pullfrog 0.0.201 → 0.0.203

package/dist/utils/log.d.ts

@@ -1,7 +1,7 @@
 /**
  * Logging utilities that work well in both local and GitHub Actions environments
  */
-import type { AgentUsage } from "../agents/shared.ts";
+import { type AgentUsage } from "../agents/shared.ts";
 /** run `fn` with every log line prefixed by `prefix` (e.g. "[task-label]") in magenta */
 export declare function withLogPrefix<T>(prefix: string, fn: () => Promise<T>): Promise<T>;
 /**
@@ -86,7 +86,18 @@ export declare function formatJsonValue(value: unknown): string;
  */
 export declare function formatIndentedField(label: string, content: string): string;
 /**
- * format aggregated usage data as a markdown table for the GitHub step summary
+ * format aggregated usage data as a markdown table for the GitHub step summary.
+ *
+ * columns mirror the per-run stdout token table emitted by `logTokenTable`
+ * (Input / Cache Read / Cache Write / Output / Total / Cost ($)) so the job
+ * summary and the in-run logs can be compared row-for-row.
+ *
+ * notes:
+ *   - `AgentUsage.inputTokens` is the sum of non-cached input + cache read
+ *     + cache write (set that way by both agent harnesses' `buildUsage`),
+ *     so the non-cached Input column is recovered by subtracting cache fields.
+ *   - `costUsd` is sourced from models.dev (OpenCode) or `total_cost_usd`
+ *     (Claude CLI). absent rows show `—` so per-agent coverage is obvious.
  */
 export declare function formatUsageSummary(entries: AgentUsage[]): string;
 export {};

package/dist/utils/patchWorkflowRunFields.d.ts

@@ -1,6 +1,29 @@
+import type { AgentUsage } from "../agents/shared.ts";
 import type { ToolContext } from "../mcp/server.ts";
-/** Keys accepted by PATCH /api/workflow-run/[runId] — keep in sync with `ALLOWED_FIELDS` in `app/api/workflow-run/[runId]/route.ts`. */
+/**
+ * Artifact tracking fields — one-off PATCHes from MCP tools as GitHub entities
+ * are created during the run. Strings only (GraphQL node IDs).
+ * Keep in sync with `STRING_FIELDS` in `app/api/workflow-run/[runId]/route.ts`.
+ */
 export type WorkflowRunArtifactPatchKey = "prNodeId" | "issueNodeId" | "reviewNodeId" | "planCommentNodeId" | "summaryCommentNodeId";
-export type WorkflowRunArtifactPatch = Partial<Record<WorkflowRunArtifactPatchKey, string>>;
-/** PATCH workflow-run artifact fields (Pullfrog JWT, not GitHub). */
-export declare function patchWorkflowRunFields(ctx: ToolContext, fields: WorkflowRunArtifactPatch): Promise<void>;
+/**
+ * Usage fields — aggregated across all agent calls and PATCHed once at
+ * end-of-run. Token counts are Int4 on the DB side (ample for any realistic
+ * run); `costUsd` is a Decimal populated by provider-reported dollar amounts.
+ * Keep in sync with `INT_FIELDS` + `DECIMAL_FIELDS` in the server route.
+ */
+export type WorkflowRunUsagePatchKey = "inputTokens" | "outputTokens" | "cacheReadTokens" | "cacheWriteTokens" | "costUsd";
+export type WorkflowRunPatch = Partial<Record<WorkflowRunArtifactPatchKey, string>> & Partial<Record<WorkflowRunUsagePatchKey, number>>;
+/** PATCH workflow-run fields (Pullfrog JWT, not GitHub). */
+export declare function patchWorkflowRunFields(ctx: ToolContext, fields: WorkflowRunPatch): Promise<void>;
+/**
+ * Sum per-agent usage entries into a single WorkflowRunPatch payload.
+ * Returns an empty object when there's nothing to report, which causes
+ * `patchWorkflowRunFields` to no-op — safe to call unconditionally from
+ * end-of-run paths. Zero-valued fields are dropped so the DB only stores
+ * positive sums (and NULL means "not reported").
+ *
+ * Token sums are clamped to INT4_MAX to guarantee the payload the server
+ * sees is always self-consistent across all numeric columns.
+ */
+export declare function aggregateUsage(entries: AgentUsage[]): WorkflowRunPatch;

package/dist/utils/runContext.d.ts

@@ -12,11 +12,13 @@ export interface RepoSettings {
     setupScript: string | null;
     postCheckoutScript: string | null;
     prepushScript: string | null;
+    stopScript: string | null;
     push: PushPermission;
     shell: ShellPermission;
     prApproveEnabled: boolean;
     modeInstructions: Record<string, string>;
     learnings: string | null;
+    envAllowlist: string | null;
 }
 export interface RunContext {
     settings: RepoSettings;

