kemdicode-mcp 1.15.6 → 1.16.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +1 -1
- package/dist/ai/execute.d.ts.map +1 -1
- package/dist/ai/execute.js +5 -1
- package/dist/ai/execute.js.map +1 -1
- package/dist/recursive/tool-invoker.d.ts.map +1 -1
- package/dist/recursive/tool-invoker.js +76 -28
- package/dist/recursive/tool-invoker.js.map +1 -1
- package/dist/recursive/types.d.ts +1 -0
- package/dist/recursive/types.d.ts.map +1 -1
- package/dist/recursive/types.js.map +1 -1
- package/dist/tools/batch.tool.d.ts.map +1 -1
- package/dist/tools/batch.tool.js +3 -16
- package/dist/tools/batch.tool.js.map +1 -1
- package/dist/tools/file/file-tree.tool.d.ts.map +1 -1
- package/dist/tools/file/file-tree.tool.js +5 -6
- package/dist/tools/file/file-tree.tool.js.map +1 -1
- package/dist/tools/registry.d.ts +1 -1
- package/dist/tools/registry.d.ts.map +1 -1
- package/dist/tools/registry.js +10 -6
- package/dist/tools/registry.js.map +1 -1
- package/dist/tools/system/ai-models.tool.d.ts.map +1 -1
- package/dist/tools/system/ai-models.tool.js +33 -7
- package/dist/tools/system/ai-models.tool.js.map +1 -1
- package/dist/tools/system/env-info.tool.d.ts.map +1 -1
- package/dist/tools/system/env-info.tool.js +11 -6
- package/dist/tools/system/env-info.tool.js.map +1 -1
- package/dist/tools/system/process-list.tool.js +4 -4
- package/dist/tools/system/process-list.tool.js.map +1 -1
- package/dist/tools/system/shell-exec.tool.d.ts.map +1 -1
- package/dist/tools/system/shell-exec.tool.js +69 -40
- package/dist/tools/system/shell-exec.tool.js.map +1 -1
- package/dist/utils/git-utils.d.ts.map +1 -1
- package/dist/utils/git-utils.js +5 -5
- package/dist/utils/git-utils.js.map +1 -1
- package/dist/utils/security.d.ts.map +1 -1
- package/dist/utils/security.js +20 -9
- package/dist/utils/security.js.map +1 -1
- package/package.json +1 -1
|
@@ -18,6 +18,7 @@
|
|
|
18
18
|
import { z } from 'zod';
|
|
19
19
|
import { config } from '../../config/index.js';
|
|
20
20
|
import { initAIClient } from '../../ai/index.js';
|
|
21
|
+
import { validateUrl } from '../../utils/security.js';
|
|
21
22
|
/**
|
|
22
23
|
* AI Models Tool Schema
|
|
23
24
|
*/
|
|
@@ -51,16 +52,41 @@ async function fetchModels() {
|
|
|
51
52
|
if (!serverConfig.apiBaseUrl) {
|
|
52
53
|
throw new Error('API base URL not configured');
|
|
53
54
|
}
|
|
55
|
+
// SSRF guard: validate URL before calling fetch
|
|
56
|
+
const urlCheck = validateUrl(serverConfig.apiBaseUrl);
|
|
57
|
+
if (!urlCheck.valid) {
|
|
58
|
+
throw new Error(`Invalid API base URL: ${urlCheck.error || 'blocked'}`);
|
|
59
|
+
}
|
|
54
60
|
if (!serverConfig.apiKey) {
|
|
55
61
|
throw new Error('API key not configured');
|
|
56
62
|
}
|
|
57
|
-
const
|
|
58
|
-
|
|
59
|
-
|
|
60
|
-
|
|
61
|
-
|
|
62
|
-
|
|
63
|
-
|
|
63
|
+
const controller = new AbortController();
|
|
64
|
+
const timeoutMs = config.get('timeouts').safeExec;
|
|
65
|
+
const timer = setTimeout(() => controller.abort(), timeoutMs);
|
|
66
|
+
// Avoid double slashes
|
|
67
|
+
const base = serverConfig.apiBaseUrl.replace(/\/+$/, '');
|
|
68
|
+
const modelsUrl = `${base}/models`;
|
|
69
|
+
let response;
|
|
70
|
+
try {
|
|
71
|
+
response = await fetch(modelsUrl, {
|
|
72
|
+
method: 'GET',
|
|
73
|
+
headers: {
|
|
74
|
+
Authorization: `Bearer ${serverConfig.apiKey}`,
|
|
75
|
+
'Content-Type': 'application/json',
|
|
76
|
+
},
|
|
77
|
+
signal: controller.signal,
|
|
78
|
+
});
|
|
79
|
+
}
|
|
80
|
+
catch (error) {
|
|
81
|
+
// Normalize abort vs network errors
|
|
82
|
+
if (error instanceof DOMException && error.name === 'AbortError') {
|
|
83
|
+
throw new Error(`Request timed out after ${timeoutMs}ms`);
|
|
84
|
+
}
|
|
85
|
+
throw error;
|
|
86
|
+
}
|
|
87
|
+
finally {
|
|
88
|
+
clearTimeout(timer);
|
|
89
|
+
}
|
|
64
90
|
if (!response.ok) {
|
|
65
91
|
throw new Error(`API error: ${response.status} ${response.statusText}`);
|
|
66
92
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"ai-models.tool.js","sourceRoot":"","sources":["../../../src/tools/system/ai-models.tool.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH;;;;;;;GAOG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAC/C,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;
|
|
1
|
+
{"version":3,"file":"ai-models.tool.js","sourceRoot":"","sources":["../../../src/tools/system/ai-models.tool.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH;;;;;;;GAOG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAC/C,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AACjD,OAAO,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAC;AAYtD;;GAEG;AACH,MAAM,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC;IACtB,MAAM,EAAE,CAAC;SACN,IAAI,CAAC,CAAC,MAAM,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC;SAClC,OAAO,CAAC,MAAM,CAAC;SACf,QAAQ,CACP,2FAA2F,CAC5F;IACH,MAAM,EAAE,CAAC;SACN,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,mEAAmE,CAAC;IAChF,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,wCAAwC,CAAC;IAC/E,KAAK,EAAE,CAAC;SACL,MAAM,EAAE;SACR,GAAG,EAAE;SACL,GAAG,CAAC,CAAC,CAAC;SACN,GAAG,CAAC,GAAG,CAAC;SACR,OAAO,CAAC,EAAE,CAAC;SACX,QAAQ,CAAC,oCAAoC,CAAC;IACjD,QAAQ,EAAE,CAAC;SACR,IAAI,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,WAAW,CAAC,CAAC;SACpD,OAAO,CAAC,KAAK,CAAC;SACd,QAAQ,CAAC,4DAA4D,CAAC;CAC1E,CAAC,CAAC;AAEH;;GAEG;AACH,KAAK,UAAU,WAAW;IACxB,MAAM,YAAY,GAAG,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IAE1C,IAAI,CAAC,YAAY,CAAC,UAAU,EAAE,CAAC;QAC7B,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;IACjD,CAAC;IAED,gDAAgD;IAChD,MAAM,QAAQ,GAAG,WAAW,CAAC,YAAY,CAAC,UAAU,CAAC,CAAC;IACtD,IAAI,CAAC,QAAQ,CAAC,KAAK,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,yBAAyB,QAAQ,CAAC,KAAK,IAAI,SAAS,EAAE,CAAC,CAAC;IAC1E,CAAC;IAED,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,CAAC;QACzB,MAAM,IAAI,KAAK,CAAC,wBAAwB,CAAC,CAAC;IAC5C,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;IACzC,MAAM,SAAS,GAAG,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC;IAClD,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,SAAS,CAAC,CAAC;IAE9D,uBAAuB;IACvB,MAAM,IAAI,GAAG,YAAY,CAAC,UAAU,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IACzD,MAAM,SAAS,GAAG,GAAG,IAAI,SAAS,CAAC;IAEnC,IAAI,QAAkB,CAAC;IACvB,IAAI,CAAC;QACH,QAAQ,GAAG,MAAM,KAAK,CAAC,SAAS,EAAE;YAChC,MAAM,EAAE,KAAK;YACb,OAAO,EAAE;gBACP,aAAa,EAAE,UAAU,YAAY,CAAC,MAAM,EAAE;gBAC9C,cAAc,EAAE,kBAAkB;aACnC;YACD,MAAM,EAAE,UAAU,CAAC,MAAM;SAC1B,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,oCAAoC;QACpC,IAAI,KAAK,YAAY,YAAY,IAAI,KAAK,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;YACjE,MAAM,IAAI,KAAK,CAAC,2BAA2B,SAAS,IAAI,CAAC,CAAC;QAC5D,CAAC;QACD,MAAM,KAAK,CAAC;IACd,CAAC;YAAS,CAAC;QACT,YAAY,CAAC,KAAK,CAAC,CAAC;IACtB,CAAC;IAED,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,cAAc,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;IAC1E,CAAC;IAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAA2B,CAAC;IAC/D,OAAO,IAAI,CAAC,IAAI,IAAI,EAAE,CAAC;AACzB,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CAAC,OAAe;IACtC,MAAM,EAAE,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;IAEjC,IAAI,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACpE,OAAO,WAAW,CAAC;IACrB,CAAC;IACD,IAAI,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;QAC7F,OAAO,QAAQ,CAAC;IAClB,CAAC;IACD,IAAI,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5E,OAAO,MAAM,CAAC;IAChB,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CAAC,MAAmB,EAAE,MAAe,EAAE,QAAiB;IAC9E,IAAI,QAAQ,GAAG,MAAM,CAAC;IAEtB,oBAAoB;IACpB,IAAI,MAAM,EAAE,CAAC;QACX,MAAM,OAAO,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC;QACrC,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC;IAC1E,CAAC;IAED,wBAAwB;IACxB,IAAI,QAAQ,IAAI,QAAQ,KAAK,KAAK,EAAE,CAAC;QACnC,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,CAAC,CAAC,EAAE,CAAC,KAAK,QAAQ,CAAC,CAAC;IACxE,CAAC;IAED,sBAAsB;IACtB,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IAElD,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC1B,OAAO,oCAAoC,CAAC;IAC9C,CAAC;IAED,0BAA0B;IAC1B,MAAM,OAAO,GAAG,IAAI,GAAG,EAAuB,CAAC;IAC/C,KAAK,MAAM,KAAK,IAAI,QAAQ,EAAE,CAAC;QAC7B,MAAM,QAAQ,GAAG,KAAK,CAAC,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,QAAQ,IAAI,OAAO,CAAC;QACrE,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC3B,OAAO,CAAC,GAAG,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;QAC5B,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAE,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACrC,CAAC;IAED,IAAI,MAAM,GAAG,SAAS,QAAQ,CAAC,MAAM,cAAc,CAAC;IAEpD,KAAK,MAAM,CAAC,QAAQ,EAAE,cAAc,CAAC,IAAI,OAAO,EAAE,CAAC;QACjD,MAAM,IAAI,MAAM,QAAQ,IAAI,CAAC;QAC7B,KAAK,MAAM,KAAK,IAAI,cAAc,EAAE,CAAC;YACnC,MAAM,GAAG,GAAG,eAAe,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YACtC,MAAM,OAAO,