patchwork-os 0.2.0-alpha.35 → 0.2.0-alpha.37

package/dist/recipes/resolveRecipePath.js

@@ -0,0 +1,202 @@
+/**
+ * resolveRecipePath — recipe-runner path jail.
+ *
+ * Closes G-security F-01 (CRITICAL — `file.read/write/append` accept any
+ * absolute path), F-02 (CRITICAL — template-substituted vars escape via
+ * `..`), and the R2 C-1 chained-runner third-substitution-site gap.
+ *
+ * Mirrors the symlink-walking strategy from `src/tools/utils.ts:104-200`
+ * (`resolveFilePath`) but operates against an allowlist of recipe-roots
+ * rather than a single workspace root:
+ *
+ *   - `~/.patchwork/`               (always allowed — recipe install dir)
+ *   - the bridge / CLI workspace    (always allowed — passed in via `opts.workspace`)
+ *   - `os.tmpdir()`                 (OFF by default; opt-in via the
+ *                                    `CLAUDE_IDE_BRIDGE_RECIPE_TMP_JAIL=1`
+ *                                    env var, per R2 C-2 maintainer decision)
+ *
+ * On any escape (null byte, segment outside all roots, symlink target
+ * outside roots, hardlink on a write target) the helper throws an `Error`
+ * with `err.code = "recipe_path_jail_escape"`. Callers and tests must
+ * assert on `err.code`, never on message text (R2 M-4).
+ *
+ * Defense-in-depth — apply at every layer:
+ *   - `src/recipes/tools/file.ts`            (per-tool execute())
+ *   - `src/recipes/yamlRunner.ts:976-994`    (default StepDeps file ops)
+ *   - `src/recipes/yamlRunner.ts:642`        (post-render path snapshot)
+ *   - `src/recipes/yamlRunner.ts:1252-1262`  (chained-runner executeTool)
+ *   - `src/recipes/chainedRunner.ts:194-205` (template-substitution site)
+ *   - `src/recipeRoutes.ts:131-138 :172-181` (HTTP vars validator)
+ *   - `src/commands/recipe.ts:1080-1102`     (CLI warn on out-of-jail recipe ref)
+ */
+import fs from "node:fs";
+import os from "node:os";
+import path from "node:path";
+/** Build a jail error with the canonical code. Never expose internals via message-matching. */
+function jailError(message) {
+    const err = new Error(message);
+    err.code = "recipe_path_jail_escape";
+    return err;
+}
+/** Expand a leading `~/` segment using `os.homedir()` (or the test override). */
+function expandHome(p, homeDir) {
+    if (p === "~")
+        return homeDir;
+    if (p.startsWith("~/"))
+        return path.join(homeDir, p.slice(2));
+    return p;
+}
+/** Compute the active jail roots given the runtime opts. */
+function jailRoots(opts) {
+    const homeDir = opts.homeDir ?? os.homedir();
+    const allowTmp = opts.allowTmp ?? process.env.CLAUDE_IDE_BRIDGE_RECIPE_TMP_JAIL === "1";
+    const workspace = opts.workspace ?? process.cwd();
+    const roots = [path.resolve(homeDir, ".patchwork"), path.resolve(workspace)];
+    if (allowTmp) {
+        // On macOS `os.tmpdir()` returns `/var/folders/...` but the conventional
+        // `/tmp` symlink points at `/private/tmp` — we expose both so a recipe
+        // (or a legacy test) that hard-codes `/tmp/...` resolves cleanly. The
+        // symlink-aware realpath check below will still reject anything whose
+        // physical target is outside both roots.
+        roots.push(path.resolve(os.tmpdir()));
+        roots.push("/tmp");
+    }
+    // Dedupe — workspace==tmpdir on some CI runners would double-count and
+    // confuse the "outside all roots" reject branch.
+    return Array.from(new Set(roots));
+}
+/** True if `target` is inside (or equal to) any allowed jail root. */
+function isInsideAnyRoot(target, roots) {
+    for (const root of roots) {
+        if (target === root)
+            return true;
+        if (target.startsWith(root + path.sep))
+            return true;
+    }
+    return false;
+}
+/**
+ * Walk up the ancestor chain of a (possibly non-existent) path, returning
+ * the realpath of the first ancestor that exists on disk plus the unresolved
+ * suffix. Mirrors `src/tools/utils.ts:130-177` so a symlink anywhere along
+ * the chain (including the bridge / install dir) is followed before the
+ * containment check.
+ */
+function realpathOrAncestor(p) {
+    try {
+        return fs.realpathSync(p);
+    }
+    catch {
+        let ancestor = path.dirname(p);
+        const suffix = [path.basename(p)];
+        while (ancestor !== path.dirname(ancestor)) {
+            try {
+                const realAncestor = fs.realpathSync(ancestor);
+                return path.join(realAncestor, ...suffix);
+            }
