auditor-lambda 0.3.18 → 0.3.20

package/README.md

@@ -30,8 +30,9 @@ npm install -g auditor-lambda
 
 That makes `audit-code` available on `PATH`. During package install, the package
 also writes user-level command/skill assets for hosts we can seed safely, including
-the Claude command file, the global Codex skill bundle, and the global OpenCode
-slash command entry in `~/.config/opencode/opencode.json`.
+the Claude command file, the global Codex skill bundle with `audit-code` display
+metadata, and the global OpenCode slash command entry in
+`~/.config/opencode/opencode.json`.
 
 After that, invoke `/audit-code` in a supported host. The prompt self-bootstraps
 the current repository by running:

package/audit-code-wrapper-lib.mjs

@@ -533,8 +533,59 @@ function renderCodexAutomationRecipe() {
   ].join('\n');
 }
 
+const OPENCODE_AUDIT_EDIT_PERMISSION = {
+  '*': 'ask',
+  '.audit-code/**': 'allow',
+  '.audit-artifacts/**': 'allow',
+  'audit-report.md': 'allow',
+};
+
+const OPENCODE_AUDIT_BASH_PERMISSION = {
+  '*': 'ask',
+  'audit-code run-to-completion*': 'deny',
+  'audit-code synthesize*': 'deny',
+  'audit-code cleanup*': 'deny',
+  'audit-code requeue*': 'deny',
+  'audit-code ingest-results*': 'deny',
+  '*audit-code.mjs* run-to-completion*': 'deny',
+  '*audit-code.mjs* synthesize*': 'deny',
+  '*audit-code.mjs* cleanup*': 'deny',
+  '*audit-code.mjs* requeue*': 'deny',
+  '*audit-code.mjs* ingest-results*': 'deny',
+  'audit-code': 'allow',
+  'audit-code ensure*': 'allow',
+  'audit-code prepare-dispatch*': 'allow',
+  'audit-code submit-packet*': 'allow',
+  'audit-code merge-and-ingest*': 'allow',
+  'audit-code validate*': 'allow',
+  '*audit-code.mjs': 'allow',
+  '*audit-code.mjs* ensure*': 'allow',
+  '*audit-code.mjs* prepare-dispatch*': 'allow',
+  '*audit-code.mjs* submit-packet*': 'allow',
+  '*audit-code.mjs* merge-and-ingest*': 'allow',
+  '*audit-code.mjs* worker-run*': 'allow',
+  '*audit-code.mjs* validate*': 'allow',
+  'node* .audit-code/install/run-mcp-server.mjs*': 'allow',
+  'node* ./.audit-code/install/run-mcp-server.mjs*': 'allow',
+  'git status*': 'allow',
+  'git diff*': 'allow',
+  'grep *': 'allow',
+  'rm *': 'deny',
+};
+
+function renderOpenCodePermissionConfig() {
+  return {
+    read: 'allow',
+    glob: 'allow',
+    grep: 'allow',
+    edit: { ...OPENCODE_AUDIT_EDIT_PERMISSION },
+    bash: { ...OPENCODE_AUDIT_BASH_PERMISSION },
+  };
+}
+
 function renderOpenCodeProjectConfig(root, promptBody) {
   const launcher = replaceBackslashes(toRepoRelativePath(root, join(root, '.audit-code', 'install', MCP_LAUNCHER_FILENAME)));
+  const auditPermission = renderOpenCodePermissionConfig();
   return {
     $schema: 'https://opencode.ai/config.json',
     command: {
@@ -553,19 +604,7 @@ function renderOpenCodeProjectConfig(root, promptBody) {
         timeout: 10000,
       },
     },
-    permission: {
-      read: 'allow',
-      glob: 'allow',
-      grep: 'allow',
-      edit: 'ask',
-      bash: {
-        '*': 'ask',
-        'git status*': 'allow',
-        'git diff*': 'allow',
-        'grep *': 'allow',
-        'rm *': 'deny',
-      },
-    },
+    permission: auditPermission,
     agent: {
       auditor: {
         description:
@@ -574,14 +613,8 @@ function renderOpenCodeProjectConfig(root, promptBody) {
           'auditor*': true,
         },
         permission: {
-          edit: 'ask',
-          bash: {
-            '*': 'ask',
-            'git status*': 'allow',
-            'git diff*': 'allow',
-            'grep *': 'allow',
-            'rm *': 'deny',
-          },
+          edit: { ...OPENCODE_AUDIT_EDIT_PERMISSION },
+          bash: { ...OPENCODE_AUDIT_BASH_PERMISSION },
           question: 'allow',
         },
       },
@@ -607,6 +640,99 @@ function objectValue(value) {
     : {};
 }
 
