aru-code 0.3.0__tar.gz → 0.5.0__tar.gz

{aru_code-0.3.0/aru_code.egg-info → aru_code-0.5.0}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: aru-code
-Version: 0.3.0
+Version: 0.5.0
 Summary: A Claude Code clone built with Agno agents
 Author-email: Estevao <estevaofon@gmail.com>
 License-Expression: MIT
@@ -29,6 +29,7 @@ Requires-Dist: tree-sitter>=0.23
 Requires-Dist: tree-sitter-python>=0.23
 Requires-Dist: mcp>=1.0
 Requires-Dist: openai>=2.29.0
+Requires-Dist: pytest-asyncio>=1.3.0
 Provides-Extra: dev
 Requires-Dist: pytest>=8.0; extra == "dev"
 Requires-Dist: pytest-asyncio>=0.23; extra == "dev"
@@ -47,14 +48,8 @@ Dynamic: license-file
 # aru
 
 An intelligent coding assistant for the terminal, powered by LLMs and [Agno](https://github.com/agno-agi/agno) agents.
-</br></br>
-<img width="600" alt="image" src="https://github.com/user-attachments/assets/36001faa-3163-4374-84fd-da8704a4ed9d" />
-
-
-
-https://github.com/user-attachments/assets/17674bfc-3d49-4e25-bdc7-dc445d5a089d
-
 
+![0329(3)](https://github.com/user-attachments/assets/e84d5139-ebaa-4d12-bbae-628fae7dbc7a)
 
 ## Highlights
 
@@ -63,7 +58,7 @@ https://github.com/user-attachments/assets/17674bfc-3d49-4e25-bdc7-dc445d5a089d
 - **16 Integrated Tools** — File operations, code search, shell, web search, task delegation
 - **Task Planning** — Break down complex tasks into steps with automatic execution
 - **Multi-Provider** — Anthropic, OpenAI, Ollama, Groq, OpenRouter, DeepSeek, and others via custom configuration
-- **Custom Commands and Skills** — Extend aru via the `.agents/` directory
+- **Custom Commands, Skills, and Agents** — Extend aru via the `.agents/` directory
 - **MCP Support** — Integration with Model Context Protocol servers
 
 ## Quick Start
@@ -108,6 +103,7 @@ That's it — `aru` is available globally after install.
 | `/mcp` | List available MCP servers and tools |
 | `/commands` | List custom commands |
 | `/skills` | List available skills |
+| `/agents` | List custom agents |
 | `/sessions` | List recent sessions |
 | `/help` | Show all commands |
 | `! <command>` | Execute shell commands |
@@ -148,6 +144,7 @@ By default, aru uses **Claude Sonnet 4.6** (Anthropic). You can switch to any su
 | **OpenAI** | `/model openai/gpt-4o` | `OPENAI_API_KEY` | `pip install "aru-code[openai]"` |
 | **Groq** | `/model groq/llama-3.3-70b-versatile` | `GROQ_API_KEY` | `pip install "aru-code[groq]"` |
 | **OpenRouter** | `/model openrouter/deepseek/deepseek-chat-v3-0324` | `OPENROUTER_API_KEY` | `pip install "aru-code[openai]"` |
+| **MiniMax** | `/model openrouter/minimax/minimax-m2.7` | `OPENROUTER_API_KEY` | `pip install "aru-code[openai]"` |
 
 To install all providers at once:
 
@@ -173,9 +170,10 @@ You can set the default provider/model in `aru.json` so you don't need to switch
 
 ```json
 {
-  "models": {
-    "default": "openrouter/deepseek/deepseek-chat-v3-0324",
+  "default_model": "openrouter/minimax/minimax-m2.7",
+  "model_aliases": {
     "minimax": "openrouter/minimax/minimax-m2.5",
+    "minimax-m2.7": "openrouter/minimax/minimax-m2.7",
     "deepseek-v3": "openrouter/deepseek/deepseek-chat-v3-0324",
     "sonnet-4-6": "anthropic/claude-sonnet-4-6",
     "opus-4-6": "anthropic/claude-opus-4-6"
@@ -183,7 +181,7 @@ You can set the default provider/model in `aru.json` so you don't need to switch
 }
 ```
 
-The `default` field sets the main model. The other fields are aliases that can be used with `/model <alias>`.
+The `default_model` field sets the main model. The `model_aliases` are shortcuts that can be used with `/model <alias>`.
 