+            catch {
+                suffix.unshift(path.basename(ancestor));
+                ancestor = path.dirname(ancestor);
+            }
+        }
+        // Reached fs root without finding a real ancestor — fail closed; the
+        // caller will translate this to a jail-escape rather than skip the
+        // containment check.
+        throw new Error(`no real ancestor found for "${p}"`);
+    }
+}
+/**
+ * Resolve a recipe-supplied path, expanding `~/`, normalising, and asserting
+ * the result lives inside one of the jail roots after symlink resolution.
+ *
+ * Throws `RecipePathJailError` (code `"recipe_path_jail_escape"`) on any
+ * containment violation. Callers should propagate the error unchanged so
+ * tests can assert on `err.code`.
+ */
+export function resolveRecipePath(rawPath, opts = {}) {
+    if (typeof rawPath !== "string") {
+        throw jailError("recipe path must be a string");
+    }
+    if (rawPath.length === 0) {
+        throw jailError("recipe path must not be empty");
+    }
+    if (rawPath.includes("\x00")) {
+        throw jailError("recipe path must not contain null bytes");
+    }
+    const homeDir = opts.homeDir ?? os.homedir();
+    const expanded = expandHome(rawPath, homeDir);
+    const resolved = path.isAbsolute(expanded)
+        ? path.resolve(expanded)
+        : path.resolve(opts.workspace ?? process.cwd(), expanded);
+    const roots = jailRoots(opts);
+    // Lexical containment first — cheap reject for `..` segments resolving
+    // outside any root before we do any FS calls.
+    if (!isInsideAnyRoot(resolved, roots)) {
+        throw jailError(`recipe path "${rawPath}" resolves outside the allowed jail roots`);
+    }
+    // Symlink-aware re-check. We resolve the realpath of every existing
+    // ancestor so a link at any level (including a freshly-installed recipe
+    // dir pointing at `/tmp`) cannot bypass the lexical check above.
+    let real;
+    try {
+        real = realpathOrAncestor(resolved);
+    }
+    catch (err) {
+        throw jailError(`recipe path "${rawPath}" failed symlink resolution: ${err instanceof Error ? err.message : String(err)}`);
+    }
+    const realRoots = [];
+    for (const root of roots) {
+        try {
+            realRoots.push(fs.realpathSync(root));
+        }
+        catch {
+            // Root does not exist yet (e.g. ~/.patchwork on a fresh install).
+            // Use the resolved (lexical) form — `mkdirSync({recursive:true})`
+            // will create it inside the lexical jail anyway, and the symlink
+            // walk above already confirmed nothing on disk redirects out.
+            realRoots.push(root);
+        }
+    }
+    if (!isInsideAnyRoot(real, realRoots)) {
+        throw jailError(`recipe path "${rawPath}" escapes jail via symlink (real target "${real}")`);
+    }
+    // Hardlink guard for write paths — same rationale as `resolveFilePath`'s
+    // `opts.write` branch: a hardlink from inside the jail to an outside
+    // file shares an inode and passes the realpath check, but writing
+    // through it would modify the outside file.
+    if (opts.write) {
+        try {
+            const lst = fs.lstatSync(resolved);
+            if (!lst.isDirectory() && lst.nlink > 1) {
+                throw jailError(`recipe path "${rawPath}" is a hardlink (nlink=${lst.nlink}); writes denied to prevent jail escape`);
+            }
+        }
+        catch (err) {
+            // ENOENT — file doesn't exist yet, safe to create. Re-throw if it's
+            // already a jail error (the nlink branch above).
+            if (err instanceof Error &&
+                err.code === "recipe_path_jail_escape") {
+                throw err;
+            }
+            // Other lstat errors (EACCES, etc.) — non-fatal; the write call will
+            // surface them with the OS-level message.
+        }
+    }
+    return resolved;
+}
+/**
+ * Side-effect-free predicate variant — returns `null` on jail escape rather
+ * than throwing. Used by the CLI `recipe run` warn path (F-10), which wants
+ * to write a stderr notice when a recipe **file** lives outside the jail
+ * but still loads it (the YAML loader is a separate trust boundary from the
+ * tool dispatch jail).
+ */
+export function tryResolveRecipePath(rawPath, opts = {}) {
+    try {
+        return resolveRecipePath(rawPath, opts);
+    }
+    catch {
+        return null;
+    }
+}
+//# sourceMappingURL=resolveRecipePath.js.map

