osagent 0.1.97 → 0.1.99

package/cli.js

@@ -141747,6 +141747,14 @@ var init_openai = __esm({
 });
 
 // packages/core/dist/src/core/credentialValidator.js
+var credentialValidator_exports = {};
+__export(credentialValidator_exports, {
+  getProviderHelpText: () => getProviderHelpText,
+  validateGroqCredentials: () => validateGroqCredentials,
+  validateOllamaCloudCredentials: () => validateOllamaCloudCredentials,
+  validateOllamaLocalCredentials: () => validateOllamaLocalCredentials,
+  validateOpenAICredentials: () => validateOpenAICredentials
+});
 function getProviderHelpText(authType) {
   return PROVIDER_HELP_TEXT[authType] || "Please check your API key and try again";
 }
@@ -141760,9 +141768,9 @@ async function validateOpenAICredentials(client, authType, timeout2 = DEFAULT_VA
   }
 }
 async function validateOllamaCloudCredentials(apiKey, timeout2 = DEFAULT_VALIDATION_TIMEOUT) {
-  const baseUrl = "https://ollama.com/v1";
+  const baseUrl = "https://ollama.com";
   try {
-    const response = await fetch(`${baseUrl}/models`, {
+    const response = await fetch(`${baseUrl}/api/tags`, {
       method: "GET",
       headers: {
         Authorization: `Bearer ${apiKey}`,
@@ -141852,9 +141860,9 @@ var init_credentialValidator = __esm({
     init_contentGenerator();
     DEFAULT_VALIDATION_TIMEOUT = 5e3;
     PROVIDER_HELP_TEXT = {
-      [AuthType2.USE_GROQ]: "Get your API key at: https://console.groq.com/keys",
-      [AuthType2.OLLAMA_CLOUD]: "Get your API key at: https://ollama.com/settings/keys",
-      [AuthType2.OLLAMA_LOCAL]: "Ensure Ollama is running with: ollama serve",
+      [AuthType2.USE_GROQ]: "Get your API key at: https://console.groq.com/keys\nSet it with: export GROQ_API_KEY=your_key",
+      [AuthType2.OLLAMA_CLOUD]: "Get your API key at: https://ollama.com/settings/keys\nSet it with: export OLLAMA_API_KEY=your_key\nCloud models use format: qwen3-coder:480b-cloud",
+      [AuthType2.OLLAMA_LOCAL]: "Ensure Ollama is running with: ollama serve\nPull models with: ollama pull qwen3-coder",
       [AuthType2.USE_OPENAI]: "Verify your API key at your provider dashboard"
     };
     __name(getProviderHelpText, "getProviderHelpText");
@@ -148117,6 +148125,435 @@ var init_openaiContentGenerator2 = __esm({
   }
 });
 
