npm - ummaya - Versions diffs - 0.2.4 → 0.2.6 - Mend

ummaya 0.2.4 → 0.2.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (482) hide show

package/README.md +15 -2
package/bin/ummaya +10 -1
package/bun.lock +180 -244
package/npm-shrinkwrap.json +760 -1760
package/package.json +39 -22
package/prompts/manifest.yaml +1 -1
package/prompts/system_v1.md +1 -0
package/pyproject.toml +27 -2
package/specs/2803-document-production-hardening/contracts/document-tools.schema.json +1043 -0
package/src/ummaya/_canonical/__init__.py +2 -0
package/src/ummaya/_canonical/baselines.yaml +113 -0
package/src/ummaya/engine/engine.py +29 -132
package/src/ummaya/evidence/__init__.py +21 -2
package/src/ummaya/evidence/dataset_contract.py +193 -0
package/src/ummaya/evidence/document_authoring_cases.py +33 -0
package/src/ummaya/evidence/document_harness.py +313 -0
package/src/ummaya/evidence/document_viewer_ux.py +391 -0
package/src/ummaya/evidence/gates.py +70 -0
package/src/ummaya/evidence/json_types.py +20 -0
package/src/ummaya/evidence/models.py +88 -1
package/src/ummaya/evidence/output_payload.py +89 -0
package/src/ummaya/evidence/payload_documents.py +233 -0
package/src/ummaya/evidence/route_contracts.py +224 -0
package/src/ummaya/evidence/route_helpers.py +150 -0
package/src/ummaya/evidence/runner.py +81 -212
package/src/ummaya/evidence/source_provenance.py +246 -0
package/src/ummaya/evidence/source_provenance_redaction.py +176 -0
package/src/ummaya/evidence/tool_layer.py +39 -0
package/src/ummaya/evidence/tool_layer_models.py +151 -0
package/src/ummaya/ipc/adapter_manifest_emitter.py +26 -10
package/src/ummaya/ipc/document_intent_normalization.py +185 -0
package/src/ummaya/ipc/frame_schema.py +5 -5
package/src/ummaya/ipc/route_diagnostics.py +73 -0
package/src/ummaya/ipc/stdio.py +1109 -477
package/src/ummaya/llm/client.py +102 -3
package/src/ummaya/llm/config.py +8 -3
package/src/ummaya/primitives/__init__.py +6 -2
package/src/ummaya/primitives/delegation.py +1 -1
package/src/ummaya/primitives/document.py +28 -0
package/src/ummaya/settings.py +0 -3
package/src/ummaya/tools/discovery_bridge.py +17 -1
package/src/ummaya/tools/documents/__init__.py +297 -0
package/src/ummaya/tools/documents/adapter_registry.py +487 -0
package/src/ummaya/tools/documents/archive_container_probe.py +167 -0
package/src/ummaya/tools/documents/artifact_store.py +454 -0
package/src/ummaya/tools/documents/authoring.py +283 -0
package/src/ummaya/tools/documents/baselines.py +132 -0
package/src/ummaya/tools/documents/capability.py +331 -0
package/src/ummaya/tools/documents/contracts.py +112 -0
package/src/ummaya/tools/documents/conversion.py +521 -0
package/src/ummaya/tools/documents/diff.py +275 -0
package/src/ummaya/tools/documents/engines.py +163 -0
package/src/ummaya/tools/documents/evaluation.py +291 -0
package/src/ummaya/tools/documents/explicit_values.py +108 -0
package/src/ummaya/tools/documents/fixtures.py +174 -0
package/src/ummaya/tools/documents/format_completion_audit.py +471 -0
package/src/ummaya/tools/documents/formats/__init__.py +2 -0
package/src/ummaya/tools/documents/formats/archive.py +528 -0
package/src/ummaya/tools/documents/formats/base.py +41 -0
package/src/ummaya/tools/documents/formats/code_file.py +211 -0
package/src/ummaya/tools/documents/formats/data_file.py +272 -0
package/src/ummaya/tools/documents/formats/hwp.py +284 -0
package/src/ummaya/tools/documents/formats/hwpx.py +1837 -0
package/src/ummaya/tools/documents/formats/odf.py +435 -0
package/src/ummaya/tools/documents/formats/ooxml.py +1030 -0
package/src/ummaya/tools/documents/formats/passive.py +766 -0
package/src/ummaya/tools/documents/formats/pdf.py +702 -0
package/src/ummaya/tools/documents/formats/text_web.py +268 -0
package/src/ummaya/tools/documents/hwp_conversion_probe.py +178 -0
package/src/ummaya/tools/documents/hwp_direct_candidate.py +141 -0
package/src/ummaya/tools/documents/inspection.py +289 -0
package/src/ummaya/tools/documents/intake.py +1079 -0
package/src/ummaya/tools/documents/legacy_office_promotion_probe.py +366 -0
package/src/ummaya/tools/documents/models.py +1598 -0
package/src/ummaya/tools/documents/odf_promotion_probe.py +167 -0
package/src/ummaya/tools/documents/orchestrator.py +96 -0
package/src/ummaya/tools/documents/passive_capability_probe.py +251 -0
package/src/ummaya/tools/documents/patch.py +170 -0
package/src/ummaya/tools/documents/pdfa_conformance.py +284 -0
package/src/ummaya/tools/documents/pdfa_promotion_probe.py +198 -0
package/src/ummaya/tools/documents/permissions.py +110 -0
package/src/ummaya/tools/documents/planner.py +616 -0
package/src/ummaya/tools/documents/registry.py +2733 -0
package/src/ummaya/tools/documents/render.py +978 -0
package/src/ummaya/tools/documents/render_comparison.py +113 -0
package/src/ummaya/tools/documents/render_comparison_models.py +74 -0
package/src/ummaya/tools/documents/render_comparison_regions.py +73 -0
package/src/ummaya/tools/documents/render_comparison_style.py +161 -0
package/src/ummaya/tools/documents/reread.py +157 -0
package/src/ummaya/tools/documents/runtime_authoring.py +244 -0
package/src/ummaya/tools/documents/runtime_authoring_bundle.py +76 -0
package/src/ummaya/tools/documents/scorecard.py +184 -0
package/src/ummaya/tools/documents/socratic_planner.py +193 -0
package/src/ummaya/tools/documents/style.py +48 -0
package/src/ummaya/tools/documents/tool_defs.py +523 -0
package/src/ummaya/tools/documents/validate.py +347 -0
package/src/ummaya/tools/executor.py +29 -0
package/src/ummaya/tools/live_proxy.py +0 -3
package/src/ummaya/tools/models.py +5 -1
package/src/ummaya/tools/register_all.py +8 -0
package/src/ummaya/tools/registry.py +10 -1
package/src/ummaya/tools/routing/__init__.py +59 -0
package/src/ummaya/tools/routing/builder.py +105 -0
