npm - snow-ai - Versions diffs - 0.6.36 → 0.6.37 - Mend

snow-ai 0.6.36 → 0.6.37

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/bundle/cli.mjs CHANGED Viewed

@@ -48079,7 +48079,8 @@ function getSystemPrompt() {
   const codeSearchSection = getCodeSearchSection(hasCodebase);
   const platformCommandsSection = getPlatformCommandsSection();
   const timeInfo = getCurrentTimeInfo();
-  const finalPrompt = basePrompt.replace("PLACEHOLDER_FOR_WORKFLOW_SECTION", workflowSection).replace("PLACEHOLDER_FOR_CODE_SEARCH_SECTION", codeSearchSection).replace("PLACEHOLDER_FOR_PLATFORM_COMMANDS_SECTION", platformCommandsSection);
+  const cliPid = String(process.pid);
+  const finalPrompt = basePrompt.replace("PLACEHOLDER_FOR_WORKFLOW_SECTION", workflowSection).replace("PLACEHOLDER_FOR_CODE_SEARCH_SECTION", codeSearchSection).replace("PLACEHOLDER_FOR_PLATFORM_COMMANDS_SECTION", platformCommandsSection).replace(/PLACEHOLDER_FOR_CLI_PID/g, cliPid);
   return appendSystemContext(finalPrompt, systemEnv, timeInfo);
 }
 function getSystemPromptForMode(planMode, vulnerabilityHuntingMode) {
@@ -48215,6 +48216,17 @@ and other shell features. Your capabilities include text processing, data filter
 manipulation, workflow automation, and complex command chaining to solve sophisticated
 system administration and data processing challenges.
+**\u26A0 CRITICAL - SELF-PROTECTION (Node.js Process Safety):**
+This CLI runs as a Node.js process (PID: PLACEHOLDER_FOR_CLI_PID). You MUST NEVER execute commands that kill Node.js processes by name, as doing so will terminate the CLI itself and crash the session. Blocked patterns include:
+- PowerShell: \`Stop-Process -Name node*\`, \`Get-Process *node* | Stop-Process\`, or any pipeline that filters node processes then pipes to \`Stop-Process\`
+- CMD: \`taskkill /IM node.exe\`, \`taskkill /F /IM node.exe\`
+- Unix: \`killall node\`, \`pkill node\`, \`pkill -f node\`
+If the user needs to kill specific Node.js processes (e.g. dev servers), you MUST:
+1. First list processes to identify the specific PIDs: \`Get-Process node\` or \`ps aux | grep node\`
+2. Then kill by specific PID while excluding PID PLACEHOLDER_FOR_CLI_PID: e.g. \`Stop-Process -Id <target_pid>\` or \`kill <target_pid>\`
+3. Or use an exclusion filter: \`Get-Process node | Where-Object { $_.Id -ne PLACEHOLDER_FOR_CLI_PID } | Stop-Process\`
+Never use broad process-name-based kill commands that would match all Node.js processes.
 **Sub-Agent & Skills - Important Distinction:**
 **CRITICAL: Sub-Agents and Skills are COMPLETELY DIFFERENT - DO NOT confuse them!**
@@ -48259,7 +48271,7 @@ PLACEHOLDER_FOR_PLATFORM_COMMANDS_SECTION
 - This file may not exist. If you can't find it, please ignore it.
 Remember: **ACTION > ANALYSIS**. Write code first, investigate only when blocked.
-You need to run in a Node.js, If the user wants to close the Node.js process, you need to explain this fact to the user and ask the user to confirm it for the second time.`;
+You are running as a Node.js process (PID: PLACEHOLDER_FOR_CLI_PID). If a user requests killing Node.js processes, you MUST warn them that this would also terminate the CLI, list processes with their PIDs first, and help them selectively kill only the intended targets while excluding PID PLACEHOLDER_FOR_CLI_PID.`;
   }
 });
@@ -363844,6 +363856,51 @@ ${formattedDiagnostics}`;
 function isDangerousCommand(command) {
   return DANGEROUS_PATTERNS.some((pattern) => pattern.test(command));
 }
+function isSelfDestructiveCommand(command) {
+  const lower = command.toLowerCase();
+  const cliPid = process.pid;
+  if (lower.includes("stop-process") && /\bnode\b/i.test(command)) {
+    return {
+      isSelfDestructive: true,
