PyPI - patchpal - Versions diffs - 0.22.0__tar.gz → 0.22.2__tar.gz - Mend

patchpal 0.22.0tar.gz → 0.22.2tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (67) hide show

{patchpal-0.22.0/patchpal.egg-info → patchpal-0.22.2}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: patchpal
-Version: 0.22.0
+Version: 0.22.2
 Summary: An agentic coding and automation assistant, supporting both local and cloud LLMs
 Author: PatchPal Contributors
 License-Expression: Apache-2.0

{patchpal-0.22.0 → patchpal-0.22.2}/patchpal/__init__.py RENAMED Viewed

@@ -1,6 +1,6 @@
 """PatchPal - An open-source Claude Code clone implemented purely in Python."""
-__version__ = "0.22.0"
+__version__ = "0.22.2"
 from patchpal.agent import create_agent, create_react_agent
 from patchpal.cli.autopilot import autopilot_loop

{patchpal-0.22.0 → patchpal-0.22.2}/patchpal/agent/function_calling.py RENAMED Viewed

@@ -508,6 +508,14 @@ class PatchPalAgent:
         # Load MEMORY.md if it exists and has non-template content
         self._load_project_memory()
+        # Log session start
+        try:
+            from patchpal.tools.audit import log_session_start
+            log_session_start(agent_type="function_calling", model=self.model_id)
+        except Exception:
+            pass  # Don't fail if audit logging fails
     def _load_project_memory(self):
         """Load MEMORY.md file at session start if it has non-template content."""
         try:

{patchpal-0.22.0 → patchpal-0.22.2}/patchpal/agent/react.py RENAMED Viewed

@@ -164,6 +164,14 @@ class ReActAgent:
         # Load project memory
         self._load_project_memory()
+        # Log session start
+        try:
+            from patchpal.tools.audit import log_session_start
+            log_session_start(agent_type="react", model=self.model_id)
+        except Exception:
+            pass  # Don't fail if audit logging fails
     def _load_project_memory(self):
         """Load project memory file if it exists."""
         from pathlib import Path

{patchpal-0.22.0 → patchpal-0.22.2}/patchpal/cli/autopilot.py RENAMED Viewed

@@ -112,10 +112,27 @@ def autopilot_loop(
         print(f"🔄 Autopilot Iteration {iteration + 1}/{max_iterations}")
         print(f"{'=' * 80}\n")
+        # Log user prompt to audit log (first iteration only)
+        if iteration == 0:
+            try:
+                from patchpal.tools.audit import log_user_prompt
+                log_user_prompt(prompt)
+            except Exception:
+                pass  # Don't fail if audit logging fails
         # Run agent with the SAME prompt every time
         # The agent's conversation history accumulates, so it can see all previous work
         response = agent.run(prompt, max_iterations=100)
+        # Log agent response to audit log
+        try:
+            from patchpal.tools.audit import log_agent_response
+            log_agent_response(response, success=True)
+        except Exception:
+            pass  # Don't fail if audit logging fails
         print(f"\n{'=' * 80}")
         print("📝 Agent Response:")
         print(f"{'=' * 80}")
@@ -144,6 +161,16 @@ def autopilot_loop(
             )
             if agent.cumulative_cost > 0:
                 print(f"Total cost: ${agent.cumulative_cost:.4f}")
+            # Log successful session end
+            try:
+                from patchpal.tools.audit import log_session_end
+                from patchpal.tools.common import get_operation_count
+                log_session_end(total_operations=get_operation_count(), success=True)
+            except Exception:
+                pass  # Don't fail if audit logging fails
             return response
         # Stop hook: Agent tried to complete, but no completion promise
@@ -168,6 +195,15 @@ def autopilot_loop(
     if agent.cumulative_cost > 0:
         print(f"Total cost: ${agent.cumulative_cost:.4f}")
+    # Log session end
+    try:
+        from patchpal.tools.audit import log_session_end
+        from patchpal.tools.common import get_operation_count
+        log_session_end(total_operations=get_operation_count(), success=False)
+    except Exception:
+        pass  # Don't fail if audit logging fails
     return None

