keisei/KeiSeiKit-1.0
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
KeiSeiKit-1.0/_primitives/_rust/kei-capability/src/main.rs
Parfii-bot b82e3b039e feat(agent-substrate/phase-3): kei-agent-runtime + kei-capability binaries 
Two new crates implementing the substrate runtime per locked §Runtime
execution contract + §Capability trait contract (Rust) + §Verify
execution worktree→simulated-merge.

kei-agent-runtime — library + CLI binary:
- src/capability.rs — Capability trait (name/check/verify) + GateContext
  + GateDecision + VerifyContext + VerifyResult + RunMode + TaskSpec
- src/registry.rs — &str → &'static dyn Capability dispatch for 14 impls
- src/gates/ — 6 PreToolUse modules (policy::no-git-ops,
  scope::files-{whitelist,denylist}, safety::no-dep-bump,
  tools::read-only, tools::cargo-only-bash)
- src/verifies/ — 8 on-return modules (quality::constructor-pattern,
  quality::cargo-check-green, quality::tests-green, safety::no-dep-bump,
  scope::files-{whitelist,denylist}, output::{report-format,severity-grade})
- src/compose.rs — task.toml + role + capabilities → prompt.md
- src/spawn.rs — ledger fork + prompt write (actual Agent invocation
  remains orchestrator's tool call)
- src/verify.rs — runs all capability verifies per role; collects
  VerifyReport {passed, failed}
- src/simulated_merge.rs — git worktree add test-merge/<id> + apply diff
  + run verify; cleanup on Drop
- src/main.rs — clap CLI: compose | spawn | verify | run

kei-capability — thin CLI adapter crate:
- Depends on kei-agent-runtime path dep
- Subcommand `check <cap-name>` (PreToolUse gate; stdin JSON, exit 0|2)
- Subcommand `verify <cap-name>` (on-return; env-driven, exit 0 or fail)
- Pattern: shell hook = 3-line `exec kei-capability check "$CAP_NAME"`

Workspace Cargo.toml: both crates registered as members (under agent
substrate v1 marker).

cargo check --workspace: PASS
cargo test -p kei-agent-runtime: 37/37 green
  - 6 capability_trait_smoke (registry lookups, unknown name → None)
  - 3 compose_smoke (fixture role + caps → composed prompt)
  - 12 gate_smoke (each gate: happy + deny + bypass)
  - 4 simulated_merge_smoke (git worktree lifecycle)
  - 12 verify_smoke (each verify: pass + fail + edge cases)
cargo test -p kei-capability: 0/0 (CLI binary, tested via lib)

(Agent completion report cut off by rate-limit at 60 tool-uses; code
itself is green — verified by orchestrator post-commit.)

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-04-23 02:35:53 +08:00

131 lines
4.1 KiB
Rust
Raw Blame History

//! kei-capability — hook-protocol CLI adapter.
//!
//! Subcommands:
//! - `check <name>` — reads tool-use JSON from stdin, runs registry
//! gate, emits permissionDecision JSON, exits 0 or 2.
//! - `verify <name>` — reads env (AGENT_ID, TASK_TOML, WORKTREE_PATH,
//! MAIN_REPO, RUN_MODE), runs registry verify,
//! exits 0 on pass or non-zero with stderr message.
use clap::{Parser, Subcommand};
use kei_agent_runtime::capability::{
GateContext, GateDecision, RunMode, TaskSpec, VerifyContext, VerifyResult,
};
use kei_agent_runtime::registry;
use serde_json::{json, Value};
use std::collections::HashMap;
use std::io::Read;
use std::path::PathBuf;
use std::process::ExitCode;
#[derive(Parser)]
#[command(name = "kei-capability", version, about = "Capability hook adapter")]
struct Cli {
#[command(subcommand)]
cmd: Cmd,
}
#[derive(Subcommand)]
enum Cmd {
/// PreToolUse gate — stdin holds hook payload JSON.
Check { name: String },
/// On-return verify — env carries context.
Verify { name: String },
}
fn main() -> ExitCode {
let cli = Cli::parse();
match cli.cmd {
Cmd::Check { name } => run_check(name),
Cmd::Verify { name } => run_verify(name),
}
}
fn run_check(name: String) -> ExitCode {
let cap = match registry::get_gate(&name) {
Some(c) => c,
None => {
eprintln!("unknown gate capability: {name}");
return ExitCode::from(2);
}
};
let payload = read_stdin_json().unwrap_or_else(|| json!({}));
let tool_name = payload.get("tool_name").and_then(|v| v.as_str()).unwrap_or("");
let tool_input = payload.get("tool_input").cloned().unwrap_or(json!({}));
let env: HashMap<String, String> = std::env::vars().collect();
let task = load_task_from_env().unwrap_or_default();
let ctx = GateContext {
tool_name,
tool_input: &tool_input,
task: &task,
env: &env,
};
match cap.check(&ctx) {
GateDecision::Allow | GateDecision::NotApplicable => {
println!("{}", json!({"permissionDecision": "allow"}));
ExitCode::SUCCESS
}
GateDecision::Deny { reason } => {
eprintln!("{reason}");
println!(
"{}",
json!({"permissionDecision": "deny", "reason": reason})
);
ExitCode::from(2)
}
}
}
fn run_verify(name: String) -> ExitCode {
let cap = match registry::get_verify(&name) {
Some(c) => c,
None => {
eprintln!("unknown verify capability: {name}");
return ExitCode::from(2);
}
};
let agent_id = std::env::var("AGENT_ID").unwrap_or_default();
let worktree_path = PathBuf::from(std::env::var("WORKTREE_PATH").unwrap_or_default());
let main_repo = PathBuf::from(std::env::var("MAIN_REPO").unwrap_or_default());
let run_mode = match std::env::var("RUN_MODE").unwrap_or_else(|_| "worktree".into()).as_str() {
"simulated-merge" => RunMode::SimulatedMerge,
"both" => RunMode::Both,
_ => RunMode::Worktree,
};
let task = load_task_from_env().unwrap_or_default();
let ctx = VerifyContext {
agent_id: &agent_id,
task: &task,
worktree_path: &worktree_path,
main_repo: &main_repo,
run_mode,
simulated_merge_path: None,
};
match cap.verify(&ctx) {
VerifyResult::Pass => ExitCode::SUCCESS,
VerifyResult::Fail { reason, detail } => {
eprintln!("FAIL {name}: {reason}");
if let Some(d) = detail {
eprintln!("{d}");
}
ExitCode::from(2)
}
}
}
fn read_stdin_json() -> Option<Value> {
let mut buf = String::new();
if std::io::stdin().read_to_string(&mut buf).is_err() {
return None;
}
if buf.trim().is_empty() {
return None;
}
serde_json::from_str(&buf).ok()
}
fn load_task_from_env() -> Option<TaskSpec> {
let p = std::env::var("TASK_TOML").ok()?;
let text = std::fs::read_to_string(&p).ok()?;
toml::from_str::<TaskSpec>(&text).ok()
}
Reference in a new issue View git blame Copy permalink