packages/cli/src/ui/hooks/useFolderTrust.ts

/**
 * @license
 * Copyright 2025 Google LLC
 * SPDX-License-Identifier: Apache-2.0
 */

import { useState, useCallback, useEffect, useRef } from 'react';
import type { LoadedSettings } from '../../config/settings.js';
import { FolderTrustChoice } from '../components/FolderTrustDialog.js';
import {
  loadTrustedFolders,
  TrustLevel,
  isWorkspaceTrusted,
} from '../../config/trustedFolders.js';
import * as process from 'node:process';
import { type HistoryItemWithoutId, MessageType } from '../types.js';
import {
  coreEvents,
  ExitCodes,
  isHeadlessMode,
  FolderTrustDiscoveryService,
  type FolderDiscoveryResults,
} from '@google/gemini-cli-core';
import { runExitCleanup } from '../../utils/cleanup.js';

export const useFolderTrust = (
  settings: LoadedSettings,
  onTrustChange: (isTrusted: boolean | undefined) => void,
  addItem: (item: HistoryItemWithoutId, timestamp: number) => number,
) => {
  const [isTrusted, setIsTrusted] = useState<boolean | undefined>(undefined);
  const [isFolderTrustDialogOpen, setIsFolderTrustDialogOpen] = useState(false);
  const [discoveryResults, setDiscoveryResults] =
    useState<FolderDiscoveryResults | null>(null);
  const [isRestarting, setIsRestarting] = useState(false);
  const startupMessageSent = useRef(false);

  const folderTrust = settings.merged.security.folderTrust.enabled ?? true;

  useEffect(() => {
    let isMounted = true;
    const { isTrusted: trusted } = isWorkspaceTrusted(settings.merged);

    if (trusted === undefined || trusted === false) {
      void FolderTrustDiscoveryService.discover(process.cwd())
        .then((results) => {
          if (isMounted) {
            setDiscoveryResults(results);
          }
        })
        .catch(() => {
          // Silently ignore discovery errors as they are handled within the service
          // and reported via results.discoveryErrors if successful.
        });
    }

    const showUntrustedMessage = () => {
      if (trusted === false && !startupMessageSent.current) {
        addItem(
          {
            type: MessageType.INFO,
            text: 'This folder is untrusted, project settings, hooks, MCPs, and GEMINI.md files will not be applied for this folder.\nUse the `/permissions` command to change the trust level.',
          },
          Date.now(),
        );
        startupMessageSent.current = true;
      }
    };

    if (isHeadlessMode()) {
      if (isMounted) {
        setIsTrusted(trusted);
        setIsFolderTrustDialogOpen(false);
        onTrustChange(true);
        showUntrustedMessage();
      }
    } else if (isMounted) {
      setIsTrusted(trusted);
      setIsFolderTrustDialogOpen(trusted === undefined);
      onTrustChange(trusted);
      showUntrustedMessage();
    }

    return () => {
      isMounted = false;
    };
  }, [folderTrust, onTrustChange, settings.merged, addItem]);

  const handleFolderTrustSelect = useCallback(
    async (choice: FolderTrustChoice) => {
      const trustLevelMap: Record<FolderTrustChoice, TrustLevel> = {
        [FolderTrustChoice.TRUST_FOLDER]: TrustLevel.TRUST_FOLDER,
        [FolderTrustChoice.TRUST_PARENT]: TrustLevel.TRUST_PARENT,
        [FolderTrustChoice.DO_NOT_TRUST]: TrustLevel.DO_NOT_TRUST,
      };

      const trustLevel = trustLevelMap[choice];
      if (!trustLevel) return;

      const cwd = process.cwd();
      const trustedFolders = loadTrustedFolders();

      try {
        await trustedFolders.setValue(cwd, trustLevel);
      } catch (_e) {
        coreEvents.emitFeedback(
          'error',
          'Failed to save trust settings. Exiting Gemini CLI.',
        );
        setTimeout(async () => {
          await runExitCleanup();
          process.exit(ExitCodes.FATAL_CONFIG_ERROR);
        }, 100);
        return;
      }

      const currentIsTrusted =
        trustLevel === TrustLevel.TRUST_FOLDER ||
        trustLevel === TrustLevel.TRUST_PARENT;

