npm - joonecli - Versions diffs - 0.2.0 → 0.2.2 - Mend

joonecli 0.2.0 → 0.2.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (116) hide show

package/dist/__tests__/config.test.js +1 -0
package/dist/__tests__/config.test.js.map +1 -1
package/dist/__tests__/installHostDeps.test.js +45 -0
package/dist/__tests__/installHostDeps.test.js.map +1 -0
package/dist/__tests__/whitelistedBackend.test.js +18 -0
package/dist/__tests__/whitelistedBackend.test.js.map +1 -0
package/dist/cli/config.d.ts +2 -0
package/dist/cli/config.js +1 -0
package/dist/cli/config.js.map +1 -1
package/dist/cli/index.js +120 -107
package/dist/cli/index.js.map +1 -1
package/dist/cli/startupBenchmark.d.ts +13 -0
package/dist/cli/startupBenchmark.js +27 -0
package/dist/cli/startupBenchmark.js.map +1 -0
package/dist/core/agentLoop.d.ts +10 -29
package/dist/core/agentLoop.js +73 -238
package/dist/core/agentLoop.js.map +1 -1
package/dist/core/promptBuilder.js.map +1 -1
package/dist/hitl/bridge.js +1 -27
package/dist/hitl/bridge.js.map +1 -1
package/dist/middleware/loopDetection.d.ts +7 -23
package/dist/middleware/loopDetection.js +38 -42
package/dist/middleware/loopDetection.js.map +1 -1
package/dist/sandbox/whitelistedBackend.d.ts +5 -0
package/dist/sandbox/whitelistedBackend.js +27 -0
package/dist/sandbox/whitelistedBackend.js.map +1 -0
package/dist/tools/askUser.d.ts +12 -3
package/dist/tools/askUser.js +16 -28
package/dist/tools/askUser.js.map +1 -1
package/dist/tools/bashTool.d.ts +11 -0
package/dist/tools/bashTool.js +51 -0
package/dist/tools/bashTool.js.map +1 -0
package/dist/tools/index.d.ts +15 -28
package/dist/tools/index.js +9 -189
package/dist/tools/index.js.map +1 -1
package/dist/tools/installHostDeps.d.ts +8 -2
package/dist/tools/installHostDeps.js +38 -31
package/dist/tools/installHostDeps.js.map +1 -1
package/dist/ui/App.d.ts +4 -1
package/dist/ui/App.js +200 -63
package/dist/ui/App.js.map +1 -1
package/dist/ui/components/MessageBubble.js +1 -1
package/dist/ui/components/MessageBubble.js.map +1 -1
package/package.json +7 -2
package/dist/__tests__/m55.test.js +0 -160
package/dist/__tests__/m55.test.js.map +0 -1
package/dist/__tests__/middleware.test.js +0 -169
package/dist/__tests__/middleware.test.js.map +0 -1
package/dist/__tests__/optimizations.test.d.ts +0 -1
package/dist/__tests__/optimizations.test.js +0 -136
package/dist/__tests__/optimizations.test.js.map +0 -1
package/dist/__tests__/security.test.d.ts +0 -1
package/dist/__tests__/security.test.js +0 -86
package/dist/__tests__/security.test.js.map +0 -1
package/dist/__tests__/streaming.test.d.ts +0 -1
package/dist/__tests__/streaming.test.js +0 -71
package/dist/__tests__/streaming.test.js.map +0 -1
package/dist/__tests__/toolRouter.test.d.ts +0 -1
package/dist/__tests__/toolRouter.test.js +0 -37
package/dist/__tests__/toolRouter.test.js.map +0 -1
package/dist/__tests__/tools.test.d.ts +0 -1
package/dist/__tests__/tools.test.js +0 -112
package/dist/__tests__/tools.test.js.map +0 -1
package/dist/core/subAgent.d.ts +0 -56
package/dist/core/subAgent.js +0 -240
package/dist/core/subAgent.js.map +0 -1
package/dist/debug_google.d.ts +0 -1
package/dist/debug_google.js +0 -23
package/dist/debug_google.js.map +0 -1
package/dist/middleware/commandSanitizer.d.ts +0 -18
package/dist/middleware/commandSanitizer.js +0 -50
package/dist/middleware/commandSanitizer.js.map +0 -1
package/dist/middleware/permission.d.ts +0 -17
package/dist/middleware/permission.js +0 -60
package/dist/middleware/permission.js.map +0 -1