GACX,GAAG,KAAK,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,KAAK,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC;YAClF,MAAM,IAAI,KAAK,OAAO,IAAI,KAAK,CAAC,EAAE,IAAI,CAAC;QACzC,CAAC;QACD,MAAM,IAAI,IAAI,CAAC;IACjB,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,YAAY,GAA+B;IACtD,IAAI,EAAE,WAAW;IACjB,WAAW,EACT,sIAAsI;IACxI,SAAS,EAAE,MAAM;IAEjB,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;QACtB,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,IAAI,CAAC;QACxD,MAAM,YAAY,GAAG,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAE1C,QAAQ,MAAM,EAAE,CAAC;YACf,KAAK,MAAM,CAAC;YACZ,KAAK,QAAQ,CAAC,CAAC,CAAC;gBACd,IAAI,CAAC;oBACH,MAAM,MAAM,GAAG,MAAM,WAAW,EAAE,CAAC;oBACnC,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;oBACvC,OAAO,eAAe,CAAC,OAAO,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;gBACpD,CAAC;gBAAC,OAAO,KAAK,EAAE,CAAC;oBACf,MAAM,GAAG,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;oBACnE,OAAO,2BAA2B,GAAG,EAAE,CAAC;gBAC1C,CAAC;YACH,CAAC;YAED,KAAK,QAAQ,CAAC,CAAC,CAAC;gBACd,IAAI,CAAC,KAAK,EAAE,CAAC;oBACX,OAAO,6EAA6E,CAAC;gBACvF,CAAC;gBAED,sBAAsB;gBACtB,IAAI,CAAC;oBACH,MAAM,MAAM,GAAG,MAAM,WAAW,EAAE,CAAC;oBACnC,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,KAAK,IAAI,CAAC,CAAC,EAAE,CAAC,QAAQ,CAAC,IAAI,KAAK,EAAE,CAAC,CAAC,CAAC;oBAE/E,IAAI,CAAC,KAAK,EAAE,CAAC;wBACX,sDAAsD;wBACtD,MAAM,WAAW,GAAG,MAAM;6BACvB,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,CAAC;6BAC/D,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;6BACX,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;wBAEpB,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;4BAC3B,OAAO,UAAU,KAAK,+BAA+B,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;wBACvG,CAAC;oBACH,CAAC;gBACH,CAAC;gBAAC,MAAM,CAAC;oBACP,+BAA+B;gBACjC,CAAC;gBAED,gBAAgB;gBAChB,YAAY,CAAC,YAAY,GAAG,KAAK,CAAC;gBAClC,MAAM,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;gBAE9B,0BAA0B;gBAC1B,IAAI,CAAC;oBACH,IAAI,YAAY,CAAC,UAAU,IAAI,YAAY,CAAC,MAAM,EAAE,CAAC;wBACnD,YAAY,CAAC;4BACX,OAAO,EAAE,YAAY,CAAC,UAAU;4BAChC,MAAM,EAAE,YAAY,CAAC,MAAM;4BAC3B,YAAY,EAAE,KAAK;yBACpB,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC;gBAAC,MAAM,CAAC;oBACP,qBAAqB;gBACvB,CAAC;gBAED,OAAO,mBAAmB,KAAK,oEAAoE,CAAC;YACtG,CAAC;YAED;gBACE,OAAO,mBAAmB,MAAM,EAAE,CAAC;QACvC,CAAC;IACH,CAAC;CACF,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"env-info.tool.d.ts","sourceRoot":"","sources":["../../../src/tools/system/env-info.tool.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAkBH,OAAO,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;
|
|
1
|
+
{"version":3,"file":"env-info.tool.d.ts","sourceRoot":"","sources":["../../../src/tools/system/env-info.tool.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAkBH,OAAO,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAqP7C,eAAO,MAAM,WAAW,EAAE,WAazB,CAAC"}
|
|
@@ -36,6 +36,10 @@ const schema = z.object({
|
|
|
36
36
|
.enum(['all', 'os', 'runtime', 'languages', 'tools', 'env'])
|
|
37
37
|
.default('all')
|
|
38
38
|
.describe('Category to show'),
|
|
39
|
+
allowSensitive: z
|
|
40
|
+
.boolean()
|
|
41
|
+
.default(false)
|
|
42
|
+
.describe('Show sensitive info (hostname, username, home directory). Redacted by default.'),
|
|
39
43
|
});
|
|
40
44
|
/**
|
|
41
45
|
* Safely execute command and return output
|
|
@@ -119,7 +123,7 @@ function collectEnvInfo() {
|
|
|
119
123
|
/**
|
|
120
124
|
* Format environment info for display
|
|
121
125
|
*/
|
|
122
|
-
function formatEnvInfo(info, category, detailed) {
|
|
126
|
+
function formatEnvInfo(info, category, detailed, allowSensitive) {
|
|
123
127
|
const lines = [];
|
|
124
128
|
const showAll = category === 'all';
|
|
125
129
|
lines.push('# Environment Information');
|
|
@@ -130,8 +134,8 @@ function formatEnvInfo(info, category, detailed) {
|
|
|
130
134
|
lines.push(`- Platform: ${info.os.platform}`);
|
|
131
135
|
lines.push(`- Release: ${info.os.release}`);
|
|
132
136
|
lines.push(`- Architecture: ${info.os.arch}`);
|
|
133
|
-
lines.push(`- Hostname: ${info.os.hostname}`);
|
|
134
|
-
lines.push(`- User: ${info.os.user}`);
|
|
137
|
+
lines.push(`- Hostname: ${allowSensitive ? info.os.hostname : '<redacted>'}`);
|
|
138
|
+
lines.push(`- User: ${allowSensitive ? info.os.user : '<redacted>'}`);
|
|
135
139
|
lines.push('');
|
|
136
140
|
lines.push('## Hardware');
|
|
137
141
|
lines.push(`- CPU: ${info.hardware.cpuModel}`);
|
|
@@ -199,8 +203,8 @@ function formatEnvInfo(info, category, detailed) {
|
|
|
199
203
|
lines.push('## Environment');
|
|
200
204
|
lines.push(`- Shell: ${info.env.shell}`);
|
|
201
205
|
lines.push(`- CWD: ${info.env.cwd}`);
|
|
202
|
-
lines.push(`- Home: ${info.env.home}`);
|
|
203
|
-
if (detailed) {
|
|
206
|
+
lines.push(`- Home: ${allowSensitive ? info.env.home : '<redacted>'}`);
|
|
207
|
+
if (detailed && allowSensitive) {
|
|
204
208
|
lines.push('');
|
|
205
209
|
lines.push('### PATH');
|
|
206
210
|
for (const p of info.env.path.slice(0, 15)) {
|
|
@@ -221,8 +225,9 @@ export const envInfoTool = {
|
|
|
221
225
|
execute: async (args) => {
|
|
222
226
|
const detailed = Boolean(args.detailed);
|
|
223
227
|
const category = args.category || 'all';
|
|
228
|
+
const allowSensitive = Boolean(args.allowSensitive);
|
|
224
229
|
const info = collectEnvInfo();
|
|
225
|
-
return formatEnvInfo(info, category, detailed);
|
|
230
|
+
return formatEnvInfo(info, category, detailed, allowSensitive);
|
|
226
231
|
},
|
|
227
232
|
};
|
|
228
233
|
//# sourceMappingURL=env-info.tool.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"env-info.tool.js","sourceRoot":"","sources":["../../../src/tools/system/env-info.tool.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AACzC,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,IAAI,CAAC;AAiDjF,MAAM,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC;IACtB,QAAQ,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,0CAA0C,CAAC;IACzF,QAAQ,EAAE,CAAC;SACR,IAAI,CAAC,CAAC,KAAK,EAAE,IAAI,EAAE,SAAS,EAAE,WAAW,EAAE,OAAO,EAAE,KAAK,CAAC,CAAC;SAC3D,OAAO,CAAC,KAAK,CAAC;SACd,QAAQ,CAAC,kBAAkB,CAAC;
|
|
1
|
+
{"version":3,"file":"env-info.tool.js","sourceRoot":"","sources":["../../../src/tools/system/env-info.tool.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AACzC,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,IAAI,CAAC;AAiDjF,MAAM,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC;IACtB,QAAQ,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,0CAA0C,CAAC;IACzF,QAAQ,EAAE,CAAC;SACR,IAAI,CAAC,CAAC,KAAK,EAAE,IAAI,EAAE,SAAS,EAAE,WAAW,EAAE,OAAO,EAAE,KAAK,CAAC,CAAC;SAC3D,OAAO,CAAC,KAAK,CAAC;SACd,QAAQ,CAAC,kBAAkB,CAAC;IAC/B,cAAc,EAAE,CAAC;SACd,OAAO,EAAE;SACT,OAAO,CAAC,KAAK,CAAC;SACd,QAAQ,CAAC,gFAAgF,CAAC;CAC9F,CAAC,CAAC;AAEH;;GAEG;AACH,SAAS,QAAQ,CAAC,OAAe;IAC/B,IAAI,CAAC;QACH,OAAO,QAAQ,CAAC,OAAO,EAAE;YACvB,QAAQ,EAAE,OAAO;YACjB,OAAO,EAAE,IAAI;YACb,KAAK,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,CAAC;SACpC,CAAC,CAAC,IAAI,EAAE,CAAC;IACZ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,SAAS,CAAC;IACnB,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,UAAU,CAAC,OAAe,EAAE,OAAgB;IACnD,MAAM,MAAM,GAAG,QAAQ,CAAC,OAAO,CAAC,CAAC;IACjC,IAAI,CAAC,MAAM;QAAE,OAAO,SAAS,CAAC;IAE9B,IAAI,OAAO,EAAE,CAAC;QACZ,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACpC,OAAO,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAClD,CAAC;IAED,2CAA2C;IAC3C,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,2CAA2C,CAAC,CAAC;IAC/E,OAAO,YAAY,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;AAChE,CAAC;AAED;;GAEG;AACH,SAAS,cAAc;IACrB,MAAM,OAAO,GAAG,IAAI,EAAE,CAAC;IAEvB,OAAO;QACL,EAAE,EAAE;YACF,QAAQ,EAAE,QAAQ,EAAE;YACpB,OAAO,EAAE,OAAO,EAAE;YAClB,IAAI,EAAE,IAAI,EAAE;YACZ,QAAQ,EAAE,QAAQ,EAAE;YACpB,IAAI,EAAE,QAAQ,EAAE,CAAC,QAAQ;SAC1B;QACD,QAAQ,EAAE;YACR,QAAQ,EAAE,OAAO,CAAC,CAAC,CAAC,EAAE,KAAK,IAAI,SAAS;YACxC,QAAQ,EAAE,OAAO,CAAC,MAAM;YACxB,WAAW,EAAE,GAAG,CAAC,QAAQ,EAAE,GAAG,IAAI,GAAG,IAAI,GAAG,IAAI,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,KAAK;SAClE;QACD,OAAO,EAAE;YACP,WAAW,EAAE,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,CAAC;YAC7C,UAAU,EAAE,UAAU,CAAC,eAAe,CAAC;YACvC,WAAW,EAAE,UAAU,CAAC,gBAAgB,CAAC;YACzC,WAAW,EAAE,UAAU,CAAC,gBAAgB,CAAC;YACzC,UAAU,EAAE,UAAU,CAAC,eAAe,CAAC;YACvC,WAAW,EAAE,UAAU,CAAC,gBAAgB,EAAE,wBAAwB,CAAC;SACpE;QACD,SAAS,EAAE;YACT,UAAU,EAAE,UAAU,CAAC,eAAe,EAAE,uBAAuB,CAAC;YAChE,aAAa,EACX,UAAU,CAAC,mBAAmB,EAAE,0BAA0B,CAAC;gBAC3D,UAAU,CAAC,kBAAkB,EAAE,0BAA0B,CAAC;YAC5D,WAAW,EAAE,UAAU,CAAC,gBAAgB,EAAE,wBAAwB,CAAC;YACnE,SAAS,EAAE,UAAU,CAAC,YAAY,EAAE,wBAAwB,CAAC;YAC7D,WAAW,EAAE,UAAU,CAAC,iBAAiB,EAAE,yBAAyB,CAAC;YACrE,WAAW,EAAE,UAAU,CAAC,oBAAoB,EAAE,+BAA+B,CAAC;SAC/E;QACD,KAAK,EAAE;YACL,UAAU,EAAE,UAAU,CAAC,eAAe,EAAE,+BAA+B,CAAC;YACxE,aAAa,EAAE,UAAU,CAAC,kBAAkB,EAAE,kCAAkC,CAAC;YACjF,eAAe,EAAE,UAAU,CACzB