+// packages/core/dist/src/core/ollamaContentGenerator/index.js
+var ollamaContentGenerator_exports = {};
+__export(ollamaContentGenerator_exports, {
+  OllamaContentGenerator: () => OllamaContentGenerator,
+  createOllamaContentGenerator: () => createOllamaContentGenerator
+});
+function getEffectiveOllamaUrl2() {
+  const ollamaHost = process.env["OLLAMA_HOST"];
+  if (ollamaHost) {
+    const url3 = ollamaHost.startsWith("http") ? ollamaHost : `http://${ollamaHost}`;
+    return url3.replace(/\/$/, "");
+  }
+  const ollamaBaseUrl = process.env["OLLAMA_BASE_URL"];
+  if (ollamaBaseUrl) {
+    return ollamaBaseUrl.replace(/\/v1\/?$/, "").replace(/\/$/, "");
+  }
+  return "http://localhost:11434";
+}
+function isContentObject(content) {
+  return typeof content === "object" && content !== null && "role" in content;
+}
+function createOllamaContentGenerator(config2, cliConfig) {
+  return new OllamaContentGenerator(config2, cliConfig);
+}
+var OllamaContentGenerator;
+var init_ollamaContentGenerator = __esm({
+  "packages/core/dist/src/core/ollamaContentGenerator/index.js"() {
+    "use strict";
+    init_esbuild_shims();
+    __name(getEffectiveOllamaUrl2, "getEffectiveOllamaUrl");
+    __name(isContentObject, "isContentObject");
+    OllamaContentGenerator = class {
+      static {
+        __name(this, "OllamaContentGenerator");
+      }
+      config;
+      baseUrl;
+      constructor(config2, _cliConfig) {
+        this.config = config2;
+        this.baseUrl = config2.baseUrl?.replace(/\/v1\/?$/, "").replace(/\/$/, "") || getEffectiveOllamaUrl2();
+      }
+      /**
+       * Check if this is Ollama Cloud (requires auth)
+       */
+      isCloud() {
+        return this.baseUrl.includes("ollama.com");
+      }
+      /**
+       * Build headers for Ollama API requests
+       */
+      buildHeaders() {
+        const headers = {
+          "Content-Type": "application/json"
+        };
+        if (this.isCloud() && this.config.apiKey) {
+          headers["Authorization"] = `Bearer ${this.config.apiKey}`;
+        }
+        return headers;
+      }
+      /**
+       * Extract text content from a ContentUnion
+       */
+      extractTextFromContentUnion(content) {
+        if (typeof content === "string") {
+          return content;
+        }
+        if (isContentObject(content) && content.parts) {
+          return this.extractTextFromParts(content.parts);
+        }
+        return "";
+      }
+      /**
+       * Extract text content from parts
+       */
+      extractTextFromParts(parts) {
+        return parts.map((part) => {
+          if (typeof part === "string")
+            return part;
+          if (part && typeof part === "object" && "text" in part)
+            return part.text;
+          return "";
+        }).join("");
+      }
+      /**
+       * Check if a part is a function call
+       */
+      isFunctionCall(part) {
+        return part !== null && typeof part === "object" && "functionCall" in part;
+      }
+      /**
+       * Check if a part is a function response
+       */
+      isFunctionResponse(part) {
+        return part !== null && typeof part === "object" && "functionResponse" in part;
+      }
+      /**
+       * Convert GenerateContentParameters to Ollama format
+       */
+      convertToOllamaRequest(params) {
+        const messages = [];
+        if (params.config?.systemInstruction) {
+          const systemContent = this.extractTextFromContentUnion(params.config.systemInstruction);
+          if (systemContent) {
+            messages.push({
+              role: "system",
+              content: systemContent
+            });
+          }
+        }
+        const contents = params.contents;
+        if (Array.isArray(contents)) {
+          for (const content of contents) {
+            if (!content)
+              continue;
+            if (typeof content === "string") {
+              messages.push({
+                role: "user",
+                content
+              });
+            } else if (isContentObject(content)) {
+              const parts = content.parts || [];
+              const functionCalls = parts.filter((p) => this.isFunctionCall(p));
+              const functionResponses = parts.filter((p) => this.isFunctionResponse(p));
+              if (functionCalls.length > 0 && content.role === "model") {
+                const textParts = parts.filter((p) => !this.isFunctionCall(p) && !this.isFunctionResponse(p));
+                const textContent2 = this.extractTextFromParts(textParts);
+                const toolCalls = functionCalls.map((fc, index) => {
+                  const funcCall = fc;
+                  return {
+                    type: "function",
+                    function: {
+                      index,
+                      name: funcCall.functionCall.name,
+                      arguments: funcCall.functionCall.args || {}
+                    }
+                  };
+                });
+                messages.push({
+                  role: "assistant",
+                  content: textContent2 || "",
+                  tool_calls: toolCalls
+                });
+              } else if (functionResponses.length > 0) {
+                for (const fr of functionResponses) {
+                  const funcResp = fr;
+                  const responseContent = typeof funcResp.functionResponse.response === "string" ? funcResp.functionResponse.response : JSON.stringify(funcResp.functionResponse.response);
+                  messages.push({
+                    role: "tool",
+                    tool_name: funcResp.functionResponse.name,
+                    content: responseContent
+                  });
+                }
+              } else {
+                const role = content.role === "model" ? "assistant" : content.role;
+                const text = this.extractTextFromParts(parts);
+                if (text) {
+                  messages.push({
+                    role,
+                    content: text
+                  });
+                }
+              }
+            }
+          }
+        } else if (contents) {
+          if (typeof contents === "string") {
+            messages.push({
+              role: "user",
+              content: contents
+            });
+          } else if (isContentObject(contents)) {
+            const role = contents.role === "model" ? "assistant" : contents.role;
+            const text = this.extractTextFromParts(contents.parts || []);
+            if (text) {
+              messages.push({
+                role,
+                content: text
+              });
+            }
+          }
+        }
+        const model = params.model || this.config.model;
+        const request4 = {
+          model,
+          messages,
+          stream: false
+        };
+        if (params.config?.tools && Array.isArray(params.config.tools)) {
+          const ollamaTools = [];
+          for (const tool of params.config.tools) {
+            if (tool && typeof tool === "object" && "functionDeclarations" in tool) {
+              const funcDecls = tool.functionDeclarations;
+              for (const func of funcDecls) {
+                ollamaTools.push({
+                  type: "function",
+                  function: {
+                    name: func.name,
+                    description: func.description || "",
+                    parameters: func.parameters || { type: "object", properties: {} }
+                  }
+                });
+              }
+            }
+          }
+          if (ollamaTools.length > 0) {
+            request4.tools = ollamaTools;
+          }
+        }
+        if (this.config.samplingParams) {
+          request4.options = {};
+          if (this.config.samplingParams.temperature !== void 0) {
+            request4.options.temperature = this.config.samplingParams.temperature;
+          }
+          if (this.config.samplingParams.top_p !== void 0) {
+            request4.options.top_p = this.config.samplingParams.top_p;
+          }
