vrr/qwen-code
2
0
Fork 0
mirror of https://github.com/QwenLM/qwen-code.git synced 2026-05-19 16:28:28 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 7

fix(core): align shell tool description with configured shell (#4170)

Browse source
This commit is contained in:
kkhomej33-netizen 2026-05-17 15:36:59 +08:00 committed by GitHub
parent b90a2c91c9
commit d6914bdfd6
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
3 changed files with 248 additions and 47 deletions
Download patch file Download diff file Expand all files Collapse all files

34
packages/core/src/tools/__snapshots__/shell.test.ts.snap
View file

@ -1,7 +1,7 @@
// Vitest Snapshot v1, https://vitest.dev/guide/snapshot.html
exports[`ShellTool > getDescription > should return the non-windows description when not on windows 1`] = `
"Executes a given shell command (as \`bash -c <command>\`) in a persistent shell session with optional timeout, ensuring proper handling and security measures.
"Executes a given shell command (as \`bash -c <command>\`) in a subprocess with optional timeout, ensuring proper handling and security measures.
IMPORTANT: This tool is for terminal operations like git, npm, docker, etc. DO NOT use it for file operations (reading, writing, editing, searching, finding files) - use the specialized tools for this instead.
@ -17,7 +17,7 @@ IMPORTANT: This tool is for terminal operations like git, npm, docker, etc. DO N
- Edit files: Use edit (NOT sed/awk)
- Write files: Use write_file (NOT echo >/cat <<EOF)
- Communication: Output text directly (NOT echo/printf)
- **Shell argument quoting and special characters**: When passing arguments that contain special characters (parentheses \`()\`, backticks \`\`\`\`, dollar signs \`$\`, backslashes \`\\\`, semicolons \`;\`, pipes \`|\`, angle brackets \`<>\`, ampersands \`&\`, exclamation marks \`!\`, etc.), you MUST ensure they are properly quoted to prevent the shell from misinterpreting them as shell syntax:
- **Shell argument quoting and special characters**: The active shell is Bash. When passing arguments that contain special characters (parentheses \`()\`, backticks \`\`\`\`, dollar signs \`$\`, backslashes \`\\\`, semicolons \`;\`, pipes \`|\`, angle brackets \`<>\`, ampersands \`&\`, exclamation marks \`!\`, etc.), you MUST ensure they are properly quoted to prevent Bash from misinterpreting them as shell syntax:
- **Single quotes** \`'...'\` pass everything literally, but cannot contain a literal single quote.
- **ANSI-C quoting** \`$'...'\` supports escape sequences (e.g. \`\\n\` for newline, \`\\'\` for single quote) and is the safest approach for multi-line strings or strings with single quotes.
- **Heredoc** is the most robust approach for large, multi-line text with mixed quotes:
@ -32,8 +32,8 @@ IMPORTANT: This tool is for terminal operations like git, npm, docker, etc. DO N
- When issuing multiple commands:
- If the commands are independent and can run in parallel, make multiple run_shell_command tool calls in a single message. For example, if you need to run "git status" and "git diff", send a single message with two run_shell_command tool calls in parallel.
- If the commands depend on each other and must run sequentially, use a single run_shell_command call with '&&' to chain them together (e.g., \`git add . && git commit -m "message" && git push\`). For instance, if one operation must complete before another starts (like mkdir before cp, Write before run_shell_command for git operations, or git add before git commit), run these operations sequentially instead.
- Use ';' only when you need to run commands sequentially but don't care if earlier commands fail
- DO NOT use newlines to separate commands (newlines are ok in quoted strings)
- Use ';' only when you need to run commands sequentially but don't care if earlier commands fail.
- DO NOT use newlines to separate commands (newlines are ok in quoted strings).
- Try to maintain your current working directory throughout the session by using absolute paths and avoiding usage of \`cd\`. You may use \`cd\` if the User explicitly requests it.
<good-example>
pytest /foo/bar/tests
@ -62,7 +62,7 @@ IMPORTANT: This tool is for terminal operations like git, npm, docker, etc. DO N
`;
exports[`ShellTool > getDescription > should return the windows description when on windows 1`] = `
"Executes a given shell command (as \`cmd.exe /c <command>\`) in a persistent shell session with optional timeout, ensuring proper handling and security measures.