package/src/ummaya/tools/routing/cards.py +29 -0
package/src/ummaya/tools/routing/decision_service.py +534 -0
package/src/ummaya/tools/routing/decision_types.py +74 -0
package/src/ummaya/tools/routing/feasibility.py +122 -0
package/src/ummaya/tools/routing/intent.py +17 -0
package/src/ummaya/tools/routing/intent_extractor.py +207 -0
package/src/ummaya/tools/routing/intent_patterns.py +160 -0
package/src/ummaya/tools/routing/intent_public_data.py +150 -0
package/src/ummaya/tools/routing/intent_types.py +48 -0
package/src/ummaya/tools/routing/lint.py +78 -0
package/src/ummaya/tools/routing/metadata.py +174 -0
package/src/ummaya/tools/routing/projection.py +340 -0
package/src/ummaya/tools/routing/retrieval_policy.py +629 -0
package/src/ummaya/tools/routing/schema.py +81 -0
package/src/ummaya/tools/routing/types.py +96 -0
package/src/ummaya/tools/routing_index.py +2 -2
package/src/ummaya/tools/search.py +34 -746
package/tests/fixtures/documents/public_forms/baselines.yaml +113 -0
package/tui/bun.lock +126 -305
package/tui/package.json +35 -22
package/tui/src/.cc-byte-identical-whitelist.yaml +266 -0
package/tui/src/QueryEngine.ts +12 -8
package/tui/src/bridge/inboundAttachments.ts +3 -3
package/tui/src/cli/handlers/auth.ts +3 -12
package/tui/src/cli/handlers/mcp.tsx +0 -1
package/tui/src/cli/print.ts +8 -9
package/tui/src/commands/insights.ts +1 -1
package/tui/src/commands/install-github-app/types.ts +8 -30
package/tui/src/commands/plugin/types.ts +6 -28
package/tui/src/commands/plugin/unifiedTypes.ts +4 -26
package/tui/src/commands/rename/generateSessionName.ts +1 -1
package/tui/src/components/Feedback.tsx +1 -1
package/tui/src/components/LogoV2/EmergencyTip.tsx +11 -2
package/tui/src/components/LogoV2/WelcomeV2.tsx +1 -3
package/tui/src/components/ScrollKeybindingHandler.tsx +6 -6
package/tui/src/components/Spinner/types.ts +6 -28
package/tui/src/components/agents/generateAgent.ts +1 -1
package/tui/src/components/agents/new-agent-creation/types.ts +4 -26
package/tui/src/components/config/EnvSecretIsolatedEditor.tsx +1 -1
package/tui/src/components/mcp/types.ts +16 -38
package/tui/src/components/messages/AssistantToolUseMessage.tsx +3 -2
package/tui/src/components/messages/UserCrossSessionMessage.ts +16 -4
package/tui/src/components/messages/UserForkBoilerplateMessage.ts +16 -4
package/tui/src/components/messages/UserGitHubWebhookMessage.ts +16 -4
package/tui/src/components/messages/UserToolResultMessage/utils.tsx +3 -2
package/tui/src/components/permissions/MonitorPermissionRequest/MonitorPermissionRequest.ts +9 -4
package/tui/src/components/permissions/ReviewArtifactPermissionRequest/ReviewArtifactPermissionRequest.ts +9 -4
package/tui/src/components/primitive/DocumentSocraticReviewBlock.tsx +129 -0
package/tui/src/components/primitive/DocumentToolResultCard.tsx +224 -0
package/tui/src/components/primitive/documentSocraticReview.ts +215 -0
package/tui/src/components/primitive/index.tsx +43 -1
package/tui/src/components/primitive/types.ts +137 -0
package/tui/src/components/ui/option.ts +4 -26
package/tui/src/constants/common.ts +0 -2
package/tui/src/constants/prompts.ts +4 -3
package/tui/src/constants/querySource.ts +4 -26
package/tui/src/entrypoints/sdk/controlTypes.ts +26 -48
package/tui/src/entrypoints/sdk/coreTypes.generated.ts +3 -25
package/tui/src/entrypoints/sdk/runtimeTypes.ts +38 -60
package/tui/src/entrypoints/sdk/sdkUtilityTypes.ts +4 -26
package/tui/src/entrypoints/sdk/settingsTypes.generated.ts +3 -25
package/tui/src/entrypoints/sdk/toolTypes.ts +3 -25
package/tui/src/hooks/toolPermission/handlers/interactiveHandler.ts +10 -0
package/tui/src/hooks/useApiKeyVerification.ts +1 -1
package/tui/src/hooks/useVirtualScroll.ts +1 -1
package/tui/src/ink/ink.tsx +33 -14
package/tui/src/ink/reconciler.ts +2 -3
package/tui/src/ink/render-to-screen.ts +30 -10
package/tui/src/ipc/bridge.ts +62 -15
package/tui/src/ipc/bridgeSingleton.ts +5 -1
package/tui/src/ipc/codec.ts +3 -3
package/tui/src/ipc/frames.generated.ts +12 -12
package/tui/src/ipc/llmClient.ts +151 -27
package/tui/src/ipc/schema/frame.schema.json +1 -1
package/tui/src/keybindings/defaultBindings.ts +4 -0
package/tui/src/main.tsx +32 -15
package/tui/src/native-ts/file-index/index.ts +33 -3
package/tui/src/observability/surface.ts +2 -2
package/tui/src/probes/toolRegistryProbe.tsx +3 -1
package/tui/src/projectOnboardingState.ts +7 -6
package/tui/src/query/chatMessageTypes.ts +18 -0
package/tui/src/query/chatMessagesBuilder.ts +1 -1
package/tui/src/query/deps.ts +1 -1
package/tui/src/query/messageGuards.ts +106 -0
package/tui/src/query/publicDataTerminalRepair.ts +384 -0
package/tui/src/query/run.ts +1075 -0
package/tui/src/query/supportBoundary.ts +168 -0
package/tui/src/query/toolResultErrors.ts +103 -0
package/tui/src/query/toolRunner.ts +687 -0
package/tui/src/query/unavailableToolRepair.ts +118 -0
package/tui/src/query.ts +9 -2186
package/tui/src/screens/REPL.tsx +40 -29
package/tui/src/services/api/adapterManifest.ts +4 -0
package/tui/src/services/api/backendChat/events.ts +117 -0
package/tui/src/services/api/backendChat/finalMessage.ts +40 -0
package/tui/src/services/api/backendChat/frame.ts +9 -0
package/tui/src/services/api/backendChat/streaming.ts +430 -0
package/tui/src/services/api/backendChat/types.ts +62 -0
package/tui/src/services/api/backendChat.ts +1 -0
package/tui/src/services/api/client.ts +65 -2
package/tui/src/services/api/errorUtils.ts +5 -5
package/tui/src/services/api/errors.ts +1 -1
package/tui/src/services/api/logging.ts +1 -1
package/tui/src/services/api/ummaya/evidence.ts +194 -0
package/tui/src/services/api/ummaya/messages.ts +255 -0
package/tui/src/services/api/ummaya/nonStreaming.ts +66 -0
package/tui/src/services/api/ummaya/provider.ts +200 -0
package/tui/src/services/api/ummaya/reasoning.ts +24 -0