+          if (this.config.samplingParams.top_k !== void 0) {
+            request4.options.top_k = this.config.samplingParams.top_k;
+          }
+          if (this.config.samplingParams.max_tokens !== void 0) {
+            request4.options.num_predict = this.config.samplingParams.max_tokens;
+          }
+          if (this.config.samplingParams.repetition_penalty !== void 0) {
+            request4.options.repeat_penalty = this.config.samplingParams.repetition_penalty;
+          }
+          if (this.config.samplingParams.presence_penalty !== void 0) {
+            request4.options.presence_penalty = this.config.samplingParams.presence_penalty;
+          }
+          if (this.config.samplingParams.frequency_penalty !== void 0) {
+            request4.options.frequency_penalty = this.config.samplingParams.frequency_penalty;
+          }
+        }
+        return request4;
+      }
+      /**
+       * Convert Ollama response to GenerateContentResponse format
+       */
+      convertFromOllamaResponse(response) {
+        const parts = [];
+        if (response.message.content) {
+          parts.push({ text: response.message.content });
+        }
+        if (response.message.tool_calls && response.message.tool_calls.length > 0) {
+          for (const toolCall of response.message.tool_calls) {
+            parts.push({
+              functionCall: {
+                name: toolCall.function.name,
+                args: toolCall.function.arguments
+              }
+            });
+          }
+        }
+        if (parts.length === 0) {
+          parts.push({ text: "" });
+        }
+        return {
+          candidates: [
+            {
+              content: {
+                role: "model",
+                parts
+              },
+              finishReason: response.message.tool_calls?.length ? "TOOL_USE" : response.done_reason === "stop" ? "STOP" : "OTHER",
+              index: 0
+            }
+          ],
+          usageMetadata: {
+            promptTokenCount: response.prompt_eval_count || 0,
+            candidatesTokenCount: response.eval_count || 0,
+            totalTokenCount: (response.prompt_eval_count || 0) + (response.eval_count || 0)
+          },
+          modelVersion: response.model
+        };
+      }
+      /**
+       * Generate content using Ollama API
+       */
+      async generateContent(request4, _userPromptId) {
+        const ollamaRequest = this.convertToOllamaRequest(request4);
+        ollamaRequest.stream = false;
+        const url3 = `${this.baseUrl}/api/chat`;
+        const headers = this.buildHeaders();
+        const response = await fetch(url3, {
+          method: "POST",
+          headers,
+          body: JSON.stringify(ollamaRequest)
+        });
+        if (!response.ok) {
+          const errorText = await response.text();
+          throw new Error(`Ollama API error: ${response.status} ${response.statusText} - ${errorText}`);
+        }
+        const ollamaResponse = await response.json();
+        return this.convertFromOllamaResponse(ollamaResponse);
+      }
+      /**
+       * Generate content stream using Ollama API
+       */
+      async generateContentStream(request4, _userPromptId) {
+        const ollamaRequest = this.convertToOllamaRequest(request4);
+        ollamaRequest.stream = true;
+        const url3 = `${this.baseUrl}/api/chat`;
+        const headers = this.buildHeaders();
+        const response = await fetch(url3, {
+          method: "POST",
+          headers,
+          body: JSON.stringify(ollamaRequest)
+        });
+        if (!response.ok) {
+          const errorText = await response.text();
+          throw new Error(`Ollama API error: ${response.status} ${response.statusText} - ${errorText}`);
+        }
+        const reader = response.body?.getReader();
+        if (!reader) {
+          throw new Error("No response body");
+        }
+        const decoder2 = new TextDecoder();
+        async function* streamGenerator() {
+          let buffer = "";
+          const accumulatedToolCalls = [];
+          while (true) {
+            const { done, value } = await reader.read();
+            if (done)
+              break;
+            buffer += decoder2.decode(value, { stream: true });
+            const lines = buffer.split("\n");
+            buffer = lines.pop() || "";
+            for (const line of lines) {
+              if (!line.trim())
+                continue;
+              try {
+                const chunk = JSON.parse(line);
+                if (chunk.message.tool_calls?.length) {
+                  accumulatedToolCalls.push(...chunk.message.tool_calls);
+                }
+                const parts = [];
+                if (chunk.message.content) {
+                  parts.push({ text: chunk.message.content });
+                }
+                if (chunk.done && accumulatedToolCalls.length > 0) {
+                  for (const toolCall of accumulatedToolCalls) {
+                    parts.push({
+                      functionCall: {
+                        name: toolCall.function.name,
+                        args: toolCall.function.arguments
+                      }
+                    });
+                  }
+                }
+                if (parts.length === 0) {
+                  parts.push({ text: "" });
+                }
+                yield {
+                  candidates: [
+                    {
+                      content: {
+                        role: "model",
+                        parts
+                      },
+                      finishReason: chunk.done ? accumulatedToolCalls.length > 0 ? "TOOL_USE" : "STOP" : void 0,
+                      index: 0
+                    }
+                  ]
+                };
+              } catch {
+              }
+            }
+          }
+          if (buffer.trim()) {
+            try {
+              const chunk = JSON.parse(buffer);
+              if (chunk.message.tool_calls?.length) {
+                accumulatedToolCalls.push(...chunk.message.tool_calls);
+              }
+              const parts = [];
+              if (chunk.message.content) {
+                parts.push({ text: chunk.message.content });
+              }
+              if (accumulatedToolCalls.length > 0) {
+                for (const toolCall of accumulatedToolCalls) {
+                  parts.push({
+                    functionCall: {
+                      name: toolCall.function.name,
+                      args: toolCall.function.arguments
+                    }
+                  });
+                }
+              }
+              if (parts.length === 0) {
+                parts.push({ text: "" });
+              }
+              yield {
+                candidates: [
+                  {
+                    content: {
+                      role: "model",
+                      parts
+                    },
+                    finishReason: chunk.done ? accumulatedToolCalls.length > 0 ? "TOOL_USE" : "STOP" : void 0,
+                    index: 0
+                  }
+                ]
+              };
+            } catch {
+            }
+          }
+        }
+        __name(streamGenerator, "streamGenerator");
+        return streamGenerator();
+      }
+      /**
+       * Count tokens - Ollama doesn't have a direct token counting API,
+       * so we estimate based on character count
+       */
+      async countTokens(_request) {
+        return {
+          totalTokens: 0
+        };
+      }
+      /**
+       * Embed content - Use Ollama's embedding API if available
+       */
+      async embedContent(_request) {
+        throw new Error("Embedding not supported by Ollama content generator");
+      }
+    };
+    __name(createOllamaContentGenerator, "createOllamaContentGenerator");
+  }
+});
+
 // packages/core/dist/src/qwen/qwenContentGenerator.js
 var qwenContentGenerator_exports = {};
 __export(qwenContentGenerator_exports, {
@@ -148269,7 +148706,7 @@ var init_qwenContentGenerator = __esm({
 });
 