"Executes a given shell command (as \`cmd.exe /d /s /c <command>\`) in a subprocess with optional timeout, ensuring proper handling and security measures.
IMPORTANT: This tool is for terminal operations like git, npm, docker, etc. DO NOT use it for file operations (reading, writing, editing, searching, finding files) - use the specialized tools for this instead.
@ -78,23 +78,17 @@ IMPORTANT: This tool is for terminal operations like git, npm, docker, etc. DO N
- Edit files: Use edit (NOT sed/awk)
- Write files: Use write_file (NOT echo >/cat <<EOF)
- Communication: Output text directly (NOT echo/printf)
- **Shell argument quoting and special characters**: When passing arguments that contain special characters (parentheses \`()\`, backticks \`\`\`\`, dollar signs \`$\`, backslashes \`\\\`, semicolons \`;\`, pipes \`|\`, angle brackets \`<>\`, ampersands \`&\`, exclamation marks \`!\`, etc.), you MUST ensure they are properly quoted to prevent the shell from misinterpreting them as shell syntax:
- **Single quotes** \`'...'\` pass everything literally, but cannot contain a literal single quote.
- **ANSI-C quoting** \`$'...'\` supports escape sequences (e.g. \`\\n\` for newline, \`\\'\` for single quote) and is the safest approach for multi-line strings or strings with single quotes.
- **Heredoc** is the most robust approach for large, multi-line text with mixed quotes:
\`\`\`bash
gh pr create --title "My Title" --body "$(cat <<'HEREDOC'
Multi-line body with (parentheses), \`backticks\`, and 'single-quotes'.
HEREDOC
)"
\`\`\`
- NEVER use unescaped single quotes inside single-quoted strings (e.g. \`'it\\'s'\` is wrong; use \`$'it\\'s'\` or \`"it's"\` instead).
- If unsure, prefer double-quoting arguments and escape inner double-quotes as \`\\"\`.
- **Shell argument quoting and special characters**: The active shell is cmd.exe. When passing arguments that contain special characters (parentheses \`()\`, backticks \`\`\`\`, dollar signs \`$\`, backslashes \`\\\`, semicolons \`;\`, pipes \`|\`, angle brackets \`<>\`, ampersands \`&\`, exclamation marks \`!\`, etc.), you MUST ensure they are properly quoted to prevent cmd.exe from misinterpreting them as shell syntax:
- Use double quotes around arguments that contain spaces or metacharacters.
- Escape literal cmd.exe metacharacters such as \`&\`, \`|\`, \`<\`, \`>\`, and \`^\` with caret (\`^\`).
- Single quotes do not quote arguments in cmd.exe.
- Be careful with \`%VAR%\` environment-variable expansion; avoid literal \`%...%\` unless expansion is intended.
- Do NOT use Bash-only forms such as ANSI-C quoting (\`$'...'\`) or Bash heredocs.
- When issuing multiple commands:
- If the commands are independent and can run in parallel, make multiple run_shell_command tool calls in a single message. For example, if you need to run "git status" and "git diff", send a single message with two run_shell_command tool calls in parallel.
- If the commands depend on each other and must run sequentially, use a single run_shell_command call with '&&' to chain them together (e.g., \`git add . && git commit -m "message" && git push\`). For instance, if one operation must complete before another starts (like mkdir before cp, Write before run_shell_command for git operations, or git add before git commit), run these operations sequentially instead.
- Use ';' only when you need to run commands sequentially but don't care if earlier commands fail
- DO NOT use newlines to separate commands (newlines are ok in quoted strings)
- If the commands depend on each other and must run sequentially, use a single run_shell_command call with '&&' to chain them together (e.g., \`git add . && git commit -m "message" && git push\`).
- Use '&' only when you need to run commands sequentially but don't care if earlier commands fail.
- DO NOT use ';' or newlines to separate commands in cmd.exe.
- Try to maintain your current working directory throughout the session by using absolute paths and avoiding usage of \`cd\`. You may use \`cd\` if the User explicitly requests it.
