switchroom 0.13.52 → 0.13.54

package/dist/cli/drive-write-pretool.mjs

@@ -14,7 +14,7 @@ var __export = (target, all) => {
 };
 var __esm = (fn, res) => () => (fn && (res = fn(fn = 0)), res);
 
-// node_modules/.bun/zod@3.25.76/node_modules/zod/v3/helpers/util.js
+// ../switchroom-sec-1417/node_modules/.bun/zod@3.25.76/node_modules/zod/v3/helpers/util.js
 var util, objectUtil, ZodParsedType, getParsedType = (data) => {
   const t = typeof data;
   switch (t) {
@@ -145,7 +145,7 @@ var init_util = __esm(() => {
   ]);
 });
 
-// node_modules/.bun/zod@3.25.76/node_modules/zod/v3/ZodError.js
+// ../switchroom-sec-1417/node_modules/.bun/zod@3.25.76/node_modules/zod/v3/ZodError.js
 var ZodIssueCode, quotelessJson = (obj) => {
   const json = JSON.stringify(obj, null, 2);
   return json.replace(/"([^"]+)":/g, "$1:");
@@ -266,7 +266,7 @@ var init_ZodError = __esm(() => {
   };
 });
 
-// node_modules/.bun/zod@3.25.76/node_modules/zod/v3/locales/en.js
+// ../switchroom-sec-1417/node_modules/.bun/zod@3.25.76/node_modules/zod/v3/locales/en.js
 var errorMap = (issue, _ctx) => {
   let message;
   switch (issue.code) {
@@ -373,7 +373,7 @@ var init_en = __esm(() => {
   en_default = errorMap;
 });
 
-// node_modules/.bun/zod@3.25.76/node_modules/zod/v3/errors.js
+// ../switchroom-sec-1417/node_modules/.bun/zod@3.25.76/node_modules/zod/v3/errors.js
 function setErrorMap(map) {
   overrideErrorMap = map;
 }
@@ -386,7 +386,7 @@ var init_errors = __esm(() => {
   overrideErrorMap = en_default;
 });
 
-// node_modules/.bun/zod@3.25.76/node_modules/zod/v3/helpers/parseUtil.js
+// ../switchroom-sec-1417/node_modules/.bun/zod@3.25.76/node_modules/zod/v3/helpers/parseUtil.js
 function addIssueToContext(ctx, issueData) {
   const overrideMap = getErrorMap();
   const issue = makeIssue({
@@ -491,10 +491,10 @@ var init_parseUtil = __esm(() => {
   });
 });
 
-// node_modules/.bun/zod@3.25.76/node_modules/zod/v3/helpers/typeAliases.js
+// ../switchroom-sec-1417/node_modules/.bun/zod@3.25.76/node_modules/zod/v3/helpers/typeAliases.js
 var init_typeAliases = () => {};
 
-// node_modules/.bun/zod@3.25.76/node_modules/zod/v3/helpers/errorUtil.js
+// ../switchroom-sec-1417/node_modules/.bun/zod@3.25.76/node_modules/zod/v3/helpers/errorUtil.js
 var errorUtil;
 var init_errorUtil = __esm(() => {
   (function(errorUtil2) {
@@ -503,7 +503,7 @@ var init_errorUtil = __esm(() => {
   })(errorUtil || (errorUtil = {}));
 });
 
-// node_modules/.bun/zod@3.25.76/node_modules/zod/v3/types.js
+// ../switchroom-sec-1417/node_modules/.bun/zod@3.25.76/node_modules/zod/v3/types.js
 class ParseInputLazyPath {
   constructor(parent, value, path, key) {
     this._cachedPath = [];
@@ -3854,7 +3854,7 @@ var init_types = __esm(() => {
   NEVER = INVALID;
 });
 
-// node_modules/.bun/zod@3.25.76/node_modules/zod/v3/external.js
+// ../switchroom-sec-1417/node_modules/.bun/zod@3.25.76/node_modules/zod/v3/external.js
 var exports_external = {};
 __export(exports_external, {
   void: () => voidType,
@@ -3974,7 +3974,7 @@ var init_external = __esm(() => {
   init_ZodError();
 });
 
