vellum 0.2.13 → 0.2.14

package/src/__tests__/ipc-snapshot.test.ts

@@ -4,7 +4,6 @@ import type {
   ClientMessage,
   ServerMessage,
 } from '../daemon/ipc-protocol.js';
-import type { ConfirmationRequest } from '../daemon/ipc-contract.js';
 
 /**
  * Snapshot tests for every IPC message type.
@@ -218,6 +217,8 @@ const clientMessages: Record<ClientMessageType, ClientMessage> = {
     pattern: 'git *',
     scope: '/projects/my-app',
     decision: 'allow',
+    allowHighRisk: true,
+    executionTarget: 'host',
   },
   trust_rules_list: {
     type: 'trust_rules_list',
@@ -327,6 +328,28 @@ const clientMessages: Record<ClientMessageType, ClientMessage> = {
     type: 'app_preview_request',
     appId: 'app-001',
   },
+  app_history_request: {
+    type: 'app_history_request',
+    appId: 'app-001',
+    limit: 25,
+  },
+  app_diff_request: {
+    type: 'app_diff_request',
+    appId: 'app-001',
+    fromCommit: 'abc123def456',
+    toCommit: '789abc123def',
+  },
+  app_file_at_version_request: {
+    type: 'app_file_at_version_request',
+    appId: 'app-001',
+    path: 'index.html',
+    commitHash: 'abc123def456',
+  },
+  app_restore_request: {
+    type: 'app_restore_request',
+    appId: 'app-001',
+    commitHash: 'abc123def456',
+  },
   share_app_cloud: {
     type: 'share_app_cloud',
     appId: 'app-001',
@@ -351,6 +374,10 @@ const clientMessages: Record<ClientMessageType, ClientMessage> = {
     type: 'twitter_integration_config',
     action: 'get',
   },
+  telegram_config: {
+    type: 'telegram_config',
+    action: 'get',
+  },
   twitter_auth_start: {
     type: 'twitter_auth_start',
   },
@@ -516,6 +543,17 @@ const clientMessages: Record<ClientMessageType, ClientMessage> = {
   identity_get: {
     type: 'identity_get',
   },
+  tool_permission_simulate: {
+    type: 'tool_permission_simulate',
+    toolName: 'bash',
+    input: { command: 'rm -rf /tmp/test' },
+    workingDir: '/projects/my-app',
+    isInteractive: true,
+    forcePromptSideEffects: false,
+  },
+  tool_names_list: {
+    type: 'tool_names_list',
+  },
 };
 
 // ---------------------------------------------------------------------------
@@ -605,9 +643,6 @@ const serverMessages: Record<ServerMessageType, ServerMessage> = {
     },
     sandboxed: false,
     sessionId: 'sess-001',
-    principalKind: 'skill',
-    principalId: 'my-skill',
-    principalVersion: 'sha256:abcdef1234567890',
   },
   message_complete: {
     type: 'message_complete',
@@ -1169,6 +1204,14 @@ const serverMessages: Record<ServerMessageType, ServerMessage> = {
     localClientConfigured: true,
     connected: false,
   },
+  telegram_config_response: {
+    type: 'telegram_config_response',
+    success: true,
+    hasBotToken: true,
+    botUsername: 'my_test_bot',
+    connected: true,
+    hasWebhookSecret: true,
+  },
   twitter_auth_result: {
     type: 'twitter_auth_result',
     success: true,
@@ -1195,6 +1238,37 @@ const serverMessages: Record<ServerMessageType, ServerMessage> = {
     appId: 'app-001',
     preview: 'base64-png-data',
   },
+  app_history_response: {
+    type: 'app_history_response',
+    appId: 'app-001',
+    versions: [
+      {
+        commitHash: 'abc123def456',
+        message: 'Initial app commit',
+        timestamp: 1700000000,
+      },
+      {
+        commitHash: '789abc123def',
+        message: 'Update landing page',
+        timestamp: 1700001000,
+      },
+    ],
+  },
+  app_diff_response: {
+    type: 'app_diff_response',
+    appId: 'app-001',
+    diff: 'diff --git a/index.html b/index.html',
+  },
+  app_file_at_version_response: {
+    type: 'app_file_at_version_response',
+    appId: 'app-001',
+    path: 'index.html',
+    content: '<html><body>Hello</body></html>',
+  },
+  app_restore_response: {
+    type: 'app_restore_response',
+    success: true,
+  },
   ui_surface_undo_result: {
     type: 'ui_surface_undo_result',
     sessionId: 'sess-001',
@@ -1490,6 +1564,28 @@ const serverMessages: Record<ServerMessageType, ServerMessage> = {
     emoji: '✨',
     home: '~/workspace',
   },
+  tool_permission_simulate_response: {
+    type: 'tool_permission_simulate_response',
+    success: true,
+    decision: 'prompt',
+    riskLevel: 'high',
+    reason: 'No matching trust rule; tool requires approval',
+    promptPayload: {
+      allowlistOptions: [
+        { label: 'Allow rm commands', description: 'Allow rm commands', pattern: 'bash:rm *' },
+      ],
+      scopeOptions: [
+        { label: 'In /projects/my-app', scope: '/projects/my-app' },
+      ],
+      persistentDecisionsAllowed: true,
+    },
+    executionTarget: 'host',
+    matchedRuleId: undefined,
+  },
+  tool_names_list_response: {
+    type: 'tool_names_list_response',
+    names: ['bash', 'file_read', 'file_write'],
+  },
 };
 