package/tui/src/services/api/ummaya/request.ts +200 -0
package/tui/src/services/api/ummaya/selectionContext.ts +240 -0
package/tui/src/services/api/ummaya/streaming.ts +365 -0
package/tui/src/services/api/ummaya/streamingPayload.ts +129 -0
package/tui/src/services/api/ummaya/streamingReader.ts +40 -0
package/tui/src/services/api/ummaya/toolSelection.ts +217 -0
package/tui/src/services/api/ummaya/types.ts +110 -0
package/tui/src/services/api/ummaya/usage.ts +30 -0
package/tui/src/services/api/ummaya.ts +26 -418
package/tui/src/services/api/withRetry.ts +1 -1
package/tui/src/services/awaySummary.ts +2 -2
package/tui/src/services/claudeAiLimits.ts +1 -1
package/tui/src/services/compact/autoCompact.ts +1 -1
package/tui/src/services/compact/compact.ts +1 -1
package/tui/src/services/lsp/types.ts +8 -30
package/tui/src/services/tips/types.ts +6 -28
package/tui/src/services/tokenEstimation.ts +1 -1
package/tui/src/services/toolRegistry/bootGuard.ts +5 -5
package/tui/src/services/toolUseSummary/toolUseSummaryGenerator.ts +1 -1
package/tui/src/services/tools/toolExecution.ts +94 -1
package/tui/src/store/pendingPermissionSlot.ts +1 -1
package/tui/src/store/session-store.ts +10 -36
package/tui/src/stubs/any-stub.ts +15 -10
package/tui/src/stubs/color-diff-napi.ts +37 -23
package/tui/src/stubs/globals.d.ts +3 -3
package/tui/src/stubs/macro-preload.ts +23 -12
package/tui/src/tools/AdapterTool/AdapterTool.ts +1207 -714
package/tui/src/tools/AdapterTool/routeDiagnostics.ts +75 -0
package/tui/src/tools/AgentTool/AgentTool.tsx +84 -1371
package/tui/src/tools/AgentTool/agentToolHandoff.ts +114 -0
package/tui/src/tools/AgentTool/agentToolPartialResult.ts +16 -0
package/tui/src/tools/AgentTool/agentToolProgress.ts +32 -0
package/tui/src/tools/AgentTool/agentToolResolver.ts +161 -0
package/tui/src/tools/AgentTool/agentToolResult.ts +163 -0
package/tui/src/tools/AgentTool/agentToolUtils.ts +14 -686
package/tui/src/tools/AgentTool/asyncAgentLifecycle.ts +208 -0
package/tui/src/tools/AgentTool/asyncLifecycle.ts +153 -0
package/tui/src/tools/AgentTool/backgroundedCompletion.ts +126 -0
package/tui/src/tools/AgentTool/backgroundedLifecycle.ts +174 -0
package/tui/src/tools/AgentTool/foregroundBackground.ts +83 -0
package/tui/src/tools/AgentTool/foregroundDrain.tsx +133 -0
package/tui/src/tools/AgentTool/foregroundFinalize.ts +98 -0
package/tui/src/tools/AgentTool/foregroundLifecycle.tsx +237 -0
package/tui/src/tools/AgentTool/foregroundProgress.tsx +169 -0
package/tui/src/tools/AgentTool/foregroundTask.ts +89 -0
package/tui/src/tools/AgentTool/forkSubagent.ts +1 -12
package/tui/src/tools/AgentTool/forkSubagentGate.ts +34 -0
package/tui/src/tools/AgentTool/launchRouting.ts +203 -0
package/tui/src/tools/AgentTool/lifecycle.ts +244 -0
package/tui/src/tools/AgentTool/mcpRouting.ts +73 -0
package/tui/src/tools/AgentTool/orchestrationSupport.ts +70 -0
package/tui/src/tools/AgentTool/permissions.ts +39 -0
package/tui/src/tools/AgentTool/promptSetup.ts +181 -0
package/tui/src/tools/AgentTool/remoteRouting.ts +62 -0
package/tui/src/tools/AgentTool/resultMapping.ts +116 -0
package/tui/src/tools/AgentTool/resumeAgent.ts +39 -107
package/tui/src/tools/AgentTool/resumeAgentHelpers.ts +140 -0
package/tui/src/tools/AgentTool/runAgent.ts +1 -1
package/tui/src/tools/AgentTool/runtimeConfig.ts +57 -0
package/tui/src/tools/AgentTool/schemas.ts +196 -0
package/tui/src/tools/AgentTool/sourceVerificationPropagation.ts +263 -0
package/tui/src/tools/AgentTool/worktreeLifecycle.ts +105 -0
package/tui/src/tools/AskUserQuestionTool/AskUserQuestionTool.tsx +174 -202
package/tui/src/tools/BashTool/BashTool.tsx +71 -1072
package/tui/src/tools/BashTool/bashCommandHelpers.ts +12 -12
package/tui/src/tools/BashTool/bashPermissions/astPreflight.ts +173 -0
package/tui/src/tools/BashTool/bashPermissions/classifierChecks.ts +199 -0
package/tui/src/tools/BashTool/bashPermissions/compoundGuards.ts +53 -0
package/tui/src/tools/BashTool/bashPermissions/constants.ts +99 -0
package/tui/src/tools/BashTool/bashPermissions/index.ts +38 -0
package/tui/src/tools/BashTool/bashPermissions/legacyMisparsing.ts +62 -0
package/tui/src/tools/BashTool/bashPermissions/main.ts +135 -0
package/tui/src/tools/BashTool/bashPermissions/normalizedCommands.ts +33 -0
package/tui/src/tools/BashTool/bashPermissions/operatorFlow.ts +98 -0
package/tui/src/tools/BashTool/bashPermissions/permissionChecks.ts +200 -0
package/tui/src/tools/BashTool/bashPermissions/prefixSuggestions.ts +88 -0
package/tui/src/tools/BashTool/bashPermissions/promptClassifierRules.ts +125 -0
package/tui/src/tools/BashTool/bashPermissions/ruleDelegates.ts +19 -0
package/tui/src/tools/BashTool/bashPermissions/ruleMatching.ts +145 -0
package/tui/src/tools/BashTool/bashPermissions/sandboxAutoAllow.ts +75 -0
package/tui/src/tools/BashTool/bashPermissions/subcommandFlow.ts +205 -0
package/tui/src/tools/BashTool/bashPermissions/subcommandGuards.ts +73 -0
package/tui/src/tools/BashTool/bashPermissions/subcommandResultHelpers.ts +116 -0
package/tui/src/tools/BashTool/bashPermissions/types.ts +26 -0
package/tui/src/tools/BashTool/bashPermissions/wrapperStripping.ts +139 -0
package/tui/src/tools/BashTool/bashPermissions.ts +26 -2621
package/tui/src/tools/BashTool/call.ts +202 -0
package/tui/src/tools/BashTool/callLoader.ts +35 -0
package/tui/src/tools/BashTool/commandClassification.ts +151 -0
package/tui/src/tools/BashTool/commandClassificationLoader.ts +40 -0
package/tui/src/tools/BashTool/cwdReset.ts +33 -0
package/tui/src/tools/BashTool/lineTruncation.ts +11 -0
package/tui/src/tools/BashTool/modeValidation.ts +13 -1
package/tui/src/tools/BashTool/outputPersistence.ts +42 -0
package/tui/src/tools/BashTool/permissionClassification.ts +66 -0
package/tui/src/tools/BashTool/permissionLoader.ts +44 -0