      onTrustChange(currentIsTrusted);
      setIsTrusted(currentIsTrusted);

      const wasTrusted = isTrusted ?? false;

      if (wasTrusted !== currentIsTrusted) {
        setIsRestarting(true);
        setIsFolderTrustDialogOpen(true);
      } else {
        setIsFolderTrustDialogOpen(false);
      }
    },
    [onTrustChange, isTrusted],
  );

  return {
    isTrusted,
    isFolderTrustDialogOpen,
    discoveryResults,
    handleFolderTrustSelect,
    isRestarting,
  };
};
Add FolderTrustDialog that shows on launch and enables folderTrust setting (#5815 ) 2025-08-08 11:02:27 -07:00			`/**`
			`* @license`
			`* Copyright 2025 Google LLC`
			`* SPDX-License-Identifier: Apache-2.0`
			`*/`

fix: Add a message about permissions command on startup in untrusted … (#10755 ) 2025-10-08 22:17:58 -07:00			`import { useState, useCallback, useEffect, useRef } from 'react';`
feat(ui): Introduce useUI Hook and UIContext (#5488 ) 2025-09-06 01:39:02 -04:00			`import type { LoadedSettings } from '../../config/settings.js';`
Add FolderTrustDialog that shows on launch and enables folderTrust setting (#5815 ) 2025-08-08 11:02:27 -07:00			`import { FolderTrustChoice } from '../components/FolderTrustDialog.js';`
feat: Show untrusted status in the Footer (#6210 ) 2025-08-14 11:15:48 -07:00			`import {`
			`loadTrustedFolders,`
			`TrustLevel,`
			`isWorkspaceTrusted,`
			`} from '../../config/trustedFolders.js';`
chore: consistently import node modules with prefix (#3013 ) 2025-08-25 22:11:27 +02:00			`import * as process from 'node:process';`
fix: Add a message about permissions command on startup in untrusted … (#10755 ) 2025-10-08 22:17:58 -07:00			`import { type HistoryItemWithoutId, MessageType } from '../types.js';`
feat(cli): enhance folder trust with configuration discovery and security warnings (#19492 ) 2026-02-20 10:21:03 -08:00			`import {`
			`coreEvents,`
			`ExitCodes,`
			`isHeadlessMode,`
			`FolderTrustDiscoveryService,`
			`type FolderDiscoveryResults,`
			`} from '@google/gemini-cli-core';`
Update error codes when process exiting the gemini cli (#13728 ) 2025-11-26 08:13:21 +05:30			`import { runExitCleanup } from '../../utils/cleanup.js';`
Add FolderTrustDialog that shows on launch and enables folderTrust setting (#5815 ) 2025-08-08 11:02:27 -07:00
feat: Show untrusted status in the Footer (#6210 ) 2025-08-14 11:15:48 -07:00			`export const useFolderTrust = (`
			`settings: LoadedSettings,`
			`onTrustChange: (isTrusted: boolean \| undefined) => void,`
fix: Add a message about permissions command on startup in untrusted … (#10755 ) 2025-10-08 22:17:58 -07:00			`addItem: (item: HistoryItemWithoutId, timestamp: number) => number,`
feat: Show untrusted status in the Footer (#6210 ) 2025-08-14 11:15:48 -07:00			`) => {`
			`const [isTrusted, setIsTrusted] = useState<boolean \| undefined>(undefined);`
			`const [isFolderTrustDialogOpen, setIsFolderTrustDialogOpen] = useState(false);`
feat(cli): enhance folder trust with configuration discovery and security warnings (#19492 ) 2026-02-20 10:21:03 -08:00			`const [discoveryResults, setDiscoveryResults] =`
			`useState<FolderDiscoveryResults \| null>(null);`
fix: Restart logic in useFolderTrust hook (#8038 ) 2025-09-08 14:43:49 -07:00			`const [isRestarting, setIsRestarting] = useState(false);`
fix: Add a message about permissions command on startup in untrusted … (#10755 ) 2025-10-08 22:17:58 -07:00			`const startupMessageSent = useRef(false);`
feat: Show untrusted status in the Footer (#6210 ) 2025-08-14 11:15:48 -07:00
fix(cli): allow restricted .env loading in untrusted sandboxed folders (#17806 ) 2026-02-03 17:08:10 -08:00			`const folderTrust = settings.merged.security.folderTrust.enabled ?? true;`
refactor: refactor settings to a nested structure (#7244 ) 2025-08-27 18:39:45 -07:00
feat: Show untrusted status in the Footer (#6210 ) 2025-08-14 11:15:48 -07:00			`useEffect(() => {`
feat(cli): disable folder trust in headless mode (#18407 ) 2026-02-09 15:46:49 -08:00			`let isMounted = true;`
feat(cli): Add permissions command to modify trust settings (#8792 ) 2025-09-22 11:45:02 -07:00			`const { isTrusted: trusted } = isWorkspaceTrusted(settings.merged);`
fix: Add a message about permissions command on startup in untrusted … (#10755 ) 2025-10-08 22:17:58 -07:00
feat(cli): enhance folder trust with configuration discovery and security warnings (#19492 ) 2026-02-20 10:21:03 -08:00			`if (trusted === undefined \|\| trusted === false) {`
			`void FolderTrustDiscoveryService.discover(process.cwd())`
			`.then((results) => {`
			`if (isMounted) {`
			`setDiscoveryResults(results);`
			`}`
			`})`
			`.catch(() => {`
			`// Silently ignore discovery errors as they are handled within the service`
			`// and reported via results.discoveryErrors if successful.`
			`});`
			`}`