,oBAAoB,EACpB,2CAA2C,CAC5C;YACD,WAAW,EAAE,UAAU,CAAC,gBAAgB,EAAE,uBAAuB,CAAC;SACnE;QACD,GAAG,EAAE;YACH,KAAK,EAAE,OAAO,CAAC,GAAG,CAAC,KAAK,IAAI,OAAO,CAAC,GAAG,CAAC,OAAO,IAAI,SAAS;YAC5D,IAAI,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC,KAAK,CAAC,QAAQ,EAAE,KAAK,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC;YACxE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE;YAClB,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,OAAO,CAAC,GAAG,CAAC,WAAW,IAAI,SAAS;SAC/D;KACF,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,aAAa,CACpB,IAAa,EACb,QAAgB,EAChB,QAAiB,EACjB,cAAuB;IAEvB,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,MAAM,OAAO,GAAG,QAAQ,KAAK,KAAK,CAAC;IAEnC,KAAK,CAAC,IAAI,CAAC,2BAA2B,CAAC,CAAC;IACxC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,aAAa;IACb,IAAI,OAAO,IAAI,QAAQ,KAAK,IAAI,EAAE,CAAC;QACjC,KAAK,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC;QAClC,KAAK,CAAC,IAAI,CAAC,eAAe,IAAI,CAAC,EAAE,CAAC,QAAQ,EAAE,CAAC,CAAC;QAC9C,KAAK,CAAC,IAAI,CAAC,cAAc,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,CAAC;QAC5C,KAAK,CAAC,IAAI,CAAC,mBAAmB,IAAI,CAAC,EAAE,CAAC,IAAI,EAAE,CAAC,CAAC;QAC9C,KAAK,CAAC,IAAI,CAAC,eAAe,cAAc,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC,YAAY,EAAE,CAAC,CAAC;QAC9E,KAAK,CAAC,IAAI,CAAC,WAAW,cAAc,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC,YAAY,EAAE,CAAC,CAAC;QACtE,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAEf,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QAC1B,KAAK,CAAC,IAAI,CAAC,UAAU,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC,CAAC;QAC/C,KAAK,CAAC,IAAI,CAAC,YAAY,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC,CAAC;QACjD,KAAK,CAAC,IAAI,CAAC,aAAa,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,CAAC;QACrD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACjB,CAAC;IAED,kBAAkB;IAClB,IAAI,OAAO,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;QACtC,KAAK,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;QACrC,IAAI,IAAI,CAAC,OAAO,CAAC,WAAW;YAAE,KAAK,CAAC,IAAI,CAAC,cAAc,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC;QACnF,IAAI,IAAI,CAAC,OAAO,CAAC,UAAU;YAAE,KAAK,CAAC,IAAI,CAAC,UAAU,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,CAAC,CAAC;QAC7E,IAAI,IAAI,CAAC,OAAO,CAAC,WAAW;YAAE,KAAK,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC;QAChF,IAAI,IAAI,CAAC,OAAO,CAAC,WAAW;YAAE,KAAK,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC;QAChF,IAAI,IAAI,CAAC,OAAO,CAAC,UAAU;YAAE,KAAK,CAAC,IAAI,CAAC,UAAU,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,CAAC,CAAC;QAC7E,IAAI,IAAI,CAAC,OAAO,CAAC,WAAW;YAAE,KAAK,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC;QAChF,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACjB,CAAC;IAED,oBAAoB;IACpB,IAAI,OAAO,IAAI,QAAQ,KAAK,WAAW,EAAE,CAAC;QACxC,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,CAAC;QAC7B,MAAM,YAAY,GAAG,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAExD,IAAI,YAAY,EAAE,CAAC;YACjB,KAAK,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC;YACvC,IAAI,KAAK,CAAC,UAAU;gBAAE,KAAK,CAAC,IAAI,CAAC,UAAU,KAAK,CAAC,UAAU,EAAE,CAAC,CAAC;YAC/D,IAAI,KAAK,CAAC,aAAa;gBAAE,KAAK,CAAC,IAAI,CAAC,aAAa,KAAK,CAAC,aAAa,EAAE,CAAC,CAAC;YACxE,IAAI,KAAK,CAAC,WAAW;gBAAE,KAAK,CAAC,IAAI,CAAC,WAAW,KAAK,CAAC,WAAW,EAAE,CAAC,CAAC;YAClE,IAAI,KAAK,CAAC,SAAS;gBAAE,KAAK,CAAC,IAAI,CAAC,SAAS,KAAK,CAAC,SAAS,EAAE,CAAC,CAAC;YAC5D,IAAI,KAAK,CAAC,WAAW;gBAAE,KAAK,CAAC,IAAI,CAAC,WAAW,KAAK,CAAC,WAAW,EAAE,CAAC,CAAC;YAClE,IAAI,KAAK,CAAC,WAAW;gBAAE,KAAK,CAAC,IAAI,CAAC,WAAW,KAAK,CAAC,WAAW,EAAE,CAAC,CAAC;YAClE,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACjB,CAAC;IACH,CAAC;IAED,gBAAgB;IAChB,IAAI,OAAO,IAAI,QAAQ,KAAK,OAAO,EAAE,CAAC;QACpC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC;QACzB,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAEpD,IAAI,QAAQ,EAAE,CAAC;YACb,KAAK,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;YACnC,IAAI,KAAK,CAAC,UAAU;gBAAE,KAAK,CAAC,IAAI,CAAC,UAAU,KAAK,CAAC,UAAU,EAAE,CAAC,CAAC;YAC/D,IAAI,KAAK,CAAC,aAAa;gBAAE,KAAK,CAAC,IAAI,CAAC,aAAa,KAAK,CAAC,aAAa,EAAE,CAAC,CAAC;YACxE,IAAI,KAAK,CAAC,eAAe;gBAAE,KAAK,CAAC,IAAI,CAAC,eAAe,KAAK,CAAC,eAAe,EAAE,CAAC,CAAC;YAC9E,IAAI,KAAK,CAAC,WAAW;gBAAE,KAAK,CAAC,IAAI,CAAC,WAAW,KAAK,CAAC,WAAW,EAAE,CAAC,CAAC;YAClE,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACjB,CAAC;IACH,CAAC;IAED,sBAAsB;IACtB,IAAI,OAAO,IAAI,QAAQ,KAAK,KAAK,EAAE,CAAC;QAClC,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QAC7B,KAAK,CAAC,IAAI,CAAC,YAAY,IAAI,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC,CAAC;QACzC,KAAK,CAAC,IAAI,CAAC,UAAU,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC;QACrC,KAAK,CAAC,IAAI,CAAC,WAAW,cAAc,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,YAAY,EAAE,CAAC,CAAC;QAEvE,IAAI,QAAQ,IAAI,cAAc,EAAE,CAAC;YAC/B,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACf,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YACvB,KAAK,MAAM,CAAC,IAAI,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;gBAC3C,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YACvB,CAAC;YACD,IAAI,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;gBAC9B,KAAK,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,GAAG,EAAE,eAAe,CAAC,CAAC;YAClE,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED,MAAM,CAAC,MAAM,WAAW,GAAgB;IACtC,IAAI,EAAE,UAAU;IAChB,WAAW,EAAE,kEAAkE;IAC/E,SAAS,EAAE,MAAM;IACjB,gBAAgB,EAAE,IAAI;IACtB,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;QACtB,MAAM,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACxC,MAAM,QAAQ,GAAI,IAAI,CAAC,QAAmB,IAAI,KAAK,CAAC;QACpD,MAAM,cAAc,GAAG,OAAO,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAEpD,MAAM,IAAI,GAAG,cAAc,EAAE,CAAC;QAC9B,OAAO,aAAa,CAAC,IAAI,EAAE,QAAQ,EAAE,QAAQ,EAAE,cAAc,CAAC,CAAC;IACjE,CAAC;CACF,CAAC"}
|
|
@@ -88,8 +88,8 @@ function getProcessList(all, filter) {
|
|
|
88
88
|
const output = execSync(cmd, { encoding: 'utf-8', maxBuffer: 1024 * 1024 * 10 });
|
|
89
89
|
let processes = parseTasklistOutput(output);
|
|
90
90
|
if (filter) {
|
|
91
|
-
const
|
|
92
|
-
processes = processes.filter((p) =>
|
|
91
|
+
const lowerFilter = filter.toLowerCase();
|
|
92
|
+
processes = processes.filter((p) => p.command.toLowerCase().includes(lowerFilter));
|
|
93
93
|
}
|
|
94
94
|
return processes;
|
|
95
95
|
}
|
|
@@ -104,8 +104,8 @@ function getProcessList(all, filter) {
|
|
|
104
104
|
});
|
|
105
105
|
let processes = parsePsOutput(output);
|
|
106
106
|
if (filter) {
|
|
107
|
-
const
|
|
108
|
-
processes = processes.filter((p) =>
|
|
107
|
+
const lowerFilter = filter.toLowerCase();
|
|
108
|
+
processes = processes.filter((p) => p.command.toLowerCase().includes(lowerFilter));
|
|
109
109
|
}
|
|
110
110
|
return processes;
|
|
111
111
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"process-list.tool.js","sourceRoot":"","sources":["../../../src/tools/system/process-list.tool.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH;;;;;;;GAOG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AACzC,OAAO,EAAE,QAAQ,EAAE,MAAM,IAAI,CAAC;AAE9B,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAc/C,MAAM,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC;IACtB,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,kCAAkC,CAAC;IAC1E,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,eAAe,CAAC;IACzF,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,qCAAqC,CAAC;IAC7E,GAAG,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,8CAA8C,CAAC;CACzF,CAAC,CAAC;AAEH;;GAEG;AACH,SAAS,aAAa,CAAC,MAAc;IACnC,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,cAAc;IAChE,MAAM,SAAS,GAAkB,EAAE,CAAC;IAEpC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,6CAA6C;QAC7C,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,yDAAyD,CAAC,CAAC;QACpF,IAAI,KAAK,EAAE,CAAC;YACV,SAAS,CAAC,IAAI,CAAC;gBACb,IAAI,EAAE,KAAK,CAAC,CAAC,CAAC;gBACd,GAAG,EAAE,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;gBAC3B,GAAG,EAAE,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBACzB,MAAM,EAAE,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBAC5B,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC;gBACjB,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,yBAAyB;aAC3D,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,MAAc;IACzC,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,4BAA4B;IAC9E,MAAM,SAAS,GAAkB,EAAE,CAAC;IAEpC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,6DAA6D;QAC7D,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QACnC,IAAI,KAAK,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC;YACtB,MAAM,MAAM,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;YAC9C,SAAS,CAAC,IAAI,CAAC;gBACb,IAAI,EAAE,KAAK;gBACX,GAAG,EAAE,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;gBAC3B,GAAG,EAAE,CAAC,EAAE,8BAA8B;gBACtC,MAAM,EAAE,QAAQ,CAAC,MAAM,EAAE,EAAE,CAAC,GAAG,IAAI,EAAE,4BAA4B;gBACjE,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC;aAClB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;GAEG;AACH,SAAS,cAAc,CAAC,GAAY,EAAE,MAAe;IACnD,MAAM,EAAE,GAAG,QAAQ,EAAE,CAAC;IAEtB,IAAI,CAAC;QACH,IAAI,EAAE,KAAK,OAAO,EAAE,CAAC;YACnB,MAAM,GAAG,GAAG,oBAAoB,CAAC;YACjC,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,GAAG,IAAI,GAAG,EAAE,EAAE,CAAC,CAAC;YACjF,IAAI,SAAS,GAAG,mBAAmB,CAAC,MAAM,CAAC,CAAC;YAE5C,IAAI,MAAM,EAAE,CAAC;gBACX,MAAM,