<good-example>
pytest /foo/bar/tests

105
packages/core/src/tools/shell.test.ts
View file

@ -40,6 +40,19 @@ import { createMockWorkspaceContext } from '../test-utils/mockWorkspaceContext.j
import { PermissionManager } from '../permissions/permission-manager.js';
import { CommitAttributionService } from '../services/commitAttribution.js';
interface ShellToolParameterJsonSchema {
properties: {
command: {
description: string;
};
};
}
function getCommandParameterDescription(shellTool: ShellTool): string {
return (shellTool.schema.parametersJsonSchema as ShellToolParameterJsonSchema)
.properties.command.description;
}
describe('ShellTool', () => {
let shellTool: ShellTool;
let mockConfig: Config;
@ -95,14 +108,14 @@ describe('ShellTool', () => {
on: vi.fn(),
} as unknown as fs.WriteStream);
shellTool = new ShellTool(mockConfig);
vi.mocked(os.platform).mockReturnValue('linux');
vi.mocked(os.tmpdir).mockReturnValue('/tmp');
(vi.mocked(crypto.randomBytes) as Mock).mockReturnValue(
Buffer.from('abcdef', 'hex'),
);
shellTool = new ShellTool(mockConfig);
// Capture the output callback to simulate streaming events from the service
mockShellExecutionService.mockImplementation((_cmd, _cwd, callback) => {
mockShellOutputCallback = callback;
@ -3954,16 +3967,104 @@ describe('ShellTool', () => {
});
describe('getDescription', () => {
const originalEnv = { ...process.env };
afterEach(() => {
process.env = { ...originalEnv };
});
it('should return the windows description when on windows', async () => {
vi.mocked(os.platform).mockReturnValue('win32');
delete process.env['ComSpec'];
delete process.env['MSYSTEM'];
delete process.env['TERM'];
const shellTool = new ShellTool(mockConfig);
expect(shellTool.description).toMatchSnapshot();
expect(shellTool.description).toContain(
"Use '&' only when you need to run commands sequentially",
);
expect(shellTool.description).toContain(
"DO NOT use ';' or newlines to separate commands in cmd.exe.",
);
expect(getCommandParameterDescription(shellTool)).toBe(
'Exact cmd.exe command to execute as `cmd.exe /d /s /c <command>`',
);
});
it('should return the non-windows description when not on windows', async () => {
vi.mocked(os.platform).mockReturnValue('linux');
const shellTool = new ShellTool(mockConfig);
expect(shellTool.description).toMatchSnapshot();
expect(getCommandParameterDescription(shellTool)).toBe(
'Exact bash command to execute as `bash -c <command>`',
);
});
it('should describe PowerShell when ComSpec points to powershell.exe', async () => {
vi.mocked(os.platform).mockReturnValue('win32');
process.env['ComSpec'] =
'C:\\WINDOWS\\System32\\WindowsPowerShell\\v1.0\\powershell.exe';
delete process.env['MSYSTEM'];
delete process.env['TERM'];
const shellTool = new ShellTool(mockConfig);
expect(shellTool.description).toContain(
'`powershell.exe -NoProfile -Command <command>`',
);
expect(shellTool.description).toContain(
'The active shell is PowerShell.',
);
expect(shellTool.description).toContain(
'Do NOT use Bash-only forms such as ANSI-C quoting',
);
expect(shellTool.description).toContain(
"Windows PowerShell does not support '&&'.",
);
expect(shellTool.description).not.toContain(
"use a single run_shell_command call with '&&'",
);
expect(getCommandParameterDescription(shellTool)).toBe(
'Exact PowerShell command to execute as `powershell.exe -NoProfile -Command <command>`',
);
});
it('should describe pwsh when ComSpec points to pwsh.exe', async () => {
vi.mocked(os.platform).mockReturnValue('win32');
process.env['ComSpec'] = 'C:\\Program Files\\PowerShell\\7\\pwsh.exe';
delete process.env['MSYSTEM'];
delete process.env['TERM'];
const shellTool = new ShellTool(mockConfig);
expect(shellTool.description).toContain(
'`pwsh.exe -NoProfile -Command <command>`',
);
expect(shellTool.description).toContain(