 #### Custom providers
 
@@ -194,12 +192,13 @@ You can configure custom providers with specific token limits:
   "providers": {
     "deepseek": {
       "models": {
-        "deepseek-chat-v3-0324": {"id": "deepseek-chat-v3-0324", "max_tokens": 16384}
+        "deepseek-chat-v3-0324": { "max_tokens": 16384 }
       }
     },
     "openrouter": {
       "models": {
-        "minimax/minimax-m2.5": {"id": "minimax/minimax-m2.5", "max_tokens": 65536}
+        "minimax/minimax-m2.5": { "max_tokens": 65536 },
+        "minimax/minimax-m2.7": { "max_tokens": 131072 }
       }
     }
   }
@@ -208,25 +207,96 @@ You can configure custom providers with specific token limits:
 
 ### Permissions (`aru.json`)
 
-The `aru.json` file in the project root controls which shell commands aru can execute **without asking for confirmation**:
+Aru uses a granular permission system where each tool action resolves to one of three outcomes:
+
+- **`allow`** — executes without asking
+- **`ask`** — prompts for confirmation (once / always / no)
+- **`deny`** — blocks the action silently
+
+Configure permissions per tool category with glob patterns:
 
 ```json
 {
   "permission": {
-    "allow": [
-      "git *",
-      "npm *",
-      "pytest *",
-      "python *",
-      "uv run pytest *"
-    ]
+    "*": "ask",
+    "read": "allow",
+    "glob": "allow",
+    "grep": "allow",
+    "list": "allow",
+    "edit": {
+      "*": "allow",
+      "*.env": "deny"
+    },
+    "write": {
+      "*": "allow",
+      "*.env": "deny"
+    },
+    "bash": {
+      "*": "ask",
+      "git *": "allow",
+      "npm *": "allow",
+      "pytest *": "allow",
+      "rm -rf *": "deny"
+    },
+    "web_search": "allow",
+    "web_fetch": "allow",
+    "delegate_task": "allow"
+  }
+}
+```
+
+#### Available categories
+
+| Category | Matched against | Default |
+|----------|----------------|---------|
+| `read` | file path | `allow` |
+| `edit` | file path | `ask` |
+| `write` | file path | `ask` |
+| `bash` | command string | safe prefixes = `allow`, rest = `ask` |
+| `glob` | — | `allow` |
+| `grep` | — | `allow` |
+| `list` | — | `allow` |
+| `web_search` | — | `allow` |
+| `web_fetch` | URL | `allow` |
+| `delegate_task` | — | `allow` |
+
+#### Rule precedence
+
+Rules use **last-match-wins** ordering. Place catch-all `"*"` first, then specific patterns:
+
+```json
+{
+  "edit": {
+    "*": "allow",
+    "*.env": "deny",
+    "*.env.example": "allow"
   }
 }
 ```
 
-Each entry is a glob pattern. Any command that doesn't match a listed pattern will prompt for confirmation before executing.
+#### Shorthands
+
+```json
+"permission": "allow"
+```
+Allows everything (equivalent to `--dangerously-skip-permissions`).
+
+```json
+"permission": { "read": "allow", "edit": "ask" }
+```
+String value applies to all patterns in that category.
+
+#### Defaults
+
+Without any `aru.json` config, aru applies safe defaults:
+- Read-only tools (`read`, `glob`, `grep`, `list`) → `allow`
+- Mutating tools (`edit`, `write`) → `ask`
+- Bash → ~40 safe command prefixes auto-allowed (`ls`, `git status`, `grep`, etc.), rest → `ask`
+- Sensitive files (`*.env`, `*.env.*`) → `deny` for read/edit/write (except `*.env.example`)
 
