codegpt-ai 1.1.0 → 1.3.0

package/ai_cli/updater.py

@@ -148,18 +148,64 @@ def force_update():
         return
 
     asset = exe_assets[0]
+
+    # Find checksum file in release assets
+    sha_assets = [a for a in release.get("assets", []) if a["name"].endswith(".sha256")]
+    expected_hash = None
+    if sha_assets:
+        try:
+            sha_resp = requests.get(sha_assets[0]["browser_download_url"], timeout=10)
+            # Parse certutil output: second line is the hash
+            lines = sha_resp.text.strip().splitlines()
+            for line in lines:
+                line = line.strip().replace(" ", "")
+                if len(line) == 64 and all(c in "0123456789abcdef" for c in line.lower()):
+                    expected_hash = line.lower()
+                    break
+        except Exception:
+            pass
+
     console.print(f"  Downloading {asset['name']} ({latest_tag})...")
+    if expected_hash:
+        console.print(f"  Expected SHA256: {expected_hash[:16]}...")
+    else:
+        console.print("[yellow]  WARNING: No checksum file found. Cannot verify integrity.[/]")
 
     try:
         resp = requests.get(asset["browser_download_url"], stream=True, timeout=60)
         resp.raise_for_status()
 
-        # Download to temp file
+        # Download to temp file and compute hash
+        import hashlib as _hashlib
+        sha256 = _hashlib.sha256()
         tmp = tempfile.NamedTemporaryFile(delete=False, suffix=".exe")
         for chunk in resp.iter_content(chunk_size=8192):
             tmp.write(chunk)
+            sha256.update(chunk)
         tmp.close()
 
+        actual_hash = sha256.hexdigest().lower()
+        console.print(f"  Actual SHA256:   {actual_hash[:16]}...")
+
+        # Verify checksum if available
+        if expected_hash and actual_hash != expected_hash:
+            console.print(Panel(
+                Text(
+                    "CHECKSUM MISMATCH — download may be tampered with.\n"
+                    f"Expected: {expected_hash}\n"
+                    f"Got:      {actual_hash}\n\n"
+                    "Update aborted for your safety.",
+                    style="bold red"
+                ),
+                title="[bold red]SECURITY ALERT[/]",
+                border_style="red",
+            ))
+            os.unlink(tmp.name)
+            return
+
+        if expected_hash:
+            console.print("[green]  Checksum verified.[/]")
+
         if _is_frozen():
             # Replace the running exe
             current_exe = sys.executable
@@ -172,7 +218,7 @@ def force_update():
             shutil.move(tmp.name, current_exe)
 
             console.print(Panel(
-                Text(f"Updated: v{current} -> {latest_tag}\nRestart to use the new version.", style="green"),
+                Text(f"Updated: v{current} -> {latest_tag}\nChecksum: {actual_hash[:16]}...\nRestart to use the new version.", style="green"),
                 border_style="green",
             ))
         else:

package/chat.py

@@ -589,9 +589,29 @@ def audit_log(action, detail=""):
 def is_shell_safe(cmd_text):
     """Check if a shell command is safe to run."""
     cmd_lower = cmd_text.lower().strip()
+
+    # Blocklist check
     for blocked in SHELL_BLOCKLIST:
         if blocked in cmd_lower:
             return False, blocked
+
+    # Block shell injection patterns
+    injection_patterns = [
+        r'[;&|`]',      # Command chaining/injection
+        r'\$\(',        # Command substitution
+        r'>\s*/dev/',   # Device writes
+        r'\\x[0-9a-f]', # Hex escapes
+        r'\\u[0-9a-f]', # Unicode escapes
+        r'\brm\b.*-[rR]', # rm with recursive flag (any form)
+    ]
+    for pattern in injection_patterns:
+        if re.search(pattern, cmd_text):
+            return False, f"blocked pattern: {pattern}"
+
+    # Max command length
+    if len(cmd_text) > 500:
+        return False, "command too long (500 char limit)"
+
     return True, ""
 
 
@@ -783,8 +803,8 @@ def build_sidebar():
 
 
 def print_with_sidebar(panel):
-    """Print a panel with sidebar if enabled."""
-    if not sidebar_enabled or console.width < 80:
+    """Print a panel with sidebar if enabled. Auto-disabled on small screens."""
+    if not sidebar_enabled or is_compact() or console.width < 80:
         console.print(panel)
         return
 
@@ -812,11 +832,16 @@ def tw():
     return min(console.width, 100)
 
 
+def is_compact():
+    """Check if terminal is small (Termux, narrow window)."""
+    return console.width < 60
+
+
 def clear_screen():
     os.system("cls" if os.name == "nt" else "clear")
 
