feat(permissions): add permission system and rename folder trust command

2026-04-28 19:52:02 +00:00 · 2026-03-04 19:24:43 +08:00 · 2026-03-04 19:24:43 +08:00 · eeb4d85785
commit eeb4d85785
parent 407a66c959
33 changed files with 3295 additions and 205 deletions
--- a/packages/cli/src/config/settingsSchema.ts
+++ b/packages/cli/src/config/settingsSchema.ts
@ -789,6 +789,55 @@ const SETTINGS_SCHEMA = {
    },
  },

+  permissions: {
+    type: 'object',
+    label: 'Permissions',
+    category: 'Tools',
+    requiresRestart: true,
+    default: {},
+    description:
+      'Permission rules controlling tool usage. Rules are evaluated in priority order: deny > ask > allow.',
+    showInDialog: false,
+    properties: {
+      allow: {
+        type: 'array',
+        label: 'Allow Rules',
+        category: 'Tools',
+        requiresRestart: true,
+        default: undefined as string[] | undefined,
+        description:
+          'Tools or commands that are auto-approved without confirmation. ' +
+          'Examples: "ShellTool", "Bash(git *)", "ReadFileTool".',
+        showInDialog: false,
+        mergeStrategy: MergeStrategy.UNION,
+      },
+      ask: {
+        type: 'array',
+        label: 'Ask Rules',
+        category: 'Tools',
+        requiresRestart: true,
+        default: undefined as string[] | undefined,
+        description:
+          'Tools or commands that always require user confirmation. ' +
+          'Takes precedence over allow rules.',
+        showInDialog: false,
+        mergeStrategy: MergeStrategy.UNION,
+      },
+      deny: {
+        type: 'array',
+        label: 'Deny Rules',
+        category: 'Tools',
+        requiresRestart: true,
+        default: undefined as string[] | undefined,
+        description:
+          'Tools or commands that are always blocked. Highest priority rule. ' +
+          'Examples: "ShellTool", "Bash(rm -rf *)".',
+        showInDialog: false,
+        mergeStrategy: MergeStrategy.UNION,
+      },
+    },
+  },
+
  tools: {
    type: 'object',
    label: 'Tools',
@ -848,32 +897,33 @@ const SETTINGS_SCHEMA = {
          },
        },
      },
+      // Legacy tool permission fields – kept for backward compatibility.
+      // Use permissions.{allow,ask,deny} instead.
      core: {
        type: 'array',
-        label: 'Core Tools',
+        label: 'Core Tools (deprecated)',
        category: 'Tools',
        requiresRestart: true,
        default: undefined as string[] | undefined,
-        description: 'Paths to core tool definitions.',
+        description: 'Deprecated. Use permissions.allow instead.',
        showInDialog: false,
      },
      allowed: {
        type: 'array',
-        label: 'Allowed Tools',
+        label: 'Allowed Tools (deprecated)',
        category: 'Advanced',
        requiresRestart: true,
        default: undefined as string[] | undefined,
-        description:
-          'A list of tool names that will bypass the confirmation dialog.',
+        description: 'Deprecated. Use permissions.allow instead.',
        showInDialog: false,
      },
      exclude: {
        type: 'array',
-        label: 'Exclude Tools',
+        label: 'Exclude Tools (deprecated)',
        category: 'Tools',
        requiresRestart: true,
        default: undefined as string[] | undefined,
-        description: 'Tool names to exclude from discovery.',
+        description: 'Deprecated. Use permissions.deny instead.',
        showInDialog: false,
        mergeStrategy: MergeStrategy.UNION,
      },