+function mergeOpenCodePermissionRule(existingRule, generatedRule, managedRules = {}) {
+  if (generatedRule && typeof generatedRule === 'object' && !Array.isArray(generatedRule)) {
+    const generatedObject = generatedRule;
+    const merged = {};
+    const existingObject =
+      existingRule && typeof existingRule === 'object' && !Array.isArray(existingRule)
+        ? existingRule
+        : {};
+
+    if (typeof existingRule === 'string') {
+      merged['*'] = existingRule;
+    } else {
+      merged['*'] = existingObject['*'] ?? generatedObject['*'] ?? 'ask';
+    }
+
+    for (const [key, value] of Object.entries(generatedObject)) {
+      if (key !== '*') merged[key] = value;
+    }
+    for (const [key, value] of Object.entries(existingObject)) {
+      if (key !== '*') merged[key] = value;
+    }
+    for (const [key, value] of Object.entries(managedRules)) {
+      merged[key] = value;
+    }
+
+    return merged;
+  }
+
+  return existingRule ?? generatedRule;
+}
+
+function mergeOpenCodePermissionConfig(existingPermission, generatedPermission) {
+  if (!existingPermission || typeof existingPermission !== 'object' || Array.isArray(existingPermission)) {
+    return generatedPermission;
+  }
+
+  return {
+    ...generatedPermission,
+    ...existingPermission,
+    edit: mergeOpenCodePermissionRule(
+      existingPermission.edit,
+      generatedPermission.edit,
+      OPENCODE_AUDIT_EDIT_PERMISSION,
+    ),
+    bash: mergeOpenCodePermissionRule(
+      existingPermission.bash,
+      generatedPermission.bash,
+      OPENCODE_AUDIT_BASH_PERMISSION,
+    ),
+  };
+}
+
+function assertOpenCodeAuditPermissionConfig(permissionConfig, label) {
+  const edit = permissionConfig?.edit;
+  const bash = permissionConfig?.bash;
+  if (!edit || typeof edit !== 'object' || Array.isArray(edit)) {
+    throw new Error(`OpenCode ${label}.edit must allow audit-owned file paths. Run "audit-code install --host opencode".`);
+  }
+  for (const pattern of ['.audit-code/**', '.audit-artifacts/**', 'audit-report.md']) {
+    if (edit[pattern] !== 'allow') {
+      throw new Error(`OpenCode ${label}.edit must allow ${pattern}. Run "audit-code install --host opencode".`);
+    }
+  }
+  if (!bash || typeof bash !== 'object' || Array.isArray(bash)) {
+    throw new Error(`OpenCode ${label}.bash must allow audit-code commands. Run "audit-code install --host opencode".`);
+  }
+  for (const pattern of [
+    'audit-code',
+    'audit-code ensure*',
+    'audit-code prepare-dispatch*',
+    'audit-code submit-packet*',
+    'audit-code merge-and-ingest*',
+    '*audit-code.mjs',
+    '*audit-code.mjs* submit-packet*',
+    '*audit-code.mjs* merge-and-ingest*',
+    'node* .audit-code/install/run-mcp-server.mjs*',
+  ]) {
+    if (bash[pattern] !== 'allow') {
+      throw new Error(`OpenCode ${label}.bash must allow ${pattern}. Run "audit-code install --host opencode".`);
+    }
