npm - gencode-ai - Versions diffs - 0.1.0 → 0.1.2 - Mend

gencode-ai 0.1.0 → 0.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (356) hide show

package/.gencode/settings.local.json +7 -0
package/README.md +20 -102
package/dist/agent/agent.d.ts +43 -2
package/dist/agent/agent.d.ts.map +1 -1
package/dist/agent/agent.js +90 -17
package/dist/agent/agent.js.map +1 -1
package/dist/agent/types.d.ts +9 -1
package/dist/agent/types.d.ts.map +1 -1
package/dist/cli/components/AllModelsSelector.d.ts +11 -0
package/dist/cli/components/AllModelsSelector.d.ts.map +1 -0
package/dist/cli/components/AllModelsSelector.js +153 -0
package/dist/cli/components/AllModelsSelector.js.map +1 -0
package/dist/cli/components/App.d.ts +8 -1
package/dist/cli/components/App.d.ts.map +1 -1
package/dist/cli/components/App.js +276 -40
package/dist/cli/components/App.js.map +1 -1
package/dist/cli/components/CommandSuggestions.d.ts.map +1 -1
package/dist/cli/components/CommandSuggestions.js +3 -0
package/dist/cli/components/CommandSuggestions.js.map +1 -1
package/dist/cli/components/Header.d.ts +1 -1
package/dist/cli/components/Header.d.ts.map +1 -1
package/dist/cli/components/Header.js +4 -6
package/dist/cli/components/Header.js.map +1 -1
package/dist/cli/components/Logo.d.ts +1 -0
package/dist/cli/components/Logo.d.ts.map +1 -1
package/dist/cli/components/Logo.js +16 -3
package/dist/cli/components/Logo.js.map +1 -1
package/dist/cli/components/Messages.d.ts +17 -3
package/dist/cli/components/Messages.d.ts.map +1 -1
package/dist/cli/components/Messages.js +70 -18
package/dist/cli/components/Messages.js.map +1 -1
package/dist/cli/components/ModelSelector.d.ts +7 -7
package/dist/cli/components/ModelSelector.d.ts.map +1 -1
package/dist/cli/components/ModelSelector.js +116 -33
package/dist/cli/components/ModelSelector.js.map +1 -1
package/dist/cli/components/PermissionPrompt.d.ts +60 -0
package/dist/cli/components/PermissionPrompt.d.ts.map +1 -0
package/dist/cli/components/PermissionPrompt.js +192 -0
package/dist/cli/components/PermissionPrompt.js.map +1 -0
package/dist/cli/components/ProviderManager.d.ts +8 -0
package/dist/cli/components/ProviderManager.d.ts.map +1 -0
package/dist/cli/components/ProviderManager.js +280 -0
package/dist/cli/components/ProviderManager.js.map +1 -0
package/dist/cli/components/Spinner.d.ts +7 -2
package/dist/cli/components/Spinner.d.ts.map +1 -1
package/dist/cli/components/Spinner.js +116 -25
package/dist/cli/components/Spinner.js.map +1 -1
package/dist/cli/components/TodoList.d.ts +7 -0
package/dist/cli/components/TodoList.d.ts.map +1 -0
package/dist/cli/components/TodoList.js +34 -0
package/dist/cli/components/TodoList.js.map +1 -0
package/dist/cli/components/index.d.ts +1 -0
package/dist/cli/components/index.d.ts.map +1 -1
package/dist/cli/components/index.js +1 -0
package/dist/cli/components/index.js.map +1 -1
package/dist/cli/components/markdown.d.ts +9 -0
package/dist/cli/components/markdown.d.ts.map +1 -0
package/dist/cli/components/markdown.js +129 -0
package/dist/cli/components/markdown.js.map +1 -0
package/dist/cli/components/theme.d.ts +5 -0
package/dist/cli/components/theme.d.ts.map +1 -1
package/dist/cli/components/theme.js +7 -0
package/dist/cli/components/theme.js.map +1 -1
package/dist/cli/index.js +66 -12
package/dist/cli/index.js.map +1 -1
package/dist/config/index.d.ts +14 -4
package/dist/config/index.d.ts.map +1 -1
package/dist/config/index.js +19 -3
package/dist/config/index.js.map +1 -1
package/dist/config/levels.d.ts +49 -0
package/dist/config/levels.d.ts.map +1 -0
package/dist/config/levels.js +222 -0
package/dist/config/levels.js.map +1 -0
package/dist/config/loader.d.ts +46 -0
package/dist/config/loader.d.ts.map +1 -0
package/dist/config/loader.js +153 -0
package/dist/config/loader.js.map +1 -0
package/dist/config/manager.d.ts +115 -15
package/dist/config/manager.d.ts.map +1 -1
package/dist/config/manager.js +260 -34
package/dist/config/manager.js.map +1 -1
package/dist/config/manager.test.d.ts +5 -0
package/dist/config/manager.test.d.ts.map +1 -0
package/dist/config/manager.test.js +192 -0
package/dist/config/manager.test.js.map +1 -0
