opencode-swarm 6.45.1 → 6.47.0

package/dist/commands/close.d.ts

@@ -3,4 +3,4 @@
  * writing retrospectives for in-progress phases, and clearing session state.
  * Must be idempotent - safe to run multiple times.
  */
-export declare function handleCloseCommand(directory: string, _args: string[]): Promise<string>;
+export declare function handleCloseCommand(directory: string, args: string[]): Promise<string>;

package/dist/config/evidence-schema.d.ts

@@ -8,6 +8,7 @@ export declare const EvidenceTypeSchema: z.ZodEnum<{
     quality_budget: "quality_budget";
     placeholder: "placeholder";
     test: "test";
+    build: "build";
     review: "review";
     approval: "approval";
     note: "note";
@@ -15,7 +16,6 @@ export declare const EvidenceTypeSchema: z.ZodEnum<{
     syntax: "syntax";
     sast: "sast";
     sbom: "sbom";
-    build: "build";
 }>;
 export type EvidenceType = z.infer<typeof EvidenceTypeSchema>;
 export declare const EvidenceVerdictSchema: z.ZodEnum<{
@@ -34,6 +34,7 @@ export declare const BaseEvidenceSchema: z.ZodObject<{
         quality_budget: "quality_budget";
         placeholder: "placeholder";
         test: "test";
+        build: "build";
         review: "review";
         approval: "approval";
         note: "note";
@@ -41,7 +42,6 @@ export declare const BaseEvidenceSchema: z.ZodObject<{
         syntax: "syntax";
         sast: "sast";
         sbom: "sbom";
-        build: "build";
     }>;
     timestamp: z.ZodString;
     agent: z.ZodString;

package/dist/config/schema.d.ts

@@ -468,6 +468,39 @@ export declare const CompactionConfigSchema: z.ZodObject<{
     preserveLastNTurns: z.ZodDefault<z.ZodNumber>;
 }, z.core.$strip>;
 export type CompactionConfig = z.infer<typeof CompactionConfigSchema>;
+export declare const AgentAuthorityRuleSchema: z.ZodObject<{
+    readOnly: z.ZodOptional<z.ZodBoolean>;
+    blockedExact: z.ZodOptional<z.ZodArray<z.ZodString>>;
+    blockedPrefix: z.ZodOptional<z.ZodArray<z.ZodString>>;
+    allowedPrefix: z.ZodOptional<z.ZodArray<z.ZodString>>;
+    blockedZones: z.ZodOptional<z.ZodArray<z.ZodEnum<{
+        docs: "docs";
+        production: "production";
+        test: "test";
+        config: "config";
+        generated: "generated";
+        build: "build";
+    }>>>;
+}, z.core.$strip>;
+export type AgentAuthorityRule = z.infer<typeof AgentAuthorityRuleSchema>;
+export declare const AuthorityConfigSchema: z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+    rules: z.ZodDefault<z.ZodRecord<z.ZodString, z.ZodObject<{
+        readOnly: z.ZodOptional<z.ZodBoolean>;
+        blockedExact: z.ZodOptional<z.ZodArray<z.ZodString>>;
+        blockedPrefix: z.ZodOptional<z.ZodArray<z.ZodString>>;
+        allowedPrefix: z.ZodOptional<z.ZodArray<z.ZodString>>;
+        blockedZones: z.ZodOptional<z.ZodArray<z.ZodEnum<{
+            docs: "docs";
+            production: "production";
+            test: "test";
+            config: "config";
+            generated: "generated";
+            build: "build";
+        }>>>;
+    }, z.core.$strip>>>;
+}, z.core.$strip>;
+export type AuthorityConfig = z.infer<typeof AuthorityConfigSchema>;
 export declare const PluginConfigSchema: z.ZodObject<{
     agents: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodObject<{
         model: z.ZodOptional<z.ZodString>;
@@ -627,6 +660,23 @@ export declare const PluginConfigSchema: z.ZodObject<{
         enabled: z.ZodDefault<z.ZodBoolean>;
         overrides: z.ZodDefault<z.ZodRecord<z.ZodString, z.ZodArray<z.ZodString>>>;
     }, z.core.$strip>>;
+    authority: z.ZodOptional<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+        rules: z.ZodDefault<z.ZodRecord<z.ZodString, z.ZodObject<{
+            readOnly: z.ZodOptional<z.ZodBoolean>;
+            blockedExact: z.ZodOptional<z.ZodArray<z.ZodString>>;
+            blockedPrefix: z.ZodOptional<z.ZodArray<z.ZodString>>;
+            allowedPrefix: z.ZodOptional<z.ZodArray<z.ZodString>>;
+            blockedZones: z.ZodOptional<z.ZodArray<z.ZodEnum<{
+                docs: "docs";
+                production: "production";
+                test: "test";
+                config: "config";
+                generated: "generated";
+                build: "build";
+            }>>>;
+        }, z.core.$strip>>>;
+    }, z.core.$strip>>;
     plan_cursor: z.ZodOptional<z.ZodObject<{
         enabled: z.ZodDefault<z.ZodBoolean>;
         max_tokens: z.ZodDefault<z.ZodNumber>;

