern: "/bin/rm", action: "deny" },
378
- { permission: "bash", pattern: "*", action: "allow" },
379
- ])
380
- expect(result.action).toBe("allow")
381
- })
382
-
383
- // wildcard permission tests
384
-
385
- test("evaluate - wildcard permission matches any permission", () => {
386
- const result = Permission.evaluate("bash", "rm", [{ permission: "*", pattern: "*", action: "deny" }])
387
- expect(result.action).toBe("deny")
388
- })
389
-
390
- test("evaluate - wildcard permission with specific pattern", () => {
391
- const result = Permission.evaluate("bash", "rm", [{ permission: "*", pattern: "rm", action: "deny" }])
392
- expect(result.action).toBe("deny")
393
- })
394
-
395
- test("evaluate - glob permission pattern", () => {
396
- const result = Permission.evaluate("mcp_server_tool", "anything", [
397
- { permission: "mcp_*", pattern: "*", action: "allow" },
398
- ])
399
- expect(result.action).toBe("allow")
400
- })
401
-
402
- test("evaluate - specific permission and wildcard permission combined", () => {
403
- const result = Permission.evaluate("bash", "rm", [
404
- { permission: "*", pattern: "*", action: "deny" },
405
- { permission: "bash", pattern: "*", action: "allow" },
406
- ])
407
- expect(result.action).toBe("allow")
408
- })
409
-
410
- test("evaluate - wildcard permission does not match when specific exists", () => {
411
- const result = Permission.evaluate("edit", "src/foo.ts", [
412
- { permission: "*", pattern: "*", action: "deny" },
413
- { permission: "edit", pattern: "src/*", action: "allow" },
414
- ])
415
- expect(result.action).toBe("allow")
416
- })
417
-
418
- test("evaluate - multiple matching permission patterns combine rules", () => {
419
- const result = Permission.evaluate("mcp_dangerous", "anything", [
420
- { permission: "*", pattern: "*", action: "ask" },
421
- { permission: "mcp_*", pattern: "*", action: "allow" },
422
- { permission: "mcp_dangerous", pattern: "*", action: "deny" },
423
- ])
424
- expect(result.action).toBe("deny")
425
- })
426
-
427
- test("evaluate - wildcard permission fallback for unknown tool", () => {
428
- const result = Permission.evaluate("unknown_tool", "anything", [
429
- { permission: "*", pattern: "*", action: "ask" },
430
- { permission: "bash", pattern: "*", action: "allow" },
431
- ])
432
- expect(result.action).toBe("ask")
433
- })
434
-
435
- test("evaluate - later wildcard permission can override earlier specific permission", () => {
436
- const result = Permission.evaluate("bash", "rm", [
437
- { permission: "bash", pattern: "*", action: "allow" },
438
- { permission: "*", pattern: "*", action: "deny" },
439
- ])
440
- expect(result.action).toBe("deny")
441
- })
442
-
443
- test("evaluate - merges multiple rulesets", () => {
444
- const config: PermissionV1.Ruleset = [{ permission: "bash", pattern: "*", action: "allow" }]
445
- const approved: PermissionV1.Ruleset = [{ permission: "bash", pattern: "rm", action: "deny" }]
446
- const result = Permission.evaluate("bash", "rm", config, approved)
447
- expect(result.action).toBe("deny")
448
- })
449
-
450
- // disabled tests
451
-
452
- test("disabled - returns empty set when all tools allowed", () => {
453
- const result = Permission.disabled(["bash", "edit", "read"], [{ permission: "*", pattern: "*", action: "allow" }])
454
- expect(result.size).toBe(0)
455
- })
456
-
457
- test("disabled - disables tool when denied", () => {
458
- const result = Permission.disabled(
459
- ["bash", "edit", "read"],
460
- [
461
- { permission: "*", pattern: "*", action: "allow" },
462
- { permission: "bash", pattern: "*", action: "deny" },
