pulsehive-core 2.0.1

Core traits and types for PulseHive multi-agent SDK
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188

//! Human-in-the-loop approval primitives.
//!
//! Products implement [`ApprovalHandler`] to define their approval UX.
//! The framework calls it before executing tools where
//! [`Tool::requires_approval()`](crate::tool::Tool::requires_approval) returns `true`.
//!
//! [`AutoApprove`] is the default handler that approves everything — suitable for
//! autonomous operation and MVP development.

use async_trait::async_trait;
use serde_json::Value;

use crate::error::Result;

/// Describes a tool invocation awaiting human approval.
#[derive(Debug, Clone)]
pub struct PendingAction {
    /// ID of the agent requesting the action.
    pub agent_id: String,
    /// Name of the tool to be executed.
    pub tool_name: String,
    /// Parameters the tool would be called with.
    pub params: Value,
    /// Human-readable description of what the tool will do.
    pub description: String,
}

/// Result of a human approval decision.
#[derive(Debug, Clone)]
pub enum ApprovalResult {
    /// Action is approved as-is.
    Approved,
    /// Action is denied with a reason (communicated back to the LLM).
    Denied { reason: String },
    /// Action is approved with modified parameters.
    Modified { new_params: Value },
}

/// Trait for handling human-in-the-loop approval requests.
///
/// Products implement this to define how approval is presented to users.
/// The framework calls [`request_approval`](ApprovalHandler::request_approval)
/// before executing any tool where `requires_approval()` returns `true`.
///
/// # Approval Flow
///
/// 1. Agent's agentic loop encounters a tool with `requires_approval() == true`
/// 2. Framework emits `HiveEvent::ToolApprovalRequested` and calls your handler
/// 3. Handler returns one of:
///    - [`ApprovalResult::Approved`] — tool executes with original parameters
///    - [`ApprovalResult::Denied`] — tool is blocked, LLM is informed of the reason
///    - [`ApprovalResult::Modified`] — tool executes with modified parameters
///
/// # CLI Example
///
/// Interactive terminal approval with all three outcome paths:
///
/// ```rust,ignore
/// use std::io::{self, Write};
/// use async_trait::async_trait;
/// use pulsehive_core::approval::*;
/// use pulsehive_core::error::Result;
///
/// struct CLIApproval;
///
/// #[async_trait]
/// impl ApprovalHandler for CLIApproval {
///     async fn request_approval(&self, action: &PendingAction) -> Result<ApprovalResult> {
///         println!("\n--- Approval Required ---");
///         println!("Agent:  {}", action.agent_id);
///         println!("Tool:   {}", action.tool_name);
///         println!("Params: {}", action.params);
///         println!("Desc:   {}", action.description);
///         print!("[a]pprove / [d]eny / [m]odify: ");
///         io::stdout().flush().unwrap();
///
///         let mut input = String::new();
///         io::stdin().read_line(&mut input).unwrap();
///
///         match input.trim() {
///             "a" | "approve" => Ok(ApprovalResult::Approved),
///             "d" | "deny" => Ok(ApprovalResult::Denied {
///                 reason: "Operator denied the action".into(),
///             }),
///             "m" | "modify" => {
///                 // Example: force safe_mode on all approved actions
///                 let mut params = action.params.clone();
///                 if let Some(obj) = params.as_object_mut() {
///                     obj.insert("safe_mode".into(), serde_json::Value::Bool(true));
///                 }
///                 Ok(ApprovalResult::Modified { new_params: params })
///             }
///             _ => Ok(ApprovalResult::Denied {
///                 reason: "Unrecognized input — defaulting to deny".into(),
///             }),
///         }
///     }
/// }
/// ```
///
/// # Slack / Webhook Example
///
/// ```rust,ignore
/// struct SlackApproval { channel: String }
///
/// #[async_trait]
/// impl ApprovalHandler for SlackApproval {
///     async fn request_approval(&self, action: &PendingAction) -> Result<ApprovalResult> {
///         // Post to Slack, wait for reaction, return result
///         todo!()
///     }
/// }
/// ```
#[async_trait]
pub trait ApprovalHandler: Send + Sync {
    /// Request approval for a pending action.
    ///
    /// Called by the agentic loop before executing a tool with `requires_approval() == true`.
    /// Implementations should present the action to a human and return their decision.
    async fn request_approval(&self, action: &PendingAction) -> Result<ApprovalResult>;
}

/// Default approval handler that approves all actions automatically.
///
/// Used when no custom handler is provided to [`HiveMind`](crate) builder.
/// Suitable for autonomous operation, testing, and MVP development.
#[derive(Debug, Clone, Default)]
pub struct AutoApprove;

#[async_trait]
impl ApprovalHandler for AutoApprove {
    async fn request_approval(&self, _action: &PendingAction) -> Result<ApprovalResult> {
        Ok(ApprovalResult::Approved)
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_approval_handler_is_object_safe() {
        let _: Box<dyn ApprovalHandler> = Box::new(AutoApprove);
    }

    #[tokio::test]
    async fn test_auto_approve_returns_approved() {
        let handler = AutoApprove;
        let action = PendingAction {
            agent_id: "agent-1".into(),
            tool_name: "delete_file".into(),
            params: serde_json::json!({"path": "/tmp/test"}),
            description: "Delete temporary file".into(),
        };

        let result = handler.request_approval(&action).await.unwrap();
        assert!(matches!(result, ApprovalResult::Approved));
    }

    #[test]
    fn test_approval_result_variants() {
        let approved = ApprovalResult::Approved;
        assert!(matches!(approved, ApprovalResult::Approved));

        let denied = ApprovalResult::Denied {
            reason: "Too dangerous".into(),
        };
        assert!(matches!(denied, ApprovalResult::Denied { .. }));

        let modified = ApprovalResult::Modified {
            new_params: serde_json::json!({"safe_mode": true}),
        };
        assert!(matches!(modified, ApprovalResult::Modified { .. }));
    }

    #[test]
    fn test_pending_action_fields() {
        let action = PendingAction {
            agent_id: "test-agent".into(),
            tool_name: "run_query".into(),
            params: serde_json::json!({"sql": "SELECT 1"}),
            description: "Execute a read-only query".into(),
        };
        assert_eq!(action.agent_id, "test-agent");
        assert_eq!(action.tool_name, "run_query");
        assert_eq!(action.description, "Execute a read-only query");
    }
}