package/dist/recipes/resolveRecipePath.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"resolveRecipePath.js","sourceRoot":"","sources":["../../src/recipes/resolveRecipePath.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AAEH,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,IAAI,MAAM,WAAW,CAAC;AAI7B,+FAA+F;AAC/F,SAAS,SAAS,CAAC,OAAe;IAChC,MAAM,GAAG,GAAG,IAAI,KAAK,CAAC,OAAO,CAAwB,CAAC;IACtD,GAAG,CAAC,IAAI,GAAG,yBAAyB,CAAC;IACrC,OAAO,GAAG,CAAC;AACb,CAAC;AAqBD,iFAAiF;AACjF,SAAS,UAAU,CAAC,CAAS,EAAE,OAAe;IAC5C,IAAI,CAAC,KAAK,GAAG;QAAE,OAAO,OAAO,CAAC;IAC9B,IAAI,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC;QAAE,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IAC9D,OAAO,CAAC,CAAC;AACX,CAAC;AAED,4DAA4D;AAC5D,SAAS,SAAS,CAAC,IAA8B;IAC/C,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,IAAI,EAAE,CAAC,OAAO,EAAE,CAAC;IAC7C,MAAM,QAAQ,GACZ,IAAI,CAAC,QAAQ,IAAI,OAAO,CAAC,GAAG,CAAC,iCAAiC,KAAK,GAAG,CAAC;IACzE,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;IAClD,MAAM,KAAK,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,YAAY,CAAC,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC;IAC7E,IAAI,QAAQ,EAAE,CAAC;QACb,yEAAyE;QACzE,uEAAuE;QACvE,sEAAsE;QACtE,sEAAsE;QACtE,yCAAyC;QACzC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;QACtC,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACrB,CAAC;IACD,uEAAuE;IACvE,iDAAiD;IACjD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC;AACpC,CAAC;AAED,sEAAsE;AACtE,SAAS,eAAe,CAAC,MAAc,EAAE,KAAe;IACtD,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,IAAI,MAAM,KAAK,IAAI;YAAE,OAAO,IAAI,CAAC;QACjC,IAAI,MAAM,CAAC,UAAU,CAAC,IAAI,GAAG,IAAI,CAAC,GAAG,CAAC;YAAE,OAAO,IAAI,CAAC;IACtD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;;;;GAMG;AACH,SAAS,kBAAkB,CAAC,CAAS;IACnC,IAAI,CAAC;QACH,OAAO,EAAE,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;IAC5B,CAAC;IAAC,MAAM,CAAC;QACP,IAAI,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;QAC/B,MAAM,MAAM,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;QAClC,OAAO,QAAQ,KAAK,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC3C,IAAI,CAAC;gBACH,MAAM,YAAY,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC;gBAC/C,OAAO,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,GAAG,MAAM,CAAC,CAAC;YAC5C,CAAC;YAAC,MAAM,CAAC;gBACP,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;gBACxC,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YACpC,CAAC;QACH,CAAC;QACD,qEAAqE;QACrE,mEAAmE;QACnE,qBAAqB;QACrB,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,GAAG,CAAC,CAAC;IACvD,CAAC;AACH,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,iBAAiB,CAC/B,OAAe,EACf,OAAiC,EAAE;IAEnC,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;QAChC,MAAM,SAAS,CAAC,8BAA8B,CAAC,CAAC;IAClD,CAAC;IACD,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzB,MAAM,SAAS,CAAC,+BAA+B,CAAC,CAAC;IACnD,CAAC;IACD,IAAI,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;QAC7B,MAAM,SAAS,CAAC,yCAAyC,CAAC,CAAC;IAC7D,CAAC;IAED,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,IAAI,EAAE,CAAC,OAAO,EAAE,CAAC;IAC7C,MAAM,QAAQ,GAAG,UAAU,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;IAC9C,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;QACxC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC;QACxB,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,IAAI,OAAO,CAAC,GAAG,EAAE,EAAE,QAAQ,CAAC,CAAC;IAE5D,MAAM,KAAK,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC;IAE9B,uEAAuE;IACvE,8CAA8C;IAC9C,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,KAAK,CAAC,EAAE,CAAC;QACtC,MAAM,SAAS,CACb,gBAAgB,OAAO,2CAA2C,CACnE,CAAC;IACJ,CAAC;IAED,oEAAoE;IACpE,wEAAwE;IACxE,iEAAiE;IACjE,IAAI,IAAY,CAAC;IACjB,IAAI,CAAC;QACH,IAAI,GAAG,kBAAkB,CAAC,QAAQ,CAAC,CAAC;IACtC,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,SAAS,CACb,gBAAgB,OAAO,gCAAgC,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAC1G,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAa,EAAE,CAAC;IAC/B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,IAAI,CAAC;YACH,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC;QACxC,CAAC;QAAC,MAAM,CAAC;YACP,kEAAkE;YAClE,kEAAkE;YAClE,iEAAiE;YACjE,8DAA8D;YAC9D,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACvB,CAAC;IACH,CAAC;IACD,IAAI,CAAC,eAAe,CAAC,IAAI,EAAE,SAAS,CAAC,EAAE,CAAC;QACtC,MAAM,SAAS,CACb,gBAAgB,OAAO,4CAA4C,IAAI,IAAI,CAC5E,CAAC;IACJ,CAAC;IAED,yEAAyE;IACzE,qEAAqE;IACrE,kEAAkE;IAClE,4CAA4C;IAC5C,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;QACf,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,EAAE,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;YACnC,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,GAAG,CAAC,KAAK,GAAG,CAAC,EAAE,CAAC;gBACxC,MAAM,SAAS,CACb,gBAAgB,OAAO,0BAA0B,GAAG,CAAC,KAAK,yCAAyC,CACpG,CAAC;YACJ,CAAC;QACH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,oEAAoE;YACpE,iDAAiD;YACjD,IACE,GAAG,YAAY,KAAK;gBACnB,GAAyB,CAAC,IAAI,KAAK,yBAAyB,EAC7D,CAAC;gBACD,MAAM,GAAG,CAAC;YACZ,CAAC;YACD,qEAAqE;YACrE,0CAA0C;QAC5C,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,oBAAoB,CAClC,OAAe,EACf,OAAiC,EAAE;IAEnC,IAAI,CAAC;QACH,OAAO,iBAAiB,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;IAC1C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC"}