463
- ],
464
- )
465
- expect(result.has("bash")).toBe(true)
466
- expect(result.has("edit")).toBe(false)
467
- expect(result.has("read")).toBe(false)
468
- })
469
-
470
- test("disabled - disables edit/write/apply_patch when edit denied", () => {
471
- const result = Permission.disabled(
472
- ["edit", "write", "apply_patch", "bash"],
473
- [
474
- { permission: "*", pattern: "*", action: "allow" },
475
- { permission: "edit", pattern: "*", action: "deny" },
476
- ],
477
- )
478
- expect(result.has("edit")).toBe(true)
479
- expect(result.has("write")).toBe(true)
480
- expect(result.has("apply_patch")).toBe(true)
481
- expect(result.has("bash")).toBe(false)
482
- })
483
-
484
- test("disabled - does not disable when partially denied", () => {
485
- const result = Permission.disabled(
486
- ["bash"],
487
- [
488
- { permission: "bash", pattern: "*", action: "allow" },
489
- { permission: "bash", pattern: "rm *", action: "deny" },
490
- ],
491
- )
492
- expect(result.has("bash")).toBe(false)
493
- })
494
-
495
- test("disabled - does not disable when action is ask", () => {
496
- const result = Permission.disabled(["bash", "edit"], [{ permission: "*", pattern: "*", action: "ask" }])
497
- expect(result.size).toBe(0)
498
- })
499
-
500
- test("disabled - does not disable when specific allow after wildcard deny", () => {
501
- const result = Permission.disabled(
502
- ["bash"],
503
- [
504
- { permission: "bash", pattern: "*", action: "deny" },
505
- { permission: "bash", pattern: "echo *", action: "allow" },
506
- ],
507
- )
508
- expect(result.has("bash")).toBe(false)
509
- })
510
-
511
- test("disabled - does not disable when wildcard allow after deny", () => {
512
- const result = Permission.disabled(
513
- ["bash"],
514
- [
515
- { permission: "bash", pattern: "rm *", action: "deny" },
516
- { permission: "bash", pattern: "*", action: "allow" },
517
- ],
518
- )
519
- expect(result.has("bash")).toBe(false)
520
- })
521
-
522
- test("disabled - disables multiple tools", () => {
523
- const result = Permission.disabled(
524
- ["bash", "edit", "webfetch"],
525
- [
526
- { permission: "bash", pattern: "*", action: "deny" },
527
- { permission: "edit", pattern: "*", action: "deny" },
528
- { permission: "webfetch", pattern: "*", action: "deny" },
529
- ],
530
- )
531
- expect(result.has("bash")).toBe(true)
532
- expect(result.has("edit")).toBe(true)
533
- expect(result.has("webfetch")).toBe(true)
534
- })
535
-
536
- test("disabled - wildcard permission denies all tools", () => {
537
- const result = Permission.disabled(["bash", "edit", "read"], [{ permission: "*", pattern: "*", action: "deny" }])
538
- expect(result.has("bash")).toBe(true)
539
- expect(result.has("edit")).toBe(true)
540
- expect(result.has("read")).toBe(true)
541
- })
542
-
543
- test("disabled - specific allow overrides wildcard deny", () => {
544
- const result = Permission.disabled(
545
- ["bash", "edit", "read"],
546
- [
547
- { permission: "*", pattern: "*", action: "deny" },
548
- { permission: "bash", pattern: "*", action: "allow" },
549
- ],
550
- )
551
- expect(result.has("bash")).toBe(false)
552
- expect(result.has("edit")).toBe(true)
553
- expect(result.has("read")).toBe(true)
554
- })
555
-
556
- // ask tests
557
-
558
- it.instance(
559
- "ask - resolves immediately when action is allow",
560
- () =>
561
- Effect.gen(function* () {
562
- const result = yield* ask({
563
- sessionID: SessionID.make("session_test"),
564
- permission: "bash",
565
- patterns: ["ls"],
566
- metadata: {},
567
- always: [],
568