package/dist/config/merger.d.ts +56 -0
package/dist/config/merger.d.ts.map +1 -0
package/dist/config/merger.js +177 -0
package/dist/config/merger.js.map +1 -0
package/dist/config/providers-config.d.ts +28 -0
package/dist/config/providers-config.d.ts.map +1 -0
package/dist/config/providers-config.js +79 -0
package/dist/config/providers-config.js.map +1 -0
package/dist/config/test-utils.d.ts +24 -0
package/dist/config/test-utils.d.ts.map +1 -0
package/dist/config/test-utils.js +55 -0
package/dist/config/test-utils.js.map +1 -0
package/dist/config/types.d.ts +108 -9
package/dist/config/types.d.ts.map +1 -1
package/dist/config/types.js +53 -2
package/dist/config/types.js.map +1 -1
package/dist/memory/import-resolver.d.ts +46 -0
package/dist/memory/import-resolver.d.ts.map +1 -0
package/dist/memory/import-resolver.js +117 -0
package/dist/memory/import-resolver.js.map +1 -0
package/dist/memory/index.d.ts +7 -6
package/dist/memory/index.d.ts.map +1 -1
package/dist/memory/index.js +7 -5
package/dist/memory/index.js.map +1 -1
package/dist/memory/init-prompt.d.ts +22 -0
package/dist/memory/init-prompt.d.ts.map +1 -0
package/dist/memory/init-prompt.js +103 -0
package/dist/memory/init-prompt.js.map +1 -0
package/dist/memory/memory-manager.d.ts +119 -0
package/dist/memory/memory-manager.d.ts.map +1 -0
package/dist/memory/memory-manager.js +587 -0
package/dist/memory/memory-manager.js.map +1 -0
package/dist/memory/rules-parser.d.ts +38 -0
package/dist/memory/rules-parser.d.ts.map +1 -0
package/dist/memory/rules-parser.js +69 -0
package/dist/memory/rules-parser.js.map +1 -0
package/dist/memory/test-utils.d.ts +20 -0
package/dist/memory/test-utils.d.ts.map +1 -0
package/dist/memory/test-utils.js +44 -0
package/dist/memory/test-utils.js.map +1 -0
package/dist/memory/types.d.ts +70 -63
package/dist/memory/types.d.ts.map +1 -1
package/dist/memory/types.js +42 -2
package/dist/memory/types.js.map +1 -1
package/dist/permissions/audit.d.ts +82 -0
package/dist/permissions/audit.d.ts.map +1 -0
package/dist/permissions/audit.js +229 -0
package/dist/permissions/audit.js.map +1 -0
package/dist/permissions/index.d.ts +11 -1
package/dist/permissions/index.d.ts.map +1 -1
package/dist/permissions/index.js +15 -0
package/dist/permissions/index.js.map +1 -1
package/dist/permissions/manager.d.ts +149 -13
package/dist/permissions/manager.d.ts.map +1 -1
package/dist/permissions/manager.js +480 -35
package/dist/permissions/manager.js.map +1 -1
package/dist/permissions/manager.test.d.ts +5 -0
package/dist/permissions/manager.test.d.ts.map +1 -0
package/dist/permissions/manager.test.js +213 -0
package/dist/permissions/manager.test.js.map +1 -0
package/dist/permissions/persistence.d.ts +74 -0
package/dist/permissions/persistence.d.ts.map +1 -0
package/dist/permissions/persistence.js +248 -0
package/dist/permissions/persistence.js.map +1 -0
package/dist/permissions/persistence.test.d.ts +5 -0
package/dist/permissions/persistence.test.d.ts.map +1 -0
package/dist/permissions/persistence.test.js +171 -0
package/dist/permissions/persistence.test.js.map +1 -0
package/dist/permissions/prompt-matcher.d.ts +64 -0
package/dist/permissions/prompt-matcher.d.ts.map +1 -0
package/dist/permissions/prompt-matcher.js +415 -0
package/dist/permissions/prompt-matcher.js.map +1 -0
package/dist/permissions/prompt-matcher.test.d.ts +5 -0
package/dist/permissions/prompt-matcher.test.d.ts.map +1 -0
package/dist/permissions/prompt-matcher.test.js +107 -0
package/dist/permissions/prompt-matcher.test.js.map +1 -0
package/dist/permissions/types.d.ts +157 -0
package/dist/permissions/types.d.ts.map +1 -1
package/dist/permissions/types.js +43 -8
package/dist/permissions/types.js.map +1 -1
package/dist/prompts/index.d.ts +92 -0
package/dist/prompts/index.d.ts.map +1 -0
package/dist/prompts/index.js +241 -0
package/dist/prompts/index.js.map +1 -0
package/dist/providers/gemini.d.ts.map +1 -1
package/dist/providers/gemini.js +14 -3
package/dist/providers/gemini.js.map +1 -1
package/dist/providers/index.d.ts +5 -3
package/dist/providers/index.d.ts.map +1 -1
package/dist/providers/index.js +13 -1
