omk 0.5.0

A Rust runtime for Kimi CLI. Turns prompts into proof-backed engineering runs with gates, worktrees, and replay.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165

//! Atomic file writes using temp file + rename pattern.
//!
//! This ensures readers never see partially-written files,
//! even if the process crashes mid-write.

use anyhow::{Context, Result};
use std::path::Path;
use tokio::fs;
use tokio::io::AsyncWriteExt;
use tracing::debug;

/// Write `content` to `path` atomically.
///
/// 1. Writes to a temp file next to `path`
/// 2. Flushes and syncs the temp file
/// 3. Renames temp file to `path`
///
/// On Windows this requires `fs::rename` to overwrite, which is atomic.
/// On Unix, `rename` is always atomic.
pub async fn atomic_write(path: &Path, content: &[u8]) -> Result<()> {
    let dir = path.parent().unwrap_or_else(|| Path::new("."));
    let file_name = path.file_name().unwrap_or_default();
    let tmp_name = format!(
        ".{}.tmp.{}",
        file_name.to_string_lossy(),
        uuid::Uuid::new_v4()
    );
    let tmp_path = dir.join(&tmp_name);

    debug!(tmp = %tmp_path.display(), target = %path.display(), "Atomic write start");

    let mut options = fs::OpenOptions::new();
    options.write(true).create(true).truncate(true);
    set_private_create_mode(&mut options);

    let mut file = options
        .open(&tmp_path)
        .await
        .with_context(|| format!("Failed to create temp file: {}", tmp_path.display()))?;
    set_private_file_permissions(&file, &tmp_path).await?;

    file.write_all(content).await?;
    file.flush().await?;

    // sync_data ensures the OS has flushed the file to disk before rename
    let std_file = file.into_std().await;
    std_file.sync_data()?;
    drop(std_file);

    fs::rename(&tmp_path, path).await.with_context(|| {
        format!(
            "Failed to rename {} to {}",
            tmp_path.display(),
            path.display()
        )
    })?;

    debug!(target = %path.display(), "Atomic write complete");
    Ok(())
}

/// Append raw bytes to a file.
///
/// Opens the file in append mode (creating if necessary) and writes
/// the content. This is not atomic across processes, but it is
/// sufficient for append-only logs when a single writer is guaranteed.
pub async fn atomic_append(path: &Path, content: &[u8]) -> Result<()> {
    let mut options = fs::OpenOptions::new();
    options.create(true).append(true);
    set_private_create_mode(&mut options);

    let mut file = options
        .open(path)
        .await
        .with_context(|| format!("Failed to open file for append: {}", path.display()))?;
    set_private_file_permissions(&file, path).await?;
    file.write_all(content).await?;
    file.flush().await?;
    Ok(())
}

#[cfg(unix)]
fn set_private_create_mode(options: &mut fs::OpenOptions) {
    options.mode(0o600);
}

#[cfg(not(unix))]
fn set_private_create_mode(_options: &mut fs::OpenOptions) {}

#[cfg(unix)]
async fn set_private_file_permissions(file: &fs::File, path: &Path) -> Result<()> {
    use std::os::unix::fs::PermissionsExt;

    file.set_permissions(std::fs::Permissions::from_mode(0o600))
        .await
        .with_context(|| format!("Failed to harden file permissions: {}", path.display()))?;
    Ok(())
}

#[cfg(not(unix))]
async fn set_private_file_permissions(_file: &fs::File, _path: &Path) -> Result<()> {
    Ok(())
}

/// Append a line to a JSONL file via read-modify-write.
///
/// **Deprecated** — this helper is NOT atomic across concurrent writers:
/// two callers can read the same pre-image and the second `atomic_write`
/// clobbers the first. Use [`atomic_append`] instead — `O_APPEND` makes
/// the kernel serialize per-syscall seek+write, which is line-atomic for
/// payloads under PIPE_BUF on POSIX.
///
/// Kept temporarily to avoid breaking external callers and tests.
#[deprecated(
    since = "0.3.31",
    note = "Race-prone read-modify-write; prefer `atomic_append` which uses O_APPEND."
)]
pub async fn atomic_append_jsonl(path: &Path, line: &str) -> Result<()> {
    let mut content = Vec::new();

    if path.exists() {
        content = fs::read(path).await.unwrap_or_default();
    }

    if !content.is_empty() && !content.ends_with(b"\n") {
        content.push(b'\n');
    }
    content.extend_from_slice(line.as_bytes());
    content.push(b'\n');

    atomic_write(path, &content).await
}

#[cfg(test)]
mod tests {
    use super::*;
    use tempfile::TempDir;

    #[tokio::test]
    async fn test_atomic_write_roundtrip() {
        let dir = TempDir::new().unwrap();
        let path = dir.path().join("test.json");

        atomic_write(&path, b"hello world").await.unwrap();

        let content = fs::read_to_string(&path).await.unwrap();
        assert_eq!(content, "hello world");
    }

    #[tokio::test]
    #[allow(deprecated)]
    async fn test_atomic_append_jsonl() {
        let dir = TempDir::new().unwrap();
        let path = dir.path().join("test.jsonl");

        atomic_append_jsonl(&path, r#"{"id":"1"}"#).await.unwrap();
        atomic_append_jsonl(&path, r#"{"id":"2"}"#).await.unwrap();

        let content = fs::read_to_string(&path).await.unwrap();
        let lines: Vec<&str> = content.lines().collect();
        assert_eq!(lines.len(), 2);
        assert_eq!(lines[0], r#"{"id":"1"}"#);
        assert_eq!(lines[1], r#"{"id":"2"}"#);
    }
}