"use a single run_shell_command call with '&&'",
);
expect(getCommandParameterDescription(shellTool)).toBe(
'Exact PowerShell command to execute as `pwsh.exe -NoProfile -Command <command>`',
);
});
it('should describe bash when Windows is running in Git Bash', async () => {
vi.mocked(os.platform).mockReturnValue('win32');
process.env['ComSpec'] = 'C:\\WINDOWS\\System32\\cmd.exe';
process.env['MSYSTEM'] = 'MINGW64';
delete process.env['TERM'];
const shellTool = new ShellTool(mockConfig);
expect(shellTool.description).toContain('`bash -c <command>`');
expect(shellTool.description).toContain('The active shell is Bash.');
expect(shellTool.description).toContain('ANSI-C quoting');
expect(shellTool.description).not.toContain(
'Command process group can be terminated',
);
expect(getCommandParameterDescription(shellTool)).toBe(
'Exact bash command to execute as `bash -c <command>`',
);
});
});

156
packages/core/src/tools/shell.ts
View file

@ -45,6 +45,8 @@ import {
getCommandRoot,
getCommandRoots,
getShellConfiguration,
type ShellConfiguration,
type ShellType,
splitCommands,
stripShellWrapper,
} from '../utils/shell-utils.js';
@ -3541,16 +3543,126 @@ export class ShellToolInvocation extends BaseToolInvocation<
}
}
function getExecutableBasename(executable: string): string {
return path.basename(path.win32.basename(executable));
}
function getShellDisplayName({
executable,
shell,
}: ShellConfiguration): string {
switch (shell) {
case 'cmd':
return 'cmd.exe';
case 'powershell': {
const basename = getExecutableBasename(executable).toLowerCase();
return basename === 'pwsh.exe' ? 'pwsh.exe' : 'powershell.exe';
}
case 'bash':
return 'bash';
default: {
const _exhaustive: never = shell;
return _exhaustive;
}
}
}
function getShellExecutionWrapper(
shellConfiguration = getShellConfiguration(),
): string {
const executable = getShellDisplayName(shellConfiguration);
return `${executable} ${shellConfiguration.argsPrefix.join(' ')} <command>`;
}
function getShellQuotingGuidance(shell: ShellType): string {
switch (shell) {
case 'bash':
return `- **Shell argument quoting and special characters**: The active shell is Bash. When passing arguments that contain special characters (parentheses \`()\`, backticks \`\`\`\`, dollar signs \`$\`, backslashes \`\\\`, semicolons \`;\`, pipes \`|\`, angle brackets \`<>\`, ampersands \`&\`, exclamation marks \`!\`, etc.), you MUST ensure they are properly quoted to prevent Bash from misinterpreting them as shell syntax:
- **Single quotes** \`'...'\` pass everything literally, but cannot contain a literal single quote.
- **ANSI-C quoting** \`$'...'\` supports escape sequences (e.g. \`\\n\` for newline, \`\\'\` for single quote) and is the safest approach for multi-line strings or strings with single quotes.
- **Heredoc** is the most robust approach for large, multi-line text with mixed quotes:
\`\`\`bash
gh pr create --title "My Title" --body "$(cat <<'HEREDOC'
Multi-line body with (parentheses), \`backticks\`, and 'single-quotes'.
HEREDOC
)"
\`\`\`
- NEVER use unescaped single quotes inside single-quoted strings (e.g. \`'it\\'s'\` is wrong; use \`$'it\\'s'\` or \`"it's"\` instead).
- If unsure, prefer double-quoting arguments and escape inner double-quotes as \`\\"\`.`;
case 'powershell':
return `- **Shell argument quoting and special characters**: The active shell is PowerShell. When passing arguments that contain special characters (parentheses \`()\`, backticks \`\`\`\`, dollar signs \`$\`, backslashes \`\\\`, semicolons \`;\`, pipes \`|\`, angle brackets \`<>\`, ampersands \`&\`, exclamation marks \`!\`, etc.), you MUST ensure they are properly quoted to prevent PowerShell from misinterpreting them as shell syntax:
- **Single quotes** \`'...'\` pass everything literally. To include a literal single quote, double it (e.g. \`'it''s'\`).