package/tui/src/tools/BashTool/resultLoader.ts +29 -0
package/tui/src/tools/BashTool/resultMapping.ts +83 -0
package/tui/src/tools/BashTool/sandboxPolicy.ts +79 -0
package/tui/src/tools/BashTool/schemas.ts +65 -0
package/tui/src/tools/BashTool/sedEditExecution.ts +59 -0
package/tui/src/tools/BashTool/shellExecution.tsx +245 -0
package/tui/src/tools/BashTool/shellOutputUtils.ts +85 -0
package/tui/src/tools/BashTool/shellPermissionGauntlet.ts +97 -0
package/tui/src/tools/BashTool/uiLoader.ts +37 -0
package/tui/src/tools/BriefTool/upload.ts +1 -1
package/tui/src/tools/CalculatorTool/parser.ts +2 -2
package/tui/src/tools/DocumentPrimitive/DocumentPrimitive.ts +262 -0
package/tui/src/tools/DocumentPrimitive/dispatchNormalization.ts +270 -0
package/tui/src/tools/DocumentPrimitive/documentDestinationPath.ts +18 -0
package/tui/src/tools/DocumentPrimitive/documentMutationGuard.ts +22 -0
package/tui/src/tools/DocumentPrimitive/documentPatchNormalization.ts +248 -0
package/tui/src/tools/DocumentPrimitive/documentSourceVerification.ts +245 -0
package/tui/src/tools/DocumentPrimitive/documentSourceVerificationFields.ts +103 -0
package/tui/src/tools/DocumentPrimitive/modelVisibleOutput.ts +40 -0
package/tui/src/tools/DocumentPrimitive/prompt.ts +35 -0
package/tui/src/tools/FileEditTool/FileEditTool.ts +9 -507
package/tui/src/tools/FileEditTool/call.ts +228 -0
package/tui/src/tools/FileEditTool/validateInput.ts +196 -0
package/tui/src/tools/FileReadTool/imageProcessor.ts +13 -0
package/tui/src/tools/FileWriteTool/FileWriteTool.ts +7 -300
package/tui/src/tools/FileWriteTool/call.ts +223 -0
package/tui/src/tools/FileWriteTool/validateInput.ts +80 -0
package/tui/src/tools/ListMcpResourcesTool/ListMcpResourcesTool.ts +19 -3
package/tui/src/tools/LookupPrimitive/LookupPrimitive.ts +25 -32
package/tui/src/tools/LookupPrimitive/prompt.ts +0 -2
package/tui/src/tools/MCPTool/trustPolicy.ts +118 -0
package/tui/src/tools/McpAuthTool/McpAuthTool.ts +21 -3
package/tui/src/tools/NotebookEditTool/NotebookEditTool.ts +7 -326
package/tui/src/tools/NotebookEditTool/call.ts +254 -0
package/tui/src/tools/NotebookEditTool/notebookModel.ts +51 -0
package/tui/src/tools/NotebookEditTool/validateInput.ts +142 -0
package/tui/src/tools/PowerShellTool/PowerShellTool.tsx +46 -937
package/tui/src/tools/PowerShellTool/acceptEditsCommandValidation.ts +162 -0
package/tui/src/tools/PowerShellTool/call.ts +179 -0
package/tui/src/tools/PowerShellTool/callLoader.ts +37 -0
package/tui/src/tools/PowerShellTool/commandClassification.ts +86 -0
package/tui/src/tools/PowerShellTool/modeValidation.ts +25 -332
package/tui/src/tools/PowerShellTool/outputPersistence.ts +42 -0
package/tui/src/tools/PowerShellTool/permissionClassification.ts +28 -0
package/tui/src/tools/PowerShellTool/resultLoader.ts +31 -0
package/tui/src/tools/PowerShellTool/resultMapping.ts +75 -0
package/tui/src/tools/PowerShellTool/schemas.ts +40 -0
package/tui/src/tools/PowerShellTool/shellExecution.tsx +258 -0
package/tui/src/tools/PowerShellTool/symlinkModeValidation.ts +44 -0
package/tui/src/tools/PowerShellTool/uiLoader.ts +37 -0
package/tui/src/tools/PowerShellTool/validation.ts +39 -0
package/tui/src/tools/ReadMcpResourceTool/ReadMcpResourceTool.ts +19 -3
package/tui/src/tools/ResolveLocationPrimitive/ResolveLocationPrimitive.ts +1 -11
package/tui/src/tools/ResolveLocationPrimitive/prompt.ts +2 -6
package/tui/src/tools/SkillTool/SkillTool.ts +2 -2
package/tui/src/tools/SubmitPrimitive/SubmitPrimitive.ts +27 -10
package/tui/src/tools/TaskCreateTool/TaskCreateTool.ts +16 -2
package/tui/src/tools/TaskGetTool/TaskGetTool.ts +23 -3
package/tui/src/tools/TaskListTool/TaskListTool.ts +22 -4
package/tui/src/tools/TaskOutputTool/TaskOutputTool.tsx +46 -547
package/tui/src/tools/TaskOutputTool/lookup.ts +216 -0
package/tui/src/tools/TaskOutputTool/render.tsx +257 -0
package/tui/src/tools/TaskOutputTool/schemas.ts +55 -0
package/tui/src/tools/TaskOutputTool/serialization.ts +36 -0
package/tui/src/tools/TaskStopTool/TaskStopTool.ts +10 -0
package/tui/src/tools/TaskUpdateTool/TaskUpdateTool.ts +14 -364
package/tui/src/tools/TaskUpdateTool/completion.ts +62 -0
package/tui/src/tools/TaskUpdateTool/schemas.ts +62 -0
package/tui/src/tools/TaskUpdateTool/serialization.ts +46 -0
package/tui/src/tools/TaskUpdateTool/statusUpdate.ts +247 -0
package/tui/src/tools/TodoWriteTool/TodoWriteTool.ts +21 -2
package/tui/src/tools/ToolSearchTool/ToolSearchTool.ts +21 -302
package/tui/src/tools/ToolSearchTool/ccSupportTools.ts +223 -0
package/tui/src/tools/ToolSearchTool/descriptionCache.ts +50 -0
package/tui/src/tools/ToolSearchTool/keywordSearch.ts +216 -0
package/tui/src/tools/ToolSearchTool/prompt.ts +10 -4
package/tui/src/tools/ToolSearchTool/resultMapping.ts +30 -0
package/tui/src/tools/ToolSearchTool/schemas.ts +30 -0
package/tui/src/tools/ToolSearchTool/searchPool.ts +47 -0
package/tui/src/tools/ToolSearchTool/supportIntentHints.ts +140 -0
package/tui/src/tools/TranslateTool/TranslateTool.ts +1 -1
package/tui/src/tools/VerifyPrimitive/VerifyPrimitive.ts +2 -1
package/tui/src/tools/WebFetchTool/WebFetchTool.ts +43 -138
package/tui/src/tools/WebFetchTool/call.ts +227 -0
package/tui/src/tools/WebFetchTool/resolvedAddressSafety.ts +78 -0
package/tui/src/tools/WebFetchTool/sourceVerification.ts +204 -0
package/tui/src/tools/WebFetchTool/types.ts +23 -0
package/tui/src/tools/WebFetchTool/urlSafety.ts +181 -0
package/tui/src/tools/WebFetchTool/utils.ts +1 -1
package/tui/src/tools/WebSearchTool/UI.tsx +0 -1
package/tui/src/tools/WebSearchTool/WebSearchTool.ts +9 -313
package/tui/src/tools/WebSearchTool/call.ts +33 -0
package/tui/src/tools/WebSearchTool/responseMapping.ts +190 -0
package/tui/src/tools/WebSearchTool/resultBlock.ts +47 -0