- ruleset: [{ permission: "bash", pattern: "*", action: "allow" }],
569
- })
570
- expect(result).toBeUndefined()
571
- }),
572
- { git: true },
573
- )
574
-
575
- it.instance(
576
- "ask - throws DeniedError when action is deny",
577
- () =>
578
- Effect.gen(function* () {
579
- const err = yield* fail(
580
- ask({
581
- sessionID: SessionID.make("session_test"),
582
- permission: "bash",
583
- patterns: ["rm -rf /"],
584
- metadata: {},
585
- always: [],
586
- ruleset: [{ permission: "bash", pattern: "*", action: "deny" }],
587
- }),
588
- )
589
- expect(err).toBeInstanceOf(PermissionV1.DeniedError)
590
- }),
591
- { git: true },
592
- )
593
-
594
- it.instance(
595
- "ask - stays pending when action is ask",
596
- () =>
597
- Effect.gen(function* () {
598
- const fiber = yield* ask({
599
- sessionID: SessionID.make("session_test"),
600
- permission: "bash",
601
- patterns: ["ls"],
602
- metadata: {},
603
- always: [],
604
- ruleset: [{ permission: "bash", pattern: "*", action: "ask" }],
605
- }).pipe(Effect.forkScoped)
606
-
607
- expect(yield* waitForPending(1)).toHaveLength(1)
608
- yield* rejectAll()
609
- yield* Fiber.await(fiber)
610
- }),
611
- { git: true },
612
- )
613
-
614
- it.instance(
615
- "ask - adds request to pending list",
616
- () =>
617
- Effect.gen(function* () {
618
- const fiber = yield* ask({
619
- sessionID: SessionID.make("session_test"),
620
- permission: "bash",
621
- patterns: ["ls"],
622
- metadata: { cmd: "ls" },
623
- always: ["ls"],
624
- tool: {
625
- messageID: MessageID.make("msg_test"),
626
- callID: "call_test",
627
- },
628
- ruleset: [],
629
- }).pipe(Effect.forkScoped)
630
-
631
- const items = yield* waitForPending(1)
632
- expect(items).toHaveLength(1)
633
- expect(items[0]).toMatchObject({
634
- sessionID: SessionID.make("session_test"),
635
- permission: "bash",
636
- patterns: ["ls"],
637
- metadata: { cmd: "ls" },
638
- always: ["ls"],
639
- tool: {
640
- messageID: MessageID.make("msg_test"),
641
- callID: "call_test",
642
- },
643
- })
644
-
645
- yield* rejectAll()
646
- yield* Fiber.await(fiber)
647
- }),
648
- { git: true },
649
- )
650
-
651
- it.instance(
652
- "ask - publishes asked event",
653
- () =>
654
- Effect.gen(function* () {
655
- const events = yield* EventV2Bridge.Service
656
- const seen = yield* Deferred.make<PermissionV1.Request>()
657
- const unsub = yield* events.listen((event) => {
658
- if (event.type === Permission.Event.Asked.type)
659
- Deferred.doneUnsafe(seen, Effect.succeed(event.data as PermissionV1.Request))
660
- return Effect.void
661
- })
662
- yield* Effect.addFinalizer(() => unsub)
663
-
664
- const fiber = yield* ask({
665
- sessionID: SessionID.make("session_test"),
666
- permission: "bash",
667
- patterns: ["ls"],
668
- metadata: { cmd: "ls" },
669
- always: ["ls"],
670
- tool: {
671
- messageID: MessageID.make("msg_test"),
672
- callID: "call_test",
673
- },
674
- ruleset: [],
675
- }).pipe(Effect.forkScoped)
676
-
677
- expect(yield* waitForPending(1)).toHaveLength(1)
678
- expect(
679
- yield* Deferred.await(seen).pipe(
680
- Effect.timeoutOrElse({
681
- duration: "1 second",
682
- orElse: () => Effect.fail(new Error("timed out waiting for permission asked event")),
683
- }),
684
- ),
685
- ).toMatchObject({
686
- sessionID: SessionID.make("session_test"),
687
- permission: "bash",
688
- patterns: ["ls"],
689
- })
690
-
691
- yield* rejectAll()
692
- yield* Fiber.await(fiber)
693
- }),
694
- { git: true },
695
- )
696
-
697
- // reply tests
698
-
699
- it.instance(
700
- "reply - once resolves the pending ask",
701
- () =>
702
- Effect.gen(function* () {
703