- **Double quotes** \`"..."\` expand variables and subexpressions; use them only when that expansion is intended.
- Escape PowerShell metacharacters with the backtick escape character when they must be literal.
- For large, multi-line text, prefer a single-quoted here-string (\`@' ... '@\`) so content is not interpolated.
- Do NOT use Bash-only forms such as ANSI-C quoting (\`$'...'\`) or Bash heredocs.`;
case 'cmd':
return `- **Shell argument quoting and special characters**: The active shell is cmd.exe. When passing arguments that contain special characters (parentheses \`()\`, backticks \`\`\`\`, dollar signs \`$\`, backslashes \`\\\`, semicolons \`;\`, pipes \`|\`, angle brackets \`<>\`, ampersands \`&\`, exclamation marks \`!\`, etc.), you MUST ensure they are properly quoted to prevent cmd.exe from misinterpreting them as shell syntax:
- Use double quotes around arguments that contain spaces or metacharacters.
- Escape literal cmd.exe metacharacters such as \`&\`, \`|\`, \`<\`, \`>\`, and \`^\` with caret (\`^\`).
- Single quotes do not quote arguments in cmd.exe.
- Be careful with \`%VAR%\` environment-variable expansion; avoid literal \`%...%\` unless expansion is intended.
- Do NOT use Bash-only forms such as ANSI-C quoting (\`$'...'\`) or Bash heredocs.`;
default: {
const _exhaustive: never = shell;
return _exhaustive;
}
}
}
function getShellCommandSequencingGuidance({
executable,
shell,
}: ShellConfiguration): string {
const independentGuidance =
'- If the commands are independent and can run in parallel, make multiple run_shell_command tool calls in a single message. For example, if you need to run "git status" and "git diff", send a single message with two run_shell_command tool calls in parallel.';
switch (shell) {
case 'bash':
return `- When issuing multiple commands:
${independentGuidance}
- If the commands depend on each other and must run sequentially, use a single run_shell_command call with '&&' to chain them together (e.g., \`git add . && git commit -m "message" && git push\`). For instance, if one operation must complete before another starts (like mkdir before cp, Write before run_shell_command for git operations, or git add before git commit), run these operations sequentially instead.
- Use ';' only when you need to run commands sequentially but don't care if earlier commands fail.
- DO NOT use newlines to separate commands (newlines are ok in quoted strings).`;
case 'cmd':
return `- When issuing multiple commands:
${independentGuidance}
- If the commands depend on each other and must run sequentially, use a single run_shell_command call with '&&' to chain them together (e.g., \`git add . && git commit -m "message" && git push\`).
- Use '&' only when you need to run commands sequentially but don't care if earlier commands fail.
- DO NOT use ';' or newlines to separate commands in cmd.exe.`;
case 'powershell': {
const executableBasename =
getExecutableBasename(executable).toLowerCase();
if (executableBasename === 'pwsh.exe') {
return `- When issuing multiple commands:
${independentGuidance}
- If the commands depend on each other and must run sequentially, use a single run_shell_command call with '&&' to chain them together (e.g., \`git add . && git commit -m "message" && git push\`).
- Use ';' only when you need to run commands sequentially but don't care if earlier commands fail.
- DO NOT use newlines to separate commands (newlines are ok in quoted strings).`;
}
return `- When issuing multiple commands:
${independentGuidance}
- Windows PowerShell does not support '&&'. If commands must run sequentially and stop on failure, use explicit PowerShell control flow (for example, check \`$LASTEXITCODE\` before running the next external command) or run the next command only after seeing the previous run_shell_command result.
- Use ';' only when you need to run commands sequentially but don't care if earlier commands fail.