package/tui/src/tools/WebSearchTool/schemas.ts +47 -0
package/tui/src/tools/WebSearchTool/toolSchema.ts +12 -0
package/tui/src/tools/WorkspaceToolAdapter/WorkspaceToolAdapter.ts +79 -0
package/tui/src/tools/WorkspaceToolAdapter/allowedRootPolicy.ts +85 -0
package/tui/src/tools/WorkspaceToolAdapter/documentFormatGuards.ts +73 -0
package/tui/src/tools/WorkspaceToolAdapter/inputNormalization.ts +105 -0
package/tui/src/tools/WorkspaceToolAdapter/mcpExposurePolicy.ts +64 -0
package/tui/src/tools/WorkspaceToolAdapter/toolDefFactory.ts +215 -0
package/tui/src/tools/WorkspaceToolAdapter/toolNames.ts +6 -0
package/tui/src/tools/WorkspaceToolAdapter/workspacePolicy.ts +15 -0
package/tui/src/tools/_shared/dispatchPrimitive.ts +6 -6
package/tui/src/tools/_shared/documentChangeToPatch.ts +125 -0
package/tui/src/tools/_shared/documentDispatchArguments.ts +87 -0
package/tui/src/tools/_shared/documentPrimitiveTimeout.ts +13 -0
package/tui/src/tools/_shared/documentToolResultRender.ts +98 -0
package/tui/src/tools/_shared/pendingCallRegistry.ts +1 -6
package/tui/src/tools/_shared/rootPrimitiveInput.ts +1 -0
package/tui/src/tools/_shared/toolChoiceRepair/documentCompletionPatterns.ts +58 -0
package/tui/src/tools/_shared/toolChoiceRepair/documentCompletionPrompt.ts +271 -0
package/tui/src/tools/_shared/toolChoiceRepair/documentRepair.ts +452 -0
package/tui/src/tools/_shared/toolChoiceRepair/messageAccess.ts +80 -0
package/tui/src/tools/_shared/toolChoiceRepair/publicDataRepair.ts +92 -0
package/tui/src/tools/_shared/toolChoiceRepair/supportRepair.ts +135 -0
package/tui/src/tools/_shared/toolChoiceRepair.ts +55 -860
package/tui/src/tools/shared/mockDisclaimer.ts +1 -1
package/tui/src/tools.ts +39 -190
package/tui/src/types/fileSuggestion.ts +4 -26
package/tui/src/types/generated/events_mono/claude_code/v1/claude_code_internal_event.ts +186 -148
package/tui/src/types/generated/events_mono/common/v1/auth.ts +25 -11
package/tui/src/types/generated/events_mono/growthbook/v1/growthbook_experiment_event.ts +47 -30
package/tui/src/types/generated/google/protobuf/timestamp.ts +21 -7
package/tui/src/types/message.ts +80 -102
package/tui/src/types/messageQueueTypes.ts +6 -28
package/tui/src/types/notebook.ts +16 -38
package/tui/src/types/statusLine.ts +4 -26
package/tui/src/types/tools.ts +24 -46
package/tui/src/types/utils.ts +6 -28
package/tui/src/upstreamproxy/relay.ts +7 -3
package/tui/src/upstreamproxy/upstreamproxy.ts +1 -1
package/tui/src/utils/assistantMessageFactories.ts +9 -3
package/tui/src/utils/auth.ts +129 -139
package/tui/src/utils/bash/ast.ts +23 -23
package/tui/src/utils/bash/bashParser.ts +5 -5
package/tui/src/utils/billing.ts +1 -1
package/tui/src/utils/claudeDesktop.ts +4 -4
package/tui/src/utils/collapseReadSearch.ts +3 -3
package/tui/src/utils/cronTasks.ts +1 -1
package/tui/src/utils/execFileNoThrow.ts +1 -1
package/tui/src/utils/filePersistence/types.ts +16 -38
package/tui/src/utils/forkedAgent.ts +1 -1
package/tui/src/utils/gracefulShutdown.ts +4 -4
package/tui/src/utils/heapDumpService.ts +12 -8
package/tui/src/utils/hooks/apiQueryHookHelper.ts +1 -1
package/tui/src/utils/hooks/execPromptHook.ts +1 -1
package/tui/src/utils/hooks/skillImprovement.ts +1 -1
package/tui/src/utils/mcp/dateTimeParser.ts +1 -1
package/tui/src/utils/messages.ts +18 -0
package/tui/src/utils/migrateSessions.ts +3 -3
package/tui/src/utils/model/model.ts +6 -6
package/tui/src/utils/permissions/yoloClassifier.ts +1 -1
package/tui/src/utils/plugins/headlessPluginInstall.ts +1 -1
package/tui/src/utils/plugins/mcpPluginIntegration.ts +1 -1
package/tui/src/utils/plugins/mcpbHandler.ts +1 -1
package/tui/src/utils/plugins/pluginLoader.ts +8 -8
package/tui/src/utils/protectedNamespace.ts +5 -3
package/tui/src/utils/rawJsonToolCall.ts +242 -0
package/tui/src/utils/ripgrep.ts +16 -7
package/tui/src/utils/sessionTitle.ts +1 -1
package/tui/src/utils/settings/permissionValidation.ts +14 -2
package/tui/src/utils/shell/prefix.ts +1 -1
package/tui/src/utils/sideQuery.ts +1 -1
package/tui/src/utils/systemThemeWatcher.ts +13 -3
package/tui/src/utils/teleport.tsx +1 -1
package/uv.lock +426 -45
package/tui/src/services/api/claude.ts +0 -3540
package/tui/src/tools/_shared/directPublicDataGuard.ts +0 -362
package/tui/src/tools/_shared/kmaAnalysisGuard.ts +0 -197
package/tui/src/tools/_shared/kmaAviationGuard.ts +0 -70
package/tui/src/tools/_shared/nmcAedGuard.ts +0 -234
package/tui/src/tools/_shared/protectedCheckGuard.ts +0 -207
package/tui/src/tools/_shared/textToolCallGuard.ts +0 -91

package/tui/src/tools/ToolSearchTool/supportIntentHints.ts ADDED Viewed

@@ -0,0 +1,140 @@
+import type { Tool } from '../../Tool.js'
+const SOURCE_SUPPORT_INTENT_PATTERN =
+  /출처|근거|인용|참고\s*문헌|레퍼런스|출전|증빙|증거|자료\s*(?:출처|근거|조사|검색)|최신|현재\s*(?:정보|자료)|웹\s*검색|source|citation|evidence|provenance|reference|bibliography|current\s+(?:information|source|research)|latest|web\s*search|search\s+the\s+web|https?:\/\//iu
+const MCP_SUPPORT_INTENT_PATTERN =
+  /(?:\bmcp\b|mcp__|(?=.*(?:리소스|자원|resources?))(?=.*(?:신뢰\s*경계|신뢰|경계|trust|boundary|connected\s+servers?|서버\s*(?:리소스|자원)|servers?\s+resources?)))/iu
+const AGENT_SUPPORT_INTENT_PATTERN =
+  /에이전트|sub-?agent|agent|별도\s*작업|하위\s*작업|작업자|작업\s*도구|진행\s*상황|취소\s*가능|cancel(?:lable)?\s+task|delegat(?:e|ion)|background\s+task/iu
+const KOREAN_QUERY_EXPANSIONS: readonly {
+  readonly pattern: RegExp
+  readonly terms: readonly string[]
+}[] = [
+  {
+    pattern:
+      /(?=.*(?:저장소|작업\s*공간|워크\s*스페이스|로컬|프로젝트|코드\s*베이스|repository|repo|workspace|codebase))(?=.*(?:파일|경로|첫\s*줄|읽|검색|찾|grep|read))/iu,
+    terms: ['+workspace', 'local', 'file', 'read', 'grep', 'search'],
+  },
+  {
+    pattern: SOURCE_SUPPORT_INTENT_PATTERN,
+    terms: [
+      'web',
+      'search',
+      'current',
+      'information',
+      'fetch',
+      'url',