 > `aru.json` can also be placed at `.aru/config.json`.
+>
+> A full `aru.json` config reference here: [`aru.json`](./aru.json)
 
 ### AGENTS.md
 
@@ -236,14 +306,98 @@ Place an `AGENTS.md` file in your project root with custom instructions that wil
 
 ```
 .agents/
+├── agents/         # Custom agents with their own model, tools, and prompt
+│   └── reviewer.md # Usage: /reviewer <args>
 ├── commands/       # Custom slash commands (filename = command name)
 │   └── deploy.md   # Usage: /deploy <args>
 └── skills/         # Custom skills/personas
-    └── review.md   # Loaded as additional agent instructions
+    └── review/
+        └── SKILL.md
 ```
 
 Command files support frontmatter with `description` and the `$INPUT` template variable for arguments.
 
+### Custom Agents
+
+Custom agents are Markdown files with YAML frontmatter stored in `.agents/agents/`. Each agent runs with its own system prompt, model, and tool set — unlike commands and skills, which reuse the General Agent.
+
+```markdown
+---
+name: Code Reviewer
+description: Review code for quality, bugs, and best practices
+model: anthropic/claude-sonnet-4-5
+tools: read_file, grep_search, glob_search, code_structure
+max_turns: 15
+mode: primary
+---
+
+You are an expert code reviewer. Analyze code for bugs, security,
+performance, and readability. Do NOT modify files.
+```
+
+#### Frontmatter fields
+
+| Field | Required | Description |
+|-------|----------|-------------|
+| `name` | Yes | Display name of the agent |
+| `description` | Yes | When to use this agent (shown in `/agents` and tab completion) |
+| `model` | No | Provider/model reference (e.g., `anthropic/claude-sonnet-4-5`). Defaults to session model |
+| `tools` | No | Comma-separated tool names (allowlist) or JSON object for granular control (e.g., `{"bash": false}`). Defaults to all general tools |
+| `max_turns` | No | Max tool calls before the agent stops. Default: 20 |
+| `mode` | No | `primary` (invocable via `/name`) or `subagent` (only via `delegate_task`). Default: `primary` |
+| `permission` | No | Permission overrides (same format as `aru.json` permission section). Replaces global rules for specified categories while the agent runs |
+
+#### Invocation
+
+```
+aru> /reviewer src/auth.py        # invoke by slash + filename (without .md)
+aru> /agents                       # list all custom agents
+```
+
+#### Discovery paths
+
+Agents are discovered from multiple locations (later overrides earlier):
+
+1. `~/.agents/agents/` — global (available in all projects)
+2. `~/.claude/agents/` — global (Claude Code compatible path)
+3. `.agents/agents/` — project-local
+4. `.claude/agents/` — project-local
+
+#### Agent-level permissions
+
+Agents can override global permission rules. Overrides replace the entire category — unspecified categories inherit from global config.
+
+```markdown
+---
+name: Code Reviewer
+description: Read-only code reviewer
+permission:
+  edit: deny
+  write: deny
+  bash:
+    git diff *: allow
+    grep *: allow
+---
+```
+
+You can also set agent permissions in `aru.json` (overrides frontmatter):
+
+```json
+{
+  "agent": {
+    "reviewer": {
+      "permission": { "edit": "deny", "write": "deny" }
+    }
+  }
+}
+```
+
+Each agent gets its own isolated "always" memory — approvals during an agent's run don't carry over to the global scope.
+
+#### Subagent mode
+
+Agents with `mode: subagent` can be referenced by the LLM via `delegate_task(task, agent="name")` but are not directly invocable from the CLI.
+
 ### MCP Support (Model Context Protocol)
 