{patchpal-0.22.0 → patchpal-0.22.2}/patchpal/cli/interactive.py RENAMED Viewed

@@ -564,6 +564,15 @@ Supported models: Any LiteLLM-supported model
                     audit_logger.info(", ".join(log_parts))
+                # Log structured session end
+                try:
+                    from patchpal.tools.audit import log_session_end
+                    from patchpal.tools.common import get_operation_count
+                    log_session_end(total_operations=get_operation_count(), success=True)
+                except Exception:
+                    pass  # Don't fail if audit logging fails
                 print("\nGoodbye!")
                 break
@@ -1542,10 +1551,17 @@ Supported models: Any LiteLLM-supported model
                     if skill_args:
                         prompt += f"\n\nArguments: {skill_args}"
-                    # Log user prompt to audit log (sanitize to prevent Windows Unicode errors)
-                    audit_logger.info(
-                        _sanitize_for_logging(f"USER_PROMPT: /{skill_name} {skill_args}")
-                    )
+                    # Log skill invocation to audit log with hash-chaining
+                    try:
+                        from patchpal.tools.audit import log_user_prompt
+                        log_user_prompt(f"/{skill_name} {skill_args}")
+                    except Exception:
+                        # Fallback to old-style logging if audit fails
+                        audit_logger.info(
+                            _sanitize_for_logging(f"USER_PROMPT: /{skill_name} {skill_args}")
+                        )
                     result = agent.run(prompt, max_iterations=max_iterations)
                     print("\n" + "=" * 80)
@@ -1565,10 +1581,25 @@ Supported models: Any LiteLLM-supported model
             # Run the agent (Ctrl-C here will interrupt agent, not exit)
             try:
                 print()  # Add blank line before agent output
-                # Log user prompt to audit log (sanitize to prevent Windows Unicode errors)
-                audit_logger.info(_sanitize_for_logging(f"USER_PROMPT: {user_input}"))
+                # Log user prompt to audit log with hash-chaining
+                try:
+                    from patchpal.tools.audit import log_user_prompt
+                    log_user_prompt(user_input)
+                except Exception:
+                    # Fallback to old-style logging if audit fails
+                    audit_logger.info(_sanitize_for_logging(f"USER_PROMPT: {user_input}"))
                 result = agent.run(user_input, max_iterations=max_iterations)
+                # Log agent response to audit log with hash-chaining
+                try:
+                    from patchpal.tools.audit import log_agent_response
+                    log_agent_response(result, success=True)
+                except Exception:
+                    pass  # Don't fail if audit logging fails
                 print("\n" + "=" * 80)
                 print("\033[1;32mAgent:\033[0m")
                 print("=" * 80)

{patchpal-0.22.0 → patchpal-0.22.2}/patchpal/cli/sandbox.py RENAMED Viewed

@@ -670,7 +670,7 @@ exec {patchpal_cmd} "$@"
 def show_help():
     """Show help message."""
     help_text = """
-sandbox-patchpal - Run PatchPal in an isolated container
+patchpal-sandbox - Run PatchPal in an isolated container
 USAGE:
     patchpal-sandbox [SCRIPT_OPTIONS] -- [PATCHPAL_ARGS...]
@@ -916,10 +916,14 @@ def main():
         sandbox_argv = sys.argv[1:]
         patchpal_argv = []
-    # If no arguments at all, show help
+    # If no arguments at all, check if PATCHPAL_MODEL is set
+    # If model is set via env var, allow running with no args
+    # Otherwise show help
     if not sandbox_argv and not patchpal_argv:
-        show_help()
-        sys.exit(0)
+        if not os.environ.get("PATCHPAL_MODEL"):
+            show_help()
+            sys.exit(0)
+        # PATCHPAL_MODEL is set - proceed with defaults
     # Parse sandbox arguments
     parser = argparse.ArgumentParser(add_help=False)  # We handle help manually