package/dist/middleware/pipeline.d.ts +0 -31
package/dist/middleware/pipeline.js +0 -62
package/dist/middleware/pipeline.js.map +0 -1
package/dist/middleware/preCompletion.d.ts +0 -29
package/dist/middleware/preCompletion.js +0 -82
package/dist/middleware/preCompletion.js.map +0 -1
package/dist/middleware/types.d.ts +0 -40
package/dist/middleware/types.js +0 -8
package/dist/middleware/types.js.map +0 -1
package/dist/skills/loader.d.ts +0 -55
package/dist/skills/loader.js +0 -132
package/dist/skills/loader.js.map +0 -1
package/dist/skills/tools.d.ts +0 -5
package/dist/skills/tools.js +0 -78
package/dist/skills/tools.js.map +0 -1
package/dist/test_cache.d.ts +0 -1
package/dist/test_cache.js +0 -55
package/dist/test_cache.js.map +0 -1
package/dist/test_google.d.ts +0 -1
package/dist/test_google.js +0 -36
package/dist/test_google.js.map +0 -1
package/dist/tools/browser.d.ts +0 -19
package/dist/tools/browser.js +0 -114
package/dist/tools/browser.js.map +0 -1
package/dist/tools/registry.d.ts +0 -31
package/dist/tools/registry.js +0 -168
package/dist/tools/registry.js.map +0 -1
package/dist/tools/router.d.ts +0 -34
package/dist/tools/router.js +0 -76
package/dist/tools/router.js.map +0 -1
package/dist/tools/security.d.ts +0 -28
package/dist/tools/security.js +0 -183
package/dist/tools/security.js.map +0 -1
package/dist/tools/spawnAgent.d.ts +0 -19
package/dist/tools/spawnAgent.js +0 -132
package/dist/tools/spawnAgent.js.map +0 -1
package/dist/tools/webSearch.d.ts +0 -6
package/dist/tools/webSearch.js +0 -120
package/dist/tools/webSearch.js.map +0 -1
/package/dist/__tests__/{m55.test.d.ts → installHostDeps.test.d.ts} +0 -0
/package/dist/__tests__/{middleware.test.d.ts → whitelistedBackend.test.d.ts} +0 -0

package/dist/tools/index.js CHANGED Viewed

@@ -1,192 +1,12 @@
-import * as fs from "node:fs";
-import * as path from "node:path";
-import { InstallHostDependenciesTool } from "./installHostDeps.js";
-// ─── Configuration ──────────────────────────────────────────────────────────────
-/** Maximum file size (in bytes) the agent is allowed to read into context. */
-const MAX_FILE_SIZE_BYTES = 512 * 1024; // 512 KB
-/** Maximum number of lines to return if file exceeds line limit. */
-const MAX_FILE_LINES = 2000;
-// ─── Sandbox reference (set at session start) ───────────────────────────────────
-let _sandboxManager = null;
-let _fileSync = null;
-/**
- * Binds the tools to a SandboxManager and FileSync instance.
- * Must be called at session start before any tool executions.
- */
-export function bindSandbox(sandbox, fileSync) {
-    _sandboxManager = sandbox;
-    _fileSync = fileSync;
-}
-/**
- * Security: Validates that a resolved path is strictly inside the given workspace dir.
- * Prevents directory traversal attacks from accessing sensitive host files.
- */
-export function isPathInsideWorkspace(resolvedPath, workspaceDir = process.cwd()) {
-    const normalizedWorkspace = path.resolve(workspaceDir);
-    // path.relative returns a path relative to the first argument.
-    // If it starts with '..' or is absolute, it means resolvedPath has escaped normalizedWorkspace.
-    const relative = path.relative(normalizedWorkspace, resolvedPath);
-    return relative !== "" && !relative.startsWith("..") && !path.isAbsolute(relative);
-}
-// ─── BashTool ───────────────────────────────────────────────────────────────────
-// Executes shell commands inside the E2B sandbox.
-// The ToolRouter routes this to SANDBOX — the host machine is never exposed.