 // packages/core/dist/src/core/contentGenerator.js
-function getEffectiveOllamaUrl2(includeV1 = true) {
+function getEffectiveOllamaUrl3(includeV1 = true) {
   const ollamaHost = process.env["OLLAMA_HOST"];
   if (ollamaHost) {
     const url3 = ollamaHost.startsWith("http") ? ollamaHost : `http://${ollamaHost}`;
@@ -148343,7 +148780,8 @@ function createContentGeneratorConfig(config2, authType, generationConfig) {
     return {
       ...baseConfig,
       model: ollamaModel,
-      baseUrl: "https://ollama.com/v1",
+      // Ollama Cloud uses native API at https://ollama.com/api/chat (NOT OpenAI-compatible)
+      baseUrl: "https://ollama.com",
       apiKey: ollamaApiKey,
       authType: AuthType2.OLLAMA_CLOUD,
       // Ollama doesn't need special cache control handling
@@ -148358,7 +148796,7 @@ function createContentGeneratorConfig(config2, authType, generationConfig) {
     return {
       ...baseConfig,
       model: ollamaModel,
-      baseUrl: getEffectiveOllamaUrl2(true),
+      baseUrl: getEffectiveOllamaUrl3(true),
       // Gets OLLAMA_HOST or defaults to localhost:11434/v1
       apiKey: "ollama",
       authType: AuthType2.OLLAMA_LOCAL,
@@ -148394,7 +148832,7 @@ function createContentGeneratorConfig(config2, authType, generationConfig) {
   };
 }
 async function createContentGenerator(config2, gcConfig, sessionId2, isInitialAuth) {
-  const version3 = "0.1.97";
+  const version3 = "0.1.99";
   const userAgent2 = `OSAgent/${version3} (${process.platform}; ${process.arch})`;
   const baseHeaders = {
     "User-Agent": userAgent2
@@ -148432,15 +148870,12 @@ async function createContentGenerator(config2, gcConfig, sessionId2, isInitialAu
     return result instanceof Promise ? await result : result;
   }
   if (config2.authType === AuthType2.OLLAMA_CLOUD) {
-    const { createOpenAIContentGenerator: createOpenAIContentGenerator2 } = await Promise.resolve().then(() => (init_openaiContentGenerator2(), openaiContentGenerator_exports));
-    const cloudConfig = {
-      ...config2,
-      baseUrl: config2.baseUrl?.includes("/v1") ? config2.baseUrl : `${config2.baseUrl}/v1`
-    };
-    const result = createOpenAIContentGenerator2(cloudConfig, gcConfig, {
-      validateCredentials: isInitialAuth
-    });
-    return result instanceof Promise ? await result : result;
+    const { createOllamaContentGenerator: createOllamaContentGenerator2 } = await Promise.resolve().then(() => (init_ollamaContentGenerator(), ollamaContentGenerator_exports));
+    if (isInitialAuth && config2.apiKey) {
+      const { validateOllamaCloudCredentials: validateOllamaCloudCredentials2 } = await Promise.resolve().then(() => (init_credentialValidator(), credentialValidator_exports));
+      await validateOllamaCloudCredentials2(config2.apiKey);
+    }
+    return createOllamaContentGenerator2(config2, gcConfig);
   }
   if (config2.authType === AuthType2.OLLAMA_LOCAL) {
     const { createOpenAIContentGenerator: createOpenAIContentGenerator2 } = await Promise.resolve().then(() => (init_openaiContentGenerator2(), openaiContentGenerator_exports));
@@ -148481,7 +148916,7 @@ var init_contentGenerator = __esm({
     init_models();
     init_installationManager();
     init_loggingContentGenerator();
-    __name(getEffectiveOllamaUrl2, "getEffectiveOllamaUrl");
+    __name(getEffectiveOllamaUrl3, "getEffectiveOllamaUrl");
     (function(AuthType4) {
       AuthType4["LOGIN_WITH_OSAGENT"] = "oauth-personal";
       AuthType4["USE_OSA"] = "OSA-api-key";
@@ -337381,7 +337816,7 @@ __name(getPackageJson, "getPackageJson");
 // packages/cli/src/utils/version.ts
 async function getCliVersion() {
   const pkgJson = await getPackageJson();
-  return "0.1.97";
+  return "0.1.99";
 }
 __name(getCliVersion, "getCliVersion");
 