|
|
1
|
+
{"version":3,"file":"process-list.tool.js","sourceRoot":"","sources":["../../../src/tools/system/process-list.tool.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH;;;;;;;GAOG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AACzC,OAAO,EAAE,QAAQ,EAAE,MAAM,IAAI,CAAC;AAE9B,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAc/C,MAAM,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC;IACtB,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,kCAAkC,CAAC;IAC1E,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,eAAe,CAAC;IACzF,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,qCAAqC,CAAC;IAC7E,GAAG,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,8CAA8C,CAAC;CACzF,CAAC,CAAC;AAEH;;GAEG;AACH,SAAS,aAAa,CAAC,MAAc;IACnC,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,cAAc;IAChE,MAAM,SAAS,GAAkB,EAAE,CAAC;IAEpC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,6CAA6C;QAC7C,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,yDAAyD,CAAC,CAAC;QACpF,IAAI,KAAK,EAAE,CAAC;YACV,SAAS,CAAC,IAAI,CAAC;gBACb,IAAI,EAAE,KAAK,CAAC,CAAC,CAAC;gBACd,GAAG,EAAE,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;gBAC3B,GAAG,EAAE,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBACzB,MAAM,EAAE,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBAC5B,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC;gBACjB,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,yBAAyB;aAC3D,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,MAAc;IACzC,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,4BAA4B;IAC9E,MAAM,SAAS,GAAkB,EAAE,CAAC;IAEpC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,6DAA6D;QAC7D,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QACnC,IAAI,KAAK,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC;YACtB,MAAM,MAAM,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;YAC9C,SAAS,CAAC,IAAI,CAAC;gBACb,IAAI,EAAE,KAAK;gBACX,GAAG,EAAE,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;gBAC3B,GAAG,EAAE,CAAC,EAAE,8BAA8B;gBACtC,MAAM,EAAE,QAAQ,CAAC,MAAM,EAAE,EAAE,CAAC,GAAG,IAAI,EAAE,4BAA4B;gBACjE,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC;aAClB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;GAEG;AACH,SAAS,cAAc,CAAC,GAAY,EAAE,MAAe;IACnD,MAAM,EAAE,GAAG,QAAQ,EAAE,CAAC;IAEtB,IAAI,CAAC;QACH,IAAI,EAAE,KAAK,OAAO,EAAE,CAAC;YACnB,MAAM,GAAG,GAAG,oBAAoB,CAAC;YACjC,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,GAAG,IAAI,GAAG,EAAE,EAAE,CAAC,CAAC;YACjF,IAAI,SAAS,GAAG,mBAAmB,CAAC,MAAM,CAAC,CAAC;YAE5C,IAAI,MAAM,EAAE,CAAC;gBACX,MAAM,WAAW,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC;gBACzC,SAAS,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC;YACrF,CAAC;YAED,OAAO,SAAS,CAAC;QACnB,CAAC;aAAM,CAAC;YACN,cAAc;YACd,MAAM,QAAQ,GAAG,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,cAAc,CAAC;YAC7C,MAAM,GAAG,GAAG,MAAM,QAAQ,mDAAmD,CAAC;YAC9E,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,EAAE;gBAC3B,QAAQ,EAAE,OAAO;gBACjB,KAAK,EAAE,WAAW;gBAClB,SAAS,EAAE,IAAI,GAAG,IAAI,GAAG,EAAE;aAC5B,CAAC,CAAC;YACH,IAAI,SAAS,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC;YAEtC,IAAI,MAAM,EAAE,CAAC;gBACX,MAAM,WAAW,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC;gBACzC,SAAS,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC;YACrF,CAAC;YAED,OAAO,SAAS,CAAC;QACnB,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,IAAI,CAAC,+BAA+B,KAAK,EAAE,CAAC,CAAC;QACpD,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,aAAa,CAAC,SAAwB,EAAE,MAAc;IAC7D,OAAO,CAAC,GAAG,SAAS,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QAClC,QAAQ,MAAM,EAAE,CAAC;YACf,KAAK,KAAK;gBACR,OAAO,CAAC,CAAC,GAAG,GAAG,CAAC,CAAC,GAAG,CAAC;YACvB,KAAK,QAAQ;gBACX,OAAO,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC;YAC7B,KAAK,KAAK;gBACR,OAAO,CAAC,CAAC,GAAG,GAAG,CAAC,CAAC,GAAG,CAAC;YACvB,KAAK,MAAM;gBACT,OAAO,CAAC,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;YAC5C;gBACE,OAAO,CAAC,CAAC;QACb,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,SAAS,iBAAiB,CAAC,SAAwB,EAAE,MAAc,EAAE,KAAa;IAChF,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,MAAM,EAAE,GAAG,QAAQ,EAAE,CAAC;IAEtB,KAAK,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC;IAClC,KAAK,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,CAAC,CAAC;IAC9B,KAAK,CAAC,IAAI,CAAC,cAAc,MAAM,EAAE,CAAC,CAAC;IACnC,KAAK,CAAC,IAAI,CAAC,YAAY,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,MAAM,EAAE,KAAK,CAAC,OAAO,SAAS,CAAC,MAAM,EAAE,CAAC,CAAC;IACnF,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,eAAe;IACf,IAAI,EAAE,KAAK,OAAO,EAAE,CAAC;QACnB,KAAK,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC;QAC9C,KAAK,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC;IAChD,CAAC;SAAM,CAAC;QACN,KAAK,CAAC,IAAI,CAAC,wCAAwC,CAAC,CAAC;QACrD,KAAK,CAAC,IAAI,CAAC,wCAAwC,CAAC,CAAC;IACvD,CAAC;IAED,aAAa;IACb,MAAM,MAAM,GAAG,aAAa,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;IAChD,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,EAAE,CAAC;QAC1C,IAAI,EAAE,KAAK,OAAO,EAAE,CAAC;YACnB,KAAK,CAAC,IAAI,CAAC,KAAK,IAAI,CAAC,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,OAAO,IAAI,CAAC,CAAC;QAC9E,CAAC;aAAM,CAAC;YACN,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC;YAC7F,KAAK,CAAC,IAAI,CACR,KAAK,IAAI,CAAC,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,MAAM,QAAQ,IAAI,CAChH,CAAC;QACJ,CAAC;IACH,CAAC;IAED,UAAU;IACV,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACzB,MAAM,QAAQ,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;QAC9D,MAAM,QAAQ,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;QAEjE,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QACzB,IAAI,EAAE,KAAK,OAAO,EAAE,CAAC;YACnB,KAAK,CAAC,IAAI,CAAC,sBAAsB,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;QAC3D,CAAC;QACD,KAAK,CAAC,IAAI,CAAC,yBAAyB,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;QAC5D,KAAK,CAAC,IAAI,CAAC,oBAAoB,SAAS,CAAC,MAAM,EAAE,CAAC,CAAC;IACrD,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED,MAAM,CAAC,MAAM,eAAe,GAAgB;IAC1C,IAAI,EAAE,cAAc;IACpB,WAAW,EAAE,qEAAqE;IAClF,SAAS,EAAE,MAAM;IACjB,gBAAgB,EAAE,IAAI;IACtB,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;QACtB,MAAM,MAAM,GAAG,IAAI,CAAC,MAA4B,CAAC;QACjD,MAAM,MAAM,GAAI,IAAI,CAAC,MAAiB,IAAI,KAAK,CAAC;QAChD,MAAM,KAAK,GAAI,IAAI,CAAC,KAAgB,IAAI,EAAE,CAAC;QAC3C,MAAM,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAE9B,MAAM,SAAS,GAAG,cAAc,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;QAE9C,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC3B,IAAI,MAAM,EAAE,CAAC;gBACX,OAAO,gCAAgC,MAAM,GAAG,CAAC;YACnD,CAAC;YACD,OAAO,oBAAoB,CAAC;QAC9B,CAAC;QAED,OAAO,iBAAiB,CAAC,SAAS,EAAE,MAAM,EAAE,KAAK,CAAC,CAAC;IACrD,CAAC;CACF,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"shell-exec.tool.d.ts","sourceRoot":"","sources":["../../../src/tools/system/shell-exec.tool.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAcH,OAAO,EACL,WAAW,
|
|
1
|
+
{"version":3,"file":"shell-exec.tool.d.ts","sourceRoot":"","sources":["../../../src/tools/system/shell-exec.tool.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAcH,OAAO,EACL,WAAW,EAMZ,MAAM,gBAAgB,CAAC;AAiPxB,eAAO,MAAM,aAAa,EAAE,WA2G3B,CAAC"}
|
|
@@ -26,9 +26,11 @@
|
|
|
26
26
|
import { z } from 'zod';
|
|
27
27
|
import { existsSync } from 'fs';
|
|
28
28
|
import { spawn } from 'child_process';
|
|
29
|
-
import { FileNotFoundError, DangerousOperationError, TimeoutError, CommandError, } from '../registry.js';
|
|
29
|
+
import { FileNotFoundError, DangerousOperationError, TimeoutError, CommandError, PermissionError, } from '../registry.js';
|
|
30
30
|
import { Logger } from '../../utils/logger.js';
|
|
31
|
+
import { config } from '../../config/index.js';
|
|
31
32
|
import { validatePath, sanitizeEnvVars, ValidationError, checkRateLimit, } from '../../utils/validation.js';
|
|
33
|
+
import { maskSensitiveData } from '../../utils/security.js';
|
|
32
34
|
/**
|
|
33
35
|
* List of dangerous commands that should be blocked
|
|
34
36
|
*/
|
|
@@ -91,7 +93,13 @@ const REQUIRES_CONFIRMATION = [
|
|
|
91
93
|
const schema = z.object({
|
|
92
94
|
command: z.string().min(1).describe('Shell command to execute'),
|
|
93
95
|
cwd: z.string().optional().describe('Working directory (defaults to current directory)'),
|
|
94
|
-
|
|
96
|
+
// NOTE: timeout=0 means "no timeout" (infinite) for backward compatibility.