+      'source',
+      'verification',
+    ],
+  },
+  {
+    pattern: MCP_SUPPORT_INTENT_PATTERN,
+    terms: ['mcp', 'resources', 'list', 'connected', 'servers'],
+  },
+  {
+    pattern: AGENT_SUPPORT_INTENT_PATTERN,
+    terms: ['+agent', 'delegate', 'subagent', 'task', 'cancel', 'progress'],
+  },
+  {
+    pattern: /쉘|셸|명령|터미널|git/iu,
+    terms: ['shell', 'bash', 'commands', 'permission', 'blocked'],
+  },
+  {
+    pattern: /쓰기|작성|저장|파일|메모|승인|작업공간/iu,
+    terms: ['create', 'overwrite', 'local', 'text', 'files', 'permission', 'blocked'],
+  },
+]
+const SUPPORT_TOOL_NAMES_BY_PATTERN: readonly {
+  readonly pattern: RegExp
+  readonly toolNames: readonly string[]
+}[] = [
+  {
+    pattern:
+      /(?=.*(?:저장소|작업\s*공간|워크\s*스페이스|로컬|프로젝트|코드\s*베이스|repository|repo|workspace|codebase))(?=.*(?:파일|경로|첫\s*줄|읽|검색|찾|grep|read))/iu,
+    toolNames: ['workspace_grep', 'workspace_read'],
+  },
+  {
+    pattern: SOURCE_SUPPORT_INTENT_PATTERN,
+    toolNames: ['WebSearch', 'WebFetch'],
+  },
+  {
+    pattern: MCP_SUPPORT_INTENT_PATTERN,
+    toolNames: ['ListMcpResourcesTool'],
+  },
+  {
+    pattern: AGENT_SUPPORT_INTENT_PATTERN,
+    toolNames: ['Agent'],
+  },
+  {
+    pattern: /쉘|셸|명령|터미널|git/iu,
+    toolNames: ['workspace_bash'],
+  },
+  {
+    pattern: /쓰기|작성|저장|파일|메모|승인|작업공간/iu,
+    toolNames: ['workspace_write'],
+  },
+]
+export function expandedToolSearchTerms(queryLower: string): string[] {
+  const terms = queryLower.split(/\s+/).filter(term => term.length > 0)
+  for (const expansion of KOREAN_QUERY_EXPANSIONS) {
+    if (expansion.pattern.test(queryLower)) {
+      terms.push(...expansion.terms)
+    }
+  }
+  return [...new Set(terms)]
+}
+export function expandedIntentTermSet(queryLower: string): ReadonlySet<string> {
+  const expandedTerms: string[] = []
+  for (const expansion of KOREAN_QUERY_EXPANSIONS) {
+    if (expansion.pattern.test(queryLower)) {
+      expandedTerms.push(
+        ...expansion.terms.map(term =>
+          term.startsWith('+') ? term.slice(1) : term,
+        ),
+      )
+    }
+  }
+  return new Set(expandedTerms)
+}
+export function selectRecoveredSupportToolNamesForQuery(
+  query: string,
+): readonly string[] {
+  const queryLower = query.toLowerCase()
+  const shellIntent = /쉘|셸|명령|터미널|git/iu.test(queryLower)
+  const localWorkspaceFileIntent =
+    /(?:저장소|작업\s*공간|워크\s*스페이스|로컬|프로젝트|코드\s*베이스|repository|repo|workspace|codebase)/iu.test(
+      queryLower,
+    ) &&
+    /(?:파일|경로|첫\s*줄|읽|검색|찾|grep|read)/iu.test(queryLower)
+  if (localWorkspaceFileIntent && !shellIntent) {
+    return ['workspace_grep', 'workspace_read']
+  }
+  const toolNames: string[] = []
+  for (const supportClass of SUPPORT_TOOL_NAMES_BY_PATTERN) {
+    if (supportClass.pattern.test(queryLower)) {
+      toolNames.push(...supportClass.toolNames)
+    }
+  }
+  return [...new Set(toolNames)]
+}
+function sanitizeSearchHint(searchHint: string): string {
+  return searchHint
+    .replace(/[<>]/g, '')
+    .replace(/\s+/g, ' ')
+    .trim()
+}
+export function formatDeferredToolSearchLine(tool: Tool): string {
+  const searchHint = tool.searchHint ? sanitizeSearchHint(tool.searchHint) : ''
+  return searchHint ? `${tool.name} - ${searchHint}` : tool.name
+}

package/tui/src/tools/TranslateTool/TranslateTool.ts CHANGED Viewed

@@ -58,7 +58,7 @@ type OutputSchema = ReturnType<typeof outputSchema>
 export type Output = z.infer<OutputSchema>
 // ---------------------------------------------------------------------------
-// The UMMAYA model identifier (matches services/api/claude.ts)
+// The UMMAYA model identifier (matches services/api/ummaya.ts)
 // ---------------------------------------------------------------------------
 const UMMAYA_MODEL = 'LGAI-EXAONE/K-EXAONE-236B-A23B'

package/tui/src/tools/VerifyPrimitive/VerifyPrimitive.ts CHANGED Viewed

@@ -388,7 +388,8 @@ export const VerifyPrimitive = buildTool({
   async checkPermissions(_input) {
     return {
       behavior: 'ask' as const,
-      message: 'Permission delegation required: send identity information to the auth provider. Continue?',
+      message:
+        '권한 위임 필요: 인증 제공자에게 신원 정보를 전달합니다. 계속할까요? / Permission delegation required: send identity information to the auth provider.',
     }
   },

package/tui/src/tools/WebFetchTool/WebFetchTool.ts CHANGED Viewed

@@ -1,10 +1,10 @@
 import { z } from 'zod/v4'
 import { buildTool, type ToolDef } from '../../Tool.js'
 import type { PermissionUpdate } from '../../types/permissions.js'
-import { formatFileSize } from '../../utils/format.js'
 import { lazySchema } from '../../utils/lazySchema.js'
 import type { PermissionDecision } from '../../utils/permissions/PermissionResult.js'
 import { getRuleByContentsForTool } from '../../utils/permissions/permissions.js'
+import { callWebFetch } from './call.js'
 import { isPreapprovedHost } from './preapproved.js'
 import { DESCRIPTION, WEB_FETCH_TOOL_NAME } from './prompt.js'
 import {
@@ -14,12 +14,12 @@ import {
   renderToolUseProgressMessage,
 } from './UI.js'
 import {
-  applyPromptToMarkdown,
-  type FetchedContent,
-  getURLMarkdownContent,
-  isPreapprovedUrl,
-  MAX_MARKDOWN_LENGTH,
-} from './utils.js'
+  formatSourceVerifiedToolResult,
+  sourceVerificationSchema,
+} from './sourceVerification.js'
+import type { WebFetchOutput } from './types.js'
+import { validateResolvedPublicWebFetchUrl } from './resolvedAddressSafety.js'
+import { validatePublicWebFetchUrl } from './urlSafety.js'
 const inputSchema = lazySchema(() =>
   z.strictObject({
@@ -41,42 +41,31 @@ const outputSchema = lazySchema(() =>
       .number()
       .describe('Time taken to fetch and process the content'),
     url: z.string().describe('The URL that was fetched'),
+    sourceVerification: sourceVerificationSchema.optional(),
