qwen-code

vrr/qwen-code

Fork 0

mirror of https://github.com/QwenLM/qwen-code.git synced 2026-05-01 13:10:45 +00:00

Commit graph

Author	SHA1	Message	Date
jinye	bf561fa495	fix(core): prevent malformed permission rules from becoming tool-wide catch-alls (#3467 ) * fix(core): prevent malformed permission rules from becoming tool-wide catch-alls A permission rule with unbalanced parentheses (e.g. `Bash(rm -rf /)`) was silently parsed with `specifier: undefined`, causing `matchesRule` to treat it as a catch-all that matches every invocation of the tool. For deny rules this blocked all commands; for allow rules a typo could silently auto-approve everything. Add an `invalid` flag to `PermissionRule`. `parseRule` now marks rules with unbalanced parens as invalid, `matchesRule` short-circuits them to never match, and all entry points (`addSessionRule`, `addPersistentRule`, `parseRules`) warn on malformed input. `listRules` filters out invalid rules so they don't appear in the /permissions UI. * fix(cli): show error in /permissions dialog when adding malformed rule When a user enters a rule with unbalanced parentheses via the "Add Rule" input in the /permissions dialog, show an inline error message instead of silently accepting and then hiding the invalid rule. Closes #3459 Co-authored-by: Qwen-Coder <qwen-coder@alibabacloud.com>	2026-04-20 18:56:14 +08:00
LaZzyMan	e793e82729	feat(permissions): add workspace directory management tab - Add Workspace tab to PermissionsDialog with full directory management UI - Directory list view: initial (non-removable) dirs shown inline, runtime-added dirs selectable; "Add directory…" always first - Add directory input view: filesystem autocomplete with ↑/↓ navigation and Tab-to-complete; path validation (existence, type, duplicate, subdirectory checks) - Remove directory confirmation view - Save directly to project settings (SettingScope.Workspace), no scope selection step - Add onTab/onUp/onDown props to TextInput to intercept keys before buffer - Add removeDirectory() and isInitialDirectory() to WorkspaceContext - Add --add-dir CLI alias for --include-directories - Add /add-dir slash command (alias for /directory add) - Add permissions.additionalDirectories settings field - Add i18n keys for all workspace directory UI strings (en/zh/de/ja/pt/ru)"	2026-03-11 10:54:59 +08:00
LaZzyMan	db0e373ad7	feat test tool permissions	2026-03-10 16:30:22 +08:00

Author

SHA1

Message

Date

jinye

bf561fa495

fix(core): prevent malformed permission rules from becoming tool-wide catch-alls (#3467 )

* fix(core): prevent malformed permission rules from becoming tool-wide catch-alls

A permission rule with unbalanced parentheses (e.g. `Bash(rm -rf /)*`)
was silently parsed with `specifier: undefined`, causing `matchesRule`
to treat it as a catch-all that matches every invocation of the tool.
For deny rules this blocked all commands; for allow rules a typo could
silently auto-approve everything.

Add an `invalid` flag to `PermissionRule`. `parseRule` now marks rules
with unbalanced parens as invalid, `matchesRule` short-circuits them to
never match, and all entry points (`addSession*Rule`, `addPersistentRule`,
`parseRules`) warn on malformed input. `listRules` filters out invalid
rules so they don't appear in the /permissions UI.

* fix(cli): show error in /permissions dialog when adding malformed rule

When a user enters a rule with unbalanced parentheses via the "Add Rule"
input in the /permissions dialog, show an inline error message instead of
silently accepting and then hiding the invalid rule.

Closes #3459

Co-authored-by: Qwen-Coder <qwen-coder@alibabacloud.com>

2026-04-20 18:56:14 +08:00

LaZzyMan

e793e82729

feat(permissions): add workspace directory management tab

- Add Workspace tab to PermissionsDialog with full directory management UI
  - Directory list view: initial (non-removable) dirs shown inline,
    runtime-added dirs selectable; "Add directory…" always first
  - Add directory input view: filesystem autocomplete with ↑/↓ navigation
    and Tab-to-complete; path validation (existence, type, duplicate,
    subdirectory checks)
  - Remove directory confirmation view
  - Save directly to project settings (SettingScope.Workspace), no scope
    selection step
- Add onTab/onUp/onDown props to TextInput to intercept keys before buffer
- Add removeDirectory() and isInitialDirectory() to WorkspaceContext
- Add --add-dir CLI alias for --include-directories
- Add /add-dir slash command (alias for /directory add)
- Add permissions.additionalDirectories settings field
- Add i18n keys for all workspace directory UI strings (en/zh/de/ja/pt/ru)"

2026-03-11 10:54:59 +08:00

LaZzyMan

db0e373ad7

feat test tool permissions

2026-03-10 16:30:22 +08:00

3 commits