package/dist/hooks/guardrails.d.ts

@@ -6,7 +6,7 @@
  * - Layer 1 (Soft Warning @ warning_threshold): Sets warning flag for messagesTransform to inject warning
  * - Layer 2 (Hard Block @ 100%): Throws error in toolBefore to block further calls, injects STOP message
  */
-import { type GuardrailsConfig } from '../config/schema';
+import { type AuthorityConfig, type GuardrailsConfig } from '../config/schema';
 import { type FileZone } from '../context/zone-classifier';
 /**
  * Retrieves stored input args for a given callID.
@@ -34,7 +34,7 @@ export declare function deleteStoredInputArgs(callID: string): void;
  * @param config Guardrails configuration (optional)
  * @returns Tool before/after hooks and messages transform hook
  */
-export declare function createGuardrailsHooks(directory: string, directoryOrConfig?: string | GuardrailsConfig, config?: GuardrailsConfig): {
+export declare function createGuardrailsHooks(directory: string, directoryOrConfig?: string | GuardrailsConfig, config?: GuardrailsConfig, authorityConfig?: AuthorityConfig): {
     toolBefore: (input: {
         tool: string;
         sessionID: string;
@@ -103,13 +103,22 @@ export declare function validateAndRecordAttestation(dir: string, findingId: str
     valid: false;
     reason: string;
 }>;
+type AgentRule = {
+    readOnly?: boolean;
+    blockedExact?: string[];
+    blockedPrefix?: string[];
+    allowedPrefix?: string[];
+    blockedZones?: FileZone[];
+};
+export declare const DEFAULT_AGENT_AUTHORITY_RULES: Record<string, AgentRule>;
 /**
  * Checks whether the given agent is authorised to write to the given file path.
  */
-export declare function checkFileAuthority(agentName: string, filePath: string, cwd: string): {
+export declare function checkFileAuthority(agentName: string, filePath: string, cwd: string, authorityConfig?: AuthorityConfig): {
     allowed: true;
 } | {
     allowed: false;
     reason: string;
     zone?: FileZone;
 };
+export {};

package/dist/hooks/index.d.ts

@@ -6,7 +6,7 @@ export { createDelegationGateHook } from './delegation-gate';
 export { createDelegationSanitizerHook } from './delegation-sanitizer';
 export { createDelegationTrackerHook } from './delegation-tracker';
 export { extractCurrentPhase, extractCurrentPhaseFromPlan, extractCurrentTask, extractCurrentTaskFromPlan, extractDecisions, extractIncompleteTasks, extractIncompleteTasksFromPlan, extractPatterns, } from './extractors';
-export { createGuardrailsHooks } from './guardrails';
+export { checkFileAuthority, createGuardrailsHooks, DEFAULT_AGENT_AUTHORITY_RULES, } from './guardrails';
 export { classifyMessage, classifyMessages, containsPlanContent, isDuplicateToolRead, isStaleError, isToolResult, MessagePriority, type MessagePriorityType, type MessageWithParts, } from './message-priority';
 export { consolidateSystemMessages } from './messages-transform';
 export { extractModelInfo, NATIVE_MODEL_LIMITS, PROVIDER_CAPS, resolveModelLimit, } from './model-limits';