dacli-core 0.4.0__py3-none-any.whl

dacli/config/__init__.py

@@ -0,0 +1,68 @@
+from dacli.config.settings import (
+    ConnectorConfig,
+    Settings,
+    is_llm_configured,
+    load_config,
+)
+
+CLI_COMMANDS = [
+    ("/help", "Show this help message"),
+    ("/keys", "Show keyboard shortcuts"),
+    ("/init", "Generate a DACLI.md priors draft from your config"),
+    ("/status", "Show current progress and state"),
+    (
+        "/doctor",
+        "Diagnose config/state/LLM/connectors (where things resolve, what's live)",
+    ),
+    ("/usage", "Show token usage and cost (overall, by model, this session)"),
+    ("/context", "Explain the assembled context (sources, tokens, budget)"),
+    ("/audit", "Show governance decisions for this session (why the agent acted)"),
+    ("/why-failed [dag]", "Explain the most recent pipeline failure + a governed fix"),
+    ("/tools", "Show enabled tools and capabilities"),
+    (
+        "/connect [ext]",
+        "Configure an extension's credentials — interactive, or pass a name",
+    ),
+    ("/new-extension", "Generate a new extension from a natural-language description"),
+    ("/reload", "Reload extensions from disk without restarting"),
+    ("/extensions", "List loaded extensions, status, and config state"),
+    (
+        "/scope [ext] [level]",
+        "View or set permission scope (read_only|write|risky|admin)",
+    ),
+    ("/creds [ext] [--delete]", "View stored credentials (masked) or delete them"),
+    (
+        "/workspace [name]",
+        "List or switch workspaces (own extensions, secrets, history, audit)",
+    ),
+    (
+        "/testmode [tool]",
+        "Toggle staging test mode (health-gated, side-effect-free) for new connectors",
+    ),
+    ("/setup", "Walk through a first connection (conversational onboarding)"),
+    ("/history", "Show conversation history"),
+    ("/find <text>", "Search history and tool results for matching turns"),
+    ("/last-error", "Re-show the most recent failed tool result"),
+    ("/expand <id>", "Re-render a tool result in full from the off-context spill"),
+    ("/transcript", "Open the full-screen transcript viewer (needs dacli[tui])"),
+    ("/sessions", "List available sessions"),
+    ("/catalog [connector]", "List known data objects from the catalog cache"),
+    ("/schema <object>", "Show cached columns/row-count for one object"),
+    ("/load <id>", "Load a previous session"),
+    ("/export", "Export current state to JSON"),
+    ("/config", "Show current configuration"),
+    ("/theme <name>", "Switch UI theme (dark, light, ocean, mono)"),
+    ("/prompt", "View/edit the system prompt"),
+    ("/clear", "Clear conversation history"),
+    ("/cls", "Clear the screen (keeps conversation history)"),
+    ("/reset", "Reset agent state"),
+    ("/exit", "Exit the CLI"),
+]
+
+__all__ = [
+    "CLI_COMMANDS",
+    "ConnectorConfig",
+    "Settings",
+    "is_llm_configured",
+    "load_config",
+]

dacli/config/policy.yaml

@@ -0,0 +1,100 @@
+# DACLI governance policy.
+#
+# Maps blast-radius tiers to enforcement decisions. This file lets a team tune
+# velocity vs. caution per connector / environment WITHOUT code changes. Absent
+# any override, the locked posture applies:
+#
+#   safe         -> auto             (run immediately)
+#   write        -> verify           (run + mandatory post-condition)
+#   risky        -> confirm          (human confirm + rollback plan)
+#   irreversible -> dry_run+approve  (dry-run + verified rollback + approval)
+#
+# Resolution is most-specific-wins:
+#   connectors.<id>.environments.<env>  >  connectors.<id>.tiers  >  defaults
+#
+# Valid decisions: auto | verify | confirm | dry_run+approve
+
+# Global tier -> decision overrides (apply to every connector unless a more
+# specific rule below matches). Leave empty to keep the locked posture.
+defaults: {}
+
+# Identifier tokens that mark an action's target as production. A prod target
+# promotes the classifier tier one step (write->risky, risky->irreversible).
+prod_markers:
+  - PROD
+  - PRODUCTION
+  - GOLD
+  - PRD
+
+# Least-privilege scope per connector (the connection-profile opt-in). The code
+# default is `read_only` (an action above the scope is refused even if the model
+# asks). Widen here to enable writes/destructive ops:
+#   read_only -> safe only | write -> +create/insert | risky -> +update/delete |
+#   admin -> +drop/truncate. Tighten any connector to read_only to make it
+#   strictly observe-only.
+connectors:
+  # --- Era 2: the governed shell tier --------------------------------------
+  # The shell tier (run_shell_command) flows through this SAME policy table: the
+  # *command* is blast-radius-classified (an `ls` is safe; `rm -rf` / `git push
+  # --force` are irreversible and refused for want of a verifiable undo). Its
+  # least-privilege ceiling is set by `terminal.scope` in settings (default
+  # 'write'), which is authoritative over any `scope:` here. The tiers/
+  # environments overrides below still apply — e.g. require approval for every
+  # shell write, or auto-run writes on a throwaway box.
+  shell:
+    tiers: {}             # e.g. {write: confirm} to gate even mkdir/touch
+    environments: {}
+
+  # --- Wave 1 platforms ---------------------------------------------
+  # All ship read-only (the code default). Widen the grant per deployment:
+  #   write -> +create/insert/put | risky -> +update/delete | admin -> +drop.
+  # A platform left at read_only is strictly observe-only even if the model asks
+  # to write — the capability simply isn't there to misuse.
+  dbt:
+    scope: read_only      # widen to `risky` to allow `dbt run` / `dbt build`
+    tiers: {}
+    environments: {}
+  bigquery:
+    scope: read_only      # native dry_run gives an exact cost/effect preview first
+    tiers: {}
+    environments: {}
+  databricks:
+    scope: read_only      # Delta time travel backs RESTORE-based rollback
+    tiers: {}
+    environments: {}
+  s3:
+    scope: read_only      # enable bucket versioning before granting delete (admin)
+    tiers: {}
+    environments: {}
+  gcs:
+    scope: read_only      # enable object versioning before granting delete (admin)
+    tiers: {}
+    environments: {}
+
+  # --- Wave 2 operational databases ---------------------------------
+  postgres:
+    scope: read_only      # fully transactional — BEGIN/ROLLBACK is a true undo
+    tiers: {}
+    environments: {}
+  mysql:
+    scope: read_only      # DML transactional (InnoDB); DDL needs mysqldump snapshots
+    tiers: {}
+    environments: {}
+  mongodb:
+    scope: read_only      # no native undo — deletes rely on mongodump copy-aside
+    tiers: {}
+    environments: {}
+  dynamodb:
+    scope: read_only      # enable PITR before granting destructive ops (admin)
+    tiers: {}
+    environments: {}
+
+  # --- Wave 3 orchestration ---------------------------------------------------
+  airflow:
+    scope: read_only      # grant `risky` to trigger/pause; delete is gated hard
+    tiers: {}
+    environments: {}
+  dagster:
+    scope: read_only      # grant `risky` to launch runs
+    tiers: {}
+    environments: {}