package/dist/providers/index.js.map +1 -1
package/dist/providers/registry.d.ts +66 -0
package/dist/providers/registry.d.ts.map +1 -0
package/dist/providers/registry.js +158 -0
package/dist/providers/registry.js.map +1 -0
package/dist/providers/search/brave.d.ts +14 -0
package/dist/providers/search/brave.d.ts.map +1 -0
package/dist/providers/search/brave.js +87 -0
package/dist/providers/search/brave.js.map +1 -0
package/dist/providers/search/exa.d.ts +12 -0
package/dist/providers/search/exa.d.ts.map +1 -0
package/dist/providers/search/exa.js +158 -0
package/dist/providers/search/exa.js.map +1 -0
package/dist/providers/search/index.d.ts +31 -0
package/dist/providers/search/index.d.ts.map +1 -0
package/dist/providers/search/index.js +75 -0
package/dist/providers/search/index.js.map +1 -0
package/dist/providers/search/serper.d.ts +14 -0
package/dist/providers/search/serper.d.ts.map +1 -0
package/dist/providers/search/serper.js +87 -0
package/dist/providers/search/serper.js.map +1 -0
package/dist/providers/search/types.d.ts +21 -0
package/dist/providers/search/types.d.ts.map +1 -0
package/dist/providers/search/types.js +5 -0
package/dist/providers/search/types.js.map +1 -0
package/dist/providers/store.d.ts +104 -0
package/dist/providers/store.d.ts.map +1 -0
package/dist/providers/store.js +171 -0
package/dist/providers/store.js.map +1 -0
package/dist/providers/types.d.ts +7 -1
package/dist/providers/types.d.ts.map +1 -1
package/dist/providers/vertex-ai.d.ts +33 -0
package/dist/providers/vertex-ai.d.ts.map +1 -0
package/dist/providers/vertex-ai.js +407 -0
package/dist/providers/vertex-ai.js.map +1 -0
package/dist/tools/builtin/bash.d.ts.map +1 -1
package/dist/tools/builtin/bash.js +2 -1
package/dist/tools/builtin/bash.js.map +1 -1
package/dist/tools/builtin/edit.d.ts.map +1 -1
package/dist/tools/builtin/edit.js +2 -1
package/dist/tools/builtin/edit.js.map +1 -1
package/dist/tools/builtin/glob.d.ts.map +1 -1
package/dist/tools/builtin/glob.js +2 -1
package/dist/tools/builtin/glob.js.map +1 -1
package/dist/tools/builtin/grep.d.ts.map +1 -1
package/dist/tools/builtin/grep.js +2 -1
package/dist/tools/builtin/grep.js.map +1 -1
package/dist/tools/builtin/read.d.ts.map +1 -1
package/dist/tools/builtin/read.js +2 -1
package/dist/tools/builtin/read.js.map +1 -1
package/dist/tools/builtin/todowrite.d.ts +15 -0
package/dist/tools/builtin/todowrite.d.ts.map +1 -0
package/dist/tools/builtin/todowrite.js +88 -0
package/dist/tools/builtin/todowrite.js.map +1 -0
package/dist/tools/builtin/webfetch.d.ts +20 -0
package/dist/tools/builtin/webfetch.d.ts.map +1 -0
package/dist/tools/builtin/webfetch.js +228 -0
package/dist/tools/builtin/webfetch.js.map +1 -0
package/dist/tools/builtin/websearch.d.ts +17 -0
package/dist/tools/builtin/websearch.d.ts.map +1 -0
package/dist/tools/builtin/websearch.js +87 -0
package/dist/tools/builtin/websearch.js.map +1 -0
package/dist/tools/builtin/write.d.ts.map +1 -1
package/dist/tools/builtin/write.js +2 -1
package/dist/tools/builtin/write.js.map +1 -1
package/dist/tools/index.d.ts +18 -0
package/dist/tools/index.d.ts.map +1 -1
package/dist/tools/index.js +28 -2
package/dist/tools/index.js.map +1 -1
package/dist/tools/types.d.ts +41 -0
package/dist/tools/types.d.ts.map +1 -1
package/dist/tools/types.js +16 -0
package/dist/tools/types.js.map +1 -1
package/dist/tools/utils/ssrf.d.ts +18 -0
package/dist/tools/utils/ssrf.d.ts.map +1 -0
package/dist/tools/utils/ssrf.js +70 -0
package/dist/tools/utils/ssrf.js.map +1 -0
package/docs/README.md +5 -4
package/docs/config-system-comparison.md +707 -0
package/docs/memory-system.md +238 -0
package/docs/permissions.md +368 -0
package/docs/proposals/0001-web-fetch-tool.md +32 -2
package/docs/proposals/0002-web-search-tool.md +59 -2
package/docs/proposals/0005-todo-system.md +350 -85
package/docs/proposals/0006-memory-system.md +11 -10
package/docs/proposals/0012-ask-user-question.md +941 -206
package/docs/proposals/0023-permission-enhancements.md +61 -2
package/docs/proposals/0041-configuration-system.md +587 -0
package/docs/proposals/0042-prompt-optimization.md +866 -0
package/docs/proposals/README.md +8 -6
