refactor(security): unify exec approval request matching

2026-05-09 11:27:39 +00:00 · 2026-02-26 03:54:27 +01:00
parent 75dfb71e4e
commit 92eb3dfc9d
8 changed files with 182 additions and 78 deletions
--- a/src/gateway/node-invoke-system-run-approval-match.test.ts
+++ b/src/gateway/node-invoke-system-run-approval-match.test.ts
@@ -0,0 +1,94 @@
+import { describe, expect, test } from "vitest";
+import { approvalMatchesSystemRunRequest } from "./node-invoke-system-run-approval-match.js";
+
+describe("approvalMatchesSystemRunRequest", () => {
+  test("matches legacy command text when binding fields match", () => {
+    const result = approvalMatchesSystemRunRequest({
+      cmdText: "echo SAFE",
+      argv: ["echo", "SAFE"],
+      request: {
+        host: "node",
+        command: "echo SAFE",
+        cwd: "/tmp",
+        agentId: "agent-1",
+        sessionKey: "session-1",
+      },
+      binding: {
+        cwd: "/tmp",
+        agentId: "agent-1",
+        sessionKey: "session-1",
+      },
+    });
+    expect(result).toBe(true);
+  });
+
+  test("rejects legacy command mismatch", () => {
+    const result = approvalMatchesSystemRunRequest({
+      cmdText: "echo PWNED",
+      argv: ["echo", "PWNED"],
+      request: {
+        host: "node",
+        command: "echo SAFE",
+      },
+      binding: {
+        cwd: null,
+        agentId: null,
+        sessionKey: null,
+      },
+    });
+    expect(result).toBe(false);
+  });
+
+  test("enforces exact argv binding when commandArgv is set", () => {
+    const result = approvalMatchesSystemRunRequest({
+      cmdText: "echo SAFE",
+      argv: ["echo", "SAFE"],
+      request: {
+        host: "node",
+        command: "echo SAFE",
+        commandArgv: ["echo", "SAFE"],
+      },
+      binding: {
+        cwd: null,
+        agentId: null,
+        sessionKey: null,
+      },
+    });
+    expect(result).toBe(true);
+  });
+
+  test("rejects argv mismatch even when command text matches", () => {
+    const result = approvalMatchesSystemRunRequest({
+      cmdText: "echo SAFE",
+      argv: ["echo", "SAFE"],
+      request: {
+        host: "node",
+        command: "echo SAFE",
+        commandArgv: ["echo SAFE"],
+      },
+      binding: {
+        cwd: null,
+        agentId: null,
+        sessionKey: null,
+      },
+    });
+    expect(result).toBe(false);
+  });
+
+  test("rejects non-node host requests", () => {
+    const result = approvalMatchesSystemRunRequest({
+      cmdText: "echo SAFE",
+      argv: ["echo", "SAFE"],
+      request: {
+        host: "gateway",
+        command: "echo SAFE",
+      },
+      binding: {
+        cwd: null,
+        agentId: null,
+        sessionKey: null,
+      },
+    });
+    expect(result).toBe(false);
+  });
+});