 Aru can load tools from MCP servers. Configure in `.aru/mcp_config.json`:
@@ -301,6 +455,7 @@ aru-code/
 │   ├── cli.py              # Interactive CLI with streaming display
 │   ├── config.py           # Configuration loader (AGENTS.md, .agents/)
 │   ├── providers.py        # Multi-provider LLM abstraction
+│   ├── permissions.py      # Granular permission system (allow/ask/deny)
 │   ├── agents/
 │   │   ├── planner.py      # Planning agent
 │   │   └── executor.py     # Execution agent

{aru_code-0.3.0 → aru_code-0.5.0}/README.md

@@ -1,14 +1,8 @@
 # aru
 
 An intelligent coding assistant for the terminal, powered by LLMs and [Agno](https://github.com/agno-agi/agno) agents.
-</br></br>
-<img width="600" alt="image" src="https://github.com/user-attachments/assets/36001faa-3163-4374-84fd-da8704a4ed9d" />
-
-
-
-https://github.com/user-attachments/assets/17674bfc-3d49-4e25-bdc7-dc445d5a089d
-
 
+![0329(3)](https://github.com/user-attachments/assets/e84d5139-ebaa-4d12-bbae-628fae7dbc7a)
 
 ## Highlights
 
@@ -17,7 +11,7 @@ https://github.com/user-attachments/assets/17674bfc-3d49-4e25-bdc7-dc445d5a089d
 - **16 Integrated Tools** — File operations, code search, shell, web search, task delegation
 - **Task Planning** — Break down complex tasks into steps with automatic execution
 - **Multi-Provider** — Anthropic, OpenAI, Ollama, Groq, OpenRouter, DeepSeek, and others via custom configuration
-- **Custom Commands and Skills** — Extend aru via the `.agents/` directory
+- **Custom Commands, Skills, and Agents** — Extend aru via the `.agents/` directory
 - **MCP Support** — Integration with Model Context Protocol servers
 
 ## Quick Start
@@ -62,6 +56,7 @@ That's it — `aru` is available globally after install.
 | `/mcp` | List available MCP servers and tools |
 | `/commands` | List custom commands |
 | `/skills` | List available skills |
+| `/agents` | List custom agents |
 | `/sessions` | List recent sessions |
 | `/help` | Show all commands |
 | `! <command>` | Execute shell commands |
@@ -102,6 +97,7 @@ By default, aru uses **Claude Sonnet 4.6** (Anthropic). You can switch to any su
 | **OpenAI** | `/model openai/gpt-4o` | `OPENAI_API_KEY` | `pip install "aru-code[openai]"` |
 | **Groq** | `/model groq/llama-3.3-70b-versatile` | `GROQ_API_KEY` | `pip install "aru-code[groq]"` |
 | **OpenRouter** | `/model openrouter/deepseek/deepseek-chat-v3-0324` | `OPENROUTER_API_KEY` | `pip install "aru-code[openai]"` |
+| **MiniMax** | `/model openrouter/minimax/minimax-m2.7` | `OPENROUTER_API_KEY` | `pip install "aru-code[openai]"` |
 
 To install all providers at once:
 
@@ -127,9 +123,10 @@ You can set the default provider/model in `aru.json` so you don't need to switch
 
 ```json
 {
-  "models": {
-    "default": "openrouter/deepseek/deepseek-chat-v3-0324",
+  "default_model": "openrouter/minimax/minimax-m2.7",
+  "model_aliases": {
     "minimax": "openrouter/minimax/minimax-m2.5",
+    "minimax-m2.7": "openrouter/minimax/minimax-m2.7",
     "deepseek-v3": "openrouter/deepseek/deepseek-chat-v3-0324",
     "sonnet-4-6": "anthropic/claude-sonnet-4-6",
     "opus-4-6": "anthropic/claude-opus-4-6"
@@ -137,7 +134,7 @@ You can set the default provider/model in `aru.json` so you don't need to switch
 }
 ```
 
-The `default` field sets the main model. The other fields are aliases that can be used with `/model <alias>`.
+The `default_model` field sets the main model. The `model_aliases` are shortcuts that can be used with `/model <alias>`.
 