@@ -341589,8 +342024,8 @@ var formatDuration = /* @__PURE__ */ __name((milliseconds) => {
 
 // packages/cli/src/generated/git-commit.ts
 init_esbuild_shims();
-var GIT_COMMIT_INFO2 = "36be68d";
-var CLI_VERSION2 = "0.1.97";
+var GIT_COMMIT_INFO2 = "c951f76";
+var CLI_VERSION2 = "0.1.99";
 
 // packages/cli/src/utils/systemInfo.ts
 async function getNpmVersion() {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "osagent",
-  "version": "0.1.97",
+  "version": "0.1.99",
   "description": "OS Agent - AI-powered CLI for autonomous coding with Ollama Cloud and Qwen models",
   "repository": {
     "type": "git",
@@ -20,7 +20,7 @@
     "locales"
   ],
   "config": {
-    "sandboxImageUri": "ghcr.io/osagent/osagent:0.1.85"
+    "sandboxImageUri": "ghcr.io/osagent/osagent:0.1.99"
   },
   "dependencies": {
     "punycode": "^2.3.1"

package/sandbox-macos-permissive-closed 2.sb

@@ -1,32 +0,0 @@
-(version 1)
-
-;; allow everything by default
-(allow default)
-
-;; deny all writes EXCEPT under specific paths
-(deny file-write*)
-(allow file-write*
-    (subpath (param "TARGET_DIR"))
-    (subpath (param "TMP_DIR"))
-    (subpath (param "CACHE_DIR"))
-    (subpath (string-append (param "HOME_DIR") "/.OSA"))
-    (subpath (string-append (param "HOME_DIR") "/.npm"))
-    (subpath (string-append (param "HOME_DIR") "/.cache"))
-    (subpath (string-append (param "HOME_DIR") "/.gitconfig"))
-    ;; Allow writes to included directories from --include-directories
-    (subpath (param "INCLUDE_DIR_0"))
-    (subpath (param "INCLUDE_DIR_1"))
-    (subpath (param "INCLUDE_DIR_2"))
-    (subpath (param "INCLUDE_DIR_3"))
-    (subpath (param "INCLUDE_DIR_4"))
-    (literal "/dev/stdout")
-    (literal "/dev/stderr")
-    (literal "/dev/null")
-)
-
-;; deny all inbound network traffic EXCEPT on debugger port
-(deny network-inbound)
-(allow network-inbound (local ip "localhost:9229"))
-
-;; deny all outbound network traffic
-(deny network-outbound)

package/sandbox-macos-permissive-open 2.sb

@@ -1,25 +0,0 @@
-(version 1)
-
-;; allow everything by default
-(allow default)
-
-;; deny all writes EXCEPT under specific paths
-(deny file-write*)
-(allow file-write*
-    (subpath (param "TARGET_DIR"))
-    (subpath (param "TMP_DIR"))
-    (subpath (param "CACHE_DIR"))
-    (subpath (string-append (param "HOME_DIR") "/.OSA"))
-    (subpath (string-append (param "HOME_DIR") "/.npm"))
-    (subpath (string-append (param "HOME_DIR") "/.cache"))
-    (subpath (string-append (param "HOME_DIR") "/.gitconfig"))
-    ;; Allow writes to included directories from --include-directories
-    (subpath (param "INCLUDE_DIR_0"))
-    (subpath (param "INCLUDE_DIR_1"))
-    (subpath (param "INCLUDE_DIR_2"))
-    (subpath (param "INCLUDE_DIR_3"))
-    (subpath (param "INCLUDE_DIR_4"))
-    (literal "/dev/stdout")
-    (literal "/dev/stderr")
-    (literal "/dev/null")
-)

