feat: introduce 'skill-creator' built-in skill and CJS management tools (#16394)

2026-03-10 14:10:37 -07:00 · 2026-01-14 12:57:46 -08:00
parent 1212161d1d
commit 16b35910e2
8 changed files with 1041 additions and 0 deletions
--- a/integration-tests/skill-creator-scripts.test.ts
+++ b/integration-tests/skill-creator-scripts.test.ts
@@ -0,0 +1,97 @@
+/**
+ * @license
+ * Copyright 2026 Google LLC
+ * SPDX-License-Identifier: Apache-2.0
+ */
+
+import { describe, it, expect, beforeEach, afterEach } from 'vitest';
+import { TestRig } from './test-helper.js';
+import * as fs from 'node:fs';
+import * as path from 'node:path';
+import { execSync } from 'node:child_process';
+
+describe('skill-creator scripts e2e', () => {
+  let rig: TestRig;
+  const initScript = path.resolve(
+    'packages/core/src/skills/builtin/skill-creator/scripts/init_skill.cjs',
+  );
+  const validateScript = path.resolve(
+    'packages/core/src/skills/builtin/skill-creator/scripts/validate_skill.cjs',
+  );
+  const packageScript = path.resolve(
+    'packages/core/src/skills/builtin/skill-creator/scripts/package_skill.cjs',
+  );
+
+  beforeEach(() => {
+    rig = new TestRig();
+  });
+
+  afterEach(async () => {
+    await rig.cleanup();
+  });
+
+  it('should initialize, validate, and package a skill', async () => {
+    await rig.setup('skill-creator scripts e2e');
+    const skillName = 'e2e-test-skill';
+    const tempDir = rig.testDir!;
+
+    // 1. Initialize
+    execSync(`node "${initScript}" ${skillName} --path "${tempDir}"`, {
+      stdio: 'inherit',
+    });
+    const skillDir = path.join(tempDir, skillName);
+
+    expect(fs.existsSync(skillDir)).toBe(true);
+    expect(fs.existsSync(path.join(skillDir, 'SKILL.md'))).toBe(true);
+    expect(
+      fs.existsSync(path.join(skillDir, 'scripts/example_script.cjs')),
+    ).toBe(true);
+
+    // 2. Validate (should have warning initially due to TODOs)
+    const validateOutputInitial = execSync(
+      `node "${validateScript}" "${skillDir}" 2>&1`,
+      { encoding: 'utf8' },
+    );
+    expect(validateOutputInitial).toContain('⚠️  Found unresolved TODO');
+
+    // 3. Package (should fail due to TODOs)
+    try {
+      execSync(`node "${packageScript}" "${skillDir}" "${tempDir}"`, {
+        stdio: 'pipe',
+      });
+      throw new Error('Packaging should have failed due to TODOs');
+    } catch (err: unknown) {
+      expect((err as Error).message).toContain('Command failed');
+    }
+
+    // 4. Fix SKILL.md (remove TODOs)
+    let content = fs.readFileSync(path.join(skillDir, 'SKILL.md'), 'utf8');
+    content = content.replace(/TODO: .+/g, 'Fixed');
+    content = content.replace(/\[TODO: .+/g, 'Fixed');
+    fs.writeFileSync(path.join(skillDir, 'SKILL.md'), content);
+
+    // Also remove TODOs from example scripts
+    const exampleScriptPath = path.join(skillDir, 'scripts/example_script.cjs');
+    let scriptContent = fs.readFileSync(exampleScriptPath, 'utf8');
+    scriptContent = scriptContent.replace(/TODO: .+/g, 'Fixed');
+    fs.writeFileSync(exampleScriptPath, scriptContent);
+
+    // 4. Validate again (should pass now)
+    const validateOutput = execSync(`node "${validateScript}" "${skillDir}"`, {
+      encoding: 'utf8',
+    });
+    expect(validateOutput).toContain('Skill is valid!');
+
+    // 5. Package
+    execSync(`node "${packageScript}" "${skillDir}" "${tempDir}"`, {
+      stdio: 'inherit',
+    });
+    const skillFile = path.join(tempDir, `${skillName}.skill`);
+    expect(fs.existsSync(skillFile)).toBe(true);
+
+    // 6. Verify zip content (should NOT have nested directory)
+    const zipList = execSync(`unzip -l "${skillFile}"`, { encoding: 'utf8' });
+    expect(zipList).toContain('SKILL.md');
+    expect(zipList).not.toContain(`${skillName}/SKILL.md`);
+  });
+});
--- a/integration-tests/skill-creator-vulnerabilities.test.ts