package/docs/providers.md +220 -0
package/jest.config.js +26 -0
package/package.json +14 -3
package/src/agent/agent.ts +120 -18
package/src/agent/types.ts +9 -1
package/src/cli/components/App.tsx +369 -47
package/src/cli/components/CommandSuggestions.tsx +3 -0
package/src/cli/components/Header.tsx +11 -17
package/src/cli/components/Logo.tsx +76 -9
package/src/cli/components/Messages.tsx +146 -38
package/src/cli/components/ModelSelector.tsx +169 -52
package/src/cli/components/PermissionPrompt.tsx +388 -0
package/src/cli/components/ProviderManager.tsx +534 -0
package/src/cli/components/Spinner.tsx +138 -25
package/src/cli/components/TodoList.tsx +54 -0
package/src/cli/components/index.ts +6 -0
package/src/cli/components/markdown.ts +157 -0
package/src/cli/components/theme.ts +7 -0
package/src/cli/index.tsx +76 -13
package/src/config/index.ts +79 -4
package/src/config/levels.test.ts +163 -0
package/src/config/levels.ts +285 -0
package/src/config/loader.test.ts +120 -0
package/src/config/loader.ts +178 -0
package/src/config/manager.test.ts +215 -0
package/src/config/manager.ts +328 -40
package/src/config/merger.test.ts +360 -0
package/src/config/merger.ts +221 -0
package/src/config/providers-config.ts +85 -0
package/src/config/test-utils.ts +79 -0
package/src/config/types.ts +186 -9
package/src/memory/import-resolver.test.ts +117 -0
package/src/memory/import-resolver.ts +149 -0
package/src/memory/index.ts +11 -0
package/src/memory/init-prompt.ts +113 -0
package/src/memory/memory-manager.test.ts +198 -0
package/src/memory/memory-manager.ts +716 -0
package/src/memory/rules-parser.test.ts +182 -0
package/src/memory/rules-parser.ts +82 -0
package/src/memory/test-utils.ts +60 -0
package/src/memory/types.ts +119 -0
package/src/permissions/audit.ts +284 -0
package/src/permissions/index.ts +20 -1
package/src/permissions/manager.test.ts +260 -0
package/src/permissions/manager.ts +592 -40
package/src/permissions/persistence.test.ts +220 -0
package/src/permissions/persistence.ts +301 -0
package/src/permissions/prompt-matcher.test.ts +213 -0
package/src/permissions/prompt-matcher.ts +472 -0
package/src/permissions/types.ts +236 -8
package/src/prompts/index.test.ts +279 -0
package/src/prompts/index.ts +306 -0
package/src/prompts/system/anthropic.txt +29 -0
package/src/prompts/system/base.txt +124 -0
package/src/prompts/system/gemini.txt +35 -0
package/src/prompts/system/generic.txt +128 -0
package/src/prompts/system/openai.txt +29 -0
package/src/prompts/tools/bash.txt +60 -0
package/src/prompts/tools/edit.txt +29 -0
package/src/prompts/tools/glob.txt +35 -0
package/src/prompts/tools/grep.txt +43 -0
package/src/prompts/tools/read.txt +22 -0
package/src/prompts/tools/todowrite.txt +71 -0
package/src/prompts/tools/webfetch.txt +34 -0
package/src/prompts/tools/websearch.txt +41 -0
package/src/prompts/tools/write.txt +23 -0
package/src/providers/gemini.ts +20 -4
package/src/providers/index.ts +18 -3
package/src/providers/registry.ts +198 -0
package/src/providers/search/brave.ts +132 -0
package/src/providers/search/exa.ts +217 -0
package/src/providers/search/index.ts +79 -0
package/src/providers/search/serper.ts +133 -0
package/src/providers/search/types.ts +24 -0
package/src/providers/store.ts +216 -0
package/src/providers/types.ts +9 -1
package/src/providers/vertex-ai.ts +594 -0
package/src/tools/builtin/bash.ts +2 -1
package/src/tools/builtin/edit.ts +2 -1
package/src/tools/builtin/glob.ts +2 -1
package/src/tools/builtin/grep.ts +2 -1
package/src/tools/builtin/read.ts +2 -1
package/src/tools/builtin/todowrite.ts +102 -0
package/src/tools/builtin/webfetch.ts +261 -0
package/src/tools/builtin/websearch.ts +103 -0
package/src/tools/builtin/write.ts +2 -1
package/src/tools/index.ts +28 -2
package/src/tools/types.ts +32 -0
package/src/tools/utils/ssrf.ts +79 -0
package/tsconfig.json +1 -1
package/CLAUDE.md +0 -70

package/src/permissions/manager.ts CHANGED Viewed

@@ -1,44 +1,311 @@
 /**
- * Permission Manager - Controls tool execution permissions
+ * Permission Manager - Enhanced permission control with pattern matching,
+ * prompt-based approvals, persistence, and audit logging.
