MediaMetz/gemini-cli
1
0
Fork 0
mirror of https://github.com/google-gemini/gemini-cli.git synced 2026-03-13 23:51:16 -07:00
Code Issues Packages Projects Releases Wiki Activity
Files
jl/subagent-route
gemini-cli/packages/core/src/hooks/hookRunner.ts
Christian Gunderman 90eb1e0281 Implement support for tool input modification (#15492)
2025-12-30 19:37:43 +00:00

434 lines
12 KiB
TypeScript
Raw Permalink Blame History

/**
* @license
* Copyright 2025 Google LLC
* SPDX-License-Identifier: Apache-2.0
*/
import { spawn } from 'node:child_process';
import type { HookConfig } from './types.js';
import { HookEventName, ConfigSource } from './types.js';
import type { Config } from '../config/config.js';
import type {
HookInput,
HookOutput,
HookExecutionResult,
BeforeAgentInput,
BeforeModelInput,
BeforeModelOutput,
BeforeToolInput,
} from './types.js';
import type { LLMRequest } from './hookTranslator.js';
import { debugLogger } from '../utils/debugLogger.js';
import { sanitizeEnvironment } from '../services/environmentSanitization.js';
import {
escapeShellArg,
getShellConfiguration,
type ShellType,
} from '../utils/shell-utils.js';
/**
* Default timeout for hook execution (60 seconds)
*/
const DEFAULT_HOOK_TIMEOUT = 60000;
/**
* Exit code constants for hook execution
*/
const EXIT_CODE_SUCCESS = 0;
const EXIT_CODE_BLOCKING_ERROR = 2;
const EXIT_CODE_NON_BLOCKING_ERROR = 1;
/**
* Hook runner that executes command hooks
*/
export class HookRunner {
private readonly config: Config;
constructor(config: Config) {
this.config = config;
}
/**
* Execute a single hook
*/
async executeHook(
hookConfig: HookConfig,
eventName: HookEventName,
input: HookInput,
): Promise<HookExecutionResult> {
const startTime = Date.now();
// Secondary security check: Ensure project hooks are not executed in untrusted folders
if (
hookConfig.source === ConfigSource.Project &&
!this.config.isTrustedFolder()
) {
const errorMessage =
'Security: Blocked execution of project hook in untrusted folder';
debugLogger.warn(errorMessage);
return {
hookConfig,
eventName,
success: false,
error: new Error(errorMessage),
duration: 0,
};
}
try {
return await this.executeCommandHook(
hookConfig,
eventName,
input,
startTime,
);
} catch (error) {
const duration = Date.now() - startTime;
const hookId = hookConfig.name || hookConfig.command || 'unknown';
const errorMessage = `Hook execution failed for event '${eventName}' (hook: ${hookId}): ${error}`;
debugLogger.warn(`Hook execution error (non-fatal): ${errorMessage}`);
return {
hookConfig,
eventName,
success: false,
error: error instanceof Error ? error : new Error(errorMessage),
duration,
};
}
}
/**
* Execute multiple hooks in parallel
*/
async executeHooksParallel(
hookConfigs: HookConfig[],
eventName: HookEventName,
input: HookInput,
): Promise<HookExecutionResult[]> {
const promises = hookConfigs.map((config) =>
this.executeHook(config, eventName, input),
);
return Promise.all(promises);
}
/**
* Execute multiple hooks sequentially
*/
async executeHooksSequential(
hookConfigs: HookConfig[],
eventName: HookEventName,
input: HookInput,
): Promise<HookExecutionResult[]> {
const results: HookExecutionResult[] = [];
let currentInput = input;
for (const config of hookConfigs) {
const result = await this.executeHook(config, eventName, currentInput);
results.push(result);
// If the hook succeeded and has output, use it to modify the input for the next hook
if (result.success && result.output) {
currentInput = this.applyHookOutputToInput(
currentInput,
result.output,
eventName,
);
}
}
return results;
}
/**
* Apply hook output to modify input for the next hook in sequential execution
*/
private applyHookOutputToInput(
originalInput: HookInput,
hookOutput: HookOutput,
eventName: HookEventName,
): HookInput {
// Create a copy of the original input
const modifiedInput = { ...originalInput };
// Apply modifications based on hook output and event type
if (hookOutput.hookSpecificOutput) {
switch (eventName) {
case HookEventName.BeforeAgent:
if ('additionalContext' in hookOutput.hookSpecificOutput) {
// For BeforeAgent, we could modify the prompt with additional context
const additionalContext =
hookOutput.hookSpecificOutput['additionalContext'];
if (
typeof additionalContext === 'string' &&
'prompt' in modifiedInput
) {
(modifiedInput as BeforeAgentInput).prompt +=
'\n\n' + additionalContext;
}
}
break;
case HookEventName.BeforeModel:
if ('llm_request' in hookOutput.hookSpecificOutput) {
// For BeforeModel, we update the LLM request
const hookBeforeModelOutput = hookOutput as BeforeModelOutput;
if (
hookBeforeModelOutput.hookSpecificOutput?.llm_request &&
'llm_request' in modifiedInput
) {
// Merge the partial request with the existing request
const currentRequest = (modifiedInput as BeforeModelInput)
.llm_request;
const partialRequest =
hookBeforeModelOutput.hookSpecificOutput.llm_request;
(modifiedInput as BeforeModelInput).llm_request = {
...currentRequest,
...partialRequest,
} as LLMRequest;
}
}
break;
case HookEventName.BeforeTool:
if ('tool_input' in hookOutput.hookSpecificOutput) {
const newToolInput = hookOutput.hookSpecificOutput[
'tool_input'
] as Record<string, unknown>;
if (newToolInput && 'tool_input' in modifiedInput) {
(modifiedInput as BeforeToolInput).tool_input = {
...(modifiedInput as BeforeToolInput).tool_input,
...newToolInput,
};
}
}
break;
default:
// For other events, no special input modification is needed
break;
}
}
return modifiedInput;
}
/**
* Execute a command hook
*/
private async executeCommandHook(
hookConfig: HookConfig,
eventName: HookEventName,
input: HookInput,
startTime: number,
): Promise<HookExecutionResult> {
const timeout = hookConfig.timeout ?? DEFAULT_HOOK_TIMEOUT;
return new Promise((resolve) => {
if (!hookConfig.command) {
const errorMessage = 'Command hook missing command';
debugLogger.warn(
`Hook configuration error (non-fatal): ${errorMessage}`,
);
resolve({
hookConfig,
eventName,
success: false,
error: new Error(errorMessage),
duration: Date.now() - startTime,
});
return;
}
let stdout = '';
let stderr = '';
let timedOut = false;
const shellConfig = getShellConfiguration();
const command = this.expandCommand(
hookConfig.command,
input,
shellConfig.shell,
);
// Set up environment variables
const env = {
...sanitizeEnvironment(process.env, this.config.sanitizationConfig),
GEMINI_PROJECT_DIR: input.cwd,
CLAUDE_PROJECT_DIR: input.cwd, // For compatibility
};
const child = spawn(
shellConfig.executable,
[...shellConfig.argsPrefix, command],
{
env,
cwd: input.cwd,
stdio: ['pipe', 'pipe', 'pipe'],
shell: false,
},
);
// Set up timeout
const timeoutHandle = setTimeout(() => {
timedOut = true;
child.kill('SIGTERM');
// Force kill after 5 seconds
setTimeout(() => {
if (!child.killed) {
child.kill('SIGKILL');
}
}, 5000);
}, timeout);
// Send input to stdin
if (child.stdin) {
child.stdin.on('error', (err: NodeJS.ErrnoException) => {
// Ignore EPIPE errors which happen when the child process closes stdin early
if (err.code !== 'EPIPE') {
debugLogger.debug(`Hook stdin error: ${err}`);
}
});
// Wrap write operations in try-catch to handle synchronous EPIPE errors
// that occur when the child process exits before we finish writing
try {
child.stdin.write(JSON.stringify(input));
child.stdin.end();
} catch (err) {
// Ignore EPIPE errors which happen when the child process closes stdin early
if (err instanceof Error && 'code' in err && err.code !== 'EPIPE') {
debugLogger.debug(`Hook stdin write error: ${err}`);
}
}
}
// Collect stdout
child.stdout?.on('data', (data: Buffer) => {
stdout += data.toString();
});
// Collect stderr
child.stderr?.on('data', (data: Buffer) => {
stderr += data.toString();
});
// Handle process exit
child.on('close', (exitCode) => {
clearTimeout(timeoutHandle);
const duration = Date.now() - startTime;
if (timedOut) {
resolve({
hookConfig,
eventName,
success: false,
error: new Error(`Hook timed out after ${timeout}ms`),
stdout,
stderr,
duration,
});
return;
}
// Parse output
let output: HookOutput | undefined;
if (exitCode === EXIT_CODE_SUCCESS && stdout.trim()) {
try {
let parsed = JSON.parse(stdout.trim());
if (typeof parsed === 'string') {
// If the output is a string, parse it in case
// it's double-encoded JSON string.
parsed = JSON.parse(parsed);
}
if (parsed) {
output = parsed as HookOutput;
}
} catch {
// Not JSON, convert plain text to structured output
output = this.convertPlainTextToHookOutput(stdout.trim(), exitCode);
}
} else if (exitCode !== EXIT_CODE_SUCCESS && stderr.trim()) {
// Convert error output to structured format
output = this.convertPlainTextToHookOutput(
stderr.trim(),
exitCode || EXIT_CODE_NON_BLOCKING_ERROR,
);
}
resolve({
hookConfig,
eventName,
success: exitCode === EXIT_CODE_SUCCESS,
output,
stdout,
stderr,
exitCode: exitCode || EXIT_CODE_SUCCESS,
duration,
});
});
// Handle process errors
child.on('error', (error) => {
clearTimeout(timeoutHandle);
const duration = Date.now() - startTime;
resolve({
hookConfig,
eventName,
success: false,
error,
stdout,
stderr,
duration,
});
});
});
}
/**
* Expand command with environment variables and input context
*/
private expandCommand(
command: string,
input: HookInput,
shellType: ShellType,
): string {
debugLogger.debug(`Expanding hook command: ${command} (cwd: ${input.cwd})`);
const escapedCwd = escapeShellArg(input.cwd, shellType);
return command
.replace(/\$GEMINI_PROJECT_DIR/g, () => escapedCwd)
.replace(/\$CLAUDE_PROJECT_DIR/g, () => escapedCwd); // For compatibility
}
/**
* Convert plain text output to structured HookOutput
*/
private convertPlainTextToHookOutput(
text: string,
exitCode: number,
): HookOutput {
if (exitCode === EXIT_CODE_SUCCESS) {
// Success - treat as system message or additional context
return {
decision: 'allow',
systemMessage: text,
};
} else if (exitCode === EXIT_CODE_BLOCKING_ERROR) {
// Blocking error
return {
decision: 'deny',
reason: text,
};
} else {
// Non-blocking error (EXIT_CODE_NON_BLOCKING_ERROR or any other code)
return {
decision: 'allow',
systemMessage: `Warning: ${text}`,
};
}
}
}
Reference in New Issue View Git Blame Copy Permalink