- const fiber = yield* ask({
704
- id: PermissionV1.ID.make("per_test1"),
705
- sessionID: SessionID.make("session_test"),
706
- permission: "bash",
707
- patterns: ["ls"],
708
- metadata: {},
709
- always: [],
710
- ruleset: [],
711
- }).pipe(Effect.forkScoped)
712
-
713
- yield* waitForPending(1)
714
- yield* reply({ requestID: PermissionV1.ID.make("per_test1"), reply: "once" })
715
- yield* Fiber.join(fiber)
716
- }),
717
- { git: true },
718
- )
719
-
720
- it.instance(
721
- "reply - reject throws RejectedError",
722
- () =>
723
- Effect.gen(function* () {
724
- const fiber = yield* ask({
725
- id: PermissionV1.ID.make("per_test2"),
726
- sessionID: SessionID.make("session_test"),
727
- permission: "bash",
728
- patterns: ["ls"],
729
- metadata: {},
730
- always: [],
731
- ruleset: [],
732
- }).pipe(Effect.forkScoped)
733
-
734
- yield* waitForPending(1)
735
- yield* reply({ requestID: PermissionV1.ID.make("per_test2"), reply: "reject" })
736
-
737
- const exit = yield* Fiber.await(fiber)
738
- expect(Exit.isFailure(exit)).toBe(true)
739
- if (Exit.isFailure(exit)) expect(Cause.squash(exit.cause)).toBeInstanceOf(PermissionV1.RejectedError)
740
- }),
741
- { git: true },
742
- )
743
-
744
- it.instance(
745
- "reply - reject with message throws CorrectedError",
746
- () =>
747
- Effect.gen(function* () {
748
- const fiber = yield* ask({
749
- id: PermissionV1.ID.make("per_test2b"),
750
- sessionID: SessionID.make("session_test"),
751
- permission: "bash",
752
- patterns: ["ls"],
753
- metadata: {},
754
- always: [],
755
- ruleset: [],
756
- }).pipe(Effect.forkScoped)
757
-
758
- yield* waitForPending(1)
759
- yield* reply({
760
- requestID: PermissionV1.ID.make("per_test2b"),
761
- reply: "reject",
762
- message: "Use a safer command",
763
- })
764
-
765
- const exit = yield* Fiber.await(fiber)
766
- expect(Exit.isFailure(exit)).toBe(true)
767
- if (Exit.isFailure(exit)) {
768
- const err = Cause.squash(exit.cause)
769
- expect(err).toBeInstanceOf(PermissionV1.CorrectedError)
770
- expect(String(err)).toContain("Use a safer command")
771
- }
772
- }),
773
- { git: true },
774
- )
775
-
776
- it.instance(
777
- "reply - always persists approval and resolves",
778
- () =>
779
- Effect.gen(function* () {
780
- const fiber = yield* ask({
781
- id: PermissionV1.ID.make("per_test3"),
782
- sessionID: SessionID.make("session_test"),
783
- permission: "bash",
784
- patterns: ["ls"],
785
- metadata: {},
786
- always: ["ls"],
787
- ruleset: [],
788
- }).pipe(Effect.forkScoped)
789
-
790
- yield* waitForPending(1)
791
- yield* reply({ requestID: PermissionV1.ID.make("per_test3"), reply: "always" })
792
- yield* Fiber.join(fiber)
793
-
794
- const result = yield* ask({
795
- sessionID: SessionID.make("session_test2"),
796
- permission: "bash",
797
- patterns: ["ls"],
798
- metadata: {},
799
- always: [],
800
- ruleset: [],
801
- })
802
- expect(result).toBeUndefined()
803
- }),
804
- { git: true },
805
- )
806
-
807
- it.instance(
808
- "reply - reject cancels all pending for same session",
809
- () =>
810
- Effect.gen(function* () {
811
- const a = yield* ask({
812
- id: PermissionV1.ID.make("per_test4a"),
813
- sessionID: SessionID.make("session_same"),
814
- permission: "bash",
815
- patterns: ["ls"],
816
- metadata: {},
817
- always: [],
818
- ruleset: [],
819
- }).pipe(Effect.forkScoped)
820
-
821
- const b = yield* ask({
822
- id: PermissionV1.ID.make("per_test4b"),
823
- sessionID: SessionID.make("session_same"),
824
- permission: "edit",
825
- patterns: ["foo.ts"],
826
- metadata: {},
827
- always: [],
828
- ruleset: [],
829