   }),
 )
 type OutputSchema = ReturnType<typeof outputSchema>
-export type Output = z.infer<OutputSchema>
+export type Output = WebFetchOutput
 function webFetchToolInputToPermissionRuleContent(input: {
-  [k: string]: unknown
+  readonly url: string
 }): string {
-  try {
-    const parsedInput = WebFetchTool.inputSchema.safeParse(input)
-    if (!parsedInput.success) {
-      return `input:${input.toString()}`
-    }
-    const { url } = parsedInput.data
-    const hostname = new URL(url).hostname
-    return `domain:${hostname}`
-  } catch {
-    return `input:${input.toString()}`
-  }
+  const validation = validatePublicWebFetchUrl(input.url)
+  return validation.ok ? `domain:${validation.hostname}` : `input:${input.url}`
 }
 export const WebFetchTool = buildTool({
   name: WEB_FETCH_TOOL_NAME,
-  searchHint: 'fetch and extract content from a URL',
+  searchHint: 'fetch and extract content from a URL for source verification',
   // 100K chars - tool result persistence threshold
   maxResultSizeChars: 100_000,
   shouldDefer: true,
   async description(input) {
-    const { url } = input as { url: string }
-    try {
-      const hostname = new URL(url).hostname
-      return `UMMAYA wants to fetch content from ${hostname}`
-    } catch {
-      return `UMMAYA wants to fetch content from this URL`
-    }
+    const validation = validatePublicWebFetchUrl(input.url)
+    return validation.ok
+      ? `UMMAYA wants to fetch content from ${validation.hostname}`
+      : `UMMAYA wants to fetch content from this URL`
   },
   userFacingName() {
     return 'Fetch'
@@ -104,20 +93,28 @@ export const WebFetchTool = buildTool({
   async checkPermissions(input, context): Promise<PermissionDecision> {
     const appState = context.getAppState()
     const permissionContext = appState.toolPermissionContext
+    const validation = await validateResolvedPublicWebFetchUrl(input.url)
+    if (!validation.ok) {
+      return {
+        behavior: 'deny',
+        message: `${WebFetchTool.name} rejected unsafe URL: ${validation.message}`,
+        decisionReason: { type: 'other', reason: validation.reason },
+      }
+    }
     // Check if the hostname is in the preapproved list
-    try {
-      const { url } = input as { url: string }
-      const parsedUrl = new URL(url)
-      if (isPreapprovedHost(parsedUrl.hostname, parsedUrl.pathname)) {
-        return {
-          behavior: 'allow',
-          updatedInput: input,
-          decisionReason: { type: 'other', reason: 'Preapproved host' },
-        }
+    if (
+      isPreapprovedHost(
+        validation.parsedUrl.hostname,
+        validation.parsedUrl.pathname,
+      )
+    ) {
+      return {
+        behavior: 'allow',
+        updatedInput: input,
+        decisionReason: { type: 'other', reason: 'Preapproved host' },
       }
-    } catch {
-      // If URL parsing fails, continue with normal permission checks
     }
     // Check for a rule specific to the tool input (matching hostname)
@@ -190,13 +187,12 @@ ${DESCRIPTION}`
   },
   async validateInput(input) {
     const { url } = input
-    try {
-      new URL(url)
-    } catch {
+    const validation = await validateResolvedPublicWebFetchUrl(url)
+    if (!validation.ok) {
       return {
         result: false,
-        message: `Error: Invalid URL "${url}". The URL provided could not be parsed.`,
-        meta: { reason: 'invalid_url' },
+        message: `Error: ${validation.message}`,
+        meta: { reason: validation.reason },
         errorCode: 1,
       }
     }
@@ -205,103 +201,12 @@ ${DESCRIPTION}`
   renderToolUseMessage,
   renderToolUseProgressMessage,
   renderToolResultMessage,
-  async call(
-    { url, prompt },
-    { abortController, options: { isNonInteractiveSession } },
-  ) {
-    const start = Date.now()
-    const response = await getURLMarkdownContent(url, abortController)
-    // Check if we got a redirect to a different host
-    if ('type' in response && response.type === 'redirect') {
-      const statusText =
-        response.statusCode === 301
-          ? 'Moved Permanently'
-          : response.statusCode === 308
-            ? 'Permanent Redirect'
-            : response.statusCode === 307
-              ? 'Temporary Redirect'
-              : 'Found'
-      const message = `REDIRECT DETECTED: The URL redirects to a different host.
-Original URL: ${response.originalUrl}
-Redirect URL: ${response.redirectUrl}
-Status: ${response.statusCode} ${statusText}
-To complete your request, I need to fetch content from the redirected URL. Please use WebFetch again with these parameters:
-- url: "${response.redirectUrl}"
-- prompt: "${prompt}"`
-      const output: Output = {
-        bytes: Buffer.byteLength(message),
-        code: response.statusCode,
-        codeText: statusText,
-        result: message,
-        durationMs: Date.now() - start,
-        url,
-      }
-      return {
-        data: output,
-      }
-    }
-    const {
-      content,
-      bytes,
-      code,
-      codeText,
-      contentType,
-      persistedPath,
-      persistedSize,
-    } = response as FetchedContent
-    const isPreapproved = isPreapprovedUrl(url)
-    let result: string
-    if (
-      isPreapproved &&
-      contentType.includes('text/markdown') &&
-      content.length < MAX_MARKDOWN_LENGTH
-    ) {
-      result = content
-    } else {
-      result = await applyPromptToMarkdown(
-        prompt,
-        content,
-        abortController.signal,
-        isNonInteractiveSession,
-        isPreapproved,
-      )
-    }
-    // Binary content (PDFs, etc.) was additionally saved to disk with a
-    // mime-derived extension. Note it so Claude can inspect the raw file
-    // if the Haiku summary above isn't enough.