feat(cli): disable folder trust in headless mode (#18407 ) 2026-02-09 15:46:49 -08:00			`const showUntrustedMessage = () => {`
			`if (trusted === false && !startupMessageSent.current) {`
			`addItem(`
			`{`
			`type: MessageType.INFO,`
			text: 'This folder is untrusted, project settings, hooks, MCPs, and GEMINI.md files will not be applied for this folder.\nUse the `/permissions` command to change the trust level.',
			`},`
			`Date.now(),`
			`);`
			`startupMessageSent.current = true;`
			`}`
			`};`

			`if (isHeadlessMode()) {`
			`if (isMounted) {`
			`setIsTrusted(trusted);`
			`setIsFolderTrustDialogOpen(false);`
			`onTrustChange(true);`
			`showUntrustedMessage();`
			`}`
			`} else if (isMounted) {`
			`setIsTrusted(trusted);`
			`setIsFolderTrustDialogOpen(trusted === undefined);`
			`onTrustChange(trusted);`
			`showUntrustedMessage();`
fix: Add a message about permissions command on startup in untrusted … (#10755 ) 2025-10-08 22:17:58 -07:00			`}`
feat(cli): disable folder trust in headless mode (#18407 ) 2026-02-09 15:46:49 -08:00
			`return () => {`
			`isMounted = false;`
			`};`
fix: Add a message about permissions command on startup in untrusted … (#10755 ) 2025-10-08 22:17:58 -07:00			`}, [folderTrust, onTrustChange, settings.merged, addItem]);`
Add FolderTrustDialog that shows on launch and enables folderTrust setting (#5815 ) 2025-08-08 11:02:27 -07:00
feat: Show untrusted status in the Footer (#6210 ) 2025-08-14 11:15:48 -07:00			`const handleFolderTrustSelect = useCallback(`
feat(cli): implement atomic writes and safety checks for trusted folders (#18406 ) 2026-02-09 09:16:56 -08:00			`async (choice: FolderTrustChoice) => {`
fix: default folder trust to untrusted for enhanced security (#15943 ) 2026-01-06 10:09:09 -08:00			`const trustLevelMap: Record<FolderTrustChoice, TrustLevel> = {`
			`[FolderTrustChoice.TRUST_FOLDER]: TrustLevel.TRUST_FOLDER,`
			`[FolderTrustChoice.TRUST_PARENT]: TrustLevel.TRUST_PARENT,`
			`[FolderTrustChoice.DO_NOT_TRUST]: TrustLevel.DO_NOT_TRUST,`
			`};`
Add support for trustedFolders.json config file (#6073 ) 2025-08-13 11:06:31 -07:00
fix: default folder trust to untrusted for enhanced security (#15943 ) 2026-01-06 10:09:09 -08:00			`const trustLevel = trustLevelMap[choice];`
			`if (!trustLevel) return;`
fix: Restart logic in useFolderTrust hook (#8038 ) 2025-09-08 14:43:49 -07:00
fix: default folder trust to untrusted for enhanced security (#15943 ) 2026-01-06 10:09:09 -08:00			`const cwd = process.cwd();`
			`const trustedFolders = loadTrustedFolders();`
Add support for trustedFolders.json config file (#6073 ) 2025-08-13 11:06:31 -07:00
fix(cli): Exit CLI when trust save unsuccessful during launch (#11968 ) 2025-11-14 11:56:39 -08:00			`try {`
feat(cli): implement atomic writes and safety checks for trusted folders (#18406 ) 2026-02-09 09:16:56 -08:00			`await trustedFolders.setValue(cwd, trustLevel);`
fix(cli): Exit CLI when trust save unsuccessful during launch (#11968 ) 2025-11-14 11:56:39 -08:00			`} catch (_e) {`
			`coreEvents.emitFeedback(`
			`'error',`
			`'Failed to save trust settings. Exiting Gemini CLI.',`
			`);`
Update error codes when process exiting the gemini cli (#13728 ) 2025-11-26 08:13:21 +05:30			`setTimeout(async () => {`
			`await runExitCleanup();`
			`process.exit(ExitCodes.FATAL_CONFIG_ERROR);`
fix(cli): Exit CLI when trust save unsuccessful during launch (#11968 ) 2025-11-14 11:56:39 -08:00			`}, 100);`
			`return;`
			`}`