 // ---------------------------------------------------------------------------
@@ -1601,43 +1697,6 @@ describe('IPC message snapshots', () => {
     });
   });
 
-  // Baseline assertions for principal context in confirmation_request.
-  describe('confirmation principal context baselines', () => {
-    test('confirmation_request includes principal context fields', () => {
-      const req = serverMessages.confirmation_request as ConfirmationRequest;
-      expect(req.principalKind).toBe('skill');
-      expect(req.principalId).toBe('my-skill');
-      expect(req.principalVersion).toBe('sha256:abcdef1234567890');
-    });
-
-    test('confirmation_request principal fields are optional (backward-compatible)', () => {
-      // Core tools omit principal fields — verify the contract allows it
-      const minimal: typeof serverMessages.confirmation_request = {
-        type: 'confirmation_request',
-        requestId: 'req-minimal',
-        toolName: 'bash',
-        input: { command: 'ls' },
-        riskLevel: 'low',
-        allowlistOptions: [],
-        scopeOptions: [],
-      };
-      const serialized = serialize(minimal);
-      const parsed = JSON.parse(serialized.trimEnd());
-      expect(parsed.principalKind).toBeUndefined();
-      expect(parsed.principalId).toBeUndefined();
-      expect(parsed.principalVersion).toBeUndefined();
-    });
-
-    test('confirmation_request round-trips with all principal fields', () => {
-      const req = serverMessages.confirmation_request;
-      const serialized = serialize(req);
-      const parsed = JSON.parse(serialized.trimEnd());
-      expect(parsed.principalKind).toBe('skill');
-      expect(parsed.principalId).toBe('my-skill');
-      expect(parsed.principalVersion).toBe('sha256:abcdef1234567890');
-    });
-  });
-
   // Baseline assertions for error-related message contracts.
   // These document the current shape before error handling modernization.
   describe('error message baselines', () => {

package/src/__tests__/ipc-validate.test.ts

@@ -295,6 +295,55 @@ describe('IPC Validate', () => {
       if (!result.valid) expect(result.reason).toContain('non-empty string "actionId"');
     });
 
+    // ─── High-risk: add_trust_rule ──────────────────────────────────────
+
+    test('accepts valid add_trust_rule', () => {
+      const result = validateClientMessage({
+        type: 'add_trust_rule',
+        toolName: 'Bash',
+        pattern: '*',
+        scope: 'global',
+        decision: 'allow',
+      });
+      expect(result.valid).toBe(true);
+    });
+
+    test('accepts all valid add_trust_rule decisions', () => {
+      for (const decision of ['allow', 'deny', 'ask']) {
+        const result = validateClientMessage({
+          type: 'add_trust_rule',
+          toolName: 'Bash',
+          pattern: '*',
+          scope: 'global',
+          decision,
+        });
+        expect(result.valid).toBe(true);
+      }
+    });
+
+    test('rejects add_trust_rule without toolName', () => {
+      const result = validateClientMessage({
+        type: 'add_trust_rule',
+        pattern: '*',
+        scope: 'global',
+        decision: 'allow',
+      });
+      expect(result.valid).toBe(false);
+      if (!result.valid) expect(result.reason).toContain('non-empty string "toolName"');
+    });
+
+    test('rejects add_trust_rule with invalid decision', () => {
+      const result = validateClientMessage({
+        type: 'add_trust_rule',
+        toolName: 'Bash',
+        pattern: '*',
+        scope: 'global',
+        decision: 'always_allow',
+      });
+      expect(result.valid).toBe(false);
+      if (!result.valid) expect(result.reason).toContain('"decision" must be one of');
+    });
+
     // ─── Extra properties are tolerated ─────────────────────────────────
 