+ *
+ * Claude Code compatible design with:
+ * - Pattern-based rules (e.g., "Bash(git add:*)")
+ * - Prompt-based permissions (e.g., { tool: "Bash", prompt: "run tests" })
+ * - Session/project/global scopes
+ * - Persistent allowlists
+ * - Audit trail
  */
-import type { PermissionConfig, PermissionMode } from './types.js';
-import { DEFAULT_PERMISSION_CONFIG } from './types.js';
+import type {
+  PermissionConfig,
+  PermissionContext,
+  PermissionDecision,
+  PermissionMode,
+  PermissionRule,
+  PromptPermission,
+  ApprovalAction,
+  ApprovalSuggestion,
+  ConfirmCallback,
+  SimpleConfirmCallback,
+  PermissionSettings,
+  AuditDecision,
+} from './types.js';
+import {
+  DEFAULT_PERMISSION_CONFIG,
+  DEFAULT_SUGGESTIONS,
+} from './types.js';
+import { PromptMatcher, matchesPatternString } from './prompt-matcher.js';
+import { PermissionPersistence } from './persistence.js';
+import { PermissionAudit } from './audit.js';
-export type ConfirmCallback = (
-  tool: string,
-  input: unknown
-) => Promise<boolean>;
+/**
+ * Session approval cache entry
+ */
+interface SessionApproval {
+  tool: string;
+  pattern?: string;
+  approvedAt: Date;
+}
+/**
+ * Enhanced Permission Manager
+ */
 export class PermissionManager {
   private config: PermissionConfig;
+  private promptMatcher: PromptMatcher;
+  private persistence: PermissionPersistence;
+  private audit: PermissionAudit;
+  // Session-scoped caches
+  private sessionApprovals: Map<string, SessionApproval> = new Map();
+  private sessionRejections: Set<string> = new Set();
+  // Callbacks
   private confirmCallback?: ConfirmCallback;
-  private approvedTools: Set<string> = new Set();
+  private simpleConfirmCallback?: SimpleConfirmCallback;
+  private saveRuleCallback?: (tool: string, pattern?: string) => Promise<void>;
+  // Current context
+  private sessionId?: string;
+  private projectPath?: string;
-  constructor(config?: Partial<PermissionConfig>) {
+  constructor(options: {
+    config?: Partial<PermissionConfig>;
+    projectPath?: string;
+    enableAudit?: boolean;
+  } = {}) {
     this.config = {
       ...DEFAULT_PERMISSION_CONFIG,
-      ...config,
+      ...options.config,
+      rules: [
+        ...DEFAULT_PERMISSION_CONFIG.rules,
+        ...(options.config?.rules ?? []),
+      ],
     };
+    this.projectPath = options.projectPath;
+    this.promptMatcher = new PromptMatcher();
+    this.persistence = new PermissionPersistence(options.projectPath);
+    this.audit = new PermissionAudit({
+      persistToFile: options.enableAudit ?? false,
+    });
+  }
+  /**
+   * Initialize - load persisted rules and settings
+   */
+  async initialize(settings?: PermissionSettings): Promise<void> {
+    // Load persisted rules
+    const persistedRules = await this.persistence.getAllRules();
+    const runtimeRules = this.persistence.persistedToRuntime(persistedRules);
+    this.config.rules.push(...runtimeRules);
+    // Parse settings permissions
+    if (settings) {
+      const settingsRules = this.persistence.parseSettingsPermissions(settings);
+      this.config.rules.push(...settingsRules);
+    }
+  }
+  /**
+   * Set session ID for tracking
+   */
+  setSessionId(sessionId: string): void {
+    this.sessionId = sessionId;
   }
   /**
-   * Set the confirmation callback
+   * Set enhanced confirmation callback
    */
   setConfirmCallback(callback: ConfirmCallback): void {
     this.confirmCallback = callback;
   }
   /**
-   * Get the permission mode for a tool
+   * Set simple yes/no confirmation callback (backward compatible)
+   */
+  setSimpleConfirmCallback(callback: SimpleConfirmCallback): void {
+    this.simpleConfirmCallback = callback;
+  }
+  /**
+   * Set callback to save permission rules to settings
+   * This allows integration with SettingsManager for settings.local.json persistence
+   */
+  setSaveRuleCallback(callback: (tool: string, pattern?: string) => Promise<void>): void {
+    this.saveRuleCallback = callback;
+  }
+  /**
+   * Add prompt-based permissions (Claude Code ExitPlanMode style)
+   */
+  addAllowedPrompts(prompts: PromptPermission[]): void {
+    this.config.allowedPrompts.push(...prompts);
+  }
+  /**
+   * Clear prompt-based permissions
+   */
+  clearAllowedPrompts(): void {
+    this.config.allowedPrompts = [];
+  }
+  /**
+   * Get current allowed prompts
+   */
+  getAllowedPrompts(): PromptPermission[] {
+    return [...this.config.allowedPrompts];
+  }
+  /**
+   * Get all rules
+   */
+  getRules(): PermissionRule[] {
+    return [...this.config.rules];
+  }
+  /**
+   * Check permission (without prompting user)
+   *
+   * Flow matches Claude Code official design:
+   * 1. DENY rules → block immediately
+   * 2. ALLOW rules → auto-approve (includes prompt-based & session cache)
+   * 3. ASK rules → force prompt
+   * 4. Default behavior (read-only → auto, write → prompt)
+   */
+  async checkPermission(context: PermissionContext): Promise<PermissionDecision> {
+    const { tool, input } = context;