- }).pipe(Effect.forkScoped)
830
-
831
- yield* waitForPending(2)
832
- yield* reply({ requestID: PermissionV1.ID.make("per_test4a"), reply: "reject" })
833
-
834
- const [ea, eb] = yield* Effect.all([Fiber.await(a), Fiber.await(b)])
835
- expect(Exit.isFailure(ea)).toBe(true)
836
- expect(Exit.isFailure(eb)).toBe(true)
837
- if (Exit.isFailure(ea)) expect(Cause.squash(ea.cause)).toBeInstanceOf(PermissionV1.RejectedError)
838
- if (Exit.isFailure(eb)) expect(Cause.squash(eb.cause)).toBeInstanceOf(PermissionV1.RejectedError)
839
- }),
840
- { git: true },
841
- )
842
-
843
- it.instance(
844
- "reply - always resolves matching pending requests in same session",
845
- () =>
846
- Effect.gen(function* () {
847
- const a = yield* ask({
848
- id: PermissionV1.ID.make("per_test5a"),
849
- sessionID: SessionID.make("session_same"),
850
- permission: "bash",
851
- patterns: ["ls"],
852
- metadata: {},
853
- always: ["ls"],
854
- ruleset: [],
855
- }).pipe(Effect.forkScoped)
856
-
857
- const b = yield* ask({
858
- id: PermissionV1.ID.make("per_test5b"),
859
- sessionID: SessionID.make("session_same"),
860
- permission: "bash",
861
- patterns: ["ls"],
862
- metadata: {},
863
- always: [],
864
- ruleset: [],
865
- }).pipe(Effect.forkScoped)
866
-
867
- yield* waitForPending(2)
868
- yield* reply({ requestID: PermissionV1.ID.make("per_test5a"), reply: "always" })
869
-
870
- yield* Fiber.join(a)
871
- yield* Fiber.join(b)
872
- expect(yield* list()).toHaveLength(0)
873
- }),
874
- { git: true },
875
- )
876
-
877
- it.instance(
878
- "reply - always keeps other session pending",
879
- () =>
880
- Effect.gen(function* () {
881
- const a = yield* ask({
882
- id: PermissionV1.ID.make("per_test6a"),
883
- sessionID: SessionID.make("session_a"),
884
- permission: "bash",
885
- patterns: ["ls"],
886
- metadata: {},
887
- always: ["ls"],
888
- ruleset: [],
889
- }).pipe(Effect.forkScoped)
890
-
891
- const b = yield* ask({
892
- id: PermissionV1.ID.make("per_test6b"),
893
- sessionID: SessionID.make("session_b"),
894
- permission: "bash",
895
- patterns: ["ls"],
896
- metadata: {},
897
- always: [],
898
- ruleset: [],
899
- }).pipe(Effect.forkScoped)
900
-
901
- yield* waitForPending(2)
902
- yield* reply({ requestID: PermissionV1.ID.make("per_test6a"), reply: "always" })
903
-
904
- yield* Fiber.join(a)
905
- expect((yield* list()).map((item) => item.id)).toEqual([PermissionV1.ID.make("per_test6b")])
906
-
907
- yield* rejectAll()
908
- yield* Fiber.await(b)
909
- }),
910
- { git: true },
911
- )
912
-
913
- it.instance(
914
- "reply - publishes replied event",
915
- () =>
916
- Effect.gen(function* () {
917
- const events = yield* EventV2Bridge.Service
918
- const seen = yield* Deferred.make<{
919
- sessionID: SessionID
920
- requestID: PermissionV1.ID
921
- reply: PermissionV1.Reply
922
- }>()
923
-
924
- const fiber = yield* ask({
925
- id: PermissionV1.ID.make("per_test7"),
926
- sessionID: SessionID.make("session_test"),
927
- permission: "bash",
928
- patterns: ["ls"],
929
- metadata: {},
930
- always: [],
931
- ruleset: [],
932
- }).pipe(Effect.forkScoped)
933
-
934
- yield* waitForPending(1)
935
-
936
- const unsub = yield* events.listen((event) => {
937
- if (event.type === Permission.Event.Replied.type)
938
- Deferred.doneUnsafe(
939
- seen,
940
- Effect.succeed(
941
- event.data as { sessionID: SessionID; requestID: PermissionV1.ID; reply: PermissionV1.Reply },
942
- ),
943
- )
944
- return Effect.void
945
- })
946
- yield* Effect.addFinalizer(() => unsub)
947
-
948
- yield* reply({ requestID: PermissionV1.ID.make("per_test7"), reply: "once" })