 
-LOGO = """
+LOGO_FULL = """
 [bright_cyan]  ██████╗ ██████╗ ██████╗ ███████╗[/][bold white]  ██████╗ ██████╗ ████████╗[/]
 [bright_cyan] ██╔════╝██╔═══██╗██╔══██╗██╔════╝[/][bold white] ██╔════╝ ██╔══██╗╚══██╔══╝[/]
 [bright_cyan] ██║     ██║   ██║██║  ██║█████╗  [/][bold white] ██║  ███╗██████╔╝   ██║   [/]
@@ -825,6 +850,14 @@ LOGO = """
 [bright_cyan]  ╚═════╝ ╚═════╝ ╚═════╝ ╚══════╝[/][bold white]  ╚═════╝ ╚═╝        ╚═╝   [/]
 [dim]         Your Local AI Assistant — Powered by Ollama[/]"""
 
+LOGO_COMPACT = """
+[bold bright_cyan]╔═══════════════════════╗[/]
+[bold bright_cyan]║[/] [bold white]C O D E[/][bold bright_cyan]  G P T[/]  [bold bright_cyan]║[/]
+[bold bright_cyan]╚═══════════════════════╝[/]
+[dim]  Local AI · Ollama[/]"""
+
+LOGO = LOGO_FULL
+
 # --- Command Aliases ---
 ALIASES = {
     "/q": "/quit", "/x": "/quit", "/exit": "/quit",
@@ -872,30 +905,39 @@ HISTORY_FILE = Path.home() / ".codegpt" / "input_history"
 def print_header(model):
     clear_screen()
     w = tw()
+    compact = is_compact()
     console.print()
+
+    # Responsive logo
+    logo = LOGO_COMPACT if compact else LOGO_FULL
     console.print(Panel(
-        Text.from_markup(LOGO),
+        Text.from_markup(logo),
         border_style="bright_cyan",
-        padding=(1, 2),
+        padding=(0 if compact else 1, 1 if compact else 2),
         width=w,
     ))
 
-    # Status bar
+    # Status bar — compact version for small screens
     now = datetime.now().strftime("%H:%M")
     elapsed = int(time.time() - session_stats["start"])
     uptime = f"{elapsed // 60}m"
     tok = session_stats["tokens_out"]
 
     bar = Text()
-    bar.append(f"  {model}", style="bright_cyan")
-    bar.append("  |  ", style="dim")
-    bar.append(f"{session_stats['messages']} msgs", style="dim")
-    bar.append("  |  ", style="dim")
-    bar.append(f"{tok} tokens", style="dim")
-    bar.append("  |  ", style="dim")
-    bar.append(f"{uptime}", style="dim")
-    bar.append("  |  ", style="dim")
-    bar.append(now, style="dim")
+    if compact:
+        bar.append(f" {model}", style="bright_cyan")
+        bar.append(f" {session_stats['messages']}msg", style="dim")
+        bar.append(f" {now}", style="dim")
+    else:
+        bar.append(f"  {model}", style="bright_cyan")
+        bar.append("  |  ", style="dim")
+        bar.append(f"{session_stats['messages']} msgs", style="dim")
+        bar.append("  |  ", style="dim")
+        bar.append(f"{tok} tokens", style="dim")
+        bar.append("  |  ", style="dim")
+        bar.append(f"{uptime}", style="dim")
+        bar.append("  |  ", style="dim")
+        bar.append(now, style="dim")
 
     console.print(Panel(bar, border_style="dim", padding=0, width=w))
     console.print()
@@ -914,6 +956,8 @@ def print_welcome(model, available_models):
     else:
         greeting = "Good evening"
 
+    compact = is_compact()
+
     console.print(Align.center(Text(f"\n{greeting}.\n", style="bold white")), width=w)
 
     # Connection status bar
@@ -925,75 +969,101 @@ def print_welcome(model, available_models):
     streak = profile.get("total_sessions", 0)
 
     status = Text()
-    status.append("  ◈ ", style="bright_cyan")
-    status.append(f"{model}", style="bold bright_cyan")
-    status.append("  │  ", style="dim")
-    status.append(f"◇ {server_type}", style="green" if model_count > 0 else "red")
-    status.append("  │  ", style="dim")
-    status.append(f"△ {model_count} models", style="dim")
-    status.append("  │  ", style="dim")
-    status.append(f"◇ {mem_count} memories", style="dim")
-    if streak > 1:
+    if compact:
+        status.append(f" {model}", style="bold bright_cyan")
+        status.append(f" {server_type}", style="green" if model_count > 0 else "red")
+        status.append(f" {model_count}m", style="dim")
+    else:
+        status.append("  ◈ ", style="bright_cyan")
+        status.append(f"{model}", style="bold bright_cyan")
+        status.append("  │  ", style="dim")
+        status.append(f"◇ {server_type}", style="green" if model_count > 0 else "red")
         status.append("  │  ", style="dim")
-        status.append(f"▸ {streak} sessions", style="dim")
+        status.append(f"△ {model_count} models", style="dim")
+        status.append("  │  ", style="dim")
+        status.append(f"◇ {mem_count} memories", style="dim")
+        if streak > 1:
+            status.append("  │  ", style="dim")
+            status.append(f"▸ {streak} sessions", style="dim")
     console.print(Panel(status, border_style="bright_black", padding=0, width=w))
 