+    // ========================================================================
+    // Step 1: Check DENY rules (highest priority - block immediately)
+    // ========================================================================
+    const denyRule = this.findMatchingRule(context, 'deny');
+    if (denyRule) {
+      await this.logAudit(context, 'denied', `Denied by rule: ${this.describeRule(denyRule)}`);
+      return {
+        allowed: false,
+        reason: `Blocked: ${denyRule.description ?? denyRule.pattern ?? tool}`,
+        matchedRule: denyRule,
+        requiresConfirmation: false,
+      };
+    }
+    // ========================================================================
+    // Step 2: Check ALLOW rules (auto-approve if matched)
+    // Includes: settings.allow[], prompt-based permissions, session cache
+    // ========================================================================
+    // 2a. Check settings.allow rules
+    const autoRule = this.findMatchingRule(context, 'auto');
+    if (autoRule) {
+      await this.logAudit(context, 'allowed', `Auto-approved: ${this.describeRule(autoRule)}`);
+      return {
+        allowed: true,
+        reason: 'Auto-approved',
+        matchedRule: autoRule,
+        requiresConfirmation: false,
+      };
+    }
+    // 2b. Check prompt-based permissions (Plan mode allowedPrompts)
+    const promptMatch = this.matchPrompt(tool, input);
+    if (promptMatch) {
+      await this.logAudit(context, 'allowed', `Prompt match: ${promptMatch.prompt}`);
+      return {
+        allowed: true,
+        reason: `Approved: ${promptMatch.prompt}`,
+        matchedRule: promptMatch,
+        requiresConfirmation: false,
+      };
+    }
+    // 2c. Check session approval cache
+    const cacheKey = this.getCacheKey(tool, input);
+    if (this.sessionApprovals.has(cacheKey)) {
+      await this.logAudit(context, 'allowed', 'Session cache hit');
+      return {
+        allowed: true,
+        reason: 'Previously approved',
+        requiresConfirmation: false,
+      };
+    }
+    // ========================================================================
+    // Step 3: Check ASK rules (force confirmation)
+    // ========================================================================
+    const askRule = this.findMatchingRule(context, 'confirm');
+    if (askRule) {
+      await this.logAudit(context, 'confirmed', `ASK rule matched: ${this.describeRule(askRule)}`);
+      return {
+        allowed: false,
+        reason: `Requires confirmation: ${askRule.description ?? askRule.pattern ?? tool}`,
+        matchedRule: askRule,
+        requiresConfirmation: true,
+        suggestions: this.getSuggestions(context),
+      };
+    }
+    // ========================================================================
+    // Step 4: Default behavior (read-only → auto, write → prompt)
+    // ========================================================================
+    // Check session rejection cache
+    if (this.sessionRejections.has(cacheKey)) {
+      await this.logAudit(context, 'denied', 'Session rejection cache');
+      return {
+        allowed: false,
+        reason: 'Previously denied',
+        requiresConfirmation: false,
+      };
+    }
+    // Default: requires confirmation for write operations
+    return {
+      allowed: false,
+      reason: 'Requires approval',
+      requiresConfirmation: true,
+      suggestions: this.getSuggestions(context),
+    };
+  }
+  /**
+   * Request permission (prompts user if needed)
+   */
+  async requestPermission(tool: string, input: unknown): Promise<boolean> {
+    const context: PermissionContext = {
+      tool,
+      input,
+      sessionId: this.sessionId,
+      projectPath: this.projectPath,
+    };
+    const decision = await this.checkPermission(context);
+    if (decision.allowed) {
+      return true;
+    }
+    if (!decision.requiresConfirmation) {
+      return false;
+    }
+    // Prompt user for confirmation
+    const action = await this.promptUser(tool, input, decision.suggestions);
+    return this.handleApprovalAction(action, context);
+  }
+  /**
+   * Backward-compatible check method
+   */
+  async check(tool: string, input: unknown): Promise<boolean> {
+    return this.requestPermission(tool, input);
+  }
+  /**
+   * Get permission mode for a tool (for simple queries)
    */
   getModeForTool(tool: string): PermissionMode {
     for (const rule of this.config.rules) {
       if (typeof rule.tool === 'string') {
-        if (rule.tool === tool) {
+        if (rule.tool === tool && !rule.pattern) {
           return rule.mode;
         }
-      } else if (rule.tool.test(tool)) {
+      } else if (rule.tool.test(tool) && !rule.pattern) {
         return rule.mode;
       }
     }
@@ -46,35 +313,288 @@ export class PermissionManager {
   }
   /**
-   * Check if a tool can be executed
+   * Approve a tool for this session
    */
