deepseek-tui 0.8.18

//! Windows sandbox helper contract.
//!
//! Current status: DeepSeek TUI does not advertise an in-process Windows
//! sandbox. Future Windows support must run commands through a dedicated
//! helper that provides process-tree containment with a Job Object and
//! `JOB_OBJECT_LIMIT_KILL_ON_JOB_CLOSE`.
//!
//! The first Windows helper slice is process containment only. It must not
//! claim read-only filesystem isolation, workspace-write enforcement, network
//! blocking, registry isolation, or AppContainer-level isolation until those
//! guarantees are implemented and tested separately.

use std::path::Path;

use super::SandboxPolicy;

#[derive(Debug, Clone, Copy, PartialEq, Eq)]
pub enum WindowsSandboxKind {
    ProcessContainment,
}

impl std::fmt::Display for WindowsSandboxKind {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        match self {
            WindowsSandboxKind::ProcessContainment => write!(f, "process-containment"),
        }
    }
}

pub fn is_available() -> bool {
    false
}

pub fn select_best_kind(_policy: &SandboxPolicy, _cwd: &Path) -> WindowsSandboxKind {
    WindowsSandboxKind::ProcessContainment
}

pub fn detect_denial(exit_code: i32, stderr: &str) -> bool {
    if exit_code == 0 {
        return false;
    }

    let patterns = [
        "Access is denied",
        "access denied",
        "STATUS_ACCESS_DENIED",
        "privilege",
        "AppContainer",
        "sandbox",
    ];

    patterns.iter().any(|p| stderr.contains(p))
}
#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn windows_sandbox_is_not_advertised_until_helper_exists() {
        assert!(!is_available());
        assert_eq!(
            select_best_kind(&SandboxPolicy::default(), Path::new(".")),
            WindowsSandboxKind::ProcessContainment
        );
    }
}