     test('allows extra properties on known types', () => {
@@ -335,6 +384,7 @@ describe('IPC Validate', () => {
       secret_response: { requestId: 'r1' },
       ui_surface_action: { sessionId: 's1', surfaceId: 'sf1', actionId: 'a1' },
       ipc_blob_probe: { probeId: 'aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee', nonceSha256: 'abc123' },
+      add_trust_rule: { toolName: 'Bash', pattern: '*', scope: 'global', decision: 'allow' },
       document_save: { surfaceId: 'doc1', conversationId: 'c1', title: 'Doc', content: 'text', wordCount: 1 },
       document_load: { surfaceId: 'doc1' },
       document_list: {},

package/src/__tests__/key-migration.test.ts

@@ -31,6 +31,9 @@ mock.module('../util/platform.js', () => ({
     const logsDir = join(TEST_DIR, 'logs');
     if (!existsSync(logsDir)) mkdirSync(logsDir, { recursive: true });
   },
+  migrateToWorkspaceLayout: () => {},
+  migrateToDataLayout: () => {},
+  migratePath: () => {},
   isMacOS: () => false,
   isLinux: () => false,
   isWindows: () => false,
@@ -45,8 +48,23 @@ import { getSecureKey } from '../security/secure-keys.js';
 // Tests
 // ---------------------------------------------------------------------------
 
+// API key env vars that loadConfig checks — must be cleared during tests
+// so they don't override the migrated values under test.
+const API_KEY_ENV_VARS = [
+  'ANTHROPIC_API_KEY', 'OPENAI_API_KEY', 'GEMINI_API_KEY',
+  'OLLAMA_API_KEY', 'FIREWORKS_API_KEY', 'OPENROUTER_API_KEY',
+  'BRAVE_API_KEY', 'PERPLEXITY_API_KEY',
+];
+
 describe('key migration', () => {
+  const savedEnv: Record<string, string | undefined> = {};
+
   beforeEach(() => {
+    // Save and clear API key env vars
+    for (const key of API_KEY_ENV_VARS) {
+      savedEnv[key] = process.env[key];
+      delete process.env[key];
+    }
     if (existsSync(TEST_DIR)) {
       rmSync(TEST_DIR, { recursive: true, force: true });
     }
@@ -62,6 +80,11 @@ describe('key migration', () => {
     _setStorePath(null);
     _setBackend(undefined);
     invalidateConfigCache();
+    // Restore API key env vars
+    for (const key of API_KEY_ENV_VARS) {
+      if (savedEnv[key] === undefined) delete process.env[key];
+      else process.env[key] = savedEnv[key]!;
+    }
   });
 
   test('[experimental] migrates plaintext apiKeys from config.json to secure storage', () => {

package/src/__tests__/memory-regressions.test.ts

@@ -1216,6 +1216,105 @@ describe('Memory regressions', () => {
     }
   });
 