-  async checkPermission(tool: string, input: unknown): Promise<boolean> {
-    const mode = this.getModeForTool(tool);
+  approveForSession(tool: string, pattern?: string): void {
+    const key = pattern ? `${tool}:${pattern}` : tool;
+    this.sessionApprovals.set(key, {
+      tool,
+      pattern,
+      approvedAt: new Date(),
+    });
+  }
-    switch (mode) {
-      case 'auto':
-        return true;
+  /**
+   * Add a persistent allow rule
+   */
+  async addAllowRule(
+    tool: string,
+    pattern?: string,
+    scope: 'project' | 'global' = 'global'
+  ): Promise<void> {
+    await this.persistence.addRule(tool, 'auto', {
+      pattern,
+      scope,
+      description: `User approved: ${tool}${pattern ? `(${pattern})` : ''}`,
+    });
-      case 'deny':
-        return false;
+    // Also add to runtime config
+    this.config.rules.push({
+      tool,
+      mode: 'auto',
+      pattern,
+      scope,
+    });
+  }
-      case 'confirm':
-        // Check if already approved this session
-        const key = `${tool}:${JSON.stringify(input)}`;
-        if (this.approvedTools.has(key)) {
-          return true;
+  /**
+   * Add a persistent deny rule
+   */
+  async addDenyRule(
+    tool: string,
+    pattern?: string,
+    scope: 'project' | 'global' = 'global'
+  ): Promise<void> {
+    await this.persistence.addRule(tool, 'deny', {
+      pattern,
+      scope,
+      description: `User blocked: ${tool}${pattern ? `(${pattern})` : ''}`,
+    });
+    // Also add to runtime config
+    this.config.rules.push({
+      tool,
+      mode: 'deny',
+      pattern,
+      scope,
+    });
+  }
+  /**
+   * Clear session approvals
+   */
+  clearSessionApprovals(): void {
+    this.sessionApprovals.clear();
+    this.sessionRejections.clear();
+  }
+  /**
+   * Get audit log
+   */
+  getAuditLog(count?: number): ReturnType<PermissionAudit['getRecent']> {
+    return this.audit.getRecent(count);
+  }
+  /**
+   * Get audit statistics
+   */
+  getAuditStats(): ReturnType<PermissionAudit['getStats']> {
+    return this.audit.getStats();
+  }
+  /**
+   * Get persistence manager (for direct access)
+   */
+  getPersistence(): PermissionPersistence {
+    return this.persistence;
+  }
+  // ============================================================================
+  // Private Methods
+  // ============================================================================
+  /**
+   * Find a matching rule for the given context and mode
+   */
+  private findMatchingRule(
+    context: PermissionContext,
+    mode: PermissionMode
+  ): PermissionRule | undefined {
+    for (const rule of this.config.rules) {
+      if (rule.mode !== mode) continue;
+      if (!this.matchesTool(rule.tool, context.tool)) continue;
+      // If rule has pattern, check it (pass tool name for path matching)
+      if (rule.pattern) {
+        if (!this.matchesPattern(rule.pattern, context.input, context.tool)) {
+          continue;
         }
+      }
+      // Check expiration
+      if (rule.expiresAt && new Date() > rule.expiresAt) {
+        continue;
+      }
+      return rule;
+    }
-        if (!this.confirmCallback) {
-          // No callback, auto-approve in non-interactive mode
-          return true;
+    return undefined;
+  }
+  /**
+   * Check if tool matches rule
+   */
+  private matchesTool(rulePattern: string | RegExp, tool: string): boolean {
+    if (typeof rulePattern === 'string') {
+      return rulePattern === tool || rulePattern === '*';
+    }
+    return rulePattern.test(tool);
+  }
+  /**
+   * Check if input matches pattern
+   */
+  private matchesPattern(pattern: string | RegExp, input: unknown, tool?: string): boolean {
+    if (typeof pattern === 'string') {
+      return matchesPatternString(pattern, input, tool);
+    }
+    const inputStr = typeof input === 'string'
+      ? input
+      : JSON.stringify(input);
+    return pattern.test(inputStr);
+  }
+  /**
+   * Match against prompt-based permissions
+   */
+  private matchPrompt(tool: string, input: unknown): PromptPermission | null {
+    for (const permission of this.config.allowedPrompts) {
+      if (permission.tool !== tool) continue;
+      if (this.promptMatcher.matches(permission.prompt, input)) {
+        return permission;
+      }
+    }
+    return null;
+  }
+  /**
+   * Generate cache key for session approvals
+   */
+  private getCacheKey(tool: string, input: unknown): string {
+    // For Bash, use the command as the key
+    if (tool === 'Bash' && input && typeof input === 'object') {
+      const cmd = (input as { command?: string }).command;
+      if (cmd) {
+        // Use first few tokens as pattern
+        const tokens = cmd.split(/\s+/).slice(0, 3).join(' ');
+        return `${tool}:${tokens}`;
+      }
+    }
+    // For file operations, use the path
+    if (['Read', 'Write', 'Edit', 'Glob'].includes(tool)) {
+      if (input && typeof input === 'object') {
+        const path = (input as { file_path?: string; path?: string }).file_path