+++ b/integration-tests/skill-creator-vulnerabilities.test.ts
@@ -0,0 +1,111 @@
+/**
+ * @license
+ * Copyright 2026 Google LLC
+ * SPDX-License-Identifier: Apache-2.0
+ */
+
+import { describe, it, expect, beforeEach, afterEach } from 'vitest';
+import { TestRig } from './test-helper.js';
+import * as fs from 'node:fs';
+import * as path from 'node:path';
+import { execSync, spawnSync } from 'node:child_process';
+
+describe('skill-creator scripts security and bug fixes', () => {
+  let rig: TestRig;
+  const initScript = path.resolve(
+    'packages/core/src/skills/builtin/skill-creator/scripts/init_skill.cjs',
+  );
+  const validateScript = path.resolve(
+    'packages/core/src/skills/builtin/skill-creator/scripts/validate_skill.cjs',
+  );
+  const packageScript = path.resolve(
+    'packages/core/src/skills/builtin/skill-creator/scripts/package_skill.cjs',
+  );
+
+  beforeEach(() => {
+    rig = new TestRig();
+  });
+
+  afterEach(async () => {
+    await rig.cleanup();
+  });
+
+  it('should prevent command injection in package_skill.cjs', async () => {
+    await rig.setup('skill-creator command injection');
+    const tempDir = rig.testDir!;
+
+    // Create a dummy skill
+    const skillName = 'injection-test';
+    execSync(`node "${initScript}" ${skillName} --path "${tempDir}"`);
+    const skillDir = path.join(tempDir, skillName);
+
+    // Malicious output filename with command injection
+    const maliciousFilename = '"; touch injection_success; #';
+
+    // Attempt to package with malicious filename
+    // We expect this to fail or at least NOT create the 'injection_success' file
+    spawnSync('node', [packageScript, skillDir, tempDir, maliciousFilename], {
+      cwd: tempDir,
+    });
+
+    const injectionFile = path.join(tempDir, 'injection_success');
+    expect(fs.existsSync(injectionFile)).toBe(false);
+  });
+
+  it('should prevent path traversal in init_skill.cjs', async () => {
+    await rig.setup('skill-creator init path traversal');
+    const tempDir = rig.testDir!;
+
+    const maliciousName = '../traversal-success';
+
+    const result = spawnSync(
+      'node',
+      [initScript, maliciousName, '--path', tempDir],
+      {
+        encoding: 'utf8',
+      },
+    );
+
+    expect(result.stderr).toContain(
+      'Error: Skill name cannot contain path separators',
+    );
+    const traversalDir = path.join(path.dirname(tempDir), 'traversal-success');
+    expect(fs.existsSync(traversalDir)).toBe(false);
+  });
+
+  it('should prevent path traversal in validate_skill.cjs', async () => {
+    await rig.setup('skill-creator validate path traversal');
+
+    const maliciousPath = '../../../../etc/passwd';
+    const result = spawnSync('node', [validateScript, maliciousPath], {
+      encoding: 'utf8',
+    });
+
+    expect(result.stderr).toContain('Error: Path traversal detected');
+  });
+
+  it('should not crash on empty description in validate_skill.cjs', async () => {
+    await rig.setup('skill-creator regex crash');
+    const tempDir = rig.testDir!;
+    const skillName = 'empty-desc-skill';
+
+    execSync(`node "${initScript}" ${skillName} --path "${tempDir}"`);
+    const skillDir = path.join(tempDir, skillName);
+    const skillMd = path.join(skillDir, 'SKILL.md');
+
+    // Set an empty quoted description
+    let content = fs.readFileSync(skillMd, 'utf8');
+    content = content.replace(/^description: .+$/m, 'description: ""');
+    fs.writeFileSync(skillMd, content);
+
+    const result = spawnSync('node', [validateScript, skillDir], {
+      encoding: 'utf8',
+    });
+
+    // It might still fail validation (e.g. TODOs), but it should NOT crash with a stack trace
+    expect(result.status).not.toBe(null);
+    expect(result.stderr).not.toContain(
+      "TypeError: Cannot read properties of undefined (reading 'trim')",
+    );
+  });
+});