-export const BashTool = {
-    name: "bash",
-    description: "Runs a shell command inside an isolated sandbox. Use for tests, scripts, or installing dependencies. The host machine is never exposed.",
-    schema: {
-        type: "object",
-        properties: {
-            command: {
-                type: "string",
-                description: "The shell command to execute",
-            },
-        },
-        required: ["command"],
-    },
-    execute: async (args, emitter) => {
-        if (emitter)
-            emitter.emit("agent:event", { type: "system:script_exec", command: args.command, location: "sandbox" });
-        if (!_sandboxManager || !_sandboxManager.isActive()) {
-            throw new Error("Sandbox is not active. Cannot execute bash commands without an active sandbox session.");
-        }
-        // Sync any dirty files from host → sandbox before executing
-        if (_fileSync && _fileSync.pendingCount() > 0) {
-            await _fileSync.syncToSandbox(_sandboxManager);
-        }
-        const result = await _sandboxManager.exec(args.command);
-        if (result.exitCode !== 0) {
-            return {
-                content: `Command failed (exit code ${result.exitCode}):\nSTDOUT:\n${result.stdout}\nSTDERR:\n${result.stderr}`,
-                metadata: { exitCode: result.exitCode },
-                isError: true
-            };
-        }
-        return {
-            content: result.stdout || "(no output)",
-            metadata: { exitCode: result.exitCode },
-            isError: false
-        };
-    },
-};
-// ─── ReadFileTool ───────────────────────────────────────────────────────────────
-// Reads files from the HOST filesystem (so the user's real project is visible).
-// Includes a built-in file size guardrail to prevent sending huge files to the LLM.
-export const ReadFileTool = {
-    name: "read_file",
-    description: "Reads a file from the host filesystem. Includes a file size guardrail — files over 512KB are truncated to prevent context overflow.",
-    schema: {
-        type: "object",
-        properties: {
-            path: {
-                type: "string",
-                description: "Absolute or relative path to the file",
-            },
-            startLine: {
-                type: "number",
-                description: "Optional 1-indexed start line for partial reads",
-            },
-            endLine: {
-                type: "number",
-                description: "Optional 1-indexed end line for partial reads",
-            },
-        },
-        required: ["path"],
-    },
-    execute: async (args, emitter) => {
-        const filePath = path.resolve(args.path);
-        if (emitter)
-            emitter.emit("agent:event", { type: "file:io", action: "read", path: filePath });
-        // ── Security Guardrail ──
-        if (!isPathInsideWorkspace(filePath)) {
-            return {
-                content: `Security Error: Access Denied. Cannot read files outside the current project workspace (${process.cwd()}).`,
-                isError: true
-            };
-        }
-        // ── Check existence ──
-        if (!fs.existsSync(filePath)) {
-            return {
-                content: `Error: File not found — ${filePath}`,
-                isError: true
-            };
-        }
-        // ── File Size Guardrail ──
-        const stat = fs.statSync(filePath);
-        if (stat.size > MAX_FILE_SIZE_BYTES) {
-            return {
-                content: `Error: File too large (${Math.round(stat.size / 1024)}KB). Maximum size is 512KB. Use line ranges or grep_search.`,
-                isError: true
-            };
-        }
-        const fileContent = fs.readFileSync(filePath, "utf-8");
-        const lines = fileContent.split("\n");
-        if (args.startLine !== undefined || args.endLine !== undefined) {
-            const start = Math.max(1, args.startLine ?? 1) - 1;
-            const end = Math.min(lines.length, args.endLine ?? lines.length);
-            const sliced = lines.slice(start, end);
-            return { content: sliced.map((line, i) => `${start + i + 1}: ${line}`).join("\n") };
-        }
-        // ── Line count guardrail ──
-        if (lines.length > MAX_FILE_LINES) {
-            const truncated = lines.slice(0, MAX_FILE_LINES);
-            return {
-                content: truncated.map((line, i) => `${i + 1}: ${line}`).join("\n") +
-                    `\n\n--- Truncated at ${MAX_FILE_LINES} lines (total: ${lines.length}) ---`
-            };
-        }
-        return { content: fileContent };
-    },
-};
-// ─── WriteFileTool ──────────────────────────────────────────────────────────────
-// Writes files to the HOST filesystem (so the user sees changes in their IDE).
-// Marks written files as dirty so FileSync uploads them before sandbox execution.