+  }
+  for (const pattern of [
+    'audit-code run-to-completion*',
+    'audit-code synthesize*',
+    '*audit-code.mjs* run-to-completion*',
+    '*audit-code.mjs* synthesize*',
+  ]) {
+    if (bash[pattern] !== 'deny') {
+      throw new Error(`OpenCode ${label}.bash must deny ${pattern}. Run "audit-code install --host opencode".`);
+    }
+  }
+}
+
 function buildMergedOpenCodeProjectConfig(existing, root, promptBody) {
   const generated = renderOpenCodeProjectConfig(root, promptBody);
   return {
@@ -620,13 +746,17 @@ function buildMergedOpenCodeProjectConfig(existing, root, promptBody) {
       ...objectValue(existing.mcp),
       auditor: generated.mcp.auditor,
     },
-    permission:
-      existing.permission && typeof existing.permission === 'object' && !Array.isArray(existing.permission)
-        ? existing.permission
-        : generated.permission,
+    permission: mergeOpenCodePermissionConfig(existing.permission, generated.permission),
     agent: {
       ...objectValue(existing.agent),
-      auditor: generated.agent.auditor,
+      auditor: {
+        ...objectValue(objectValue(existing.agent).auditor),
+        ...generated.agent.auditor,
+        permission: mergeOpenCodePermissionConfig(
+          objectValue(objectValue(existing.agent).auditor).permission,
+          generated.agent.auditor.permission,
+        ),
+      },
     },
   };
 }
@@ -1822,8 +1952,10 @@ async function verifyInstalledBootstrap(argv) {
           if (commandConfig.template !== sourceBody.trimStart()) {
             throw new Error('OpenCode config command["audit-code"].template is out of sync with the source prompt. Run "audit-code install".');
           }
+          assertOpenCodeAuditPermissionConfig(config?.permission, 'permission');
+          assertOpenCodeAuditPermissionConfig(config?.agent?.auditor?.permission, 'agent.auditor.permission');
           return {
-            summary: 'OpenCode project config has MCP server and /audit-code slash command.',
+            summary: 'OpenCode project config has MCP server, /audit-code slash command, and audit permissions.',
             path: assetPaths.opencodeConfigPath,
           };
         });
@@ -2001,6 +2133,12 @@ async function detectBootstrapRefreshReason(root, host) {
         if (opencodeConfig?.command?.['audit-code']?.template !== sourcePromptBody.trimStart()) {
           return 'stale_host_asset:opencode:config_command';
         }
+        try {
+          assertOpenCodeAuditPermissionConfig(opencodeConfig?.permission, 'permission');
+          assertOpenCodeAuditPermissionConfig(opencodeConfig?.agent?.auditor?.permission, 'agent.auditor.permission');
+        } catch {
+          return 'stale_host_asset:opencode:permissions';
+        }
         if (await fileExists(join(root, '.opencode', 'commands', 'audit-code.md'))) {
           return 'stale_host_asset:opencode:legacy_command_file';
         }