-    # Suggestion chips
-    console.print(Panel(
-        _build_suggestions(),
-        title="[dim]Suggestions (type a number)[/]",
-        title_align="left",
-        border_style="bright_black",
-        padding=(1, 2),
-        width=w,
-    ))
+    # Suggestion chips — fewer on compact
+    if compact:
+        console.print(Panel(
+            _build_suggestions(max_items=3),
+            title="[dim]Try[/]",
+            title_align="left",
+            border_style="bright_black",
+            padding=(0, 1),
+            width=w,
+        ))
+    else:
+        console.print(Panel(
+            _build_suggestions(),
+            title="[dim]Suggestions (type a number)[/]",
+            title_align="left",
+            border_style="bright_black",
+            padding=(1, 2),
+            width=w,
+        ))
 
     # Tip of the day
     tip = random.choice(TIPS)
-    console.print(Align.center(Text(f"Tip: {tip}", style="dim italic")), width=w)
+    console.print(Text(f"  Tip: {tip}", style="dim italic"))
     console.print()
 
 
-def _build_suggestions():
+def _build_suggestions(max_items=None):
     text = Text()
-    for i, s in enumerate(SUGGESTIONS, 1):
-        text.append(f"  [{i}]", style="bright_cyan bold")
-        text.append(f"  {s}\n", style="white")
+    items = SUGGESTIONS[:max_items] if max_items else SUGGESTIONS
+    for i, s in enumerate(items, 1):
+        if is_compact():
+            text.append(f" {i}.", style="bright_cyan bold")
+            text.append(f" {s[:30]}\n", style="white")
+        else:
+            text.append(f"  [{i}]", style="bright_cyan bold")
+            text.append(f"  {s}\n", style="white")
     return text
 
 
 def print_user_msg(text):
+    pad = (0, 1) if is_compact() else (0, 2)
     console.print(Panel(
         Text(text, style="white"),
         title="[bold bright_cyan]You[/]",
         title_align="left",
         border_style="bright_cyan",
-        padding=(0, 2),
+        padding=pad,
         width=tw(),
     ))
 
 
 def print_ai_msg(text, stats=""):
+    pad = (0, 1) if is_compact() else (0, 2)
+    compact = is_compact()
     panel = Panel(
         Markdown(text),
         title="[bold bright_green]AI[/]",
         title_align="left",
         border_style="bright_green",
-        subtitle=stats,
+        subtitle=stats if not compact else "",
         subtitle_align="right",
-        padding=(0, 2),
+        padding=pad,
         width=tw(),
     )
     print_with_sidebar(panel)
 
 
 def print_sys(text):
-    console.print(Panel(
-        Text(text, style="dim italic"),
-        border_style="bright_black",
-        padding=(0, 1),
-        width=tw(),
-    ))
+    if is_compact():
+        console.print(Text(f"  {text}", style="dim italic"))
+    else:
+        console.print(Panel(
+            Text(text, style="dim italic"),
+            border_style="bright_black",
+            padding=(0, 1),
+            width=tw(),
+        ))
 
 
 def print_err(text):
@@ -1978,10 +2048,11 @@ def run_shell(cmd_text):
         print_sys("Usage: /shell <command>\nExample: /shell dir")
         return
 
-    # Safety check — use the global blocklist
+    # Safety check
     safe, blocked = is_shell_safe(cmd_text)
     if not safe:
-        print_err(f"Blocked: dangerous command detected ({blocked})")
+        print_err(f"Blocked: {blocked}")
+        audit_log("SHELL_BLOCKED", f"{blocked}: {cmd_text[:80]}")
         return
 
     console.print(Panel(
@@ -1991,10 +2062,19 @@ def run_shell(cmd_text):
     ))
 
     try:
-        result = subprocess.run(
-            cmd_text, shell=True, capture_output=True, text=True, timeout=30,
-            cwd=str(Path.home()),
-        )
+        # Use shlex.split for safer argument parsing on non-Windows
+        if os.name != "nt":
+            import shlex
+            args = shlex.split(cmd_text)
+            result = subprocess.run(
+                args, capture_output=True, text=True, timeout=30,
+                cwd=str(Path.home()),
+            )
+        else:
+            result = subprocess.run(
+                cmd_text, shell=True, capture_output=True, text=True, timeout=30,
+                cwd=str(Path.home()),
+            )
         output = ""
         if result.stdout:
             output += result.stdout
@@ -3904,6 +3984,8 @@ def _bottom_toolbar():
     mins = elapsed // 60
     msgs = session_stats["messages"]
     tok = session_stats["tokens_out"]
+    if is_compact():
+        return [("class:bottom-toolbar", f" {msgs}msg {tok}tok {mins}m │ / cmds ")]
     return [("class:bottom-toolbar",
              f" {msgs} msgs │ {tok} tok │ {mins}m │ / for commands │ Ctrl+C to exit ")]
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "codegpt-ai",
-  "version": "1.1.0",
+  "version": "1.3.0",
   "description": "Local AI Assistant Hub — 80+ commands, 29 tools, 8 agents, training, security",
   "author": "ArukuX",
   "license": "MIT",