-export const WriteFileTool = {
-    name: "write_file",
-    description: "Writes content to a file on the host filesystem. The user will see changes in their IDE immediately. The file is automatically synced to the sandbox before the next command execution.",
-    schema: {
-        type: "object",
-        properties: {
-            path: {
-                type: "string",
-                description: "Absolute or relative path to the file",
-            },
-            content: {
-                type: "string",
-                description: "The full file content to write",
-            },
-        },
-        required: ["path", "content"],
-    },
-    execute: async (args, emitter) => {
-        const filePath = path.resolve(args.path);
-        if (emitter)
-            emitter.emit("agent:event", { type: "file:io", action: "write", path: filePath });
-        // ── Security Guardrail ──
-        if (!isPathInsideWorkspace(filePath)) {
-            return {
-                content: `Security Error: Access Denied. Cannot write files outside the current project workspace (${process.cwd()}).`,
-                isError: true
-            };
-        }
-        // Create parent directories if needed
-        const dir = path.dirname(filePath);
-        if (!fs.existsSync(dir)) {
-            fs.mkdirSync(dir, { recursive: true });
-        }
-        fs.writeFileSync(filePath, args.content, "utf-8");
-        // Mark file as dirty for next sandbox sync
-        if (_fileSync) {
-            _fileSync.markDirty(filePath);
-        }
-        return { content: `File written: ${filePath}` };
-    },
-};
-// ─── Core Tool Set ──────────────────────────────────────────────────────────────
+import { installHostDependenciesTool } from "./installHostDeps.js";
+import { bashTool, bindSandbox } from "./bashTool.js";
+// Re-export bindSandbox so index.ts can initialize it
+export { bindSandbox };
+// The core custom tools that the agent needs.
+// Note: File I/O (read_file, write_file, edit_file, ls, grep) and Subagents
+// are provided natively by Deep Agents via the FilesystemBackend and createSubAgentMiddleware.
 export const CORE_TOOLS = [
-    BashTool,
-    ReadFileTool,
-    WriteFileTool,
-    InstallHostDependenciesTool,
+    bashTool,
+    installHostDependenciesTool,
 ];
 //# sourceMappingURL=index.js.map

package/dist/tools/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/tools/index.ts"],"names":[],"mappings":"AAAA,OAAO,~~KAAK,~~EAAE,~~MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAIlC,OAAO,EAAE,~~2BAA2B,EAAE,MAAM,sBAAsB,CAAC;~~AAenE~~,mFAAmF;AAEnF,8EAA8E;AAC9E,MAAM,mBAAmB,GAAG,GAAG,GAAG,IAAI,CAAC,CAAC,SAAS;AAEjD,oEAAoE;AACpE,MAAM,cAAc,GAAG,IAAI,CAAC;AAE5B,mFAAmF;AAEnF,IAAI,eAAe,GAA0B,IAAI,CAAC;AAClD,IAAI,SAAS,GAAoB,IAAI,CAAC;AAEtC;;;GAGG;AACH,MAAM,UAAU,WAAW,CAAC,OAAuB,EAAE,QAAkB;IACnE,eAAe,GAAG,OAAO,~~CAAC;IAC1B,SAAS,GAAG,QAAQ,CAAC;AACzB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,qBAAqB,CACjC,YAAoB,EACpB,YAAY,GAAG,OAAO,CAAC,GAAG,~~EAAE~~;IAE5B~~,~~MAAM,mBAAmB,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;IACvD,+DAA+D;IAC/D,gGAAgG;IAChG,MAAM,~~QAAQ,~~GAAG,IAAI,CAAC,QAAQ,CAAC,mBAAmB,~~EAAE,YAAY,CAAC,CAAC;IAClE,OAAO,QAAQ,KAAK,EAAE,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;AACvF,CAAC;AAED,mFAAmF;AACnF,kDAAkD;AAClD,6EAA6E;AAE7E,MAAM,CAAC,MAAM,QAAQ,GAAyB;IAC1C,IAAI,EAAE,MAAM;IACZ,WAAW,~~EACP,yIAAyI;IAC7I,MAAM,~~EAAE~~;QACJ~~,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACR,OAAO,EAAE;gBACL,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,8BAA8B;aAC9C;SACJ;QACD,QAAQ,EAAE,CAAC,SAAS,CAAC;KACxB;IACD,OAAO,EAAE,KAAK,EAAE,IAAyB,EAAE,OAA2B,EAAuB,EAAE;QAC3F,IAAI,OAAO;YAAE,OAAO,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,IAAI,EAAE,oBAAoB,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAC,CAAC;QACrH,IAAI,CAAC,eAAe,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,EAAE,CAAC;YAClD,MAAM,~~IAAI,KAAK,CACX,wFAAwF,CAC3F,CAAC;QACN,CAAC;QAED,4DAA4D;QAC5D,IAAI,SAAS,IAAI,SAAS,CAAC,YAAY,EAAE,GAAG,CAAC,EAAE,CAAC;YAC5C,MAAM,SAAS,CAAC,aAAa,CAAC,~~eAAe,CAAC~~,CAAC~~;~~QACnD~~,~~CAAC~~;~~QAED~~,~~MAAM,MAAM,GAAG,MAAM,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,~~OAAO,~~CAAC,CAAC;QAExD,IAAI,MAAM,CAAC,QAAQ,KAAK,CAAC,~~EAAE,CAAC;YACxB,OAAO;gBACH,OAAO,EAAE,6BAA6B,MAAM,CAAC,QAAQ,gBAAgB,MAAM,CAAC,MAAM,cAAc,MAAM,CAAC,MAAM,EAAE;gBAC/G,QAAQ,EAAE,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE;gBACvC,OAAO,EAAE,IAAI;aAChB,CAAC;QACN,CAAC;QAED,OAAO;YACH,OAAO,EAAE,MAAM,CAAC,MAAM,IAAI,aAAa;YACvC,QAAQ,EAAE,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE;YACvC,OAAO,EAAE,KAAK;SACjB,CAAC;IACN,CAAC;CACJ,CAAC;AAEF,mFAAmF;AACnF,gFAAgF;AAChF,oFAAoF;AAEpF,MAAM,CAAC,MAAM,YAAY,GAAyB;IAC9C,IAAI,EAAE,WAAW~~;IACjB~~,~~WAAW,EACP,qIAAqI;IACzI,MAAM,~~EAAE~~;QACJ~~,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACR,IAAI,EAAE;gBACF,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,uCAAuC;aACvD;YACD,SAAS,EAAE;gBACP,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,iDAAiD;aACjE;YACD,OAAO,EAAE;gBACL,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,+CAA+C;aAC/D;SACJ;QACD,QAAQ,EAAE,CAAC~~,MAAM,CAAC~~;~~KACrB;IACD~~,~~OAAO,EAAE,KAAK,EAAE,IAA4D,EAAE,OAA2B,EAAuB,EAAE~~;~~QAC9H~~,~~MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC~~;QACzC,IAAI,OAAO;YAAE,OAAO,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAC;QAE9F,2BAA2B;QAC3B,IAAI,CAAC,qBAAqB,CAAC,QAAQ,CAAC,EAAE,CAAC;YACnC,OAAO;gBACH,OAAO,EAAE,2FAA2F,OAAO,CAAC,GAAG,EAAE,IAAI;gBACrH,OAAO,EAAE,IAAI;aAChB,CAAC;QACN,CAAC;QAED,wBAAwB;QACxB,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC3B,OAAO;gBACH,OAAO,EAAE,2BAA2B,QAAQ,EAAE;gBAC9C,OAAO,EAAE,IAAI;aAChB,CAAC;QACN,CAAC;QAED,4BAA4B;QAC5B,MAAM,IAAI,GAAG,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;QACnC,IAAI,IAAI,CAAC,IAAI,GAAG,mBAAmB,EAAE,CAAC;YAClC,OAAO;gBACH,OAAO,EAAE,0BAA0B,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,6DAA6D;gBAC5H,OAAO,EAAE,IAAI;aAChB,CAAC;QACN,CAAC;QAED,MAAM,WAAW,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QACvD,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAEtC,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,IAAI,IAAI,CAAC,OAAO,KAAK,SAAS,EAAE,CAAC;YAC7D,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,SAAS,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;YACnD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,IAAI,CAAC,OAAO,IAAI,KAAK,CAAC,MAAM,CAAC,CAAC;YACjE,MAAM,MAAM,GAAG,KAAK,CAAC,KAAK,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;YACvC,OAAO,EAAE,OAAO,EAAE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,GAAG,CAAC,GAAG,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;QACxF,CAAC;QAED,6BAA6B;QAC7B,IAAI,KAAK,CAAC,MAAM,GAAG,cAAc,EAAE,CAAC;YAChC,MAAM,SAAS,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,cAAc,CAAC,CAAC;YACjD,OAAO;gBACH,OAAO,EAAE,SAAS,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC;oBACnE,wBAAwB,cAAc,kBAAkB,KAAK,CAAC,MAAM,OAAO;aAC9E,CAAC;QACN,CAAC;QAED,OAAO,EAAE,OAAO,EAAE,WAAW,EAAE,CAAC;IACpC,CAAC;CACJ,CAAC;AAEF,mFAAmF;AACnF,+~~EAA~~+E;AAC/E,~~kFAAkF;AAElF,~~MAAM,CAAC,MAAM,~~aAAa,GAAyB;IAC/C,IAAI,EAAE,YAAY;IAClB,WAAW,EACP,yLAAyL;IAC7L,MAAM,EAAE;QACJ,IAAI,EAAE,QAAQ;QACd,~~UAAU,EAAE;YACR,IAAI,EAAE;gBACF,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,uCAAuC;aACvD;YACD,OAAO,EAAE;gBACL,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,gCAAgC;aAChD;SACJ;QACD,QAAQ,EAAE,CAAC,MAAM,EAAE,SAAS,CAAC;KAChC;IACD,OAAO,EAAE,KAAK,EAAE,IAAuC,EAAE,OAA2B,EAAuB,EAAE;QACzG,MAAM,QAAQ,GAAG~~,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC~~;~~QACzC~~,~~IAAI,OAAO;YAAE,OAAO,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,~~QAAQ~~,EAAE,CAAC,CAAC~~;QAE/F,2BAA2B;QAC3B,IAAI,CAAC,qBAAqB,CAAC,QAAQ,CAAC,EAAE,CAAC;YACnC,OAAO;gBACH,OAAO,EAAE,4FAA4F,OAAO,CAAC,GAAG,EAAE,IAAI;gBACtH,OAAO,EAAE,IAAI;aAChB,CAAC;QACN,CAAC;QAED,sCAAsC;QACtC,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QACnC,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YACtB,EAAE,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAC3C,CAAC;QAED,EAAE,CAAC,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAElD,2CAA2C;QAC3C,IAAI,SAAS,EAAE,CAAC;YACZ,SAAS,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QAClC,CAAC;QAED,OAAO,EAAE,OAAO,EAAE,iBAAiB,QAAQ,EAAE,EAAE,CAAC;IACpD,CAAC;CACJ,CAAC;AAEF,mFAAmF;AAEnF,MAAM,CAAC,MAAM,UAAU,GAA2B;IAC9C,QAAQ;IACR,~~YAAY;IACZ,aAAa;IACb,~~2BAA2B;CAC9B,CAAC"}
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/tools/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,2BAA2B,EAAE,MAAM,sBAAsB,CAAC;AACnE,OAAO,EAAE,QAAQ,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AAEtD,sDAAsD;AACtD,OAAO,EAAE,WAAW,EAAE,CAAC;AAEvB,8CAA8C;AAC9C,4EAA4E;AAC5E,+FAA+F;AAC/F,MAAM,CAAC,MAAM,UAAU,GAAG;IACtB,QAAQ;IACR,2BAA2B;CAC9B,CAAC"}

package/dist/tools/installHostDeps.d.ts CHANGED Viewed

@@ -1,2 +1,8 @@
-import { DynamicToolInterface } from "./index.js";
-export declare const InstallHostDependenciesTool: DynamicToolInterface;
+import { z } from "zod";
+export declare const installHostDependenciesTool: import("langchain").DynamicStructuredTool<z.ZodObject<{
+    command: z.ZodString;
+}, z.core.$strip>, {
+    command: string;
+}, {
+    command: string;
+}, string, "install_host_dependencies">;

package/dist/tools/installHostDeps.js CHANGED Viewed

@@ -1,37 +1,44 @@
 import { exec } from "node:child_process";
 import { promisify } from "node:util";
+import { tool } from "langchain";
+import { z } from "zod";
 const execAsync = promisify(exec);
-export const InstallHostDependenciesTool = {
+const ALLOWED_INSTALLERS = {
+    npm: new Set(["install", "i", "ci", "add"]),
+    yarn: new Set(["add", "install"]),
+    pnpm: new Set(["add", "install", "i"]),
+    pip: new Set(["install"]),
+    pip3: new Set(["install"]),
+    cargo: new Set(["add", "install"]),
+    poetry: new Set(["add", "install"]),
+    gem: new Set(["install"]),
+    composer: new Set(["require", "install"]),
+    go: new Set(["get", "install"]),
+    bun: new Set(["add", "install"]),
+};
+export const installHostDependenciesTool = tool(async ({ command }) => {
+    const trimmedCmd = command.trim();
+    const parts = trimmedCmd.split(/\s+/);
+    const bin = parts[0];