-    if (persistedPath) {
-      result += `\n\n[Binary content (${contentType}, ${formatFileSize(persistedSize ?? bytes)}) also saved to ${persistedPath}]`
-    }
-    const output: Output = {
-      bytes,
-      code,
-      codeText,
-      result,
-      durationMs: Date.now() - start,
-      url,
-    }
-    return {
-      data: output,
-    }
-  },
-  mapToolResultToToolResultBlockParam({ result }, toolUseID) {
+  call: callWebFetch,
+  mapToolResultToToolResultBlockParam({ result, sourceVerification }, toolUseID) {
     return {
       tool_use_id: toolUseID,
       type: 'tool_result',
-      content: result,
+      content: formatSourceVerifiedToolResult({ result, sourceVerification }),
     }
   },
 } satisfies ToolDef<InputSchema, Output>)

package/tui/src/tools/WebFetchTool/call.ts ADDED Viewed

@@ -0,0 +1,227 @@
+import type { ToolResult } from '../../Tool.js'
+import { errorMessage, isAbortError } from '../../utils/errors.js'
+import { formatFileSize } from '../../utils/format.js'
+import { WEB_FETCH_TOOL_NAME } from './prompt.js'
+import {
+  buildSourceEvidence,
+  buildSourceVerification,
+  redactSourceVerificationText,
+} from './sourceVerification.js'
+import type {
+  WebFetchCallContext,
+  WebFetchCallInput,
+  WebFetchOutput,
+} from './types.js'
+import { validateResolvedPublicWebFetchUrl } from './resolvedAddressSafety.js'
+import {
+  applyPromptToMarkdown,
+  getURLMarkdownContent,
+  isPreapprovedUrl,
+  MAX_MARKDOWN_LENGTH,
+} from './utils.js'
+export async function callWebFetch(
+  { url, prompt }: WebFetchCallInput,
+  { abortController, options: { isNonInteractiveSession } }: WebFetchCallContext,
+): Promise<ToolResult<WebFetchOutput>> {
+  const start = Date.now()
+  const validation = await validateResolvedPublicWebFetchUrl(url)
+  if (!validation.ok) {
+    return blockedToolResult({
+      url,
+      start,
+      message: `Source verification blocked: ${validation.message}`,
+      sourceUrl: null,
+      title: 'Unsafe URL',
+    })
+  }
+  try {
+    const response = await getURLMarkdownContent(url, abortController)
+    if ('type' in response && response.type === 'redirect') {
+      const redirectValidation = await validateResolvedPublicWebFetchUrl(
+        response.redirectUrl,
+      )
+      if (!redirectValidation.ok) {
+        return blockedToolResult({
+          url,
+          start,
+          code: response.statusCode,
+          codeText: 'Redirect Target Blocked',
+          message: `Source verification blocked: ${redirectValidation.message}`,
+          sourceUrl: null,
+          title: 'Unsafe redirect target',
+        })
+      }
+      return redirectedToolResult({
+        url,
+        prompt,
+        start,
+        originalUrl: response.originalUrl,
+        redirectUrl: response.redirectUrl,
+        statusCode: response.statusCode,
+      })
+    }
+    const {
+      content,
+      bytes,
+      code,
+      codeText,
+      contentType,
+      persistedPath,
+      persistedSize,
+    } = response
+    const isPreapproved = isPreapprovedUrl(url)
+    let result =
+      isPreapproved &&
+      contentType.includes('text/markdown') &&
+      content.length < MAX_MARKDOWN_LENGTH
+        ? content
+        : await applyPromptToMarkdown(
+            prompt,
+            content,
+            abortController.signal,
+            isNonInteractiveSession,
+            isPreapproved,
+          )
+    if (persistedPath) {
+      result += `\n\n[Binary content (${contentType}, ${formatFileSize(persistedSize ?? bytes)}) also saved to ${persistedPath}]`
+    }
+    const sourceVerification = buildSourceVerification([
+      buildSourceEvidence({
+        toolId: WEB_FETCH_TOOL_NAME,
+        sourceUrl: url,
+        title: contentType,
+        blockedOrUsed: 'needs_input',
+        rawText: result,
+      }),
+    ])
+    const safeResult = redactSourceVerificationText(result)
+    return {
+      data: {
+        bytes,
+        code,
+        codeText,
+        result: safeResult,
+        durationMs: Date.now() - start,
+        url,
+        sourceVerification,
+      },
+    }
+  } catch (error) {
+    if (isAbortError(error)) throw error
+    const message = `Source verification blocked: ${errorMessage(error)}`
+    return blockedToolResult({
+      url,
+      start,
+      message,
+      sourceUrl: url,
+      title: 'Provider error',
+    })
+  }
+}
+function redirectedToolResult({
+  url,
+  prompt,
+  start,
+  originalUrl,
+  redirectUrl,
+  statusCode,
+}: {
+  readonly url: string
+  readonly prompt: string
+  readonly start: number
+  readonly originalUrl: string
+  readonly redirectUrl: string
+  readonly statusCode: number
+}): ToolResult<WebFetchOutput> {
+  const statusText = redirectStatusText(statusCode)
+  const message = `REDIRECT DETECTED: The URL redirects to a different host.
+Original URL: ${originalUrl}
+Redirect URL: ${redirectUrl}
+Status: ${statusCode} ${statusText}
+To complete your request, I need to fetch content from the redirected URL. Please use WebFetch again with these parameters:
+- url: "${redirectUrl}"
+- prompt: "${prompt}"`
+  const safeMessage = redactSourceVerificationText(message)
+  return {
+    data: {
+      bytes: Buffer.byteLength(safeMessage),
+      code: statusCode,
+      codeText: statusText,
+      result: safeMessage,
+      durationMs: Date.now() - start,
+      url,
+      sourceVerification: buildSourceVerification([
+        buildSourceEvidence({
+          toolId: WEB_FETCH_TOOL_NAME,
+          sourceUrl: redirectUrl,
+          title: 'Redirect target',
+          blockedOrUsed: 'needs_input',
+          rawText: message,
+        }),
+      ]),
+    },
+  }
+}
+function blockedToolResult({
+  url,
+  start,
+  message,
+  sourceUrl,
+  title,
+  code = 0,
+  codeText = 'Source Verification Blocked',
+}: {
+  readonly url: string
+  readonly start: number
+  readonly message: string
+  readonly sourceUrl: string | null
+  readonly title: string
+  readonly code?: number
+  readonly codeText?: string
+}): ToolResult<WebFetchOutput> {
+  const safeMessage = redactSourceVerificationText(message)
+  return {
+    data: {
+      bytes: Buffer.byteLength(safeMessage),
+      code,
+      codeText,
+      result: safeMessage,
+      durationMs: Date.now() - start,
+      url,
+      sourceVerification: buildSourceVerification([
+        buildSourceEvidence({
+          toolId: WEB_FETCH_TOOL_NAME,
+          sourceUrl,
+          title,
+          blockedOrUsed: 'blocked',
+          rawText: message,
+        }),
+      ]),
+    },
+  }
+}
+function redirectStatusText(statusCode: number): string {
+  switch (statusCode) {
+    case 301:
+      return 'Moved Permanently'
+    case 307:
+      return 'Temporary Redirect'
+    case 308:
+      return 'Permanent Redirect'
+    default:
+      return 'Found'
+  }
+}