|
|
97
|
+
timeout: z
|
|
98
|
+
.number()
|
|
99
|
+
.int()
|
|
100
|
+
.min(0)
|
|
101
|
+
.default(60000)
|
|
102
|
+
.describe('Timeout in milliseconds (0 = no timeout, default: 60 seconds)'),
|
|
95
103
|
shell: z
|
|
96
104
|
.enum(['bash', 'sh', 'zsh', 'fish', 'powershell'])
|
|
97
105
|
.default('bash')
|
|
@@ -99,6 +107,15 @@ const schema = z.object({
|
|
|
99
107
|
env: z.record(z.string(), z.string()).optional().describe('Additional environment variables'),
|
|
100
108
|
allowDangerous: z.boolean().default(false).describe('Allow potentially dangerous commands'),
|
|
101
109
|
});
|
|
110
|
+
function isShellExecEnabled() {
|
|
111
|
+
// Disabled-by-default: require explicit opt-in at deployment/runtime.
|
|
112
|
+
const v = process.env.KEMDICODE_SHELL_EXEC_ENABLED;
|
|
113
|
+
return v === '1' || v === 'true';
|
|
114
|
+
}
|
|
115
|
+
function maskForLogs(text, maxLen = 200) {
|
|
116
|
+
const masked = maskSensitiveData(text);
|
|
117
|
+
return masked.length > maxLen ? masked.slice(0, maxLen) + '…' : masked;
|
|
118
|
+
}
|
|
102
119
|
/**
|
|
103
120
|
* Check if command is dangerous
|
|
104
121
|
*/
|
|
@@ -132,7 +149,7 @@ async function executeShellCommand(command, cwd, timeout, shell, envVars, onProg
|
|
|
132
149
|
// Get shell command
|
|
133
150
|
const shellCmd = shell === 'powershell' ? 'powershell' : shell;
|
|
134
151
|
const shellArgs = shell === 'powershell' ? ['-Command', command] : ['-c', command];
|
|
135
|
-
Logger.debug(`Executing: ${shellCmd} ${shellArgs.join(' ')} in ${cwd}`);
|
|
152
|
+
Logger.debug(`Executing: ${shellCmd} ${maskForLogs(shellArgs.join(' '), 500)} in ${maskForLogs(cwd, 300)}`);
|
|
136
153
|
onProgress?.(`$ ${command}\n\n`);
|
|
137
154
|
const proc = spawn(shellCmd, shellArgs, {
|
|
138
155
|
cwd,
|
|
@@ -146,34 +163,37 @@ async function executeShellCommand(command, cwd, timeout, shell, envVars, onProg
|
|
|
146
163
|
let stdout = '';
|
|
147
164
|
let stderr = '';
|
|
148
165
|
let done = false;
|
|
149
|
-
const
|
|
150
|
-
|
|
151
|
-
|
|
152
|
-
|
|
153
|
-
|
|
154
|
-
|
|
155
|
-
|
|
156
|
-
|
|
157
|
-
|
|
158
|
-
|
|
159
|
-
|
|
160
|
-
|
|
161
|
-
|
|
162
|
-
|
|
163
|
-
|
|
164
|
-
|
|
165
|
-
|
|
166
|
-
|
|
167
|
-
|
|
168
|
-
|
|
169
|
-
|
|
170
|
-
|
|
171
|
-
|
|
172
|
-
|
|
173
|
-
|
|
174
|
-
|
|
175
|
-
|
|
176
|
-
|
|
166
|
+
const forceKillDelayMs = config.get('timeouts').forceKill;
|
|
167
|
+
const timer = timeout > 0
|
|
168
|
+
? setTimeout(() => {
|
|
169
|
+
if (done)
|
|
170
|
+
return;
|
|
171
|
+
done = true;
|
|
172
|
+
try {
|
|
173
|
+
proc.kill('SIGTERM');
|
|
174
|
+
setTimeout(() => {
|
|
175
|
+
try {
|
|
176
|
+
proc.kill('SIGKILL');
|
|
177
|
+
}
|
|
178
|
+
catch {
|
|
179
|
+
// Process may have already exited
|
|
180
|
+
}
|
|
181
|
+
}, forceKillDelayMs);
|
|
182
|
+
}
|
|
183
|
+
catch {
|
|
184
|
+
// Process may have already exited
|
|
185
|
+
}
|
|
186
|
+
const output = stdout.trim();
|
|
187
|
+
if (output) {
|
|
188
|
+
// Return partial output with timeout notice
|
|
189
|
+
resolve(output + `\n\n[TIMEOUT: Command exceeded ${timeout / 1000}s limit]`);
|
|
190
|
+
}
|
|
191
|
+
else {
|
|
192
|
+
// No output captured, throw TimeoutError
|
|
193
|
+
reject(new TimeoutError(command, timeout, undefined, { cwd, shell }));
|
|
194
|
+
}
|
|
195
|
+
}, timeout)
|
|
196
|
+
: null;
|
|
177
197
|
proc.stdout.on('data', (data) => {
|
|
178
198
|
const chunk = data.toString();
|
|
179
199
|
stdout += chunk;
|
|
@@ -188,14 +208,16 @@ async function executeShellCommand(command, cwd, timeout, shell, envVars, onProg
|
|
|
188
208
|
if (done)
|
|
189
209
|
return;
|
|
190
210
|
done = true;
|
|
191
|
-
|
|
211
|
+
if (timer)
|
|
212
|
+
clearTimeout(timer);
|
|
192
213
|
reject(new CommandError(command, `Failed to execute command: ${err.message}`, undefined, undefined, { cwd, shell }));
|
|
193
214
|
});
|
|
194
215
|
proc.on('close', (code) => {
|
|
195
216
|
if (done)
|
|
196
217
|
return;
|
|
197
218
|
done = true;
|
|
198
|
-
|
|
219
|
+
if (timer)
|
|
220
|
+
clearTimeout(timer);
|
|
199
221
|
const duration = ((Date.now() - start) / 1000).toFixed(2);
|
|
200
222
|
const output = stdout + (stderr ? `\nSTDERR:\n${stderr}` : '');
|
|
201
223
|
if (code === 0) {
|
|
@@ -212,15 +234,22 @@ export const shellExecTool = {
|
|
|
212
234
|
description: 'Execute shell command safely with timeout and streaming output',
|
|
213
235
|
zodSchema: schema,
|
|
214
236
|
execute: async (args, onProgress) => {
|
|
237
|
+
// Disabled-by-default / admin-gated.
|
|
238
|
+
if (!isShellExecEnabled()) {
|
|
239
|
+
throw new PermissionError('shell-exec', 'execute', {
|
|
240
|
+
reason: 'shell-exec is disabled by default. Set KEMDICODE_SHELL_EXEC_ENABLED=true to enable it.',
|
|
241
|
+
});
|
|
242
|
+
}
|
|
215
243
|
const command = String(args.command);
|
|
216
244
|
const inputCwd = args.cwd || process.cwd();
|
|
217
|
-
|
|
245
|
+
// Preserve explicit 0 (no timeout)
|
|
246
|
+
const timeout = typeof args.timeout === 'number' ? args.timeout : 60000;
|
|
218
247
|
const shell = args.shell || 'bash';
|
|
219
248
|
const envVars = args.env;
|
|
220
249
|
const allowDangerous = Boolean(args.allowDangerous);
|
|
221
250
|
// Rate limit check for shell commands (stricter limit)
|
|
222
251
|
if (!checkRateLimit('shell-exec', { maxRequests: 30, windowMs: 60000 })) {
|
|
223
|
-
logSecurityEvent('RATE_LIMIT_EXCEEDED', { command: command
|
|
252
|
+
logSecurityEvent('RATE_LIMIT_EXCEEDED', { command: maskForLogs(command, 100) });
|
|
224
253
|
throw new Error('Rate limit exceeded for shell-exec operations. Please wait before executing more commands.');
|
|
225
254
|
}
|
|
226
255
|
// Validate and sanitize the working directory
|
|
@@ -264,8 +293,8 @@ export const shellExecTool = {
|
|
|
264
293
|
// Check for dangerous commands
|
|
265
294
|
if (isDangerous(command)) {
|
|
266
295
|
logSecurityEvent('DANGEROUS_COMMAND_ATTEMPT', {
|
|
267
|
-
command: command
|
|
268
|
-
cwd: validatedCwd,
|
|
296
|
+
command: maskForLogs(command, 200),
|
|
297
|
+
cwd: maskForLogs(validatedCwd, 200),
|
|
269
298
|
allowDangerous,
|
|
270
299
|
});
|
|
271
300
|
if (!allowDangerous) {
|
|
@@ -276,8 +305,8 @@ export const shellExecTool = {
|
|
|
276
305
|
// Check for suspicious commands
|
|
277
306
|
if (isSuspicious(command)) {
|
|
278
307
|
logSecurityEvent('SUSPICIOUS_COMMAND', {
|
|
279
|
-
command: command
|
|
280
|
-
cwd: validatedCwd,
|
|
308
|
+
command: maskForLogs(command, 200),
|
|
309
|
+
cwd: maskForLogs(validatedCwd, 200),
|
|
281
310
|
});
|
|
282
311
|
onProgress?.(`CAUTION: This command pattern is flagged as potentially risky.\n\n`);
|
|
283
312
|
}
|
|
@@ -286,7 +315,7 @@ export const shellExecTool = {
|
|
|
286
315
|
onProgress?.(`NOTE: This command typically requires confirmation in interactive mode.\n\n`);
|
|
287
316
|
}
|
|
288
317
|
// Log the execution for audit trail
|
|
289
|
-