-// node_modules/.bun/zod@3.25.76/node_modules/zod/index.js
+// ../switchroom-sec-1417/node_modules/.bun/zod@3.25.76/node_modules/zod/index.js
 var init_zod = __esm(() => {
   init_external();
   init_external();
@@ -4000,11 +4000,11 @@ function decodeResponse(line) {
   }
   return ResponseSchema.parse(parsed);
 }
-var MAX_FRAME_BYTES, PROTOCOL_VERSION = 1, ProviderNameSchema, GetCredentialsRequestSchema, ListStateRequestSchema, SetActiveRequestSchema, MarkExhaustedRequestSchema, RefreshAccountRequestSchema, AnthropicCredentialsSchema, GoogleCredentialsSchema, ProviderCredentialsSchema, AddAccountRequestSchema, RmAccountRequestSchema, SetOverrideRequestSchema, ListGoogleAccountsRequestSchema, ProbeQuotaRequestSchema, RequestSchema, GetCredentialsDataSchema, AccountStateSchema, AgentStateSchema, ConsumerStateSchema, ListStateDataSchema, SetActiveDataSchema, MarkExhaustedDataSchema, RefreshAccountDataSchema, AddAccountDataSchema, RmAccountDataSchema, SetOverrideDataSchema, GoogleAccountStateSchema, ListGoogleAccountsDataSchema, ErrorBodySchema, SuccessResponseSchema, ErrorResponseSchema, ResponseSchema;
+var MAX_FRAME_BYTES, PROTOCOL_VERSION = 1, ProviderNameSchema, GetCredentialsRequestSchema, ListStateRequestSchema, SetActiveRequestSchema, MarkExhaustedRequestSchema, RefreshAccountRequestSchema, AnthropicCredentialsSchema, GoogleCredentialsSchema, MicrosoftCredentialsSchema, ProviderCredentialsSchema, AddAccountRequestSchema, RmAccountRequestSchema, SetOverrideRequestSchema, ListGoogleAccountsRequestSchema, ProbeQuotaRequestSchema, RequestSchema, GetCredentialsDataSchema, AccountStateSchema, AgentStateSchema, ConsumerStateSchema, ListStateDataSchema, SetActiveDataSchema, MarkExhaustedDataSchema, RefreshAccountDataSchema, AddAccountDataSchema, RmAccountDataSchema, SetOverrideDataSchema, GoogleAccountStateSchema, ListGoogleAccountsDataSchema, ErrorBodySchema, SuccessResponseSchema, ErrorResponseSchema, ResponseSchema;
 var init_protocol = __esm(() => {
   init_zod();
   MAX_FRAME_BYTES = 64 * 1024;
-  ProviderNameSchema = exports_external.enum(["anthropic", "google"]);
+  ProviderNameSchema = exports_external.enum(["anthropic", "google", "microsoft"]);
   GetCredentialsRequestSchema = exports_external.object({
     v: exports_external.literal(PROTOCOL_VERSION),
     op: exports_external.literal("get-credentials"),
@@ -4057,9 +4057,24 @@ var init_protocol = __esm(() => {
       tokenType: exports_external.literal("Bearer")
     })
   });
+  MicrosoftCredentialsSchema = exports_external.object({
+    microsoftOauth: exports_external.object({
+      accessToken: exports_external.string(),
+      refreshToken: exports_external.string(),
+      expiresAt: exports_external.number(),
+      scope: exports_external.string(),
+      clientId: exports_external.string(),
+      accountEmail: exports_external.string(),
+      tokenType: exports_external.literal("Bearer"),
+      tenantId: exports_external.string(),
+      accountType: exports_external.enum(["personal", "work"]),
+      homeAccountId: exports_external.string()
+    })
+  });
   ProviderCredentialsSchema = exports_external.union([
     AnthropicCredentialsSchema,
-    GoogleCredentialsSchema
+    GoogleCredentialsSchema,
+    MicrosoftCredentialsSchema
   ]);
   AddAccountRequestSchema = exports_external.object({
     v: exports_external.literal(PROTOCOL_VERSION),

