opencode-swarm 6.41.0 → 6.41.1

package/dist/hooks/guardrails.d.ts

@@ -106,7 +106,7 @@ export declare function validateAndRecordAttestation(dir: string, findingId: str
 /**
  * Checks whether the given agent is authorised to write to the given file path.
  */
-export declare function checkFileAuthority(agentName: string, filePath: string, _cwd: string): {
+export declare function checkFileAuthority(agentName: string, filePath: string, cwd: string): {
     allowed: true;
 } | {
     allowed: false;

package/dist/index.js

@@ -41431,6 +41431,9 @@ function isValidTaskId(taskId) {
   if (taskId === null || taskId === undefined) {
     return false;
   }
+  if (typeof taskId !== "string") {
+    return false;
+  }
   const trimmed = taskId.trim();
   return trimmed.length > 0;
 }
@@ -52386,10 +52389,11 @@ function getCurrentTaskId(sessionId) {
   const session = swarmState.agentSessions.get(sessionId);
   return session?.currentTaskId ?? `${sessionId}:unknown`;
 }
-function isInDeclaredScope(filePath, scopeEntries) {
-  const resolvedFile = path32.resolve(filePath);
+function isInDeclaredScope(filePath, scopeEntries, cwd) {
+  const dir = cwd ?? process.cwd();
+  const resolvedFile = path32.resolve(dir, filePath);
   return scopeEntries.some((scope) => {
-    const resolvedScope = path32.resolve(scope);
+    const resolvedScope = path32.resolve(dir, scope);
     if (resolvedFile === resolvedScope)
       return true;
     const rel = path32.relative(resolvedScope, resolvedFile);
@@ -52847,7 +52851,7 @@ function createGuardrailsHooks(directory, directoryOrConfig, config3) {
           }
           session.partialGateWarningsIssuedForTask?.delete(session.currentTaskId);
           if (session.declaredCoderScope !== null) {
-            const undeclaredFiles = session.modifiedFilesThisCoderTask.map((f) => f.replace(/[\r\n\t]/g, "_")).filter((f) => !isInDeclaredScope(f, session.declaredCoderScope));
+            const undeclaredFiles = session.modifiedFilesThisCoderTask.map((f) => f.replace(/[\r\n\t]/g, "_")).filter((f) => !isInDeclaredScope(f, session.declaredCoderScope, directory));
             if (undeclaredFiles.length >= 1) {
               const safeTaskId = String(session.currentTaskId ?? "").replace(/[\r\n\t]/g, "_");
               session.lastScopeViolation = `Scope violation for task ${safeTaskId}: ` + `${undeclaredFiles.length} undeclared files modified: ` + undeclaredFiles.join(", ");
@@ -53290,9 +53294,11 @@ var AGENT_AUTHORITY_RULES = {
     blockedZones: ["generated"]
   }
 };
-function checkFileAuthority(agentName, filePath, _cwd) {
+function checkFileAuthority(agentName, filePath, cwd) {
   const normalizedAgent = agentName.toLowerCase();
-  const normalizedPath = filePath.replace(/\\/g, "/");
+  const dir = cwd || process.cwd();
+  const resolved = path32.resolve(dir, filePath);
+  const normalizedPath = path32.relative(dir, resolved).replace(/\\/g, "/");
   const rules = AGENT_AUTHORITY_RULES[normalizedAgent];
   if (!rules) {
     return { allowed: false, reason: `Unknown agent: ${agentName}` };
@@ -58966,7 +58972,29 @@ async function executeDeclareScope(args2, fallbackDir) {
       };
     }
   }
-  const mergedFiles = [...args2.files, ...args2.whitelist ?? []];
+  const rawMergedFiles = [...args2.files, ...args2.whitelist ?? []];
+  const warnings = [];
+  const normalizeErrors = [];
+  const dir = normalizedDir || fallbackDir || process.cwd();
+  const mergedFiles = rawMergedFiles.map((file3) => {
+    if (path48.isAbsolute(file3)) {
+      const relativePath = path48.relative(dir, file3).replace(/\\/g, "/");
+      if (relativePath.startsWith("..")) {
+        normalizeErrors.push(`Path '${file3}' resolves outside the project directory`);
+        return file3;
+      }
+      warnings.push(`Absolute path normalized to relative: '${relativePath}' (was '${file3}')`);
+      return relativePath;
+    }
+    return file3;
+  });
+  if (normalizeErrors.length > 0) {
+    return {
+      success: false,
+      message: "Validation failed",
+      errors: normalizeErrors
+    };
+  }
   for (const [_sessionId, session] of swarmState.agentSessions) {
     session.declaredCoderScope = mergedFiles;
     session.lastScopeViolation = null;
@@ -58975,7 +59003,8 @@ async function executeDeclareScope(args2, fallbackDir) {
     success: true,
     message: "Scope declared successfully",
     taskId: args2.taskId,
-    fileCount: mergedFiles.length
+    fileCount: mergedFiles.length,
+    ...warnings.length > 0 ? { warnings } : {}
   };
 }
 var declare_scope = createSwarmTool({
@@ -64018,13 +64047,13 @@ function validatePath(inputPath, baseDir, workspaceDir) {
     resolved = path56.resolve(baseDir, inputPath);
   }
   const workspaceResolved = path56.resolve(workspaceDir);
-  let relative6;
+  let relative7;
   if (isWinAbs) {
-    relative6 = path56.win32.relative(workspaceResolved, resolved);
+    relative7 = path56.win32.relative(workspaceResolved, resolved);
   } else {
-    relative6 = path56.relative(workspaceResolved, resolved);
+    relative7 = path56.relative(workspaceResolved, resolved);
   }
-  if (relative6.startsWith("..")) {
+  if (relative7.startsWith("..")) {
     return "path traversal detected";
   }
   return null;

package/dist/tools/declare-scope.d.ts

@@ -22,6 +22,7 @@ export interface DeclareScopeResult {
     taskId?: string;
     fileCount?: number;
     errors?: string[];
+    warnings?: string[];
 }
 /**
  * Validate that taskId matches the required format (N.M or N.M.P).

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "opencode-swarm",
-	"version": "6.41.0",
+	"version": "6.41.1",
 	"description": "Architect-centric agentic swarm plugin for OpenCode - hub-and-spoke orchestration with SME consultation, code generation, and QA review",
 	"main": "dist/index.js",
 	"types": "dist/index.d.ts",