+      reason: "Command would terminate Node.js processes, including this CLI itself",
+      suggestion: `This CLI is running as Node.js (PID: ${cliPid}). Add a PID exclusion filter, e.g.: Where-Object { ... -and $_.Id -ne ${cliPid} }`
+    };
+  }
+  if (/\btaskkill\b/i.test(command) && /\bnode(\.exe)?\b/i.test(command)) {
+    return {
+      isSelfDestructive: true,
+      reason: "Command would terminate node.exe processes, including this CLI itself",
+      suggestion: `This CLI is running as node.exe (PID: ${cliPid}). Use "taskkill /PID <target_pid>" for specific processes, excluding PID ${cliPid}.`
+    };
+  }
+  if (/\bkillall\s+(-\w+\s+)*node\b/i.test(command)) {
+    return {
+      isSelfDestructive: true,
+      reason: "killall node would terminate ALL Node.js processes, including this CLI",
+      suggestion: `Use "kill <specific_pid>" to target individual processes, excluding PID ${cliPid}.`
+    };
+  }
+  if (/\bpkill\s+(-\w+\s+)*node\b/i.test(command)) {
+    return {
+      isSelfDestructive: true,
+      reason: "pkill node would terminate Node.js processes, including this CLI",
+      suggestion: `Use "kill <specific_pid>" to target individual processes, excluding PID ${cliPid}.`
+    };
+  }
+  const pidPatterns = [
+    new RegExp(`\\bkill\\s+(-\\d+\\s+)*${cliPid}\\b`),
+    new RegExp(`\\bStop-Process\\s+.*-Id\\s+${cliPid}\\b`, "i"),
+    new RegExp(`\\btaskkill\\b.*\\/PID\\s+${cliPid}\\b`, "i")
+  ];
+  if (pidPatterns.some((p) => p.test(command))) {
+    return {
+      isSelfDestructive: true,
+      reason: `Command directly targets this CLI process (PID: ${cliPid})`,
+      suggestion: `PID ${cliPid} is the Snow CLI process. Killing it will terminate the current session.`
+    };
+  }
+  return { isSelfDestructive: false };
+}
 function truncateOutput(output2, maxLength) {
   if (!output2)
     return "";
@@ -364255,6 +364312,10 @@ var init_bash = __esm({
           if (isDangerousCommand(command)) {
             throw new Error(`Dangerous command detected and blocked: ${command.slice(0, 50)}`);
           }
+          const selfDestruct = isSelfDestructiveCommand(command);
+          if (selfDestruct.isSelfDestructive) {
+            throw new Error(`[SELF-PROTECTION] Command blocked: ${selfDestruct.reason}. ${selfDestruct.suggestion}`);
+          }
           if (this.isSSHPath(this.workingDirectory)) {
             const parsed = parseSSHUrl(this.workingDirectory);
             if (!parsed) {
@@ -556532,6 +556593,19 @@ function useBashMode() {
     return isSensitiveCommand(command);
   }, []);
   const executeCommand2 = (0, import_react96.useCallback)(async (command, timeout2 = 3e4) => {
+    const selfDestruct = isSelfDestructiveCommand(command);
+    if (selfDestruct.isSelfDestructive) {
+      setState((prev) => ({ ...prev, isExecuting: false }));
+      return {
+        success: false,
+        stdout: "",
+        stderr: `[SELF-PROTECTION] ${selfDestruct.reason}
+${selfDestruct.suggestion}`,
+        command,
+        exitCode: 1,
+        signal: null
+      };
+    }
     setState((prev) => ({
       ...prev,
       isExecuting: true,
@@ -556879,6 +556953,7 @@ var init_useBashMode = __esm({
     "use strict";
     import_react96 = __toESM(require_react(), 1);
     init_sensitiveCommandManager();
+    init_security_utils();
   }
 });

package/bundle/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
 	"name": "snow-ai",
-	"version": "0.6.36",
+	"version": "0.6.37",
 	"description": "Agentic coding in your terminal",
 	"license": "MIT",
 	"bin": {

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
 	"name": "snow-ai",
-	"version": "0.6.36",
+	"version": "0.6.37",
 	"description": "Agentic coding in your terminal",
 	"license": "MIT",
 	"bin": {