Logger.debug(`shell-exec: executing command in ${validatedCwd}`);
|
|
318
|
+
Logger.debug(`shell-exec: executing command in ${maskForLogs(validatedCwd, 300)}`);
|
|
290
319
|
return executeShellCommand(command, validatedCwd, timeout, shell, sanitizedEnvVars, onProgress);
|
|
291
320
|
},
|
|
292
321
|
};
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"shell-exec.tool.js","sourceRoot":"","sources":["../../../src/tools/system/shell-exec.tool.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH;;;;;;;GAOG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;AAChC,OAAO,EAAE,KAAK,EAAE,MAAM,eAAe,CAAC;AACtC,OAAO,EAEL,iBAAiB,EACjB,uBAAuB,EACvB,YAAY,EACZ,YAAY,
|
|
1
|
+
{"version":3,"file":"shell-exec.tool.js","sourceRoot":"","sources":["../../../src/tools/system/shell-exec.tool.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH;;;;;;;GAOG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;AAChC,OAAO,EAAE,KAAK,EAAE,MAAM,eAAe,CAAC;AACtC,OAAO,EAEL,iBAAiB,EACjB,uBAAuB,EACvB,YAAY,EACZ,YAAY,EACZ,eAAe,GAChB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAC/C,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAC/C,OAAO,EACL,YAAY,EACZ,eAAe,EACf,eAAe,EACf,cAAc,GACf,MAAM,2BAA2B,CAAC;AACnC,OAAO,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAE5D;;GAEG;AACH,MAAM,kBAAkB,GAAG;IACzB,sBAAsB,EAAE,WAAW;IACnC,eAAe,EAAE,WAAW;IAC5B,qCAAqC,EAAE,aAAa;IACpD,SAAS,EAAE,oBAAoB;IAC/B,yCAAyC,EAAE,YAAY;IACvD,oBAAoB,EAAE,oBAAoB;IAC1C,mBAAmB,EAAE,mBAAmB;IACxC,mBAAmB,EAAE,mBAAmB;IACxC,uBAAuB,EAAE,cAAc;IACvC,4BAA4B,EAAE,UAAU;IACxC,gEAAgE;IAChE,yBAAyB,EAAE,qBAAqB;IAChD,yBAAyB,EAAE,qBAAqB;IAChD,sBAAsB,EAAE,sBAAsB;IAC9C,sBAAsB,EAAE,sBAAsB;IAC9C,cAAc,EAAE,gBAAgB;IAChC,aAAa,EAAE,8BAA8B;IAC7C,aAAa,EAAE,oBAAoB;IACnC,cAAc,EAAE,2BAA2B;IAC3C,aAAa,EAAE,qBAAqB;IACpC,kBAAkB,EAAE,gBAAgB;IACpC,iBAAiB,EAAE,qBAAqB;IACxC,uBAAuB,EAAE,sCAAsC;IAC/D,mBAAmB,EAAE,kCAAkC;IACvD,6BAA6B,EAAE,+BAA+B;IAC9D,sCAAsC,EAAE,uBAAuB;IAC/D,mCAAmC,EAAE,uBAAuB;IAC5D,8BAA8B,EAAE,qBAAqB;IACrD,4CAA4C;IAC5C,MAAM,EAAE,sBAAsB;CAC/B,CAAC;AAEF;;GAEG;AACH,MAAM,mBAAmB,GAAG;IAC1B,oBAAoB,EAAE,+BAA+B;IACrD,oBAAoB,EAAE,+BAA+B;IACrD,oBAAoB,EAAE,0BAA0B;IAChD,SAAS,EAAE,aAAa;IACxB,QAAQ,EAAE,cAAc;IACxB,QAAQ,EAAE,iBAAiB;IAC3B,QAAQ,EAAE,eAAe;CAC1B,CAAC;AAEF;;GAEG;AACH,MAAM,qBAAqB,GAAG;IAC5B,WAAW;IACX,UAAU;IACV,yBAAyB;IACzB,uBAAuB;IACvB,gBAAgB;IAChB,cAAc;IACd,0BAA0B;CAC3B,CAAC;AAEF,MAAM,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC;IACtB,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,0BAA0B,CAAC;IAC/D,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,mDAAmD,CAAC;IACxF,4EAA4E;IAC5E,OAAO,EAAE,CAAC;SACP,MAAM,EAAE;SACR,GAAG,EAAE;SACL,GAAG,CAAC,CAAC,CAAC;SACN,OAAO,CAAC,KAAK,CAAC;SACd,QAAQ,CAAC,+DAA+D,CAAC;IAC5E,KAAK,EAAE,CAAC;SACL,IAAI,CAAC,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,CAAC;SACjD,OAAO,CAAC,MAAM,CAAC;SACf,QAAQ,CAAC,cAAc,CAAC;IAC3B,GAAG,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,kCAAkC,CAAC;IAC7F,cAAc,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,sCAAsC,CAAC;CAC5F,CAAC,CAAC;AAEH,SAAS,kBAAkB;IACzB,sEAAsE;IACtE,MAAM,CAAC,GAAG,OAAO,CAAC,GAAG,CAAC,4BAA4B,CAAC;IACnD,OAAO,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,MAAM,CAAC;AACnC,CAAC;AAED,SAAS,WAAW,CAAC,IAAY,EAAE,MAAM,GAAG,GAAG;IAC7C,MAAM,MAAM,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC;IACvC,OAAO,MAAM,CAAC,MAAM,GAAG,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,MAAM,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC;AACzE,CAAC;AAED;;GAEG;AACH,SAAS,WAAW,CAAC,OAAe;IAClC,OAAO,kBAAkB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC;AACrE,CAAC;AAED;;GAEG;AACH,SAAS,oBAAoB,CAAC,OAAe;IAC3C,OAAO,qBAAqB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC;AACxE,CAAC;AAED;;GAEG;AACH,SAAS,YAAY,CAAC,OAAe;IACnC,OAAO,mBAAmB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC;AACtE,CAAC;AAED;;GAEG;AACH,SAAS,gBAAgB,CAAC,SAAiB,EAAE,OAAgC;IAC3E,MAAM,CAAC,IAAI,CAAC,0BAA0B,SAAS,EAAE,EAAE,OAAO,CAAC,CAAC;AAC9D,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,mBAAmB,CAChC,OAAe,EACf,GAAW,EACX,OAAe,EACf,KAAa,EACb,OAA2C,EAC3C,UAAqC;IAErC,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAEzB,oBAAoB;QACpB,MAAM,QAAQ,GAAG,KAAK,KAAK,YAAY,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC;QAC/D,MAAM,SAAS,GAAG,KAAK,KAAK,YAAY,CAAC,CAAC,CAAC,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QAEnF,MAAM,CAAC,KAAK,CACV,cAAc,QAAQ,IAAI,WAAW,CAAC,SAAS,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,GAAG,CAAC,OAAO,WAAW,CAAC,GAAG,EAAE,GAAG,CAAC,EAAE,CAC9F,CAAC;QACF,UAAU,EAAE,CAAC,KAAK,OAAO,MAAM,CAAC,CAAC;QAEjC,MAAM,IAAI,GAAG,KAAK,CAAC,QAAQ,EAAE,SAAS,EAAE;YACtC,GAAG;YACH,KAAK,EAAE,KAAK;YACZ,KAAK,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,CAAC;YACjC,GAAG,EAAE;gBACH,GAAG,OAAO,CAAC,GAAG;gBACd,GAAG,OAAO;aACX;SACF,CAAC,CAAC;QAEH,IAAI,MAAM,GAAG,EAAE,CAAC;QAChB,IAAI,MAAM,GAAG,EAAE,CAAC;QAChB,IAAI,IAAI,GAAG,KAAK,CAAC;QAEjB,MAAM,gBAAgB,GAAG,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,SAAS,CAAC;QAC1D,MAAM,KAAK,GACT,OAAO,GAAG,CAAC;YACT,CAAC,CAAC,UAAU,CAAC,GAAG,EAAE;gBACd,IAAI,IAAI;oBAAE,OAAO;gBACjB,IAAI,GAAG,IAAI,CAAC;gBACZ,IAAI,CAAC;oBACH,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;oBACrB,UAAU,CAAC,GAAG,EAAE;wBACd,IAAI,CAAC;4BACH,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;wBACvB,CAAC;wBAAC,MAAM,CAAC;4BACP,kCAAkC;wBACpC,CAAC;oBACH,CAAC,EAAE,gBAAgB,CAAC,CAAC;gBACvB,CAAC;gBAAC,MAAM,CAAC;oBACP,kCAAkC;gBACpC,CAAC;gBAED,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC;gBAC7B,IAAI,MAAM,EAAE,CAAC;oBACX,4CAA4C;oBAC5C,OAAO,CAAC,MAAM,GAAG,kCAAkC,OAAO,GAAG,IAAI,UAAU,CAAC,CAAC;gBAC/E,CAAC;qBAAM,CAAC;oBACN,yCAAyC;oBACzC,MAAM,CAAC,IAAI,YAAY,CAAC,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC;gBACxE,CAAC;YACH,CAAC,EAAE,OAAO,CAAC;YACb,CAAC,CAAC,IAAI,CAAC;QAEX,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;YAC9B,MAAM,KAAK,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;YAC9B,MAAM,IAAI,KAAK,CAAC;YAChB,UAAU,EAAE,CAAC,KAAK,CAAC,CAAC;QACtB,CAAC,CAAC,CAAC;QAEH,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;YAC9B,MAAM,KAAK,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;YAC9B,MAAM,IAAI,KAAK,CAAC;YAChB,UAAU,EAAE,CAAC,KAAK,CAAC,CAAC;QACtB,CAAC,CAAC,CAAC;QAEH,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;YACvB,IAAI,IAAI;gBAAE,OAAO;YACjB,IAAI,GAAG,IAAI,CAAC;YACZ,IAAI,KAAK;gBAAE,YAAY,CAAC,KAAK,CAAC,CAAC;YAC/B,MAAM,CACJ,IAAI,YAAY,CACd,OAAO,EACP,8BAA8B,GAAG,CAAC,OAAO,EAAE,EAC3C,SAAS,EACT,SAAS,EACT,EAAE,GAAG,EAAE,KAAK,EAAE,CACf,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,IAAI,EAAE,EAAE;YACxB,IAAI,IAAI;gBAAE,OAAO;YACjB,IAAI,GAAG,IAAI,CAAC;YACZ,IAAI,KAAK;gBAAE,YAAY,CAAC,KAAK,CAAC,CAAC;YAE/B,MAAM,QAAQ,GAAG,CAAC,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC,GAAG,IAAI,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;YAC1D,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,cAAc,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;YAE/D,IAAI,IAAI,KAAK,CAAC,EAAE