package/dist/cli/ms-365-write-pretool.mjs

@@ -0,0 +1,259 @@
+import { createRequire } from "node:module";
+var __require = /* @__PURE__ */ createRequire(import.meta.url);
+
+// src/cli/ms-365-write-pretool.ts
+import { readFileSync } from "node:fs";
+import { createConnection } from "node:net";
+import { homedir } from "node:os";
+import { join } from "node:path";
+import { randomBytes } from "node:crypto";
+var HOOK_TIMEOUT_MS = 5 * 60 * 1000;
+var KERNEL_POLL_INTERVAL_MS = 2000;
+var IPC_CONNECT_TIMEOUT_MS = 3000;
+var IPC_REPLY_TIMEOUT_MS = 1e4;
+var KERNEL_RPC_TIMEOUT_MS = 3000;
+var GATEWAY_SOCKET = process.env.SWITCHROOM_GATEWAY_SOCKET ?? (process.env.TELEGRAM_STATE_DIR !== undefined ? join(process.env.TELEGRAM_STATE_DIR, "gateway.sock") : join(homedir(), ".claude", "channels", "telegram", "gateway.sock"));
+var KERNEL_SOCKET = process.env.SWITCHROOM_KERNEL_SOCKET ?? "/run/switchroom/kernel/sock";
+var TOOL_PREFIX = "mcp__ms-365__";
+var GATED_MS365_WRITE_TOOLS = new Set([
+  "upload-file-content",
+  "create-upload-session",
+  "create-event",
+  "update-event",
+  "delete-event",
+  "update-message",
+  "delete-message"
+]);
+function isGatedMs365Tool(toolName) {
+  if (!toolName.startsWith(TOOL_PREFIX))
+    return false;
+  return GATED_MS365_WRITE_TOOLS.has(toolName.slice(TOOL_PREFIX.length));
+}
+function readStdin() {
+  try {
+    return readFileSync(0, "utf8");
+  } catch {
+    return "";
+  }
+}
+function parseHookInput() {
+  const raw = readStdin();
+  if (!raw)
+    return null;
+  try {
+    const obj = JSON.parse(raw);
+    return obj && typeof obj === "object" ? obj : null;
+  } catch {
+    return null;
+  }
+}
+function extractMs365Preview(toolName, toolInput) {
+  const o = toolInput && typeof toolInput === "object" ? toolInput : {};
+  let itemId = "(new)";
+  for (const k of ["itemId", "item_id", "id", "driveItemId", "eventId", "messageId", "message_id"]) {
+    if (typeof o[k] === "string" && o[k].length > 0) {
+      itemId = o[k];
+      break;
+    }
+  }
+  let itemDisplayName = "(unknown)";
+  for (const k of ["name", "fileName", "file_name", "displayName", "subject", "title"]) {
+    if (typeof o[k] === "string" && o[k].length > 0) {
+      itemDisplayName = o[k];
+      break;
+    }
+  }
+  let deepLink;
+  for (const k of ["webUrl", "web_url", "url", "link"]) {
+    if (typeof o[k] === "string" && o[k].startsWith("http")) {
+      deepLink = o[k];
+      break;
+    }
+  }
+  let sizeBytesAfter;
+  for (const k of ["contentSize", "content_size", "fileSize", "size"]) {
+    if (typeof o[k] === "number" && Number.isFinite(o[k])) {
+      sizeBytesAfter = o[k];
+      break;
+    }
+  }
+  if (sizeBytesAfter === undefined && typeof o.content === "string") {
+    const len = o.content.length;
+    sizeBytesAfter = Math.floor(len * 3 / 4);
+  }
+  return { itemId, itemDisplayName, deepLink, sizeBytesAfter };
+}
+async function sendGatewayRequest(socket, payload, matchType, correlationId) {
+  return new Promise((resolve) => {
+    const conn = createConnection(socket);
+    let buf = "";
+    const cleanup = () => {
+      try {
+        conn.destroy();
+      } catch {}
+    };
+    const replyTimer = setTimeout(() => {
+      cleanup();
+      resolve({ ok: false, reason: "gateway reply timeout" });
+    }, IPC_REPLY_TIMEOUT_MS);
+    const connectTimer = setTimeout(() => {
+      cleanup();
+      resolve({ ok: false, reason: "gateway connect timeout" });
+    }, IPC_CONNECT_TIMEOUT_MS);
+    conn.once("error", (err) => {
+      clearTimeout(replyTimer);
+      clearTimeout(connectTimer);
+      resolve({ ok: false, reason: `gateway: ${err.message}` });
+    });
+    conn.once("connect", () => {
+      clearTimeout(connectTimer);
+      conn.write(JSON.stringify(payload) + `
+`);
+    });
+    conn.on("data", (chunk) => {
+      buf += chunk.toString("utf8");
+      while (true) {
+        const lineEnd = buf.indexOf(`
+`);
+        if (lineEnd === -1)
+          break;
+        const line = buf.slice(0, lineEnd);
