oussamadouhou/oh-my-opencode-free-fork
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: implement proper version-aware permission format for OpenCode v1.1.1

Browse Source 
- Rewrite permission-compat.ts with runtime version detection
- createAgentToolRestrictions() returns correct format per version
- v1.1.1+ uses permission format, older uses tools format
- Add migrateToolsToPermission/migratePermissionToTools helpers
- Update test suite for new API

🤖 Generated with assistance of OhMyOpenCode
https://github.com/code-yeongyu/oh-my-opencode
This commit is contained in:
YeonGyu-Kim
2026-01-05 04:50:01 +09:00
parent 09f72e2902
commit 0d0ddefbfe
2 changed files with 154 additions and 151 deletions
Download Patch File Download Diff File Expand all files Collapse all files

195
src/shared/permission-compat.test.ts
View File

@@ -1,161 +1,158 @@
import { describe, test, expect } from "bun:test"
import { describe, test, expect, beforeEach, afterEach } from "bun:test"
import {
createToolDenyList,
permissionValueToBoolean,
booleanToPermissionValue,
convertToolsToPermission,
convertPermissionToTools,
createAgentRestrictions,
createAgentToolRestrictions,
migrateToolsToPermission,
migratePermissionToTools,
migrateAgentConfig,
} from "./permission-compat"
import { setVersionCache, resetVersionCache } from "./opencode-version"
describe("permission-compat", () => {
describe("createToolDenyList", () => {
test("creates tools config with all values false", () => {
// #given a list of tool names
const tools = ["write", "edit", "task"]
// #when creating deny list
const result = createToolDenyList(tools)
// #then all values are false
expect(result).toEqual({ write: false, edit: false, task: false })
beforeEach(() => {
resetVersionCache()
})
test("returns empty object for empty array", () => {
// #given empty array
// #when creating deny list
const result = createToolDenyList([])
afterEach(() => {
resetVersionCache()
})
// #then returns empty object
expect(result).toEqual({})
describe("createAgentToolRestrictions", () => {
test("returns permission format for v1.1.1+", () => {
// #given version is 1.1.1
setVersionCache("1.1.1")
// #when creating restrictions
const result = createAgentToolRestrictions(["write", "edit"])
// #then returns permission format
expect(result).toEqual({
permission: { write: "deny", edit: "deny" },
})
})
describe("permissionValueToBoolean", () => {
test("converts allow to true", () => {
expect(permissionValueToBoolean("allow")).toBe(true)
})
test("returns tools format for versions below 1.1.1", () => {
// #given version is below 1.1.1
setVersionCache("1.0.150")
test("converts deny to false", () => {
expect(permissionValueToBoolean("deny")).toBe(false)
})
// #when creating restrictions
const result = createAgentToolRestrictions(["write", "edit"])
test("converts ask to false", () => {
expect(permissionValueToBoolean("ask")).toBe(false)
// #then returns tools format
expect(result).toEqual({
tools: { write: false, edit: false },
})
})
describe("booleanToPermissionValue", () => {
test("converts true to allow", () => {
expect(booleanToPermissionValue(true)).toBe("allow")
})
test("assumes new format when version unknown", () => {
// #given version is null
setVersionCache(null)
test("converts false to deny", () => {
expect(booleanToPermissionValue(false)).toBe("deny")
// #when creating restrictions
const result = createAgentToolRestrictions(["write"])
// #then returns permission format (assumes new version)
expect(result).toEqual({
permission: { write: "deny" },
})
})
})
describe("convertToolsToPermission", () => {
test("converts boolean tools config to permission format", () => {
// #given tools config with booleans
describe("migrateToolsToPermission", () => {
test("converts boolean tools to permission values", () => {
// #given tools config
const tools = { write: false, edit: true, bash: false }
// #when converting to permission
const result = convertToolsToPermission(tools)
// #when migrating
const result = migrateToolsToPermission(tools)
// #then converts to permission values
expect(result).toEqual({ write: "deny", edit: "allow", bash: "deny" })
// #then converts correctly
expect(result).toEqual({
write: "deny",
edit: "allow",
bash: "deny",
})
test("handles empty tools config", () => {
// #given empty config
// #when converting
const result = convertToolsToPermission({})
// #then returns empty object
expect(result).toEqual({})
})
})
describe("convertPermissionToTools", () => {
test("converts permission to boolean tools config", () => {
describe("migratePermissionToTools", () => {
test("converts permission to boolean tools", () => {
// #given permission config
const permission = { write: "deny" as const, edit: "allow" as const }
// #when converting to tools
const result = convertPermissionToTools(permission)
// #when migrating
const result = migratePermissionToTools(permission)
// #then converts to boolean values
// #then converts correctly
expect(result).toEqual({ write: false, edit: true })
})
test("excludes ask values", () => {
// #given permission with ask value
// #given permission with ask
const permission = {
write: "deny" as const,
edit: "ask" as const,
bash: "allow" as const,
}
// #when converting
const result = convertPermissionToTools(permission)
// #when migrating
const result = migratePermissionToTools(permission)
// #then ask is excluded
expect(result).toEqual({ write: false, bash: true })
})
})
describe("createAgentRestrictions", () => {
test("creates restrictions with denied tools", () => {
// #given deny tools list
const config = { denyTools: ["write", "task"] }
// #when creating restrictions
const result = createAgentRestrictions(config)
// #then creates tools config
expect(result).toEqual({ tools: { write: false, task: false } })
})
test("creates restrictions with permission", () => {
// #given permission config
describe("migrateAgentConfig", () => {
test("migrates tools to permission for v1.1.1+", () => {
// #given v1.1.1 and config with tools
setVersionCache("1.1.1")
const config = {
permission: { edit: "deny" as const, bash: "ask" as const },
model: "test",
tools: { write: false, edit: false },
}
// #when creating restrictions
const result = createAgentRestrictions(config)
// #when migrating
const result = migrateAgentConfig(config)
// #then creates permission config
expect(result).toEqual({
permission: { edit: "deny", bash: "ask" },
})
// #then converts to permission
expect(result.tools).toBeUndefined()
expect(result.permission).toEqual({ write: "deny", edit: "deny" })
expect(result.model).toBe("test")
})
test("combines tools and permission", () => {
// #given both deny tools and permission
test("migrates permission to tools for old versions", () => {
// #given old version and config with permission
setVersionCache("1.0.150")
const config = {
denyTools: ["task"],
permission: { edit: "deny" as const },
model: "test",
permission: { write: "deny" as const, edit: "deny" as const },
}
// #when creating restrictions
const result = createAgentRestrictions(config)
// #when migrating
const result = migrateAgentConfig(config)
// #then includes both
expect(result).toEqual({
tools: { task: false },
permission: { edit: "deny" },
})
// #then converts to tools
expect(result.permission).toBeUndefined()
expect(result.tools).toEqual({ write: false, edit: false })
})
test("returns empty object when no config provided", () => {
// #given empty config
// #when creating restrictions
const result = createAgentRestrictions({})
test("preserves other config fields", () => {
// #given config with other fields
setVersionCache("1.1.1")
const config = {
model: "test",
temperature: 0.5,
prompt: "hello",
tools: { write: false },
}
// #then returns empty object
expect(result).toEqual({})
// #when migrating
const result = migrateAgentConfig(config)
// #then preserves other fields
expect(result.model).toBe("test")
expect(result.temperature).toBe(0.5)
expect(result.prompt).toBe("hello")
})
})
})