,CAAC;gBACf,OAAO,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,2BAA2B,QAAQ,IAAI,CAAC,CAAC;YACnE,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,cAAc,IAAI,eAAe,QAAQ,IAAI,CAAC,CAAC;YACzE,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC;AAED,MAAM,CAAC,MAAM,aAAa,GAAgB;IACxC,IAAI,EAAE,YAAY;IAClB,WAAW,EAAE,gEAAgE;IAC7E,SAAS,EAAE,MAAM;IACjB,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,UAAU,EAAE,EAAE;QAClC,qCAAqC;QACrC,IAAI,CAAC,kBAAkB,EAAE,EAAE,CAAC;YAC1B,MAAM,IAAI,eAAe,CAAC,YAAY,EAAE,SAAS,EAAE;gBACjD,MAAM,EACJ,wFAAwF;aAC3F,CAAC,CAAC;QACL,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACrC,MAAM,QAAQ,GAAI,IAAI,CAAC,GAAc,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;QACvD,mCAAmC;QACnC,MAAM,OAAO,GAAG,OAAO,IAAI,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAE,IAAI,CAAC,OAAkB,CAAC,CAAC,CAAC,KAAK,CAAC;QACpF,MAAM,KAAK,GAAI,IAAI,CAAC,KAAgB,IAAI,MAAM,CAAC;QAC/C,MAAM,OAAO,GAAG,IAAI,CAAC,GAAyC,CAAC;QAC/D,MAAM,cAAc,GAAG,OAAO,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAEpD,uDAAuD;QACvD,IAAI,CAAC,cAAc,CAAC,YAAY,EAAE,EAAE,WAAW,EAAE,EAAE,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC;YACxE,gBAAgB,CAAC,qBAAqB,EAAE,EAAE,OAAO,EAAE,WAAW,CAAC,OAAO,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC;YAChF,MAAM,IAAI,KAAK,CACb,4FAA4F,CAC7F,CAAC;QACJ,CAAC;QAED,8CAA8C;QAC9C,IAAI,YAAoB,CAAC;QACzB,IAAI,CAAC;YACH,YAAY,GAAG,MAAM,YAAY,CAAC,QAAQ,EAAE;gBAC1C,aAAa,EAAE,IAAI,EAAE,gDAAgD;gBACrE,oBAAoB,EAAE,KAAK,EAAE,8CAA8C;gBAC3E,oBAAoB,EAAE,IAAI;gBAC1B,SAAS,EAAE,SAAS;aACrB,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,eAAe,EAAE,CAAC;YACzB,IAAI,eAAe,YAAY,eAAe,EAAE,CAAC;gBAC/C,gBAAgB,CAAC,uBAAuB,EAAE;oBACxC,GAAG,EAAE,QAAQ;oBACb,KAAK,EAAE,eAAe,CAAC,OAAO;iBAC/B,CAAC,CAAC;gBACH,MAAM,IAAI,iBAAiB,CAAC,QAAQ,EAAE,WAAW,EAAE;oBACjD,SAAS,EAAE,YAAY;oBACvB,KAAK,EAAE,eAAe,CAAC,OAAO;iBAC/B,CAAC,CAAC;YACL,CAAC;YACD,MAAM,eAAe,CAAC;QACxB,CAAC;QAED,sBAAsB;QACtB,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;YAC9B,MAAM,IAAI,iBAAiB,CAAC,YAAY,EAAE,WAAW,EAAE,EAAE,SAAS,EAAE,YAAY,EAAE,CAAC,CAAC;QACtF,CAAC;QAED,iCAAiC;QACjC,MAAM,gBAAgB,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;QAClD,IACE,OAAO;YACP,gBAAgB;YAChB,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,MAAM,EACpE,CAAC;YACD,gBAAgB,CAAC,oBAAoB,EAAE;gBACrC,aAAa,EAAE,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,MAAM;gBAC1C,cAAc,EAAE,MAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,MAAM;aACrD,CAAC,CAAC;YACH,UAAU,EAAE,CAAC,kEAAkE,CAAC,CAAC;QACnF,CAAC;QAED,+BAA+B;QAC/B,IAAI,WAAW,CAAC,OAAO,CAAC,EAAE,CAAC;YACzB,gBAAgB,CAAC,2BAA2B,EAAE;gBAC5C,OAAO,EAAE,WAAW,CAAC,OAAO,EAAE,GAAG,CAAC;gBAClC,GAAG,EAAE,WAAW,CAAC,YAAY,EAAE,GAAG,CAAC;gBACnC,cAAc;aACf,CAAC,CAAC;YACH,IAAI,CAAC,cAAc,EAAE,CAAC;gBACpB,MAAM,IAAI,uBAAuB,CAC/B,OAAO,EACP,qEAAqE,EACrE,EAAE,GAAG,EAAE,YAAY,EAAE,KAAK,EAAE,CAC7B,CAAC;YACJ,CAAC;YACD,UAAU,EAAE,CAAC,uDAAuD,CAAC,CAAC;QACxE,CAAC;QAED,gCAAgC;QAChC,IAAI,YAAY,CAAC,OAAO,CAAC,EAAE,CAAC;YAC1B,gBAAgB,CAAC,oBAAoB,EAAE;gBACrC,OAAO,EAAE,WAAW,CAAC,OAAO,EAAE,GAAG,CAAC;gBAClC,GAAG,EAAE,WAAW,CAAC,YAAY,EAAE,GAAG,CAAC;aACpC,CAAC,CAAC;YACH,UAAU,EAAE,CAAC,oEAAoE,CAAC,CAAC;QACrF,CAAC;QAED,0DAA0D;QAC1D,IAAI,oBAAoB,CAAC,OAAO,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC;YACrD,UAAU,EAAE,CAAC,6EAA6E,CAAC,CAAC;QAC9F,CAAC;QAED,oCAAoC;QACpC,MAAM,CAAC,KAAK,CAAC,oCAAoC,WAAW,CAAC,YAAY,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC;QAEnF,OAAO,mBAAmB,CAAC,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,KAAK,EAAE,gBAAgB,EAAE,UAAU,CAAC,CAAC;IAClG,CAAC;CACF,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"git-utils.d.ts","sourceRoot":"","sources":["../../src/utils/git-utils.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAqBH;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,wCAAwC;IACxC,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,sDAAsD;IACtD,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,2CAA2C;IAC3C,QAAQ,CAAC,EAAE,cAAc,CAAC;CAC3B;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,OAAO,GAAE,cAAmB,GAAG,MAAM,
|
|
1
|
+
{"version":3,"file":"git-utils.d.ts","sourceRoot":"","sources":["../../src/utils/git-utils.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAqBH;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,wCAAwC;IACxC,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,sDAAsD;IACtD,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,2CAA2C;IAC3C,QAAQ,CAAC,EAAE,cAAc,CAAC;CAC3B;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,OAAO,GAAE,cAAmB,GAAG,MAAM,CAc5E;AAYD;;;;;;;;;;;;GAYG;AACH,wBAAgB,SAAS,CAAC,GAAG,CAAC,EAAE,MAAM,GAAG,OAAO,CAkB/C;AAED;;;;;;;;;;;GAWG;AACH,wBAAgB,gBAAgB,CAAC,GAAG,CAAC,EAAE,MAAM,GAAG,MAAM,CAuBrD;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,WAAW,CAAC,GAAG,CAAC,EAAE,MAAM,GAAG,MAAM,CAYhD;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,eAAe,CAAC,GAAG,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAM3D;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,aAAa,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,EAAE,CAErD;AAED;;;;;;;;;;;;;;;GAeG;AACH,wBAAgB,cAAc,CAAC,KAAK,EAAE,OAAO,EAAE,SAAS,EAAE,MAAM,GAAG,MAAM,CAGxE;AAgCD;;;;;;;;;;;GAWG;AACH,wBAAgB,sBAAsB,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,CAU9D;AAMD;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,+CAA+C;IAC/C,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,+BAA+B;IAC/B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,0BAA0B;IAC1B,KAAK,CAAC,EAAE,KAAK,CAAC;IACd,oCAAoC;IACpC,OAAO,EAAE,OAAO,CAAC;CAClB;AAED;;;;;;;;;;;;;;;GAeG;AACH,wBAAsB,eAAe,CACnC,QAAQ,EAAE,KAAK,CAAC;IAAE,IAAI,EAAE,MAAM,EAAE,CAAC;IAAC,GAAG,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,GAChD,OAAO,CAAC,iBAAiB,EAAE,CAAC,CAe9B;AAED;;;;;;;;;;;;;;GAcG;AACH,wBAAsB,cAAc,CAAC,GAAG,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC;IAC1D,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,OAAO,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;CAChB,GAAG,IAAI,CAAC,CAuCR;AAED;;;GAGG;AACH,wBAAgB,aAAa,IAAI,IAAI,CAEpC"}
|
package/dist/utils/git-utils.js
CHANGED
|
@@ -29,7 +29,7 @@
|
|
|
29
29
|
*
|
|
30
30
|
* @module utils/git-utils
|
|
31
31
|
*/
|
|
32
|
-
import {
|
|
32
|
+
import { execFileSync } from 'child_process';
|
|
33
33
|
import { gitCache } from './cache.js';
|
|
34
34
|
import { config } from '../config/index.js';
|
|
35
35
|
/**
|
|
@@ -48,13 +48,13 @@ import { config } from '../config/index.js';
|
|
|
48
48
|
*/
|
|
49
49
|
export function execGit(args, options = {}) {
|
|
50
50
|
const execOptions = {
|
|
51
|
+
cwd: options.cwd,
|
|
51
52
|
encoding: options.encoding ?? 'utf-8',
|
|
52
53
|
maxBuffer: options.maxBuffer ?? config.get('limits').maxBuffer,
|
|
53
54
|
};
|
|
54
|
-
|
|
55
|
-
|
|
56
|
-
|
|
57
|
-
return execSync(`git ${args.join(' ')}`, execOptions);
|
|
55
|
+
// IMPORTANT: never execute through a shell. Passing args as an array prevents
|
|
56
|
+
// command injection via crafted arguments.