package/dist/recipes/tools/file.d.ts

@@ -2,5 +2,11 @@
  * File tools — file.read, file.write, file.append
  *
  * Self-registering tool module for the recipe tool registry.
+ *
+ * Path containment is enforced via `resolveRecipePath` (see
+ * `../resolveRecipePath.ts`) — every path passed in by a recipe is
+ * normalized, symlink-resolved, and asserted inside the recipe jail
+ * roots before any FS call. Closes G-security F-01 / F-02 / F-10 + R2
+ * C-1.
  */
 export {};

package/dist/recipes/tools/file.js

@@ -2,16 +2,20 @@
  * File tools — file.read, file.write, file.append
  *
  * Self-registering tool module for the recipe tool registry.
+ *
+ * Path containment is enforced via `resolveRecipePath` (see
+ * `../resolveRecipePath.ts`) — every path passed in by a recipe is
+ * normalized, symlink-resolved, and asserted inside the recipe jail
+ * roots before any FS call. Closes G-security F-01 / F-02 / F-10 + R2
+ * C-1.
  */
 import { existsSync, mkdirSync } from "node:fs";
 import { dirname } from "node:path";
 import { assertWriteAllowed } from "../../featureFlags.js";
+import { resolveRecipePath } from "../resolveRecipePath.js";
 import { CommonSchemas, registerTool } from "../toolRegistry.js";
-function expandHome(p) {
-    if (p.startsWith("~/")) {
-        return `${process.env.HOME ?? process.env.USERPROFILE}${p.slice(1)}`;
-    }
-    return p;
+function jailedPath(p, workspace, write) {
+    return resolveRecipePath(p, { workspace, write });
 }
 function ensureDir(p) {
     const dir = dirname(p);
@@ -42,7 +46,7 @@ registerTool({
     riskDefault: "low",
     isWrite: false,
     execute: async ({ params, step, deps }) => {
-        const p = expandHome(params.path);
+        const p = jailedPath(params.path, deps.workdir, false);
         const optional = step.optional ?? false;
         try {
             return deps.readFile(p);
@@ -84,7 +88,7 @@ registerTool({
     isWrite: true,
     execute: async ({ params, deps }) => {
         assertWriteAllowed("file.write");
-        const p = expandHome(params.path);
+        const p = jailedPath(params.path, deps.workdir, true);
         const content = params.content;
         ensureDir(p);
         deps.writeFile(p, content);
@@ -122,7 +126,7 @@ registerTool({
     isWrite: true,
     execute: async ({ params, step, deps }) => {
         assertWriteAllowed("file.append");
-        const p = expandHome(params.path);
+        const p = jailedPath(params.path, deps.workdir, true);
         const content = params.content;
         // 'when' condition is evaluated before executeStep is called in yamlRunner
         // but we check here too for direct registry usage