+  test('background conflict resolver dismisses transient/non-durable conflicts without LLM call', async () => {
+    const db = getDb();
+    const now = 1_700_001_500_000;
+    const originalConflictsEnabled = TEST_CONFIG.memory.conflicts.enabled;
+    TEST_CONFIG.memory.conflicts.enabled = true;
+
+    try {
+      db.insert(conversations).values({
+        id: 'conv-conflicts-transient',
+        title: null,
+        createdAt: now,
+        updatedAt: now,
+        totalInputTokens: 0,
+        totalOutputTokens: 0,
+        totalEstimatedCost: 0,
+        contextSummary: null,
+        contextCompactedMessageCount: 0,
+        contextCompactedAt: null,
+      }).run();
+
+      db.insert(messages).values({
+        id: 'msg-conflicts-transient',
+        conversationId: 'conv-conflicts-transient',
+        role: 'user',
+        content: JSON.stringify([{ type: 'text', text: 'Keep the new one instead.' }]),
+        createdAt: now + 1,
+      }).run();
+
+      // Create a transient conflict: PR tracking statements should be dismissed
+      db.insert(memoryItems).values([
+        {
+          id: 'item-conflict-existing-transient',
+          kind: 'preference',
+          subject: 'pr-tracking',
+          statement: 'Currently tracking PR #42 for review.',
+          status: 'active',
+          confidence: 0.8,
+          fingerprint: 'fp-conflict-existing-transient',
+          verificationState: 'assistant_inferred',
+          scopeId: 'scope-conflicts-transient',
+          firstSeenAt: now - 10_000,
+          lastSeenAt: now - 5_000,
+          validFrom: now - 10_000,
+          invalidAt: null,
+        },
+        {
+          id: 'item-conflict-candidate-transient',
+          kind: 'preference',
+          subject: 'pr-tracking',
+          statement: 'Currently tracking PR #99 for review.',
+          status: 'pending_clarification',
+          confidence: 0.8,
+          fingerprint: 'fp-conflict-candidate-transient',
+          verificationState: 'assistant_inferred',
+          scopeId: 'scope-conflicts-transient',
+          firstSeenAt: now - 9_000,
+          lastSeenAt: now - 4_000,
+          validFrom: now - 9_000,
+          invalidAt: null,
+        },
+      ]).run();
+
+      const conflict = createOrUpdatePendingConflict({
+        scopeId: 'scope-conflicts-transient',
+        existingItemId: 'item-conflict-existing-transient',
+        candidateItemId: 'item-conflict-candidate-transient',
+        relationship: 'ambiguous_contradiction',
+      });
+      db.update(memoryItemConflicts)
+        .set({ createdAt: now, updatedAt: now })
+        .where(eq(memoryItemConflicts.id, conflict.id))
+        .run();
+
+      enqueueResolvePendingConflictsForMessageJob('msg-conflicts-transient', 'scope-conflicts-transient');
+      const processed = await runMemoryJobsOnce();
+      expect(processed).toBe(1);
+
+      const updatedConflict = getConflictById(conflict.id);
+      expect(updatedConflict?.status).toBe('dismissed');
+      expect(updatedConflict?.resolutionNote).toContain('conflict policy');
+
+      // Memory items should remain untouched (no LLM resolution was attempted)
+      const existing = db
+        .select()
+        .from(memoryItems)
+        .where(eq(memoryItems.id, 'item-conflict-existing-transient'))
+        .get();
+      const candidate = db
+        .select()
+        .from(memoryItems)
+        .where(eq(memoryItems.id, 'item-conflict-candidate-transient'))
+        .get();
+      expect(existing?.status).toBe('active');
+      expect(candidate?.status).toBe('pending_clarification');
+    } finally {
+      TEST_CONFIG.memory.conflicts.enabled = originalConflictsEnabled;
+    }
+  });
+
   test('cleanup job enqueue is deduped and retention overrides upgrade payload', () => {
     const db = getDb();
 

package/src/__tests__/memory-retrieval.benchmark.test.ts

@@ -398,7 +398,7 @@ describe('Memory retrieval benchmark', () => {
     }
   });
 
-  test('recall.latencyMs tracks wall-clock within 20% tolerance', async () => {
+  test('recall.latencyMs tracks wall-clock within 50% tolerance', async () => {
     const conversationId = 'conv-bench-wallclock';
     const now = 1_700_500_000_000;
     seedMemoryItems(conversationId, 500, now);

package/src/__tests__/oauth-callback-registry.test.ts

@@ -61,13 +61,20 @@ describe('OAuth callback registry', () => {
 
   test('TTL expiry rejects callback with timeout error', async () => {
     const promise = new Promise<string>((resolve, reject) => {
-      registerPendingCallback('state-ttl', resolve, reject, 50);
+      registerPendingCallback('state-ttl', resolve, reject, 100);
     });
 
-    // Wait for the TTL to expire
-    await new Promise((r) => setTimeout(r, 100));
+    // Attach a catch handler immediately to prevent unhandled rejection
+    // during the sleep. We capture the error and verify it afterwards.
+    let caughtError: Error | undefined;
+    const guarded = promise.catch((err) => { caughtError = err; });
 
-    await expect(promise).rejects.toThrow('OAuth callback timed out');
+    // Wait for the TTL to expire (generous margin)
+    await new Promise((r) => setTimeout(r, 300));
+    await guarded;
+
+    expect(caughtError).toBeDefined();
+    expect(caughtError!.message).toBe('OAuth callback timed out');
 
     // After expiry, consume should return false
     const consumed = consumeCallback('state-ttl', 'late-code');