 #### Custom providers
 
@@ -148,12 +145,13 @@ You can configure custom providers with specific token limits:
   "providers": {
     "deepseek": {
       "models": {
-        "deepseek-chat-v3-0324": {"id": "deepseek-chat-v3-0324", "max_tokens": 16384}
+        "deepseek-chat-v3-0324": { "max_tokens": 16384 }
       }
     },
     "openrouter": {
       "models": {
-        "minimax/minimax-m2.5": {"id": "minimax/minimax-m2.5", "max_tokens": 65536}
+        "minimax/minimax-m2.5": { "max_tokens": 65536 },
+        "minimax/minimax-m2.7": { "max_tokens": 131072 }
       }
     }
   }
@@ -162,25 +160,96 @@ You can configure custom providers with specific token limits:
 
 ### Permissions (`aru.json`)
 
-The `aru.json` file in the project root controls which shell commands aru can execute **without asking for confirmation**:
+Aru uses a granular permission system where each tool action resolves to one of three outcomes:
+
+- **`allow`** — executes without asking
+- **`ask`** — prompts for confirmation (once / always / no)
+- **`deny`** — blocks the action silently
+
+Configure permissions per tool category with glob patterns:
 
 ```json
 {
   "permission": {
-    "allow": [
-      "git *",
-      "npm *",
-      "pytest *",
-      "python *",
-      "uv run pytest *"
-    ]
+    "*": "ask",
+    "read": "allow",
+    "glob": "allow",
+    "grep": "allow",
+    "list": "allow",
+    "edit": {
+      "*": "allow",
+      "*.env": "deny"
+    },
+    "write": {
+      "*": "allow",
+      "*.env": "deny"
+    },
+    "bash": {
+      "*": "ask",
+      "git *": "allow",
+      "npm *": "allow",
+      "pytest *": "allow",
+      "rm -rf *": "deny"
+    },
+    "web_search": "allow",
+    "web_fetch": "allow",
+    "delegate_task": "allow"
+  }
+}
+```
+
+#### Available categories
+
+| Category | Matched against | Default |
+|----------|----------------|---------|
+| `read` | file path | `allow` |
+| `edit` | file path | `ask` |
+| `write` | file path | `ask` |
+| `bash` | command string | safe prefixes = `allow`, rest = `ask` |
+| `glob` | — | `allow` |
+| `grep` | — | `allow` |
+| `list` | — | `allow` |
+| `web_search` | — | `allow` |
+| `web_fetch` | URL | `allow` |
+| `delegate_task` | — | `allow` |
+
+#### Rule precedence
+
+Rules use **last-match-wins** ordering. Place catch-all `"*"` first, then specific patterns:
+
+```json
+{
+  "edit": {
+    "*": "allow",
+    "*.env": "deny",
+    "*.env.example": "allow"
   }
 }
 ```
 
-Each entry is a glob pattern. Any command that doesn't match a listed pattern will prompt for confirmation before executing.
+#### Shorthands
+
+```json
+"permission": "allow"
+```
+Allows everything (equivalent to `--dangerously-skip-permissions`).
+
+```json
+"permission": { "read": "allow", "edit": "ask" }
+```
+String value applies to all patterns in that category.
+
+#### Defaults
+
+Without any `aru.json` config, aru applies safe defaults:
+- Read-only tools (`read`, `glob`, `grep`, `list`) → `allow`
+- Mutating tools (`edit`, `write`) → `ask`
+- Bash → ~40 safe command prefixes auto-allowed (`ls`, `git status`, `grep`, etc.), rest → `ask`
+- Sensitive files (`*.env`, `*.env.*`) → `deny` for read/edit/write (except `*.env.example`)
 
 > `aru.json` can also be placed at `.aru/config.json`.
+>
+> A full `aru.json` config reference here: [`aru.json`](./aru.json)
 
 ### AGENTS.md
 
@@ -190,14 +259,98 @@ Place an `AGENTS.md` file in your project root with custom instructions that wil
 
 ```
 .agents/
+├── agents/         # Custom agents with their own model, tools, and prompt
+│   └── reviewer.md # Usage: /reviewer <args>
 ├── commands/       # Custom slash commands (filename = command name)
 │   └── deploy.md   # Usage: /deploy <args>
 └── skills/         # Custom skills/personas
-    └── review.md   # Loaded as additional agent instructions
+    └── review/
+        └── SKILL.md
 ```
 
 Command files support frontmatter with `description` and the `$INPUT` template variable for arguments.
 