949
- yield* Fiber.join(fiber)
950
- expect(
951
- yield* Deferred.await(seen).pipe(
952
- Effect.timeoutOrElse({
953
- duration: "1 second",
954
- orElse: () => Effect.fail(new Error("timed out waiting for permission replied event")),
955
- }),
956
- ),
957
- ).toEqual({
958
- sessionID: SessionID.make("session_test"),
959
- requestID: PermissionV1.ID.make("per_test7"),
960
- reply: "once",
961
- })
962
- }),
963
- { git: true },
964
- )
965
-
966
- it.live("permission requests stay isolated by directory", () =>
967
- Effect.gen(function* () {
968
- const one = yield* tmpdirScoped({ git: true })
969
- const two = yield* tmpdirScoped({ git: true })
970
- const store = yield* InstanceStore.Service
971
-
972
- const a = yield* store
973
- .provide(
974
- { directory: one },
975
- ask({
976
- id: PermissionV1.ID.make("per_dir_a"),
977
- sessionID: SessionID.make("session_dir_a"),
978
- permission: "bash",
979
- patterns: ["ls"],
980
- metadata: {},
981
- always: [],
982
- ruleset: [],
983
- }),
984
- )
985
- .pipe(Effect.forkScoped)
986
-
987
- const b = yield* store
988
- .provide(
989
- { directory: two },
990
- ask({
991
- id: PermissionV1.ID.make("per_dir_b"),
992
- sessionID: SessionID.make("session_dir_b"),
993
- permission: "bash",
994
- patterns: ["pwd"],
995
- metadata: {},
996
- always: [],
997
- ruleset: [],
998
- }),
999
- )
1000
- .pipe(Effect.forkScoped)
1001
-
1002
- const onePending = yield* store.provide({ directory: one }, waitForPending(1))
1003
- const twoPending = yield* store.provide({ directory: two }, waitForPending(1))
1004
-
1005
- expect(onePending).toHaveLength(1)
1006
- expect(twoPending).toHaveLength(1)
1007
- expect(onePending[0].id).toBe(PermissionV1.ID.make("per_dir_a"))
1008
- expect(twoPending[0].id).toBe(PermissionV1.ID.make("per_dir_b"))
1009
-
1010
- yield* store.provide({ directory: one }, reply({ requestID: onePending[0].id, reply: "reject" }))
1011
- yield* store.provide({ directory: two }, reply({ requestID: twoPending[0].id, reply: "reject" }))
1012
-
1013
- yield* Fiber.await(a)
1014
- yield* Fiber.await(b)
1015
- }),
1016
- )
1017
-
1018
- it.instance(
1019
- "pending permission rejects on instance dispose",
1020
- () =>
1021
- Effect.gen(function* () {
1022
- const test = yield* TestInstance
1023
- const store = yield* InstanceStore.Service
1024
- const fiber = yield* ask({
1025
- id: PermissionV1.ID.make("per_dispose"),
1026
- sessionID: SessionID.make("session_dispose"),
1027
- permission: "bash",
1028
- patterns: ["ls"],
1029
- metadata: {},
1030
- always: [],
1031
- ruleset: [],
1032
- }).pipe(Effect.forkScoped)
1033
-
1034
- expect(yield* waitForPending(1)).toHaveLength(1)
1035
- const ctx = yield* store.load({ directory: test.directory })
1036
- yield* store.dispose(ctx)
1037
-
1038
- const exit = yield* Fiber.await(fiber)
1039
- expect(Exit.isFailure(exit)).toBe(true)
1040
- if (Exit.isFailure(exit)) expect(Cause.squash(exit.cause)).toBeInstanceOf(PermissionV1.RejectedError)
1041
- }),
1042
- { git: true },
1043
- )
1044
-
1045
- it.instance(
1046
- "pending permission rejects on instance reload",
1047
- () =>
1048
- Effect.gen(function* () {
1049
- const test = yield* TestInstance
1050
- const store = yield* InstanceStore.Service
1051
- const fiber = yield* ask({
1052
- id: PermissionV1.ID.make("per_reload"),
1053
- sessionID: SessionID.make("session_reload"),
1054
- permission: "bash",
1055
- patterns: ["ls"],
1056
- metadata: {},
1057
- always: [],
1058
- ruleset: [],
1059
- }).pipe(Effect.forkScoped)
1060
-
1061
- expect(yield* waitForPending(1)).toHaveLength(1)