+    const subcmd = parts[1];
+    if (!ALLOWED_INSTALLERS[bin] || !ALLOWED_INSTALLERS[bin].has(subcmd)) {
+        return `Security Error: Command '${bin} ${subcmd}' is not allowed. Only dependency installation commands (like 'npm install') are permitted by this tool.`;
+    }
+    if (/[&|;`$]/.test(trimmedCmd)) {
+        return `Security Error: Command contains forbidden shell operators (&, |, ;, \`, $).`;
+    }
+    try {
+        const { stdout, stderr } = await execAsync(command, { cwd: process.cwd() });
+        return `Successfully ran on host:\nSTDOUT:\n${stdout}\nSTDERR:\n${stderr}`;
+    }
+    catch (error) {
+        return `Host command failed (exit code ${error.code}):\nSTDOUT:\n${error.stdout}\nSTDERR:\n${error.stderr}\nMESSAGE:\n${error.message}`;
+    }
+}, {
     name: "install_host_dependencies",
     description: "Installs dependencies natively on the host OS (e.g. npm install, pip install). Use this carefully to bootstrap projects outside the sandbox. This runs directly on the user's machine.",
-    schema: {
-        type: "object",
-        properties: {
-            command: {
-                type: "string",
-                description: "The native installation command (e.g., 'npm install express')",
-            },
-        },
-        required: ["command"],
-    },
-    execute: async (args, emitter) => {
-        if (emitter) {
-            emitter.emit("agent:event", { type: "system:script_exec", command: args.command, location: "host" });
-        }
-        try {
-            const { stdout, stderr } = await execAsync(args.command, { cwd: process.cwd() });
-            return {
-                content: `Successfully ran on host:\nSTDOUT:\n${stdout}\nSTDERR:\n${stderr}`,
-                isError: false,
-            };
-        }
-        catch (error) {
-            return {
-                content: `Host command failed (exit code ${error.code}):\nSTDOUT:\n${error.stdout}\nSTDERR:\n${error.stderr}\nMESSAGE:\n${error.message}`,
-                metadata: { exitCode: error.code },
-                isError: true
-            };
-        }
-    },
-};
+    schema: z.object({
+        command: z.string().describe("The native installation command (e.g., 'npm install express')"),
+    }),
+});
 //# sourceMappingURL=installHostDeps.js.map

package/dist/tools/installHostDeps.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"installHostDeps.js","sourceRoot":"","sources":["../../src/tools/installHostDeps.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,oBAAoB,CAAC;AAC1C,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;~~AAItC~~,MAAM,SAAS,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC;AAElC,MAAM,CAAC,~~MAAM~~,~~2BAA2B~~,~~GAAyB~~;~~IAC7D~~,IAAI,EAAE,~~2BAA2B~~;IACjC,~~WAAW~~,~~EACP~~,~~wLAAwL~~;~~IAC5L~~,~~MAAM~~,EAAE;~~QACJ~~,IAAI,EAAE,~~QAAQ~~;~~QACd~~,~~UAAU~~,EAAE~~;YACR~~,~~OAAO~~,EAAE;~~gBACL~~,IAAI,EAAE,~~QAAQ~~;~~gBACd~~,~~WAAW~~,EAAE~~,+DAA+D~~;~~aAC/E;SACJ;QACD~~,QAAQ,EAAE,CAAC,SAAS,CAAC;~~KACxB~~;~~IACD~~,~~OAAO~~,EAAE,KAAK,EAAE,~~IAAyB~~,EAAE,~~OAA2B~~,EAAuB,EAAE;~~QAC3F~~,~~IAAI~~,OAAO,EAAE,CAAC;~~YACV~~,~~OAAO~~,CAAC,IAAI,CAAC,~~aAAa~~,~~EAAE~~,~~EAAE~~,IAAI,~~EAAE~~,~~oBAAoB~~,EAAE,OAAO,~~EAAE~~,IAAI,CAAC,~~OAAO~~,~~EAAE~~,~~QAAQ~~,~~EAAE~~,~~MAAM~~,EAAE,CAAC,CAAC;~~QACzG~~,CAAC;~~QAED~~,IAAI,CAAC;~~YACD~~,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,SAAS,CAAC,~~IAAI,CAAC,~~OAAO,EAAE,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;~~YACjF~~,OAAO~~;gBACH~~,~~OAAO,EAAE,~~uCAAuC,MAAM,cAAc,MAAM,EAAE~~;gBAC5E~~,~~OAAO,EAAE,KAAK;aACjB,~~CAAC;~~QACN~~,CAAC;~~QAAC~~,OAAO,KAAU,EAAE,CAAC;~~YACjB~~,OAAO~~;gBACJ~~,~~OAAO,EAAE,~~kCAAkC,KAAK,CAAC,IAAI,gBAAgB,KAAK,CAAC,MAAM,cAAc,KAAK,CAAC,MAAM,eAAe,KAAK,CAAC,OAAO,EAAE;~~gBACzI~~,~~QAAQ~~,~~EAAE~~,EAAE,~~QAAQ~~,EAAE,~~KAAK~~,CAAC,~~IAAI~~,~~EAAE~~;~~gBAClC~~,OAAO,EAAE,~~IAAI;aAChB~~,CAAC~~;QACN~~,CAAC;~~IACL~~,CAAC;CACJ,CAAC"}
1	+ {"version":3,"file":"installHostDeps.js","sourceRoot":"","sources":["../../src/tools/installHostDeps.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,oBAAoB,CAAC;AAC1C,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AACtC,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,MAAM,SAAS,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC;AAElC,MAAM,kBAAkB,GAAgC;IACpD,GAAG,EAAE,IAAI,GAAG,CAAC,CAAC,SAAS,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC;IAC3C,IAAI,EAAE,IAAI,GAAG,CAAC,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;IACjC,IAAI,EAAE,IAAI,GAAG,CAAC,CAAC,KAAK,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;IACtC,GAAG,EAAE,IAAI,GAAG,CAAC,CAAC,SAAS,CAAC,CAAC;IACzB,IAAI,EAAE,IAAI,GAAG,CAAC,CAAC,SAAS,CAAC,CAAC;IAC1B,KAAK,EAAE,IAAI,GAAG,CAAC,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;IAClC,MAAM,EAAE,IAAI,GAAG,CAAC,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;IACnC,GAAG,EAAE,IAAI,GAAG,CAAC,CAAC,SAAS,CAAC,CAAC;IACzB,QAAQ,EAAE,IAAI,GAAG,CAAC,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;IACzC,EAAE,EAAE,IAAI,GAAG,CAAC,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;IAC/B,GAAG,EAAE,IAAI,GAAG,CAAC,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;CACnC,CAAC;AAEF,MAAM,CAAC,MAAM,2BAA2B,GAAG,IAAI,CAC3C,KAAK,EAAE,EAAE,OAAO,EAAuB,EAAE,EAAE;IACvC,MAAM,UAAU,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;IAClC,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;IACtC,MAAM,GAAG,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;IACrB,MAAM,MAAM,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;IAExB,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;QACnE,OAAO,4BAA4B,GAAG,IAAI,MAAM,0GAA0G,CAAC;IAC/J,CAAC;IAED,IAAI,SAAS,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;QAC7B,OAAO,8EAA8E,CAAC;IAC1F,CAAC;IAED,IAAI,CAAC;QACD,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,SAAS,CAAC,OAAO,EAAE,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;QAC5E,OAAO,uCAAuC,MAAM,cAAc,MAAM,EAAE,CAAC;IAC/E,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QAClB,OAAO,kCAAkC,KAAK,CAAC,IAAI,gBAAgB,KAAK,CAAC,MAAM,cAAc,KAAK,CAAC,MAAM,eAAe,KAAK,CAAC,OAAO,EAAE,CAAC;IAC5I,CAAC;AACL,CAAC,EACD;IACI,IAAI,EAAE,2BAA2B;IACjC,WAAW,EACP,wLAAwL;IAC5L,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC;QACb,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,+DAA+D,CAAC;KAChG,CAAC;CACL,CACJ,CAAC"}

package/dist/ui/App.d.ts CHANGED Viewed

@@ -16,9 +16,12 @@ interface AppProps {
     provider: string;
     model: string;
     streaming: boolean;
-    harness: ExecutionHarness;
+    createHarness: () => Promise<ExecutionHarness>;
     initialState: ContextState;
     maxTokens: number;
+    benchmarkStartup?: boolean;
+    onStartupBenchmarkMark?: (name: string) => void;
+    onStartupBenchmarkComplete?: () => void;
 }
 export declare const App: React.FC<AppProps>;
 export {};