osai-agent 4.2.11 → 4.2.12

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "osai-agent",
-  "version": "4.2.11",
+  "version": "4.2.12",
   "type": "module",
   "description": "OS AI Agent - YOUR AI AGENT",
   "main": "src/index.js",

package/src/agent/loop/tool-executor.js

@@ -15,6 +15,8 @@ import { TOOLS, SAFETY_TIERS, MODES, EXECUTION_MODES, READ_ONLY_TOOLS, READ_FRES
 import { discoverSkills, loadSkill, createSkill, formatSkillsList } from '../../skills/loader.js';
 import { runSubagent } from '../subagent.js';
 import { logger } from '../../utils/logger.js';
+import inquirer from 'inquirer';
+import chalk from 'chalk';
 import path from 'path';
 
 // Helper: yield rapide pour ne pas bloquer l'event loop
@@ -235,6 +237,20 @@ export default {
       }
     }
 
+    // Sudo password prompt
+    if (tool === TOOLS.LOCAL_CMD && /^sudo\b/.test(toolCall.cmd?.trim()) && !this.isSubagent) {
+      if (!this.sudoPassword) {
+        this.onMarkdown(chalk.dim('\n_This command requires sudo. Enter your password:_\n'));
+        const { password } = await inquirer.prompt([{
+          type: 'password',
+          name: 'password',
+          message: '  sudo password:',
+          mask: '*',
+        }]);
+        this.sudoPassword = password;
+      }
+    }
+
     const safety = checkSafety(toolCall, this.mode);
 
     if ((safety.tier === SAFETY_TIERS.READ && this.noConfirm) || !safety.requiresConfirmation) {
@@ -410,7 +426,7 @@ export default {
 
         case TOOLS.LOCAL_CMD:
         default:
-          return await executeLocal(toolCall.cmd || '');
+          return await executeLocal(toolCall.cmd || '', this.sudoPassword || null);
       }
     } catch (error) {
       logger.error('Tool dispatch error', { tool, error: error.message });

package/src/agent/react-loop.js

@@ -216,6 +216,7 @@ export class AgentLoop {
 
   cancel() {
     this._cancelled = true;
+    this.sudoPassword = null;
     if (this.abortController) {
       try { this.abortController.abort(); } catch {}
     }
@@ -236,6 +237,7 @@ export class AgentLoop {
   }
 
   async cleanup() {
+    this.sudoPassword = null;
     if (this.ws) { try { this.ws.close(); } catch {} this.ws = null; }
     if (this.mode === MODES.NETWORK) closeAllConnections();
   }

package/src/tools/local.js

@@ -194,7 +194,7 @@ export const getSystemInfo = () => ({
 /**
  * Execute a local shell command with timeout and safety checks.
  */
-export const executeLocal = async (command) => {
+export const executeLocal = async (command, sudoPassword = null) => {
   const trimmedCmd = (command || '').trim();
   if (!trimmedCmd) {
     return { success: false, output: '', error: 'Empty command' };
@@ -214,7 +214,11 @@ export const executeLocal = async (command) => {
   logger.debug('Executing local command', { cmd: trimmedCmd, timeout: COMMAND_TIMEOUT });
 
   const isWindows = detectOS() === 'windows';
-  const finalCommand = isWindows ? `chcp 65001 >nul 2>&1 && ${trimmedCmd}` : trimmedCmd;
+  let finalCommand = isWindows ? `chcp 65001 >nul 2>&1 && ${trimmedCmd}` : trimmedCmd;
+
+  if (sudoPassword && /^sudo\b/.test(finalCommand)) {
+    finalCommand = finalCommand.replace(/^sudo\b/, 'sudo -S');
+  }
 
   return await new Promise((resolve) => {
     let output = '';
@@ -235,6 +239,14 @@ export const executeLocal = async (command) => {
       env: { ...process.env, PYTHONIOENCODING: 'utf-8', LANG: 'en_US.UTF-8' },
     });
 
+    if (sudoPassword) {
+      const writePassword = () => {
+        child.stdin.write(sudoPassword + '\n');
+        child.stdin.end();
+      };
+      setTimeout(writePassword, 200);
+    }
+
     const timeoutId = setTimeout(() => {
       timedOut = true;
       try { child.kill('SIGTERM'); } catch {}