1062
- yield* store.reload({ directory: test.directory })
1063
-
1064
- const exit = yield* Fiber.await(fiber)
1065
- expect(Exit.isFailure(exit)).toBe(true)
1066
- if (Exit.isFailure(exit)) expect(Cause.squash(exit.cause)).toBeInstanceOf(PermissionV1.RejectedError)
1067
- }),
1068
- { git: true },
1069
- )
1070
-
1071
- it.instance(
1072
- "reply - fails for unknown requestID",
1073
- () =>
1074
- Effect.gen(function* () {
1075
- const exit = yield* reply({ requestID: PermissionV1.ID.make("per_unknown"), reply: "once" }).pipe(Effect.exit)
1076
- expect(Exit.isFailure(exit)).toBe(true)
1077
- if (Exit.isFailure(exit)) {
1078
- expect(Cause.squash(exit.cause)).toMatchObject({ _tag: "Permission.NotFoundError", requestID: "per_unknown" })
1079
- }
1080
- expect(yield* list()).toHaveLength(0)
1081
- }),
1082
- { git: true },
1083
- )
1084
-
1085
- it.instance(
1086
- "ask - checks all patterns and stops on first deny",
1087
- () =>
1088
- Effect.gen(function* () {
1089
- const err = yield* fail(
1090
- ask({
1091
- sessionID: SessionID.make("session_test"),
1092
- permission: "bash",
1093
- patterns: ["echo hello", "rm -rf /"],
1094
- metadata: {},
1095
- always: [],
1096
- ruleset: [
1097
- { permission: "bash", pattern: "*", action: "allow" },
1098
- { permission: "bash", pattern: "rm *", action: "deny" },
1099
- ],
1100
- }),
1101
- )
1102
- expect(err).toBeInstanceOf(PermissionV1.DeniedError)
1103
- }),
1104
- { git: true },
1105
- )
1106
-
1107
- it.instance(
1108
- "ask - allows all patterns when all match allow rules",
1109
- () =>
1110
- Effect.gen(function* () {
1111
- const result = yield* ask({
1112
- sessionID: SessionID.make("session_test"),
1113
- permission: "bash",
1114
- patterns: ["echo hello", "ls -la", "pwd"],
1115
- metadata: {},
1116
- always: [],
1117
- ruleset: [{ permission: "bash", pattern: "*", action: "allow" }],
1118
- })
1119
- expect(result).toBeUndefined()
1120
- }),
1121
- { git: true },
1122
- )
1123
-
1124
- it.instance(
1125
- "ask - should deny even when an earlier pattern is ask",
1126
- () =>
1127
- Effect.gen(function* () {
1128
- const err = yield* fail(
1129
- ask({
1130
- sessionID: SessionID.make("session_test"),
1131
- permission: "bash",
1132
- patterns: ["echo hello", "rm -rf /"],
1133
- metadata: {},
1134
- always: [],
1135
- ruleset: [
1136
- { permission: "bash", pattern: "echo *", action: "ask" },
1137
- { permission: "bash", pattern: "rm *", action: "deny" },
1138
- ],
1139
- }),
1140
- )
1141
-
1142
- expect(err).toBeInstanceOf(PermissionV1.DeniedError)
1143
- expect(yield* list()).toHaveLength(0)
1144
- }),
1145
- { git: true },
1146
- )
1147
-
1148
- it.instance(
1149
- "ask - abort should clear pending request",
1150
- () =>
1151
- Effect.gen(function* () {
1152
- const test = yield* TestInstance
1153
- const store = yield* InstanceStore.Service
1154
-
1155
- const fiber = yield* ask({
1156
- id: PermissionV1.ID.make("per_reload"),
1157
- sessionID: SessionID.make("session_reload"),
1158
- permission: "bash",
1159
- patterns: ["ls"],
1160
- metadata: {},
1161
- always: [],
1162
- ruleset: [{ permission: "bash", pattern: "*", action: "ask" }],
1163
- }).pipe(Effect.forkScoped)
1164
-
1165
- const pending = yield* waitForPending(1)
1166
- expect(pending).toHaveLength(1)
1167
- yield* store.reload({ directory: test.directory })
1168
-
1169
- const exit = yield* Fiber.await(fiber)
1170
- expect(Exit.isFailure(exit)).toBe(true)
1171
- if (Exit.isFailure(exit)) expect(Cause.squash(exit.cause)).toBeInstanceOf(PermissionV1.RejectedError)
1172
- }),
1173
- { git: true },
1174
- )