package/sandbox-macos-permissive-proxied 2.sb

@@ -1,37 +0,0 @@
-(version 1)
-
-;; allow everything by default
-(allow default)
-
-;; deny all writes EXCEPT under specific paths
-(deny file-write*)
-(allow file-write*
-    (subpath (param "TARGET_DIR"))
-    (subpath (param "TMP_DIR"))
-    (subpath (param "CACHE_DIR"))
-    (subpath (string-append (param "HOME_DIR") "/.OSA"))
-    (subpath (string-append (param "HOME_DIR") "/.npm"))
-    (subpath (string-append (param "HOME_DIR") "/.cache"))
-    (subpath (string-append (param "HOME_DIR") "/.gitconfig"))
-    ;; Allow writes to included directories from --include-directories
-    (subpath (param "INCLUDE_DIR_0"))
-    (subpath (param "INCLUDE_DIR_1"))
-    (subpath (param "INCLUDE_DIR_2"))
-    (subpath (param "INCLUDE_DIR_3"))
-    (subpath (param "INCLUDE_DIR_4"))
-    (literal "/dev/stdout")
-    (literal "/dev/stderr")
-    (literal "/dev/null")
-)
-
-;; deny all inbound network traffic EXCEPT on debugger port
-(deny network-inbound)
-(allow network-inbound (local ip "localhost:9229"))
-
-;; deny all outbound network traffic EXCEPT through proxy on localhost:8877
-;; set `OSA_SANDBOX_PROXY_COMMAND=<command>` to run proxy alongside sandbox
-;; proxy must listen on :::8877 (see docs/examples/proxy-script.md)
-(deny network-outbound)
-(allow network-outbound (remote tcp "localhost:8877"))
-
-(allow network-bind (local ip "*:*"))

package/sandbox-macos-restrictive-closed 2.sb

@@ -1,93 +0,0 @@
-(version 1)
-
-;; deny everything by default
-(deny default)
-
-;; allow reading files from anywhere on host
-(allow file-read*)
-
-;; allow exec/fork (children inherit policy)
-(allow process-exec)
-(allow process-fork)
-
-;; allow signals to self, e.g. SIGPIPE on write to closed pipe
-(allow signal (target self))
-
-;; allow read access to specific information about system
-;; from https://source.chromium.org/chromium/chromium/src/+/main:sandbox/policy/mac/common.sb;l=273-319;drc=7b3962fe2e5fc9e2ee58000dc8fbf3429d84d3bd
-(allow sysctl-read
-  (sysctl-name "hw.activecpu")
-  (sysctl-name "hw.busfrequency_compat")
-  (sysctl-name "hw.byteorder")
-  (sysctl-name "hw.cacheconfig")
-  (sysctl-name "hw.cachelinesize_compat")
-  (sysctl-name "hw.cpufamily")
-  (sysctl-name "hw.cpufrequency_compat")
-  (sysctl-name "hw.cputype")
-  (sysctl-name "hw.l1dcachesize_compat")
-  (sysctl-name "hw.l1icachesize_compat")
-  (sysctl-name "hw.l2cachesize_compat")
-  (sysctl-name "hw.l3cachesize_compat")
-  (sysctl-name "hw.logicalcpu_max")
-  (sysctl-name "hw.machine")
-  (sysctl-name "hw.ncpu")
-  (sysctl-name "hw.nperflevels")
-  (sysctl-name "hw.optional.arm.FEAT_BF16")
-  (sysctl-name "hw.optional.arm.FEAT_DotProd")
-  (sysctl-name "hw.optional.arm.FEAT_FCMA")
-  (sysctl-name "hw.optional.arm.FEAT_FHM")
-  (sysctl-name "hw.optional.arm.FEAT_FP16")
-  (sysctl-name "hw.optional.arm.FEAT_I8MM")
-  (sysctl-name "hw.optional.arm.FEAT_JSCVT")
-  (sysctl-name "hw.optional.arm.FEAT_LSE")
-  (sysctl-name "hw.optional.arm.FEAT_RDM")
-  (sysctl-name "hw.optional.arm.FEAT_SHA512")
-  (sysctl-name "hw.optional.armv8_2_sha512")
-  (sysctl-name "hw.packages")
-  (sysctl-name "hw.pagesize_compat")
-  (sysctl-name "hw.physicalcpu_max")
-  (sysctl-name "hw.tbfrequency_compat")
-  (sysctl-name "hw.vectorunit")
-  (sysctl-name "kern.hostname")
-  (sysctl-name "kern.maxfilesperproc")
-  (sysctl-name "kern.osproductversion")
-  (sysctl-name "kern.osrelease")
-  (sysctl-name "kern.ostype")
-  (sysctl-name "kern.osvariant_status")
-  (sysctl-name "kern.osversion")
-  (sysctl-name "kern.secure_kernel")
-  (sysctl-name "kern.usrstack64")
-  (sysctl-name "kern.version")
-  (sysctl-name "sysctl.proc_cputype")
-  (sysctl-name-prefix "hw.perflevel")
-)
-
-;; allow writes to specific paths
-(allow file-write*
-    (subpath (param "TARGET_DIR"))
-    (subpath (param "TMP_DIR"))
-    (subpath (param "CACHE_DIR"))
-    (subpath (string-append (param "HOME_DIR") "/.OSA"))
-    (subpath (string-append (param "HOME_DIR") "/.npm"))
-    (subpath (string-append (param "HOME_DIR") "/.cache"))
-    (subpath (string-append (param "HOME_DIR") "/.gitconfig"))
-    ;; Allow writes to included directories from --include-directories
-    (subpath (param "INCLUDE_DIR_0"))
-    (subpath (param "INCLUDE_DIR_1"))
-    (subpath (param "INCLUDE_DIR_2"))
-    (subpath (param "INCLUDE_DIR_3"))
-    (subpath (param "INCLUDE_DIR_4"))
-    (literal "/dev/stdout")
-    (literal "/dev/stderr")
-    (literal "/dev/null")
-)
-
-;; allow communication with sysmond for process listing (e.g. for pgrep)
-(allow mach-lookup (global-name "com.apple.sysmond"))
-
-;; enable terminal access required by ink
-;; fixes setRawMode EPERM failure (at node:tty:81:24)
-(allow file-ioctl (regex #"^/dev/tty.*"))
-
-;; allow inbound network traffic on debugger port
-(allow network-inbound (local ip "localhost:9229"))