package/dist/recipes/tools/file.js.map

@@ -1 +1 @@
-{"version":3,"file":"file.js","sourceRoot":"","sources":["../../../src/recipes/tools/file.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AAChD,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,kBAAkB,EAAE,MAAM,uBAAuB,CAAC;AAC3D,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAEjE,SAAS,UAAU,CAAC,CAAS;IAC3B,IAAI,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QACvB,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,OAAO,CAAC,GAAG,CAAC,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC;IACvE,CAAC;IACD,OAAO,CAAC,CAAC;AACX,CAAC;AAED,SAAS,SAAS,CAAC,CAAS;IAC1B,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;IACvB,IAAI,GAAG,IAAI,GAAG,KAAK,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QAC3C,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IACtC,CAAC;AACH,CAAC;AAED,+EAA+E;AAC/E,YAAY;AACZ,+EAA+E;AAE/E,YAAY,CAAC;IACX,EAAE,EAAE,WAAW;IACf,SAAS,EAAE,MAAM;IACjB,WAAW,EACT,gFAAgF;IAClF,YAAY,EAAE;QACZ,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACV,IAAI,EAAE,aAAa,CAAC,QAAQ;YAC5B,QAAQ,EAAE,aAAa,CAAC,QAAQ;YAChC,IAAI,EAAE,aAAa,CAAC,IAAI;SACzB;QACD,QAAQ,EAAE,CAAC,MAAM,CAAC;KACnB;IACD,YAAY,EAAE;QACZ,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,2DAA2D;KACzE;IACD,WAAW,EAAE,KAAK;IAClB,OAAO,EAAE,KAAK;IACd,OAAO,EAAE,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE;QACxC,MAAM,CAAC,GAAG,UAAU,CAAC,MAAM,CAAC,IAAc,CAAC,CAAC;QAC5C,MAAM,QAAQ,GAAI,IAAI,CAAC,QAAoB,IAAI,KAAK,CAAC;QACrD,IAAI,CAAC;YACH,OAAO,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;QAC1B,CAAC;QAAC,MAAM,CAAC;YACP,IAAI,QAAQ;gBAAE,OAAO,EAAE,CAAC;YACxB,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,EAAE,CAAC,CAAC;QACpD,CAAC;IACH,CAAC;CACF,CAAC,CAAC;AAEH,+EAA+E;AAC/E,aAAa;AACb,+EAA+E;AAE/E,YAAY,CAAC;IACX,EAAE,EAAE,YAAY;IAChB,SAAS,EAAE,MAAM;IACjB,WAAW,EAAE,+DAA+D;IAC5E,YAAY,EAAE;QACZ,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACV,IAAI,EAAE,aAAa,CAAC,QAAQ;YAC5B,OAAO,EAAE;gBACP,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,uDAAuD;aACrE;YACD,IAAI,EAAE,aAAa,CAAC,IAAI;SACzB;QACD,QAAQ,EAAE,CAAC,MAAM,EAAE,SAAS,CAAC;KAC9B;IACD,YAAY,EAAE;QACZ,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACV,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACxB,YAAY,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;SACjC;KACF;IACD,WAAW,EAAE,QAAQ;IACrB,OAAO,EAAE,IAAI;IACb,OAAO,EAAE,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,EAAE,EAAE;QAClC,kBAAkB,CAAC,YAAY,CAAC,CAAC;QACjC,MAAM,CAAC,GAAG,UAAU,CAAC,MAAM,CAAC,IAAc,CAAC,CAAC;QAC5C,MAAM,OAAO,GAAG,MAAM,CAAC,OAAiB,CAAC;QACzC,SAAS,CAAC,CAAC,CAAC,CAAC;QACb,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QAC3B,OAAO,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,YAAY,EAAE,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;IACnE,CAAC;CACF,CAAC,CAAC;AAEH,+EAA+E;AAC/E,cAAc;AACd,+EAA+E;AAE/E,YAAY,CAAC;IACX,EAAE,EAAE,aAAa;IACjB,SAAS,EAAE,MAAM;IACjB,WAAW,EACT,oFAAoF;IACtF,YAAY,EAAE;QACZ,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACV,IAAI,EAAE,aAAa,CAAC,QAAQ;YAC5B,OAAO,EAAE;gBACP,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,wDAAwD;aACtE;YACD,IAAI,EAAE,aAAa,CAAC,IAAI;YACxB,IAAI,EAAE,aAAa,CAAC,IAAI;SACzB;QACD,QAAQ,EAAE,CAAC,MAAM,EAAE,SAAS,CAAC;KAC9B;IACD,YAAY,EAAE;QACZ,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACV,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACxB,aAAa,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;SAClC;KACF;IACD,WAAW,EAAE,QAAQ;IACrB,OAAO,EAAE,IAAI;IACb,OAAO,EAAE,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE;QACxC,kBAAkB,CAAC,aAAa,CAAC,CAAC;QAClC,MAAM,CAAC,GAAG,UAAU,CAAC,MAAM,CAAC,IAAc,CAAC,CAAC;QAC5C,MAAM,OAAO,GAAG,MAAM,CAAC,OAAiB,CAAC;QACzC,2EAA2E;QAC3E,kDAAkD;QAClD,MAAM,IAAI,GAAG,IAAI,CAAC,IAA0B,CAAC;QAC7C,IAAI,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,EAAE,EAAE,CAAC,EAAE,CAAC;YACrC,OAAO,IAAI,CAAC;QACd,CAAC;QACD,SAAS,CAAC,CAAC,CAAC,CAAC;QACb,IAAI,CAAC,UAAU,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QAC5B,OAAO,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,aAAa,EAAE,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;IACpE,CAAC;CACF,CAAC,CAAC;AAEH;;;;GAIG;AACH,SAAS,aAAa,CAAC,IAAY,EAAE,IAA6B;IAChE,sCAAsC;IACtC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,mCAAmC,CAAC,CAAC;IAC9D,IAAI,KAAK,EAAE,CAAC;QACV,MAAM,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,CAAC,GAAG,KAAK,CAAC;QAChC,IAAI,CAAC,EAAE,IAAI,CAAC,GAAG;YAAE,OAAO,KAAK,CAAC;QAC9B,MAAM,GAAG,GAAG,CAAC,CAAC,CAAC,gDAAgD;QAC/D,MAAM,GAAG,GAAG,QAAQ,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;QAC9B,QAAQ,EAAE,EAAE,CAAC;YACX,KAAK,GAAG;gBACN,OAAO,GAAG,GAAG,GAAG,CAAC;YACnB,KAAK,IAAI;gBACP,OAAO,GAAG,IAAI,GAAG,CAAC;YACpB,KAAK,GAAG;gBACN,OAAO,GAAG,GAAG,GAAG,CAAC;YACnB,KAAK,IAAI;gBACP,OAAO,GAAG,IAAI,GAAG,CAAC;YACpB,KAAK,IAAI;gBACP,OAAO,GAAG,KAAK,GAAG,CAAC;YACrB,KAAK,IAAI;gBACP,OAAO,GAAG,KAAK,GAAG,CAAC;QACvB,CAAC;IACH,CAAC;IACD,2BAA2B;IAC3B,OAAO,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC;AACzB,CAAC"}
+{"version":3,"file":"file.js","sourceRoot":"","sources":["../../../src/recipes/tools/file.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AAChD,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,kBAAkB,EAAE,MAAM,uBAAuB,CAAC;AAC3D,OAAO,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAC5D,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAEjE,SAAS,UAAU,CAAC,CAAS,EAAE,SAAiB,EAAE,KAAc;IAC9D,OAAO,iBAAiB,CAAC,CAAC,EAAE,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,CAAC;AACpD,CAAC;AAED,SAAS,SAAS,CAAC,CAAS;IAC1B,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;IACvB,IAAI,GAAG,IAAI,GAAG,KAAK,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QAC3C,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IACtC,CAAC;AACH,CAAC;AAED,+EAA+E;AAC/E,YAAY;AACZ,+EAA+E;AAE/E,YAAY,CAAC;IACX,EAAE,EAAE,WAAW;IACf,SAAS,EAAE,MAAM;IACjB,WAAW,EACT,gFAAgF;IAClF,YAAY,EAAE;QACZ,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACV,IAAI,EAAE,aAAa,CAAC,QAAQ;YAC5B,QAAQ,EAAE,aAAa,CAAC,QAAQ;YAChC,IAAI,EAAE,aAAa,CAAC,IAAI;SACzB;QACD,QAAQ,EAAE,CAAC,MAAM,CAAC;KACnB;IACD,YAAY,EAAE;QACZ,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,2DAA2D;KACzE;IACD,WAAW,EAAE,KAAK;IAClB,OAAO,EAAE,KAAK;IACd,OAAO,EAAE,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE;QACxC,MAAM,CAAC,GAAG,UAAU,CAAC,MAAM,CAAC,IAAc,EAAE,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;QACjE,MAAM,QAAQ,GAAI,IAAI,CAAC,QAAoB,IAAI,KAAK,CAAC;QACrD,IAAI,CAAC;YACH,OAAO,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;QAC1B,CAAC;QAAC,MAAM,CAAC;YACP,IAAI,QAAQ;gBAAE,OAAO,EAAE,CAAC;YACxB,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,EAAE,CAAC,CAAC;QACpD,CAAC;IACH,CAAC;CACF,CAAC,CAAC;AAEH,+EAA