- DO NOT use newlines to separate commands (newlines are ok in quoted strings).`;
}
default: {
const _exhaustive: never = shell;
return _exhaustive;
}
}
}
function getShellToolDescription(): string {
const shellConfiguration = getShellConfiguration();
const executionWrapper = getShellExecutionWrapper(shellConfiguration);
const isWindows = os.platform() === 'win32';
const executionWrapper = isWindows
? 'cmd.exe /c <command>'
: 'bash -c <command>';
const processGroupNote = isWindows
? ''
: '\n - Command is executed as a subprocess that leads its own process group. Command process group can be terminated as `kill -- -PGID` or signaled as `kill -s SIGNAL -- -PGID`.';
return `Executes a given shell command (as \`${executionWrapper}\`) in a persistent shell session with optional timeout, ensuring proper handling and security measures.
return `Executes a given shell command (as \`${executionWrapper}\`) in a subprocess with optional timeout, ensuring proper handling and security measures.
IMPORTANT: This tool is for terminal operations like git, npm, docker, etc. DO NOT use it for file operations (reading, writing, editing, searching, finding files) - use the specialized tools for this instead.
@ -3566,23 +3678,8 @@ IMPORTANT: This tool is for terminal operations like git, npm, docker, etc. DO N
- Edit files: Use ${ToolNames.EDIT} (NOT sed/awk)
- Write files: Use ${ToolNames.WRITE_FILE} (NOT echo >/cat <<EOF)
- Communication: Output text directly (NOT echo/printf)
- **Shell argument quoting and special characters**: When passing arguments that contain special characters (parentheses \`()\`, backticks \`\`\`\`, dollar signs \`$\`, backslashes \`\\\`, semicolons \`;\`, pipes \`|\`, angle brackets \`<>\`, ampersands \`&\`, exclamation marks \`!\`, etc.), you MUST ensure they are properly quoted to prevent the shell from misinterpreting them as shell syntax:
- **Single quotes** \`'...'\` pass everything literally, but cannot contain a literal single quote.
- **ANSI-C quoting** \`$'...'\` supports escape sequences (e.g. \`\\n\` for newline, \`\\'\` for single quote) and is the safest approach for multi-line strings or strings with single quotes.
- **Heredoc** is the most robust approach for large, multi-line text with mixed quotes:
\`\`\`bash
gh pr create --title "My Title" --body "$(cat <<'HEREDOC'
Multi-line body with (parentheses), \`backticks\`, and 'single-quotes'.
HEREDOC
)"
\`\`\`
- NEVER use unescaped single quotes inside single-quoted strings (e.g. \`'it\\'s'\` is wrong; use \`$'it\\'s'\` or \`"it's"\` instead).
- If unsure, prefer double-quoting arguments and escape inner double-quotes as \`\\"\`.
- When issuing multiple commands:
- If the commands are independent and can run in parallel, make multiple run_shell_command tool calls in a single message. For example, if you need to run "git status" and "git diff", send a single message with two run_shell_command tool calls in parallel.
- If the commands depend on each other and must run sequentially, use a single run_shell_command call with '&&' to chain them together (e.g., \`git add . && git commit -m "message" && git push\`). For instance, if one operation must complete before another starts (like mkdir before cp, Write before run_shell_command for git operations, or git add before git commit), run these operations sequentially instead.
- Use ';' only when you need to run commands sequentially but don't care if earlier commands fail
- DO NOT use newlines to separate commands (newlines are ok in quoted strings)
${getShellQuotingGuidance(shellConfiguration.shell)}
${getShellCommandSequencingGuidance(shellConfiguration)}
- Try to maintain your current working directory throughout the session by using absolute paths and avoiding usage of \`cd\`. You may use \`cd\` if the User explicitly requests it.
<good-example>
pytest /foo/bar/tests
@ -3610,10 +3707,19 @@ ${processGroupNote}
}
function getCommandDescription(): string {
if (os.platform() === 'win32') {
return 'Exact command to execute as `cmd.exe /c <command>`';
} else {
return 'Exact bash command to execute as `bash -c <command>`';
const shellConfiguration = getShellConfiguration();
const executionWrapper = getShellExecutionWrapper(shellConfiguration);
switch (shellConfiguration.shell) {
case 'cmd':
return `Exact cmd.exe command to execute as \`${executionWrapper}\``;
case 'powershell':
return `Exact PowerShell command to execute as \`${executionWrapper}\``;
case 'bash':
return `Exact bash command to execute as \`${executionWrapper}\``;
default: {
const _exhaustive: never = shellConfiguration.shell;
return _exhaustive;
}
}
}