{patchpal-0.22.0 → patchpal-0.22.2}/patchpal/permissions.py RENAMED Viewed

@@ -67,6 +67,11 @@ class PermissionManager:
         These commands replace dedicated tools that were removed (replaced by find tool)
         to reduce redundancy. Since those tools didn't require permissions, their shell
         equivalents shouldn't either.
+        SECURITY NOTE: Environment variable commands (env, printenv, set, Get-Variable)
+        are NOT in this list because they can expose API keys and secrets loaded from
+        .env files. While we block reading .env files directly, we must also block
+        reading the environment variables that were loaded from them.
         """
         # Check if web tools are enabled
         web_tools_enabled = config.ENABLE_WEB
@@ -99,9 +104,6 @@ class PermissionManager:
             "whereis",
             # Current directory
             "pwd",
-            # Environment
-            "env",
-            "printenv",
             # Network diagnostic
             "ifconfig",
             # Disk/system info
@@ -132,8 +134,6 @@ class PermissionManager:
             "assoc",
             "ftype",
             "doskey /history",
-            # Environment
-            "set",
             # Network diagnostic
             "tracert",
             "nslookup",
@@ -169,7 +169,6 @@ class PermissionManager:
             "get-host",
             "get-command",
             "get-alias",
-            "get-variable",
             "get-member",
             "get-help",
             # Search/filter
@@ -420,6 +419,19 @@ class PermissionManager:
         # Check if already granted (with full_command for multi-word pattern matching)
         if self._check_existing_grant(tool_name, pattern, full_command):
+            # Log that permission was auto-granted from previous session grant
+            try:
+                from patchpal.tools.audit import log_action_approved
+                log_action_approved(
+                    tool_name=tool_name,
+                    description=description,
+                    approval_type="auto_granted",
+                    pattern=pattern,
+                    context={"working_dir": context} if context else None,
+                )
+            except Exception:
+                pass  # Don't fail if audit logging fails
             return True
         # Display the request - use stderr to avoid Rich console capture
@@ -481,14 +493,53 @@ class PermissionManager:
                 choice = input("\n\033[1;36mChoice [1-3]:\033[0m ").strip()
                 if choice == "1":
+                    # Log approval
+                    try:
+                        from patchpal.tools.audit import log_action_approved
+                        log_action_approved(
+                            tool_name=tool_name,
+                            description=description,
+                            approval_type="user_approved",
+                            pattern=pattern,
+                            context={"working_dir": context} if context else None,
+                        )
+                    except Exception:
+                        pass  # Don't fail if audit logging fails
                     return True
                 elif choice == "2":
                     # Grant session-only permission (like Claude Code)
                     self._grant_permission(tool_name, persistent=False, pattern=pattern)
+                    # Log approval with session grant
+                    try:
+                        from patchpal.tools.audit import log_action_approved
+                        log_action_approved(
+                            tool_name=tool_name,
+                            description=description,
+                            approval_type="session_granted",
+                            pattern=pattern,
+                            context={"working_dir": context} if context else None,
+                        )
+                    except Exception:
+                        pass  # Don't fail if audit logging fails
                     return True
                 elif choice == "3":
                     sys.stderr.write("\n\033[1;31mOperation cancelled.\033[0m\n")
                     sys.stderr.flush()
+                    # Log rejection
+                    try:
+                        from patchpal.tools.audit import log_action_blocked
+                        log_action_blocked(
+                            tool_name=tool_name,
+                            description=description,
+                            reason="user_rejected",
+                            pattern=pattern,
+                            context={"working_dir": context} if context else None,
+                        )
+                    except Exception:
+                        pass  # Don't fail if audit logging fails
                     return False
                 else:
                     sys.stderr.write("Invalid choice. Please enter 1, 2, or 3.\n")

patchpal 0.22.0__tar.gz → 0.22.2__tar.gz

patchpal 0.22.0tar.gz → 0.22.2tar.gz