+E;AAC/E,aAAa;AACb,+EAA+E;AAE/E,YAAY,CAAC;IACX,EAAE,EAAE,YAAY;IAChB,SAAS,EAAE,MAAM;IACjB,WAAW,EAAE,+DAA+D;IAC5E,YAAY,EAAE;QACZ,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACV,IAAI,EAAE,aAAa,CAAC,QAAQ;YAC5B,OAAO,EAAE;gBACP,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,uDAAuD;aACrE;YACD,IAAI,EAAE,aAAa,CAAC,IAAI;SACzB;QACD,QAAQ,EAAE,CAAC,MAAM,EAAE,SAAS,CAAC;KAC9B;IACD,YAAY,EAAE;QACZ,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACV,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACxB,YAAY,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;SACjC;KACF;IACD,WAAW,EAAE,QAAQ;IACrB,OAAO,EAAE,IAAI;IACb,OAAO,EAAE,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,EAAE,EAAE;QAClC,kBAAkB,CAAC,YAAY,CAAC,CAAC;QACjC,MAAM,CAAC,GAAG,UAAU,CAAC,MAAM,CAAC,IAAc,EAAE,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;QAChE,MAAM,OAAO,GAAG,MAAM,CAAC,OAAiB,CAAC;QACzC,SAAS,CAAC,CAAC,CAAC,CAAC;QACb,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QAC3B,OAAO,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,YAAY,EAAE,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;IACnE,CAAC;CACF,CAAC,CAAC;AAEH,+EAA+E;AAC/E,cAAc;AACd,+EAA+E;AAE/E,YAAY,CAAC;IACX,EAAE,EAAE,aAAa;IACjB,SAAS,EAAE,MAAM;IACjB,WAAW,EACT,oFAAoF;IACtF,YAAY,EAAE;QACZ,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACV,IAAI,EAAE,aAAa,CAAC,QAAQ;YAC5B,OAAO,EAAE;gBACP,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,wDAAwD;aACtE;YACD,IAAI,EAAE,aAAa,CAAC,IAAI;YACxB,IAAI,EAAE,aAAa,CAAC,IAAI;SACzB;QACD,QAAQ,EAAE,CAAC,MAAM,EAAE,SAAS,CAAC;KAC9B;IACD,YAAY,EAAE;QACZ,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACV,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACxB,aAAa,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;SAClC;KACF;IACD,WAAW,EAAE,QAAQ;IACrB,OAAO,EAAE,IAAI;IACb,OAAO,EAAE,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE;QACxC,kBAAkB,CAAC,aAAa,CAAC,CAAC;QAClC,MAAM,CAAC,GAAG,UAAU,CAAC,MAAM,CAAC,IAAc,EAAE,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;QAChE,MAAM,OAAO,GAAG,MAAM,CAAC,OAAiB,CAAC;QACzC,2EAA2E;QAC3E,kDAAkD;QAClD,MAAM,IAAI,GAAG,IAAI,CAAC,IAA0B,CAAC;QAC7C,IAAI,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,EAAE,EAAE,CAAC,EAAE,CAAC;YACrC,OAAO,IAAI,CAAC;QACd,CAAC;QACD,SAAS,CAAC,CAAC,CAAC,CAAC;QACb,IAAI,CAAC,UAAU,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QAC5B,OAAO,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,aAAa,EAAE,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;IACpE,CAAC;CACF,CAAC,CAAC;AAEH;;;;GAIG;AACH,SAAS,aAAa,CAAC,IAAY,EAAE,IAA6B;IAChE,sCAAsC;IACtC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,mCAAmC,CAAC,CAAC;IAC9D,IAAI,KAAK,EAAE,CAAC;QACV,MAAM,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,CAAC,GAAG,KAAK,CAAC;QAChC,IAAI,CAAC,EAAE,IAAI,CAAC,GAAG;YAAE,OAAO,KAAK,CAAC;QAC9B,MAAM,GAAG,GAAG,CAAC,CAAC,CAAC,gDAAgD;QAC/D,MAAM,GAAG,GAAG,QAAQ,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;QAC9B,QAAQ,EAAE,EAAE,CAAC;YACX,KAAK,GAAG;gBACN,OAAO,GAAG,GAAG,GAAG,CAAC;YACnB,KAAK,IAAI;gBACP,OAAO,GAAG,IAAI,GAAG,CAAC;YACpB,KAAK,GAAG;gBACN,OAAO,GAAG,GAAG,GAAG,CAAC;YACnB,KAAK,IAAI;gBACP,OAAO,GAAG,IAAI,GAAG,CAAC;YACpB,KAAK,IAAI;gBACP,OAAO,GAAG,KAAK,GAAG,CAAC;YACrB,KAAK,IAAI;gBACP,OAAO,GAAG,KAAK,GAAG,CAAC;QACvB,CAAC;IACH,CAAC;IACD,2BAA2B;IAC3B,OAAO,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC;AACzB,CAAC"}