+          ?? (input as { file_path?: string; path?: string }).path;
+        if (path) {
+          return `${tool}:${path}`;
         }
+      }
+    }
+    // Default: use full input JSON
+    return `${tool}:${JSON.stringify(input)}`;
+  }
+  /**
+   * Get approval suggestions for a context
+   */
+  private getSuggestions(context: PermissionContext): ApprovalSuggestion[] {
+    // Start with default suggestions
+    const suggestions = [...DEFAULT_SUGGESTIONS];
+    // Customize "Always allow" label based on tool/input
+    const alwaysIndex = suggestions.findIndex((s) => s.action === 'allow_always');
+    if (alwaysIndex >= 0 && context.tool === 'Bash') {
+      const input = context.input as { command?: string };
+      if (input?.command) {
+        const prefix = input.command.split(/\s+/).slice(0, 2).join(' ');
+        suggestions[alwaysIndex] = {
+          ...suggestions[alwaysIndex],
+          label: `Always allow "${prefix}*"`,
+        };
+      }
+    }
+    return suggestions;
+  }
+  /**
+   * Prompt user for approval
+   */
+  private async promptUser(
+    tool: string,
+    input: unknown,
+    suggestions?: ApprovalSuggestion[]
+  ): Promise<ApprovalAction> {
+    const effectiveSuggestions = suggestions ?? DEFAULT_SUGGESTIONS;
+    // Use enhanced callback if available
+    if (this.confirmCallback) {
+      return this.confirmCallback(tool, input, effectiveSuggestions);
+    }
+    // Fall back to simple callback
+    if (this.simpleConfirmCallback) {
+      const confirmed = await this.simpleConfirmCallback(tool, input);
+      return confirmed ? 'allow_session' : 'deny';
+    }
+    // No callback - auto-approve (non-interactive mode)
+    return 'allow_once';
+  }
+  /**
+   * Handle the user's approval action
+   */
+  private async handleApprovalAction(
+    action: ApprovalAction,
+    context: PermissionContext
+  ): Promise<boolean> {
+    const { tool, input } = context;
+    const cacheKey = this.getCacheKey(tool, input);
+    switch (action) {
+      case 'allow_once':
+        await this.logAudit(context, 'confirmed', 'User approved once');
+        return true;
-        const approved = await this.confirmCallback(tool, input);
-        if (approved) {
-          this.approvedTools.add(key);
+      case 'allow_session':
+        this.sessionApprovals.set(cacheKey, {
+          tool,
+          approvedAt: new Date(),
+        });
+        await this.logAudit(context, 'confirmed', 'User approved for session');
+        return true;
+      case 'allow_always':
+        // Extract pattern for persistent rule
+        const pattern = this.extractPattern(tool, input);
+        // Use saveRuleCallback if available (saves to settings.local.json)
+        // Otherwise fallback to addAllowRule (saves to permissions.json)
+        if (this.saveRuleCallback) {
+          await this.saveRuleCallback(tool, pattern);
+        } else {
+          await this.addAllowRule(tool, pattern, 'project');
         }
-        return approved;
+        // Also add to runtime config for immediate effect
+        this.config.rules.push({
+          tool,
+          mode: 'auto',
+          pattern,
+          scope: 'project',
+        });
+        await this.logAudit(context, 'confirmed', 'User approved for project');
+        return true;
+      case 'deny':
+        this.sessionRejections.add(cacheKey);
+        await this.logAudit(context, 'rejected', 'User denied');
+        return false;
       default:
         return false;
@@ -82,16 +602,48 @@ export class PermissionManager {
   }
   /**
-   * Approve a tool for this session
+   * Extract a pattern from tool input for persistent rules
    */
-  approveToolForSession(tool: string): void {
-    this.approvedTools.add(tool);
+  private extractPattern(tool: string, input: unknown): string | undefined {
+    if (tool === 'Bash' && input && typeof input === 'object') {
+      const cmd = (input as { command?: string }).command;
+      if (cmd) {
+        // Use first two tokens + wildcard
+        const tokens = cmd.split(/\s+/).slice(0, 2);
+        return tokens.join(' ') + ':*';
+      }
+    }
+    return undefined;
   }
   /**
-   * Clear all session approvals
+   * Describe a rule for logging
    */
-  clearApprovals(): void {
-    this.approvedTools.clear();
+  private describeRule(rule: PermissionRule): string {
+    const parts = [rule.tool.toString()];
+    if (rule.pattern) {
+      parts.push(`(${rule.pattern})`);
+    }
+    if (rule.description) {
+      parts.push(`- ${rule.description}`);
+    }
+    return parts.join('');
+  }
+  /**
+   * Log audit entry
+   */
+  private async logAudit(
+    context: PermissionContext,
+    decision: AuditDecision,
+    reason: string
+  ): Promise<void> {
+    await this.audit.log(context.tool, context.input, decision, reason, {
+      sessionId: context.sessionId,
+    });
   }
 }
+// Re-export types and utilities
+export type { ConfirmCallback, SimpleConfirmCallback };