package/dist/cli.js

@@ -1,4 +1,4 @@
-import { access, mkdir, readFile, readdir, rename, rm, writeFile } from "node:fs/promises";
+import { mkdir, readFile, readdir, rename, rm, writeFile } from "node:fs/promises";
 import { createReadStream } from "node:fs";
 import { Buffer } from "node:buffer";
 import { createHash } from "node:crypto";
@@ -218,8 +218,8 @@ async function emitEnvelope(params) {
 }
 function buildManualReviewBlocker(providerName) {
     return providerName === LOCAL_SUBPROCESS_PROVIDER_NAME
-        ? "Ready for LLM review. Dispatched task files are in .audit-artifacts/dispatch/. " +
-            "Review the code, write audit results to the specified path, then run the worker_command to continue."
+        ? "Ready for LLM semantic review. If the host exposes a callable subagent tool, prepare dispatch and fan out packets. " +
+            "If not, use single-task fallback: review only the first pending task, write one AuditResult to the run audit-results path, execute worker_command, then stop."
         : "Audit blocked: waiting for manual audit results or interactive provider configuration.";
 }
 function shouldRunInlineExecutor(selectedExecutor) {
@@ -308,30 +308,6 @@ async function listBatchResultFiles(batchDir) {
     }
     return files;
 }
-const PROJECT_SIGNALS = [
-    "package.json",
-    "go.mod",
-    "Cargo.toml",
-    "pom.xml",
-    "build.gradle",
-    "pyproject.toml",
-    "setup.py",
-    "setup.cfg",
-    "Makefile",
-    "CMakeLists.txt",
-];
-async function detectProjectRoot(root) {
-    for (const signal of PROJECT_SIGNALS) {
-        try {
-            await access(join(root, signal));
-            return signal;
-        }
-        catch {
-            // not found, try next
-        }
-    }
-    return null;
-}
 function buildPendingAuditTasks(bundle) {
     const completedTaskIds = new Set((bundle.audit_results ?? []).map((result) => result.task_id));
     const pendingTasks = (bundle.audit_tasks ?? []).filter((task) => task.status !== "complete" && !completedTaskIds.has(task.task_id));
@@ -716,35 +692,6 @@ async function cmdRunToCompletion(argv) {
     let pendingBatchAuditResults = batchResultsDir
         ? await listBatchResultFiles(batchResultsDir)
         : [];
-    const earlyBundle = await loadArtifactBundle(artifactsDir);
-    if (!earlyBundle.unit_manifest) {
-        const foundSignal = await detectProjectRoot(root);
-        if (!foundSignal) {
-            const blocker = `No recognisable project signals found in ${root}. Expected one of: ${PROJECT_SIGNALS.join(", ")}. Check that --root points to the repository root, not a subdirectory or an unrelated path.`;
-            const earlyState = deriveAuditState(earlyBundle);
-            const blockedState = buildBlockedAuditState({
-                state: earlyState,
-                obligationId: null,
-                executor: null,
-                blocker,
-            });
-            await emitEnvelope({
-                root,
-                artifactsDir,
-                bundle: { ...earlyBundle, audit_state: blockedState },
-                audit_state: blockedState,
-                selected_obligation: null,
-                selected_executor: null,
-                progress_made: false,
-                artifacts_written: [],
-                progress_summary: blocker,
-                next_likely_step: null,
-                providerName: provider.name,
-                isConfigError: true,
-            });
-            return;
-        }
-    }
     let pendingAuditResultsPath = getFlag(argv, "--results");
     let pendingRuntimeUpdatesPath = getFlag(argv, "--updates");
     let pendingExternalAnalyzerPath = getFlag(argv, "--external-analyzer-results");

package/dist/extractors/browserExtension.d.ts

@@ -0,0 +1,13 @@
+import type { Lens, RepoManifest } from "../types.js";
+import type { FileDisposition } from "../types/disposition.js";
+import type { GraphBundle, GraphEdge } from "../types/graph.js";
+import type { SurfaceRecord } from "../types/surfaces.js";
+export declare const BROWSER_EXTENSION_HEURISTIC_NOTE = "Chrome extension manifest and HTML asset references were resolved deterministically from local paths; verify unusual dynamic registration manually.";
+export declare function isBrowserExtensionManifestPath(path: string): boolean;
+export declare function extractChromeExtensionManifestEdges(fromPath: string, content: string, pathLookup: Map<string, string>): GraphEdge[];
+export declare function extractHtmlResourceEdges(fromPath: string, content: string, pathLookup: Map<string, string>): GraphEdge[];
+export declare function hasBrowserExtensionManifestFile(repoManifest: RepoManifest): boolean;
+export declare function deriveBrowserExtensionLensesForPath(path: string): Lens[];
+export declare function inferBrowserExtensionUnitKind(path: string): string | undefined;
+export declare function buildBrowserExtensionSurfacesFromGraph(graphBundle: GraphBundle | undefined, disposition?: FileDisposition): SurfaceRecord[];
+export declare function chromeExtensionRiskSignalsForManifest(content: string): string[];