PyPI - axor-cli - Versions diffs - 0.2.0__tar.gz → 0.3.0__tar.gz - Mend

axor-cli 0.2.0tar.gz → 0.3.0tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (25) hide show

axor_cli-0.3.0/CHANGELOG.md ADDED Viewed

@@ -0,0 +1,40 @@
+# Changelog
+## 0.3.0 — 2026-04-29
+### Added
+- `ConfigCorruptError` raised when `~/.axor/config.toml` exists but cannot
+  be parsed. The previous behaviour silently returned `{}` and let the
+  next save **overwrite the broken file**, dropping any other adapter's
+  saved key. Refusing to write preserves user data; the user is told to
+  fix or delete the file.
+### Fixed
+- TOML escaping made spec-compliant. The old version only escaped `\` and
+  `"`; pasting an API key that contained a newline (or any control byte)
+  produced a file that crashed the next `tomllib.load()`. Now handles
+  `\n`, `\r`, `\t`, `\b`, `\f`, plus a `\uXXXX` fallback for any other
+  control char.
+### Changed
+- Model registry refreshed: `claude-sonnet-4-6`, `claude-opus-4-7`,
+  `claude-haiku-4-5`. Default is `claude-sonnet-4-6`.
+### Constraints
+- Pin bump: `axor-core>=0.4.0,<0.5` (was `>=0.3.0`).
+## 0.2.0 — 2026-04-24
+### Added
+- `axor-telemetry` integration. New `/telemetry` slash command:
+  `status` / `on [--remote]` / `off` / `preview` / `consent`.
+- One-time stderr opt-in banner. Marker file
+  `~/.axor/.telemetry_notice_shown` suppresses subsequent prints;
+  `AXOR_NO_BANNER=1` suppresses on-demand.
+- `build_session` wires a `TelemetryPipeline` into `GovernedSession`.
+- Optional `[telemetry]` extra: `pip install axor-cli[telemetry]`.
+- 11 new bridge tests + smoke-test fix (44 total).
+## 0.1.0 — 2026-04-14
+Initial release of the `axor` CLI shell.

{axor_cli-0.2.0 → axor_cli-0.3.0}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: axor-cli
-Version: 0.2.0
+Version: 0.3.0
 Summary: CLI for axor-core governance kernel — governed agent sessions in your terminal
 Project-URL: Bug Tracker, https://github.com/Bucha11/axor-cli/issues
 Project-URL: Changelog, https://github.com/Bucha11/axor-cli/releases
@@ -17,7 +17,7 @@ Classifier: Programming Language :: Python :: 3.12
 Classifier: Topic :: Software Development :: Libraries
 Classifier: Topic :: Terminals
 Requires-Python: >=3.11
-Requires-Dist: axor-core>=0.3.0
+Requires-Dist: axor-core<0.5,>=0.4.0
 Provides-Extra: all
 Requires-Dist: axor-claude>=0.1.0; extra == 'all'
 Requires-Dist: axor-openai>=0.1.0; extra == 'all'

axor_cli-0.3.0/axor_cli/_version.py ADDED Viewed

	@@ -0,0 +1 @@
1	+ __version__ = "0.3.0"

{axor_cli-0.2.0 → axor_cli-0.3.0}/axor_cli/adapters.py RENAMED Viewed

@@ -17,8 +17,8 @@ _REGISTRY: dict[str, dict[str, Any]] = {
         "module":   "axor_claude",
         "install":  "pip install axor-claude",
         "env_var":  "ANTHROPIC_API_KEY",
-        "models":   ["claude-sonnet-4-5", "claude-opus-4-5", "claude-haiku-4-5"],
-        "default_model": "claude-sonnet-4-5",
+        "models":   ["claude-sonnet-4-6", "claude-opus-4-7", "claude-haiku-4-5"],
+        "default_model": "claude-sonnet-4-6",
     },
     "openai": {
         "module":   "axor_openai",

{axor_cli-0.2.0 → axor_cli-0.3.0}/axor_cli/auth.py RENAMED Viewed

@@ -222,21 +222,69 @@ def _read_config_file() -> dict[str, Any]:
         return tomllib.load(f)  # type: ignore
+class ConfigCorruptError(RuntimeError):
+    """Raised when an existing config exists but cannot be parsed."""
 def _load_existing_config() -> dict[str, Any]:
-    """Load existing config or return empty dict if not available."""
+    """Load existing config.
+    - Returns an empty dict when the file does not exist (first-time setup).
+    - Returns an empty dict when tomllib is unavailable (best effort).
+    - Raises `ConfigCorruptError` when the file exists but cannot be parsed.
+      The previous behaviour (silently returning {}) caused `save_to_config`
+      to overwrite the broken file, dropping any *other* adapter's saved key.
+      Refusing to write preserves user data.
+    """
     if not CONFIG_FILE.exists() or tomllib is None:
         return {}
     try:
         return _read_config_file()
     except Exception as e:
-        logger.warning("Failed to read existing config: %s", e)
-        return {}
+        logger.error(
+            "Refusing to overwrite unreadable config %s (%s). "
+            "Fix or delete the file before retrying.",
+            CONFIG_FILE, e,
+        )
+        raise ConfigCorruptError(str(e)) from e
 def _escape_toml_value(val: str) -> str:
-    """Escape a string for TOML double-quoted value."""
-    return val.replace("\\", "\\\\").replace('"', '\\"')
+    """Escape a string for a TOML basic (double-quoted) string.
+    Per the TOML spec, a basic string may contain `\\b`, `\\t`, `\\n`, `\\f`,
+    `\\r`, `\\"`, and `\\\\` literal escapes; any other control character
+    (U+0000–U+001F except those listed) must be `\\uXXXX`-escaped. Plain
+    `replace("\\\\", "\\\\\\\\").replace('"', '\\\\"')` drops a newline or
+    NUL into the TOML output as a literal byte, producing a file that
+    crashes the next `tomllib.load()`.
+    Pasted API keys generally do not contain newlines, but if a user pastes
+    "sk-...\\n" by accident the previous escape would brick the config.
+    """
+    out: list[str] = []
+    for ch in val:
+        code = ord(ch)
+        if ch == "\\":
+            out.append("\\\\")
+        elif ch == '"':
+            out.append('\\"')
+        elif ch == "\n":
+            out.append("\\n")
+        elif ch == "\r":
+            out.append("\\r")
+        elif ch == "\t":
+            out.append("\\t")
+        elif ch == "\b":
+            out.append("\\b")
+        elif ch == "\f":
+            out.append("\\f")
+        elif code < 0x20 or code == 0x7F:
+            out.append(f"\\u{code:04X}")
+        else:
+            out.append(ch)
+    return "".join(out)
 def _serialize_config_to_toml(data: dict[str, Any]) -> str:

{axor_cli-0.2.0 → axor_cli-0.3.0}/axor_cli/main.py RENAMED Viewed

@@ -8,7 +8,7 @@ Usage:
     axor claude "refactor auth module"  # single task and exit
     axor claude --policy readonly       # with preset policy
     axor claude --limit 100000          # with soft token limit
-    axor claude --model claude-opus-4-5 # specific model
+    axor claude --model claude-opus-4-7 # specific model
     axor --list-adapters                # show available adapters
 """

{axor_cli-0.2.0 → axor_cli-0.3.0}/pyproject.toml RENAMED Viewed

@@ -4,7 +4,7 @@ build-backend = "hatchling.build"
 [project]
 name = "axor-cli"
-version = "0.2.0"
+version = "0.3.0"
 description = "CLI for axor-core governance kernel — governed agent sessions in your terminal"
 readme = "README.md"
 license = { text = "MIT" }
@@ -22,10 +22,10 @@ classifiers = [
 ]
 # axor-core required; adapters are optional — install what you need.
-# >=0.3.0 because build_session forwards the `telemetry` kwarg that was
-# added to GovernedSession in that release.
+# >=0.4.0 because PolicyComposer federation invariant + keyword_relevance
+# public API are used by the model/adapter wiring.
 dependencies = [
-    "axor-core>=0.3.0",
+    "axor-core>=0.4.0,<0.5",
 ]
 [project.optional-dependencies]

{axor_cli-0.2.0 → axor_cli-0.3.0}/tests/unit/test_auth.py RENAMED Viewed

@@ -127,3 +127,40 @@ def test_load_corrupted_file_returns_none(tmp_home):
     auth_mod.CONFIG_FILE.write_text("not valid [[[ toml")
     result = auth_mod.load_from_config("claude")
     assert result is None
+# ── escape / corruption ──────────────────────────────────────────────────────
+def test_key_with_newline_survives_roundtrip(tmp_home):
+    """Regression: previously a `\\n` in the key produced a TOML file that
+    parsed as a broken multi-line string, bricking the config until manual fix.
+    """
+    weird = "sk-line1\nline2\rline3\twith-tab"
+    auth_mod.save_to_config("claude", weird)
+    assert auth_mod.load_from_config("claude") == weird
+def test_key_with_nul_byte_survives_roundtrip(tmp_home):
+    """NUL is invalid in TOML basic strings; must be \\u-escaped."""
+    weird = "sk-with\x00nul"
+    auth_mod.save_to_config("claude", weird)
+    assert auth_mod.load_from_config("claude") == weird
+def test_key_with_control_chars_survives_roundtrip(tmp_home):
+    weird = "sk-\x01\x02\x1ftest"
+    auth_mod.save_to_config("claude", weird)
+    assert auth_mod.load_from_config("claude") == weird
+def test_save_refuses_to_overwrite_unparseable_config(tmp_home):
+    """If the existing config is corrupt, refuse to save — overwriting
+    silently would drop other adapters' keys.
+    """
+    auth_mod.CONFIG_FILE.parent.mkdir(parents=True, exist_ok=True)
+    auth_mod.CONFIG_FILE.write_text("[[ this is broken")
+    with pytest.raises(auth_mod.ConfigCorruptError):
+        auth_mod.save_to_config("claude", "sk-new")
+    # File contents preserved.
+    assert "[[ this is broken" in auth_mod.CONFIG_FILE.read_text()

axor_cli-0.2.0/CHANGELOG.md DELETED Viewed

@@ -1,17 +0,0 @@
-# Changelog
-## 0.1.0 — 2025-04-12
-Initial release.
-### Added
-- Core governance kernel (axor-core)
-- Claude Code adapter (axor-claude)
-- CLI with interactive REPL (axor-cli)
-- Dynamic policy selection (7-policy matrix)
-- ContextManager with 11 waste categories
-- ToolResultBus for async tool loop
-- Federation via spawn_child with child_executor
-- CancelToken cooperative cancellation
-- BudgetPolicyEngine (60/80/90/95% thresholds)
-- TraceCollector with lineage (17 event kinds)