npm - axconfig - Versions diffs - 3.5.0 → 3.5.1 - Mend

axconfig 3.5.0 → 3.5.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/agents/opencode-permission-builder.d.ts +15 -0
package/dist/agents/opencode-permission-builder.js +25 -4
package/package.json +1 -1

package/dist/agents/opencode-permission-builder.d.ts CHANGED Viewed

@@ -47,10 +47,25 @@ export declare function collectTools(rules: PermissionRule[]): Set<CanonicalTool
 export declare function collectBashPatterns(rules: PermissionRule[]): string[];
 /**
  * Build bash permission config from patterns and tool permissions.
+ *
+ * IMPORTANT: The wildcard "*" rule must be added FIRST in the config object.
+ * OpenCode's `disabled()` function uses `findLast()` to find any rule matching
+ * the permission name, then checks if that rule has `pattern === "*"` and
+ * `action === "deny"`. If the "*" rule is last, bash gets disabled entirely
+ * even when specific patterns are allowed. By adding "*" first, `findLast()`
+ * returns a specific pattern rule instead, keeping bash available to the model.
+ *
+ * At execution time, `evaluate()` correctly handles rule precedence because it
+ * uses `findLast()` with BOTH permission AND pattern matching - so specific
+ * patterns still take priority over the wildcard when the command matches.
  */
 export declare function buildBashPermission(allowPatterns: string[], denyPatterns: string[], bashAllowed: boolean, bashDenied: boolean): OpenCodePermission | Record<string, OpenCodePermission>;
 /**
  * Build tool permission config with optional path patterns.
+ *
+ * IMPORTANT: Like buildBashPermission, the wildcard "*" rule must be added
+ * FIRST to prevent OpenCode's disabled() from hiding the tool entirely.
+ * See buildBashPermission comment for detailed explanation.
  */
 export declare function buildToolPermission(canonicalName: CanonicalTool, opencodeName: string, allowedTools: Set<CanonicalTool>, deniedTools: Set<CanonicalTool>, allowPathPatterns: Map<string, string[]>, denyPathPatterns: Map<string, string[]>): OpenCodePermission | Record<string, OpenCodePermission>;
 /**

package/dist/agents/opencode-permission-builder.js CHANGED Viewed

@@ -78,26 +78,44 @@ export function collectBashPatterns(rules) {
 }
 /**
  * Build bash permission config from patterns and tool permissions.
+ *
+ * IMPORTANT: The wildcard "*" rule must be added FIRST in the config object.
+ * OpenCode's `disabled()` function uses `findLast()` to find any rule matching
+ * the permission name, then checks if that rule has `pattern === "*"` and
+ * `action === "deny"`. If the "*" rule is last, bash gets disabled entirely
+ * even when specific patterns are allowed. By adding "*" first, `findLast()`
+ * returns a specific pattern rule instead, keeping bash available to the model.
+ *
+ * At execution time, `evaluate()` correctly handles rule precedence because it
+ * uses `findLast()` with BOTH permission AND pattern matching - so specific
+ * patterns still take priority over the wildcard when the command matches.
  */
 export function buildBashPermission(allowPatterns, denyPatterns, bashAllowed, bashDenied) {
     if (bashDenied && allowPatterns.length === 0) {
         return "deny";
     }
     if (allowPatterns.length > 0 || denyPatterns.length > 0) {
-        const bashConfig = {};
+        // Add wildcard FIRST so specific patterns come after in ruleset order.
+        // This prevents OpenCode's disabled() from hiding bash from the model.
+        const bashConfig = {
+            "*": bashAllowed ? "allow" : "deny",
+        };
         for (const pattern of allowPatterns) {
             bashConfig[pattern] = "allow";
         }
         for (const pattern of denyPatterns) {
             bashConfig[pattern] = "deny";
         }
-        bashConfig["*"] = bashAllowed ? "allow" : "deny";
         return bashConfig;
     }
     return bashAllowed ? "allow" : "deny";
 }
 /**
  * Build tool permission config with optional path patterns.
+ *
+ * IMPORTANT: Like buildBashPermission, the wildcard "*" rule must be added
+ * FIRST to prevent OpenCode's disabled() from hiding the tool entirely.
+ * See buildBashPermission comment for detailed explanation.
  */
 export function buildToolPermission(canonicalName, opencodeName, allowedTools, deniedTools, allowPathPatterns, denyPathPatterns) {
     const hasAllowPatterns = allowPathPatterns.has(opencodeName);
@@ -114,14 +132,17 @@ export function buildToolPermission(canonicalName, opencodeName, allowedTools, d
         return "deny";
     }
     if (hasAllowPatterns || hasDenyPatterns) {
-        const patternConfig = {};
+        // Add wildcard FIRST so specific patterns come after in ruleset order.
+        // This prevents OpenCode's disabled() from hiding the tool from the model.
+        const patternConfig = {
+            "*": effectiveAllowed ? "allow" : "deny",
+        };
         for (const pattern of allowPathPatterns.get(opencodeName) ?? []) {
             patternConfig[pattern] = "allow";
         }
         for (const pattern of denyPathPatterns.get(opencodeName) ?? []) {
             patternConfig[pattern] = "deny";
         }
-        patternConfig["*"] = effectiveAllowed ? "allow" : "deny";
         return patternConfig;
     }
     return effectiveAllowed ? "allow" : "deny";

package/package.json CHANGED Viewed

@@ -2,7 +2,7 @@
   "name": "axconfig",
   "author": "Łukasz Jerciński",
   "license": "MIT",
-  "version": "3.5.0",
+  "version": "3.5.1",
   "description": "Unified configuration management for AI coding agents - common API for permissions, settings, and config across Claude Code, Codex, Gemini CLI, and OpenCode",
   "repository": {
     "type": "git",