92
src/shared/permission-compat.ts
View File

@@ -1,72 +1,78 @@
import { supportsNewPermissionSystem as checkNewPermissionSystem } from "./opencode-version"
import { supportsNewPermissionSystem } from "./opencode-version"
export type PermissionValue = "ask" | "allow" | "deny"
export type BashPermission = PermissionValue | Record<string, PermissionValue>
export interface StandardPermission {
edit?: PermissionValue
bash?: BashPermission
webfetch?: PermissionValue
doom_loop?: PermissionValue
external_directory?: PermissionValue
export interface LegacyToolsFormat {
tools: Record<string, boolean>
}
export interface ToolsConfig {
[toolName: string]: boolean
export interface NewPermissionFormat {
permission: Record<string, PermissionValue>
}
export interface AgentPermissionConfig {
permission?: StandardPermission
tools?: ToolsConfig
export type VersionAwareRestrictions = LegacyToolsFormat | NewPermissionFormat
export function createAgentToolRestrictions(
denyTools: string[]
): VersionAwareRestrictions {
if (supportsNewPermissionSystem()) {
return {
permission: Object.fromEntries(
denyTools.map((tool) => [tool, "deny" as const])
),
}
}
return {
tools: Object.fromEntries(denyTools.map((tool) => [tool, false])),
}
}
export { checkNewPermissionSystem as supportsNewPermissionSystemFromCompat }
export function createToolDenyList(toolNames: string[]): ToolsConfig {
return Object.fromEntries(toolNames.map((name) => [name, false]))
}
export function permissionValueToBoolean(value: PermissionValue): boolean {
return value === "allow"
}
export function booleanToPermissionValue(value: boolean): PermissionValue {
return value ? "allow" : "deny"
}
export function convertToolsToPermission(
tools: ToolsConfig
export function migrateToolsToPermission(
tools: Record<string, boolean>
): Record<string, PermissionValue> {
return Object.fromEntries(
Object.entries(tools).map(([key, value]) => [
key,
booleanToPermissionValue(value),
value ? ("allow" as const) : ("deny" as const),
])
)
}
export function convertPermissionToTools(
export function migratePermissionToTools(
permission: Record<string, PermissionValue>
): ToolsConfig {
): Record<string, boolean> {
return Object.fromEntries(
Object.entries(permission)
.filter(([, value]) => value !== "ask")
.map(([key, value]) => [key, permissionValueToBoolean(value)])
.map(([key, value]) => [key, value === "allow"])
)
}
export function createAgentRestrictions(config: {
denyTools?: string[]
permission?: StandardPermission
}): AgentPermissionConfig {
const result: AgentPermissionConfig = {}
export function migrateAgentConfig(
config: Record<string, unknown>
): Record<string, unknown> {
const result = { ...config }
if (config.denyTools && config.denyTools.length > 0) {
result.tools = createToolDenyList(config.denyTools)
if (supportsNewPermissionSystem()) {
if (result.tools && typeof result.tools === "object") {
const existingPermission =
(result.permission as Record<string, PermissionValue>) || {}
const migratedPermission = migrateToolsToPermission(
result.tools as Record<string, boolean>
)
result.permission = { ...migratedPermission, ...existingPermission }
delete result.tools
}
} else {
if (result.permission && typeof result.permission === "object") {
const existingTools = (result.tools as Record<string, boolean>) || {}
const migratedTools = migratePermissionToTools(
result.permission as Record<string, PermissionValue>
)
result.tools = { ...migratedTools, ...existingTools }
delete result.permission
}
if (config.permission) {
result.permission = config.permission
}
return result