+        buf = buf.slice(lineEnd + 1);
+        try {
+          const parsed = JSON.parse(line);
+          if (parsed?.type === matchType && parsed?.correlationId === correlationId) {
+            clearTimeout(replyTimer);
+            cleanup();
+            resolve({ ok: true, value: parsed });
+            return;
+          }
+        } catch {}
+      }
+    });
+  });
+}
+async function rpcKernel(payload) {
+  return new Promise((resolve) => {
+    const conn = createConnection(KERNEL_SOCKET);
+    let buf = "";
+    const cleanup = () => {
+      try {
+        conn.destroy();
+      } catch {}
+    };
+    const timer = setTimeout(() => {
+      cleanup();
+      resolve({ ok: false, reason: "kernel rpc timeout" });
+    }, KERNEL_RPC_TIMEOUT_MS);
+    conn.once("error", (err) => {
+      clearTimeout(timer);
+      resolve({ ok: false, reason: `kernel: ${err.message}` });
+    });
+    conn.once("connect", () => {
+      conn.write(JSON.stringify(payload) + `
+`);
+    });
+    conn.on("data", (chunk) => {
+      buf += chunk.toString("utf8");
+      const lineEnd = buf.indexOf(`
+`);
+      if (lineEnd === -1)
+        return;
+      const line = buf.slice(0, lineEnd);
+      clearTimeout(timer);
+      cleanup();
+      try {
+        resolve({ ok: true, value: JSON.parse(line) });
+      } catch (err) {
+        resolve({ ok: false, reason: `kernel parse: ${String(err)}` });
+      }
+    });
+  });
+}
+async function approvalLookup(agentUnit, scope, approverSet) {
+  const res = await rpcKernel({
+    v: 1,
+    op: "approval_lookup",
+    agent_unit: agentUnit,
+    scope,
+    action: "write",
+    current_approver_set: approverSet
+  });
+  if (!res.ok)
+    return null;
+  return res.value;
+}
+function fail(reason) {
+  process.stdout.write(JSON.stringify({
+    decision: "block",
+    reason: `ms-365 write blocked: ${reason}`
+  }));
+  process.exit(0);
+}
+function allow() {
+  process.exit(0);
+}
+async function main() {
+  const input = parseHookInput();
+  if (!input)
+    fail("malformed stdin");
+  const toolName = input.tool_name;
+  if (typeof toolName !== "string" || !isGatedMs365Tool(toolName)) {
+    allow();
+  }
+  const agentName = process.env.SWITCHROOM_AGENT_NAME;
+  if (!agentName) {
+    allow();
+  }
+  const accountEmail = process.env.SWITCHROOM_MICROSOFT_ACCOUNT ?? "(unknown)";
+  const extract = extractMs365Preview(toolName, input.tool_input);
+  const preview = {
+    agentName,
+    toolName,
+    itemId: extract.itemId,
+    itemDisplayName: extract.itemDisplayName,
+    accountEmail,
+    deepLink: extract.deepLink,
+    sizeBytesAfter: extract.sizeBytesAfter
+  };
+  const correlationId = randomBytes(16).toString("hex");
+  const requestResult = await sendGatewayRequest(GATEWAY_SOCKET, {
+    type: "request_ms365_approval",
+    correlationId,
+    agentName,
+    preview,
+    ttlMs: HOOK_TIMEOUT_MS
+  }, "ms365_approval_posted", correlationId);
+  if (!requestResult.ok)
+    fail(requestResult.reason);
+  const response = requestResult.value;
+  if (!response.ok || !response.requestId) {
+    fail(response.reason ?? "gateway returned ok=false");
+  }
+  const deadline = response.expiresAtMs ?? Date.now() + HOOK_TIMEOUT_MS;
+  const scope = `ms-365:write:${preview.itemId}`;
+  while (Date.now() < deadline) {
+    await new Promise((r) => setTimeout(r, KERNEL_POLL_INTERVAL_MS));
+    const lookup = await approvalLookup(agentName, scope, []);
+    if (!lookup)
+      continue;
+    const state = lookup.state;
+    if (state === "granted")
+      allow();
+    if (state === "denied" || state === "drift_revoked" || state === "expired") {
+      fail(`operator ${state}`);
+    }
+  }
+  fail("approval timed out");
+}
+if (__require.main == __require.module) {
+  main().catch((err) => {
+    const m = err instanceof Error ? err.message : String(err);
+    fail(`hook error: ${m}`);
+  });
+}
+export {
+  isGatedMs365Tool,
+  extractMs365Preview,
+  GATED_MS365_WRITE_TOOLS
+};