|
|
57
|
+
return execFileSync('git', args, execOptions);
|
|
58
58
|
}
|
|
59
59
|
/**
|
|
60
60
|
* Get cache TTL for git repo checks from config
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"git-utils.js","sourceRoot":"","sources":["../../src/utils/git-utils.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH;;;;;;;;;;;;;GAaG;AAEH,OAAO,EAAE,
|
|
1
|
+
{"version":3,"file":"git-utils.js","sourceRoot":"","sources":["../../src/utils/git-utils.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH;;;;;;;;;;;;;GAaG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAC7C,OAAO,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAC;AACtC,OAAO,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AAc5C;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,OAAO,CAAC,IAAc,EAAE,UAA0B,EAAE;IAClE,MAAM,WAAW,GAIb;QACF,GAAG,EAAE,OAAO,CAAC,GAAG;QAChB,QAAQ,EAAE,OAAO,CAAC,QAAQ,IAAI,OAAO;QACrC,SAAS,EAAE,OAAO,CAAC,SAAS,IAAI,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,SAAS;KAC/D,CAAC;IAEF,8EAA8E;IAC9E,2CAA2C;IAC3C,OAAO,YAAY,CAAC,KAAK,EAAE,IAAI,EAAE,WAAW,CAAC,CAAC;AAChD,CAAC;AAED;;GAEG;AACH,SAAS,eAAe;IACtB,OAAO,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC;AACpC,CAAC;AAED,uEAAuE;AACvE,MAAM,gBAAgB,GAAG,EAAE,GAAG,IAAI,CAAC;AAEnC;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,SAAS,CAAC,GAAY;IACpC,MAAM,GAAG,GAAG,GAAG,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;IACjC,MAAM,QAAQ,GAAG,UAAU,GAAG,EAAE,CAAC;IAEjC,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IACtC,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;QACzB,OAAO,MAAiB,CAAC;IAC3B,CAAC;IAED,MAAM,OAAO,GAAG,eAAe,EAAE,CAAC;IAClC,IAAI,CAAC;QACH,OAAO,CAAC,CAAC,WAAW,EAAE,WAAW,CAAC,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC;QAC7C,QAAQ,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACtC,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,MAAM,CAAC;QACP,QAAQ,CAAC,GAAG,CAAC,QAAQ,EAAE,KAAK,EAAE,OAAO,CAAC,CAAC;QACvC,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED;;;;;;;;;;;GAWG;AACH,MAAM,UAAU,gBAAgB,CAAC,GAAY;IAC3C,MAAM,GAAG,GAAG,GAAG,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;IACjC,MAAM,QAAQ,GAAG,UAAU,GAAG,EAAE,CAAC;IAEjC,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IACtC,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;QACzB,OAAO,MAAgB,CAAC;IAC1B,CAAC;IAED,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,OAAO,CAAC,CAAC,QAAQ,EAAE,gBAAgB,CAAC,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QACrE,IAAI,MAAM,EAAE,CAAC;YACX,QAAQ,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,EAAE,gBAAgB,CAAC,CAAC;YACjD,OAAO,MAAM,CAAC;QAChB,CAAC;QACD,sBAAsB;QACtB,MAAM,IAAI,GAAG,OAAO,CAAC,CAAC,WAAW,EAAE,SAAS,EAAE,MAAM,CAAC,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QACvE,MAAM,MAAM,GAAG,qBAAqB,IAAI,GAAG,CAAC;QAC5C,QAAQ,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,EAAE,gBAAgB,CAAC,CAAC;QACjD,OAAO,MAAM,CAAC;IAChB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,WAAW,CAAC;IACrB,CAAC;AACH,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,WAAW,CAAC,GAAY;IACtC,MAAM,GAAG,GAAG,GAAG,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;IACjC,MAAM,QAAQ,GAAG,QAAQ,GAAG,EAAE,CAAC;IAE/B,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IACtC,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;QACzB,OAAO,MAAgB,CAAC;IAC1B,CAAC;IAED,MAAM,IAAI,GAAG,OAAO,CAAC,CAAC,WAAW,EAAE,iBAAiB,CAAC,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;IACvE,QAAQ,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,EAAE,eAAe,EAAE,CAAC,CAAC;IAChD,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,eAAe,CAAC,GAAY;IAC1C,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC;QACpB,MAAM,GAAG,GAAG,GAAG,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;QACjC,OAAO,WAAW,GAAG,8CAA8C,CAAC;IACtE,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,aAAa,CAAC,KAAa;IACzC,OAAO,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;AACpD,CAAC;AAED;;;;;;;;;;;;;;;GAeG;AACH,MAAM,UAAU,cAAc,CAAC,KAAc,EAAE,SAAiB;IAC9D,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACvE,OAAO,GAAG,SAAS,YAAY,OAAO,EAAE,CAAC;AAC3C,CAAC;AAED;;GAEG;AACH,MAAM,kBAAkB,GAAuE;IAC7F;QACE,OAAO,EAAE,cAAc;QACvB,UAAU,EAAE,GAAG,EAAE,CAAC,+BAA+B;KAClD;IACD;QACE,OAAO,EAAE,cAAc;QACvB,UAAU,EAAE,GAAG,EAAE,CAAC,6BAA6B;KAChD;IACD;QACE,OAAO,EAAE,gBAAgB;QACzB,UAAU,EAAE,GAAG,EAAE,CAAC,iBAAiB;KACpC;IACD;QACE,OAAO,EAAE,WAAW;QACpB,UAAU,EAAE,GAAG,EAAE,CAAC,YAAY;KAC/B;IACD;QACE,OAAO,EAAE,kBAAkB;QAC3B,UAAU,EAAE,GAAG,EAAE,CAAC,uDAAuD;KAC1E;IACD;QACE,OAAO,EAAE,qBAAqB;QAC9B,UAAU,EAAE,GAAG,EAAE,CAAC,sBAAsB;KACzC;CACF,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,MAAM,UAAU,sBAAsB,CAAC,OAAe;IACpD,MAAM,YAAY,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;IAE3C,KAAK,MAAM,OAAO,IAAI,kBAAkB,EAAE,CAAC;QACzC,IAAI,YAAY,CAAC,QAAQ,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;YAC3C,OAAO,OAAO,CAAC,UAAU,EAAE,CAAC;QAC9B,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAoBD;;;;;;;;;;;;;;;GAeG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,QAAiD;IAEjD,OAAO,OAAO,CAAC,GAAG,CAChB,QAAQ,CAAC,GAAG,CAAC,KAAK,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,EAAE,EAAE;QACnC,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,OAAO,CAAC,IAAI,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC;YACtC,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;QACzC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,IAAI;gBACJ,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;gBAChE,OAAO,EAAE,KAAK;aACf,CAAC;QACJ,CAAC;IACH,CAAC,CAAC,CACH,CAAC;AACJ,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,GAAY;IAO/C,MAAM,GAAG,GAAG,GAAG,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;IAEjC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC;QACpB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,OAAO,GAAG,MAAM,eAAe,CAAC;QACpC,EAAE,IAAI,EAAE,CAAC,QAAQ,EAAE,aAAa,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE;QAC7C,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,IAAI,EAAE,gBAAgB,EAAE,YAAY,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE;QACjE,EAAE,IAAI,EAAE,CAAC,QAAQ,EAAE,KAAK,EAAE,YAAY,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE;KACpD,CAAC,CAAC;IAEH,MAAM,CAAC,YAAY,EAAE,SAAS,EAAE,YAAY,CAAC,GAAG,OAAO,CAAC;IAExD,MAAM,OAAO,GAAG,YAAY,CAAC,OAAO,IAAI,YAAY,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC;IAC3E,MAAM,UAAU,GAAG,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;IAE3E,4CAA4C;IAC5C,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,IAAI,MAAM,GAAG,CAAC,CAAC;IAEf,IAAI,YAAY,CAAC,OAAO,IAAI,YAAY,CAAC,MAAM,EAAE,CAAC;QAChD,MAAM,iBAAiB,GAAG,YAAY,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC;QAC/F,IAAI,iBAAiB,EAAE,CAAC;YACtB,MAAM,UAAU,GAAG,iBAAiB,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;YAC1D,MAAM,WAAW,GAAG,iBAAiB,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;YAC5D,IAAI,UAAU;gBAAE,KAAK,GAAG,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACpD,IAAI,WAAW;gBAAE,MAAM,GAAG,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACzD,CAAC;IACH,CAAC;IAED,OAAO;QACL,MAAM,EAAE,gBAAgB,CAAC,GAAG,CAAC;QAC7B,OAAO;QACP,UAAU;QACV,KAAK;QACL,MAAM;KACP,CAAC;AACJ,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,aAAa;IAC3B,QAAQ,CAAC,KAAK,EAAE,CAAC;AACnB,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"security.d.ts","sourceRoot":"","sources":["../../src/utils/security.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAcH;;;GAGG;AACH,qBAAa,aAAa;IACxB,OAAO,CAAC,SAAS,CAAS;IAC1B,OAAO,CAAC,OAAO,CAA0E;IACzF,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAO;gBAE9B,QAAQ,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM;IAK3C;;OAEG;IACH,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,IAAI;IAmBrC;;OAEG;IACH,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI;IAe/B;;OAEG;IACH,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI;IAIzB;;OAEG;IACH,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO;IAIzB;;OAEG;IACH,KAAK,IAAI,IAAI;CAGd;AAKD,wBAAgB,gBAAgB,IAAI,aAAa,CAMhD;AAED;;;GAGG;AACH,wBAAgB,WAAW,CAAC,GAAG,EAAE,MAAM,GAAG;IAAE,KAAK,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAgC3E;AAoBD;;;GAGG;AACH,wBAAgB,gBAAgB,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAGpD;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,IAAI,EAAE,MAAM,GAAG;IACnD,KAAK,EAAE,OAAO,CAAC;IACf,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB,CAuBA;
|
|
1
|
+
{"version":3,"file":"security.d.ts","sourceRoot":"","sources":["../../src/utils/security.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAcH;;;GAGG;AACH,qBAAa,aAAa;IACxB,OAAO,CAAC,SAAS,CAAS;IAC1B,OAAO,CAAC,OAAO,CAA0E;IACzF,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAO;gBAE9B,QAAQ,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM;IAK3C;;OAEG;IACH,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,IAAI;IAmBrC;;OAEG;IACH,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI;IAe/B;;OAEG;IACH,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI;IAIzB;;OAEG;IACH,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO;IAIzB;;OAEG;IACH,KAAK,IAAI,IAAI;CAGd;AAKD,wBAAgB,gBAAgB,IAAI,aAAa,CAMhD;AAED;;;GAGG;AACH,wBAAgB,WAAW,CAAC,GAAG,EAAE,MAAM,GAAG;IAAE,KAAK,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAgC3E;AAoBD;;;GAGG;AACH,wBAAgB,gBAAgB,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAGpD;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,IAAI,EAAE,MAAM,GAAG;IACnD,KAAK,EAAE,OAAO,CAAC;IACf,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB,CAuBA;AAgBD;;GAEG;AACH,wBAAgB,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,CAG9D;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,OAAO,CAUzF;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAOtD;AAED;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,KAAK,EAAE,KAAK,GAAG,MAAM,GAAG,MAAM,CAQlE;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,MAAM,SAAK,GAAG,MAAM,CAMpD;AAED;;GAEG;AACH,qBAAa,WAAW;IACtB,OAAO,CAAC,QAAQ,CAAoC;IACpD,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,QAAQ,CAAS;IACzB,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAQ;gBAE5B,WAAW,SAAM,EAAE,QAAQ,SAAQ;IAK/C;;OAEG;IACH,SAAS,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO;IA4B/B;;OAEG;IACH,YAAY,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM;IAOjC;;OAEG;IACH,KAAK,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI;CAGzB;AAED;;GAEG;AACH,wBAAgB,aAAa,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,SAAmB,GAAG,OAAO,GAAG,IAAI,CAUtF;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/D,MAAM,EAAE,CAAC,EACT,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAC9B,CAAC,CAcH;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG;IAAE,KAAK,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAetF;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,SAAe,GAAG,MAAM,CAI/D"}
|
package/dist/utils/security.js
CHANGED
|
@@ -174,27 +174,38 @@ export function sanitizePathComponent(name) {
|
|
|
174
174
|
}
|
|
175
175
|
return { valid: true, sanitized: name };
|
|
176
176
|
}
|
|
177
|
+
/**
|
|
178
|
+
* Resolve the HMAC secret from explicit parameter, env var, or secure storage.
|
|
179
|
+
* Throws if no secret is available.
|
|
180
|
+
*/
|
|
181
|
+
function resolveHmacSecret(explicit) {
|
|
182
|
+
const secret = explicit || process.env.HMAC_SECRET || getSecureStorage().get('hmac_secret');
|
|
183
|
+
if (!secret) {
|
|
184
|
+
throw new Error('No HMAC secret available. Set HMAC_SECRET env var or provide secret parameter.');
|
|
185
|
+
}
|
|
186
|
+
return secret;
|
|
187
|
+
}
|
|
177
188
|
/**
|
|
178
189
|
* Sign data with HMAC for integrity verification
|
|
179
190
|
*/
|
|
180
191
|
export function signData(data, secret) {
|
|
181
|
-
const hmacSecret = secret
|
|
192
|
+
const hmacSecret = resolveHmacSecret(secret);
|
|
182
193
|
return createHmac('sha256', hmacSecret).update(data).digest('hex');
|
|
183
194
|
}
|
|
184
195
|
/**
|
|
185
196
|
* Verify data signature
|
|
186
197
|
*/
|
|
187
198
|
export function verifySignature(data, signature, secret) {
|
|
188
|
-
|
|
189
|
-
|
|
190
|
-
|
|
191
|
-
|
|
192
|
-
.digest()
|
|
193
|
-
.equals(Buffer.from(signature, 'hex'));
|
|
194
|
-
}
|
|
195
|
-
catch {
|
|
199
|
+
const hmacSecret = resolveHmacSecret(secret);
|
|
200
|
+
const expected = createHmac('sha256', hmacSecret).update(data).digest('hex');
|
|
201
|
+
// Constant-time comparison to prevent timing attacks
|
|
202
|
+
if (expected.length !== signature.length)
|
|
196
203
|
return false;
|
|
204
|
+
let result = 0;
|
|
205
|
+
for (let i = 0; i < expected.length; i++) {
|
|
206
|
+
result |= expected.charCodeAt(i) ^ signature.charCodeAt(i);
|
|
197
207
|
}
|
|
208
|
+
return result === 0;
|
|
198
209
|
}
|
|
199
210
|
/**
|
|
200
211
|
* Mask sensitive data in logs
|