+### Custom Agents
+
+Custom agents are Markdown files with YAML frontmatter stored in `.agents/agents/`. Each agent runs with its own system prompt, model, and tool set — unlike commands and skills, which reuse the General Agent.
+
+```markdown
+---
+name: Code Reviewer
+description: Review code for quality, bugs, and best practices
+model: anthropic/claude-sonnet-4-5
+tools: read_file, grep_search, glob_search, code_structure
+max_turns: 15
+mode: primary
+---
+
+You are an expert code reviewer. Analyze code for bugs, security,
+performance, and readability. Do NOT modify files.
+```
+
+#### Frontmatter fields
+
+| Field | Required | Description |
+|-------|----------|-------------|
+| `name` | Yes | Display name of the agent |
+| `description` | Yes | When to use this agent (shown in `/agents` and tab completion) |
+| `model` | No | Provider/model reference (e.g., `anthropic/claude-sonnet-4-5`). Defaults to session model |
+| `tools` | No | Comma-separated tool names (allowlist) or JSON object for granular control (e.g., `{"bash": false}`). Defaults to all general tools |
+| `max_turns` | No | Max tool calls before the agent stops. Default: 20 |
+| `mode` | No | `primary` (invocable via `/name`) or `subagent` (only via `delegate_task`). Default: `primary` |
+| `permission` | No | Permission overrides (same format as `aru.json` permission section). Replaces global rules for specified categories while the agent runs |
+
+#### Invocation
+
+```
+aru> /reviewer src/auth.py        # invoke by slash + filename (without .md)
+aru> /agents                       # list all custom agents
+```
+
+#### Discovery paths
+
+Agents are discovered from multiple locations (later overrides earlier):
+
+1. `~/.agents/agents/` — global (available in all projects)
+2. `~/.claude/agents/` — global (Claude Code compatible path)
+3. `.agents/agents/` — project-local
+4. `.claude/agents/` — project-local
+
+#### Agent-level permissions
+
+Agents can override global permission rules. Overrides replace the entire category — unspecified categories inherit from global config.
+
+```markdown
+---
+name: Code Reviewer
+description: Read-only code reviewer
+permission:
+  edit: deny
+  write: deny
+  bash:
+    git diff *: allow
+    grep *: allow
+---
+```
+
+You can also set agent permissions in `aru.json` (overrides frontmatter):
+
+```json
+{
+  "agent": {
+    "reviewer": {
+      "permission": { "edit": "deny", "write": "deny" }
+    }
+  }
+}
+```
+
+Each agent gets its own isolated "always" memory — approvals during an agent's run don't carry over to the global scope.
+
+#### Subagent mode
+
+Agents with `mode: subagent` can be referenced by the LLM via `delegate_task(task, agent="name")` but are not directly invocable from the CLI.
+
 ### MCP Support (Model Context Protocol)
 
 Aru can load tools from MCP servers. Configure in `.aru/mcp_config.json`:
@@ -255,6 +408,7 @@ aru-code/
 │   ├── cli.py              # Interactive CLI with streaming display
 │   ├── config.py           # Configuration loader (AGENTS.md, .agents/)
 │   ├── providers.py        # Multi-provider LLM abstraction
+│   ├── permissions.py      # Granular permission system (allow/ask/deny)
 │   ├── agents/
 │   │   ├── planner.py      # Planning agent
 │   │   └── executor.py     # Execution agent

aru_code-0.5.0/aru/__init__.py

@@ -0,0 +1 @@
+__version__ = "0.5.0"