fix: Restart logic in useFolderTrust hook (#8038 ) 2025-09-08 14:43:49 -07:00			`const currentIsTrusted =`
			`trustLevel === TrustLevel.TRUST_FOLDER \|\|`
			`trustLevel === TrustLevel.TRUST_PARENT;`
fix: default folder trust to untrusted for enhanced security (#15943 ) 2026-01-06 10:09:09 -08:00
fix: Restart logic in useFolderTrust hook (#8038 ) 2025-09-08 14:43:49 -07:00			`onTrustChange(currentIsTrusted);`
fix: default folder trust to untrusted for enhanced security (#15943 ) 2026-01-06 10:09:09 -08:00			`setIsTrusted(currentIsTrusted);`

			`const wasTrusted = isTrusted ?? false;`
fix: Restart logic in useFolderTrust hook (#8038 ) 2025-09-08 14:43:49 -07:00
fix: default folder trust to untrusted for enhanced security (#15943 ) 2026-01-06 10:09:09 -08:00			`if (wasTrusted !== currentIsTrusted) {`
fix: Restart logic in useFolderTrust hook (#8038 ) 2025-09-08 14:43:49 -07:00			`setIsRestarting(true);`
			`setIsFolderTrustDialogOpen(true);`
			`} else {`
			`setIsFolderTrustDialogOpen(false);`
			`}`
feat: Show untrusted status in the Footer (#6210 ) 2025-08-14 11:15:48 -07:00			`},`
fix: Restart logic in useFolderTrust hook (#8038 ) 2025-09-08 14:43:49 -07:00			`[onTrustChange, isTrusted],`
feat: Show untrusted status in the Footer (#6210 ) 2025-08-14 11:15:48 -07:00			`);`
Add FolderTrustDialog that shows on launch and enables folderTrust setting (#5815 ) 2025-08-08 11:02:27 -07:00
			`return {`
feat: Show untrusted status in the Footer (#6210 ) 2025-08-14 11:15:48 -07:00			`isTrusted,`
Add FolderTrustDialog that shows on launch and enables folderTrust setting (#5815 ) 2025-08-08 11:02:27 -07:00			`isFolderTrustDialogOpen,`
feat(cli): enhance folder trust with configuration discovery and security warnings (#19492 ) 2026-02-20 10:21:03 -08:00			`discoveryResults,`
Add FolderTrustDialog that shows on launch and enables folderTrust setting (#5815 ) 2025-08-08 11:02:27 -07:00			`handleFolderTrustSelect,`
Force restart on trust level change to reload settings (#6713 ) 2025-08-21 00:38:12 -07:00			`isRestarting,`
Add FolderTrustDialog that shows on launch and enables folderTrust setting (#5815 ) 2025-08-08 11:02:27 -07:00			`};`
			`};`