package/dist/utils/secrets.d.ts

@@ -1,14 +1,21 @@
 /**
  * Secret detection and env filtering utilities
+ *
+ * subprocess env filtering: default-deny allowlist model.
+ * only vars in the safe set or user allowlist are passed to child processes.
+ *
+ * log redaction: SENSITIVE_PATTERNS are used to identify secret values
+ * for redaction in logs and GHA masking (independent of subprocess filtering).
  */
 export declare const SENSITIVE_PATTERNS: RegExp[];
 export declare function isSensitiveEnvName(key: string): boolean;
-/** filter env vars, removing sensitive values (tokens, keys, secrets) */
+export declare function setEnvAllowlist(raw: string): void;
+/** filter env vars using default-deny allowlist: safe set + user allowlist */
 export declare function filterEnv(): Record<string, string>;
 export type EnvMode = "restricted" | "inherit" | Record<string, string>;
 /**
  * resolve env mode to actual env object
- * - "restricted" (default): filterEnv() to prevent secret leakage
+ * - "restricted" (default): filterEnv() — only safe set + user allowlist
  * - "inherit": full process.env
  * - object: custom env merged with restricted base
  */

package/dist/utils/setup.d.ts

@@ -12,6 +12,19 @@ export declare function createTempDirectory(): string;
  * Setup the test repository for running actions
  */
 export declare function setupTestRepo(options: SetupOptions): void;
+/**
+ * remove any `[includeIf ...]` entries from the local git config so that
+ * actions/checkout-persisted credentials don't ride alongside ASKPASS-provided
+ * auth for subsequent git operations.
+ *
+ * SECURITY: git config subsection values can contain arbitrary characters
+ * including `$(...)` command substitutions, and `${IFS}` spacing tricks defeat
+ * naive split-on-space filtering. we read keys via the `-z` (null-terminated)
+ * output format and feed them to a spawn-array `git config --unset-all` so
+ * the shell never interpolates key contents — closing the RCE path that a
+ * string-interpolated `execSync(...)` would expose.
+ */
+export declare function removeIncludeIfEntries(repoDir: string): void;
 export interface GitContext {
     gitToken: string;
     owner: string;

package/dist/utils/skills.d.ts

@@ -1,3 +1,13 @@
+/**
+ * write all bundled skills into the fake HOME so OpenCode / Claude Code discover
+ * them via their auto-scan directories.
+ *
+ * called once per agent run from each agent's `run()`. cheap (small file
+ * writes), no network, idempotent.
+ */
+export declare function installBundledSkills(params: {
+    home: string;
+}): void;
 /**
  * install a skill globally via the `skills` CLI.
  *

package/dist/utils/subprocess.d.ts

@@ -3,6 +3,12 @@ export type TrackChildOptions = {
     child: ChildProcess;
     killGroup?: boolean;
 };
+export declare const SPAWN_TIMEOUT_CODE = "E_SPAWN_TIMEOUT";
+export declare const SPAWN_ACTIVITY_TIMEOUT_CODE = "E_SPAWN_ACTIVITY_TIMEOUT";
+export declare class SpawnTimeoutError extends Error {
+    readonly code: typeof SPAWN_TIMEOUT_CODE | typeof SPAWN_ACTIVITY_TIMEOUT_CODE;
+    constructor(message: string, code: typeof SPAWN_TIMEOUT_CODE | typeof SPAWN_ACTIVITY_TIMEOUT_CODE);
+}
 export type SignalHandler = (signal: NodeJS.Signals) => void;
 export declare function trackChild(options: TrackChildOptions): void;
 export declare function untrackChild(child: ChildProcess): void;
@@ -15,6 +21,7 @@ export interface SpawnOptions {
     input?: string;
     timeout?: number;
     activityTimeout?: number;
+    onActivityTimeout?: (() => void) | undefined;
     cwd?: string;
     stdio?: ("pipe" | "ignore" | "inherit")[];
     onStdout?: (chunk: string) => void;

package/dist/utils/time.d.ts

@@ -12,3 +12,4 @@ export declare function parseTimeString(input: string): number | null;
  * check if a string is a valid time format.
  */
 export declare function isValidTimeString(input: string): boolean;
+export declare function resolveTimeoutMs(input: string | undefined): number | null;

package/dist/utils/todoTracking.d.ts

@@ -6,7 +6,9 @@ export type TodoTracker = {
     settled: () => Promise<void>;
     /** mark in-progress items as completed (for final snapshot before review/progress post) */
     completeInProgress: () => void;
-    renderCollapsible: () => string;
+    renderCollapsible: (options?: {
+        completeInProgress?: boolean;
+    }) => string;
     readonly enabled: boolean;
     /** true after the tracker has successfully called onUpdate at least once */
     readonly hasPublished: boolean;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "pullfrog",
-  "version": "0.0.201",
+  "version": "0.0.203",
   "type": "module",
   "bin": {
     "pullfrog": "dist/cli.mjs",
@@ -12,6 +12,7 @@
   ],
   "scripts": {
     "test": "vitest",
+    "test:catalog": "vitest run --config vitest.main.config.ts",
     "typecheck": "tsc --noEmit",
     "build": "node esbuild.config.js && tsc -p tsconfig.exports.json",
     "check:entrypoints": "node scripts/check-entrypoint-imports.ts",
@@ -24,7 +25,7 @@
   },
   "devDependencies": {
     "@actions/core": "^1.11.1",
-    "@anthropic-ai/claude-code": "2.1.85",
+    "@anthropic-ai/claude-code": "2.1.112",
     "@ark/fs": "0.56.0",
     "@ark/util": "0.56.0",
     "@clack/prompts": "^1.2.0",