package/sandbox-macos-restrictive-open 2.sb

@@ -1,96 +0,0 @@
-(version 1)
-
-;; deny everything by default
-(deny default)
-
-;; allow reading files from anywhere on host
-(allow file-read*)
-
-;; allow exec/fork (children inherit policy)
-(allow process-exec)
-(allow process-fork)
-
-;; allow signals to self, e.g. SIGPIPE on write to closed pipe
-(allow signal (target self))
-
-;; allow read access to specific information about system
-;; from https://source.chromium.org/chromium/chromium/src/+/main:sandbox/policy/mac/common.sb;l=273-319;drc=7b3962fe2e5fc9e2ee58000dc8fbf3429d84d3bd
-(allow sysctl-read
-  (sysctl-name "hw.activecpu")
-  (sysctl-name "hw.busfrequency_compat")
-  (sysctl-name "hw.byteorder")
-  (sysctl-name "hw.cacheconfig")
-  (sysctl-name "hw.cachelinesize_compat")
-  (sysctl-name "hw.cpufamily")
-  (sysctl-name "hw.cpufrequency_compat")
-  (sysctl-name "hw.cputype")
-  (sysctl-name "hw.l1dcachesize_compat")
-  (sysctl-name "hw.l1icachesize_compat")
-  (sysctl-name "hw.l2cachesize_compat")
-  (sysctl-name "hw.l3cachesize_compat")
-  (sysctl-name "hw.logicalcpu_max")
-  (sysctl-name "hw.machine")
-  (sysctl-name "hw.ncpu")
-  (sysctl-name "hw.nperflevels")
-  (sysctl-name "hw.optional.arm.FEAT_BF16")
-  (sysctl-name "hw.optional.arm.FEAT_DotProd")
-  (sysctl-name "hw.optional.arm.FEAT_FCMA")
-  (sysctl-name "hw.optional.arm.FEAT_FHM")
-  (sysctl-name "hw.optional.arm.FEAT_FP16")
-  (sysctl-name "hw.optional.arm.FEAT_I8MM")
-  (sysctl-name "hw.optional.arm.FEAT_JSCVT")
-  (sysctl-name "hw.optional.arm.FEAT_LSE")
-  (sysctl-name "hw.optional.arm.FEAT_RDM")
-  (sysctl-name "hw.optional.arm.FEAT_SHA512")
-  (sysctl-name "hw.optional.armv8_2_sha512")
-  (sysctl-name "hw.packages")
-  (sysctl-name "hw.pagesize_compat")
-  (sysctl-name "hw.physicalcpu_max")
-  (sysctl-name "hw.tbfrequency_compat")
-  (sysctl-name "hw.vectorunit")
-  (sysctl-name "kern.hostname")
-  (sysctl-name "kern.maxfilesperproc")
-  (sysctl-name "kern.osproductversion")
-  (sysctl-name "kern.osrelease")
-  (sysctl-name "kern.ostype")
-  (sysctl-name "kern.osvariant_status")
-  (sysctl-name "kern.osversion")
-  (sysctl-name "kern.secure_kernel")
-  (sysctl-name "kern.usrstack64")
-  (sysctl-name "kern.version")
-  (sysctl-name "sysctl.proc_cputype")
-  (sysctl-name-prefix "hw.perflevel")
-)
-
-;; allow writes to specific paths
-(allow file-write*
-    (subpath (param "TARGET_DIR"))
-    (subpath (param "TMP_DIR"))
-    (subpath (param "CACHE_DIR"))
-    (subpath (string-append (param "HOME_DIR") "/.OSA"))
-    (subpath (string-append (param "HOME_DIR") "/.npm"))
-    (subpath (string-append (param "HOME_DIR") "/.cache"))
-    (subpath (string-append (param "HOME_DIR") "/.gitconfig"))
-    ;; Allow writes to included directories from --include-directories
-    (subpath (param "INCLUDE_DIR_0"))
-    (subpath (param "INCLUDE_DIR_1"))
-    (subpath (param "INCLUDE_DIR_2"))
-    (subpath (param "INCLUDE_DIR_3"))
-    (subpath (param "INCLUDE_DIR_4"))
-    (literal "/dev/stdout")
-    (literal "/dev/stderr")
-    (literal "/dev/null")
-)
-
-;; allow communication with sysmond for process listing (e.g. for pgrep)
-(allow mach-lookup (global-name "com.apple.sysmond"))
-
-;; enable terminal access required by ink
-;; fixes setRawMode EPERM failure (at node:tty:81:24)
-(allow file-ioctl (regex #"^/dev/tty.*"))
-
-;; allow inbound network traffic on debugger port
-(allow network-inbound (local ip "localhost:9229"))
-
-;; allow all outbound network traffic
-(allow network-outbound)