package/dist/recipes/tools/index.d.ts

@@ -21,7 +21,9 @@ import "./intercom.js";
 import "./hubspot.js";
 import "./datadog.js";
 import "./discord.js";
+import "./jira.js";
 import "./pagerduty.js";
+import "./sentry.js";
 import "./stripe.js";
 import "./meetingNotes.js";
 export type { RegisteredTool, ToolContext, ToolExecute, ToolMetadata, } from "../toolRegistry.js";

package/dist/recipes/tools/index.js

@@ -23,7 +23,9 @@ import "./intercom.js";
 import "./hubspot.js";
 import "./datadog.js";
 import "./discord.js";
+import "./jira.js";
 import "./pagerduty.js";
+import "./sentry.js";
 import "./stripe.js";
 import "./meetingNotes.js";
 // Re-export registry for convenience

package/dist/recipes/tools/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/recipes/tools/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,aAAa;AACb,OAAO,WAAW,CAAC;AACnB,OAAO,UAAU,CAAC;AAClB,OAAO,kBAAkB,CAAC;AAE1B,wBAAwB;AACxB,OAAO,YAAY,CAAC;AACpB,OAAO,YAAY,CAAC;AACpB,OAAO,kBAAkB,CAAC;AAC1B,OAAO,aAAa,CAAC;AACrB,OAAO,aAAa,CAAC;AACrB,OAAO,aAAa,CAAC;AACrB,OAAO,eAAe,CAAC;AACvB,OAAO,YAAY,CAAC;AACpB,OAAO,aAAa,CAAC;AACrB,OAAO,iBAAiB,CAAC;AACzB,OAAO,cAAc,CAAC;AACtB,OAAO,eAAe,CAAC;AACvB,OAAO,cAAc,CAAC;AACtB,OAAO,cAAc,CAAC;AACtB,OAAO,cAAc,CAAC;AACtB,OAAO,gBAAgB,CAAC;AACxB,OAAO,aAAa,CAAC;AACrB,OAAO,mBAAmB,CAAC;AAQ3B,qCAAqC;AACrC,OAAO,EACL,mBAAmB,EACnB,aAAa,EACb,aAAa,EACb,WAAW,EACX,aAAa,EACb,OAAO,EACP,OAAO,EACP,SAAS,EACT,YAAY,GACb,MAAM,oBAAoB,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/recipes/tools/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,aAAa;AACb,OAAO,WAAW,CAAC;AACnB,OAAO,UAAU,CAAC;AAClB,OAAO,kBAAkB,CAAC;AAE1B,wBAAwB;AACxB,OAAO,YAAY,CAAC;AACpB,OAAO,YAAY,CAAC;AACpB,OAAO,kBAAkB,CAAC;AAC1B,OAAO,aAAa,CAAC;AACrB,OAAO,aAAa,CAAC;AACrB,OAAO,aAAa,CAAC;AACrB,OAAO,eAAe,CAAC;AACvB,OAAO,YAAY,CAAC;AACpB,OAAO,aAAa,CAAC;AACrB,OAAO,iBAAiB,CAAC;AACzB,OAAO,cAAc,CAAC;AACtB,OAAO,eAAe,CAAC;AACvB,OAAO,cAAc,CAAC;AACtB,OAAO,cAAc,CAAC;AACtB,OAAO,cAAc,CAAC;AACtB,OAAO,WAAW,CAAC;AACnB,OAAO,gBAAgB,CAAC;AACxB,OAAO,aAAa,CAAC;AACrB,OAAO,aAAa,CAAC;AACrB,OAAO,mBAAmB,CAAC;AAQ3B,qCAAqC;AACrC,OAAO,EACL,mBAAmB,EACnB,aAAa,EACb,aAAa,EACb,WAAW,EACX,aAAa,EACb,OAAO,EACP,OAAO,EACP,SAAS,EACT,YAAY,GACb,MAAM,oBAAoB,CAAC"}

package/dist/recipes/tools/jira.d.ts

@@ -0,0 +1,14 @@
+/**
+ * Jira tools — read wrappers (search/fetch/list_projects) plus writes
+ * (create_issue, update_status, add_comment).
+ *
+ * Self-registering tool module for the recipe tool registry. Read tools wrap
+ * connector throws into the `{count, items, error}` shape so the runner's
+ * silent-fail detector catches connector failures as a step error rather than
+ * a silent empty list. Write tools use a single-object response shape and
+ * surface failures via an `error` field.
+ *
+ * Mirrors the asana.ts / linear.ts pattern so recipe authors get a uniform
+ * surface across issue trackers.
+ */
+export {};