fix(security): harden ACP prompt size guardrails

2026-05-09 01:08:28 +00:00 · 2026-02-19 15:40:46 +01:00
parent ebcf19746f
commit 63e39d7f57
5 changed files with 89 additions and 10 deletions
--- a/src/acp/client.test.ts
+++ b/src/acp/client.test.ts
@@ -153,6 +153,28 @@ describe("acp event mapper", () => {
    expect(text).toBe("Hello\nFile contents\n[Resource link (Spec)] https://example.com");
  });

+  it("counts newline separators toward prompt byte limits", () => {
+    expect(() =>
+      extractTextFromPrompt(
+        [
+          { type: "text", text: "a" },
+          { type: "text", text: "b" },
+        ],
+        2,
+      ),
+    ).toThrow(/maximum allowed size/i);
+
+    expect(
+      extractTextFromPrompt(
+        [
+          { type: "text", text: "a" },
+          { type: "text", text: "b" },
+        ],
+        3,
+      ),
+    ).toBe("a\nb");
+  });
+
  it("extracts image blocks into gateway attachments", () => {
    const attachments = extractAttachmentsFromPrompt([
      { type: "image", data: "abc", mimeType: "image/png" },