package/sandbox-macos-restrictive-proxied 2.sb

@@ -1,98 +0,0 @@
-(version 1)
-
-;; deny everything by default
-(deny default)
-
-;; allow reading files from anywhere on host
-(allow file-read*)
-
-;; allow exec/fork (children inherit policy)
-(allow process-exec)
-(allow process-fork)
-
-;; allow signals to self, e.g. SIGPIPE on write to closed pipe
-(allow signal (target self))
-
-;; allow read access to specific information about system
-;; from https://source.chromium.org/chromium/chromium/src/+/main:sandbox/policy/mac/common.sb;l=273-319;drc=7b3962fe2e5fc9e2ee58000dc8fbf3429d84d3bd
-(allow sysctl-read
-  (sysctl-name "hw.activecpu")
-  (sysctl-name "hw.busfrequency_compat")
-  (sysctl-name "hw.byteorder")
-  (sysctl-name "hw.cacheconfig")
-  (sysctl-name "hw.cachelinesize_compat")
-  (sysctl-name "hw.cpufamily")
-  (sysctl-name "hw.cpufrequency_compat")
-  (sysctl-name "hw.cputype")
-  (sysctl-name "hw.l1dcachesize_compat")
-  (sysctl-name "hw.l1icachesize_compat")
-  (sysctl-name "hw.l2cachesize_compat")
-  (sysctl-name "hw.l3cachesize_compat")
-  (sysctl-name "hw.logicalcpu_max")
-  (sysctl-name "hw.machine")
-  (sysctl-name "hw.ncpu")
-  (sysctl-name "hw.nperflevels")
-  (sysctl-name "hw.optional.arm.FEAT_BF16")
-  (sysctl-name "hw.optional.arm.FEAT_DotProd")
-  (sysctl-name "hw.optional.arm.FEAT_FCMA")
-  (sysctl-name "hw.optional.arm.FEAT_FHM")
-  (sysctl-name "hw.optional.arm.FEAT_FP16")
-  (sysctl-name "hw.optional.arm.FEAT_I8MM")
-  (sysctl-name "hw.optional.arm.FEAT_JSCVT")
-  (sysctl-name "hw.optional.arm.FEAT_LSE")
-  (sysctl-name "hw.optional.arm.FEAT_RDM")
-  (sysctl-name "hw.optional.arm.FEAT_SHA512")
-  (sysctl-name "hw.optional.armv8_2_sha512")
-  (sysctl-name "hw.packages")
-  (sysctl-name "hw.pagesize_compat")
-  (sysctl-name "hw.physicalcpu_max")
-  (sysctl-name "hw.tbfrequency_compat")
-  (sysctl-name "hw.vectorunit")
-  (sysctl-name "kern.hostname")
-  (sysctl-name "kern.maxfilesperproc")
-  (sysctl-name "kern.osproductversion")
-  (sysctl-name "kern.osrelease")
-  (sysctl-name "kern.ostype")
-  (sysctl-name "kern.osvariant_status")
-  (sysctl-name "kern.osversion")
-  (sysctl-name "kern.secure_kernel")
-  (sysctl-name "kern.usrstack64")
-  (sysctl-name "kern.version")
-  (sysctl-name "sysctl.proc_cputype")
-  (sysctl-name-prefix "hw.perflevel")
-)
-
-;; allow writes to specific paths
-(allow file-write*
-    (subpath (param "TARGET_DIR"))
-    (subpath (param "TMP_DIR"))
-    (subpath (param "CACHE_DIR"))
-    (subpath (string-append (param "HOME_DIR") "/.OSA"))
-    (subpath (string-append (param "HOME_DIR") "/.npm"))
-    (subpath (string-append (param "HOME_DIR") "/.cache"))
-    (subpath (string-append (param "HOME_DIR") "/.gitconfig"))
-    ;; Allow writes to included directories from --include-directories
-    (subpath (param "INCLUDE_DIR_0"))
-    (subpath (param "INCLUDE_DIR_1"))
-    (subpath (param "INCLUDE_DIR_2"))
-    (subpath (param "INCLUDE_DIR_3"))
-    (subpath (param "INCLUDE_DIR_4"))
-    (literal "/dev/stdout")
-    (literal "/dev/stderr")
-    (literal "/dev/null")
-)
-
-;; allow communication with sysmond for process listing (e.g. for pgrep)
-(allow mach-lookup (global-name "com.apple.sysmond"))
-
-;; enable terminal access required by ink
-;; fixes setRawMode EPERM failure (at node:tty:81:24)
-(allow file-ioctl (regex #"^/dev/tty.*"))
-
-;; allow inbound network traffic on debugger port
-(allow network-inbound (local ip "localhost:9229"))
-
-;; allow outbound network traffic through proxy on localhost:8877
-;; set `OSA_SANDBOX_PROXY_COMMAND=<command>` to run proxy alongside sandbox
-;; proxy must listen on :::8877 (see docs/examples/proxy-script.md)
-(allow network-outbound (remote tcp "localhost:8877"))