saferskills 0.2.0

Every AI capability, independently scanned — install Skills & MCP servers with a verified SaferSkills trust score.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337

//! Local state + configuration under `~/.saferskills/`.
//!
//! Files:
//! - `config.toml` — commented template; active keys `api_url`,
//!   `min_score`, `telemetry`.
//! - `installs.json` — the install registry (see [`crate::core::registry`]).
//! - `scan_cache.json` — the local scan-results cache (see
//!   [`crate::core::scan_cache`]); lets `list` show a score for a previously
//!   scanned capability that was never installed via the CLI.
//! - `bin/` — postinstall-fallback binary cache.
//! - `cache/` — rules-content cache.
//!
//! Precedence: CLI flags > `SAFERSKILLS_*` env > `config.toml` > defaults.
//! All writes are atomic: a temp file in the SAME directory → fsync → rename.

use std::fs;
use std::io::Write as _;
use std::path::PathBuf;

use serde::Deserialize;

use crate::core::error::{
    SsError, ERR_CONFIG_WRITE_FAILED, ERR_INVALID_CONFIG, ERR_STATE_WRITE_FAILED,
};

/// Default API origin (reads go same-origin through the webapp `/api/*` proxy).
pub const DEFAULT_API_BASE: &str = "https://saferskills.ai";

/// Default minimum aggregate score that installs without a confirm.
pub const DEFAULT_MIN_SCORE: u8 = 90;

/// Resolve the SaferSkills home directory: `SAFERSKILLS_DIR` env override, else
/// `~/.saferskills` (the same path on every OS; `%USERPROFILE%` resolves the
/// home on Windows via `dirs`).
pub fn saferskills_dir() -> PathBuf {
    if let Ok(dir) = std::env::var("SAFERSKILLS_DIR") {
        if !dir.is_empty() {
            return PathBuf::from(dir);
        }
    }
    dirs::home_dir()
        .unwrap_or_else(|| PathBuf::from("."))
        .join(".saferskills")
}

/// `~/.saferskills/config.toml`.
pub fn config_path() -> PathBuf {
    saferskills_dir().join("config.toml")
}

/// `~/.saferskills/installs.json`.
pub fn installs_path() -> PathBuf {
    saferskills_dir().join("installs.json")
}

/// `~/.saferskills/scan_cache.json` — the local scan-results cache.
pub fn scan_cache_path() -> PathBuf {
    saferskills_dir().join("scan_cache.json")
}

/// Replace a leading home-directory prefix with `~` for a compact, PII-light
/// display path. Shared by `capability`'s agent locations and `list`'s PATH column.
pub fn contract_home(p: &std::path::Path) -> String {
    let s = p.to_string_lossy().into_owned();
    if let Some(home) = dirs::home_dir() {
        let h = home.to_string_lossy();
        if let Some(rest) = s.strip_prefix(h.as_ref()) {
            return format!("~{rest}");
        }
    }
    s
}

/// `~/.saferskills/cache/`.
pub fn cache_dir() -> PathBuf {
    saferskills_dir().join("cache")
}

/// `~/.saferskills/bin/`.
pub fn bin_dir() -> PathBuf {
    saferskills_dir().join("bin")
}

/// Ensure the SaferSkills home directory exists.
pub fn ensure_dir() -> Result<(), SsError> {
    let dir = saferskills_dir();
    fs::create_dir_all(&dir).map_err(|e| {
        SsError::new(
            ERR_STATE_WRITE_FAILED,
            format!("Failed to create {}: {e}", dir.display()),
        )
        .with_exit_code(if e.kind() == std::io::ErrorKind::PermissionDenied {
            4
        } else {
            1
        })
    })
}

/// On-disk `config.toml` shape. All keys optional — absence means "use the
/// default". Unknown keys are ignored.
#[derive(Debug, Clone, Default, Deserialize)]
pub struct Config {
    /// Override the API origin.
    pub api_url: Option<String>,
    /// Minimum aggregate score (0–100) that installs without a confirm.
    /// Default `90` (see [`Config::min_score`]).
    pub min_score: Option<u8>,
    /// Usage analytics (PostHog) consent. `None` = not yet chosen — the CLI
    /// prompts once on the first interactive launch and stores the answer here.
    /// (Install reporting is unconditional and has no config key.)
    pub telemetry: Option<bool>,
    /// Whether the one-time first-launch security audit has been offered/run.
    /// `Some(true)` short-circuits the prompt so it never re-asks.
    pub audited: Option<bool>,
}

impl Config {
    /// Load `config.toml`, returning defaults when the file is absent. A
    /// present-but-malformed file is a hard `SS-E-1000` (the user asked us to
    /// read it; silently ignoring a typo would mask their intent).
    pub fn load() -> Result<Self, SsError> {
        let path = config_path();
        let raw = match fs::read_to_string(&path) {
            Ok(s) => s,
            Err(e) if e.kind() == std::io::ErrorKind::NotFound => return Ok(Self::default()),
            Err(e) => {
                return Err(SsError::new(
                    ERR_INVALID_CONFIG,
                    format!("Failed to read {}: {e}", path.display()),
                ))
            }
        };
        toml::from_str(&raw).map_err(|e| {
            SsError::new(ERR_INVALID_CONFIG, format!("Invalid config.toml: {e}"))
                .with_suggestion("Fix the syntax, or delete the file to restore defaults.")
        })
    }

    /// Resolve the API base URL: `SAFERSKILLS_API_URL` env > `api_url` config >
    /// [`DEFAULT_API_BASE`]. A `cli_override` (future `--api-url`) wins outright.
    pub fn api_base(&self, cli_override: Option<&str>) -> String {
        if let Some(v) = cli_override {
            return v.trim_end_matches('/').to_string();
        }
        if let Ok(v) = std::env::var("SAFERSKILLS_API_URL") {
            if !v.is_empty() {
                return v.trim_end_matches('/').to_string();
            }
        }
        self.api_url
            .as_deref()
            .filter(|v| !v.is_empty())
            .unwrap_or(DEFAULT_API_BASE)
            .trim_end_matches('/')
            .to_string()
    }

    /// Resolve the install score gate: `SAFERSKILLS_MIN_SCORE` env > `min_score`
    /// config > [`DEFAULT_MIN_SCORE`]. Clamped to 0–100. A non-numeric env value
    /// is ignored (falls through to config/default).
    pub fn min_score(&self) -> u8 {
        if let Ok(v) = std::env::var("SAFERSKILLS_MIN_SCORE") {
            if let Ok(n) = v.trim().parse::<u32>() {
                return n.min(100) as u8;
            }
        }
        self.min_score.unwrap_or(DEFAULT_MIN_SCORE).min(100)
    }
}

/// The commented `config.toml` template written on first run.
pub fn default_config_toml() -> &'static str {
    "# SaferSkills CLI configuration (~/.saferskills/config.toml)\n\
     # Every key is optional; uncomment to override the default.\n\
     \n\
     # API origin the CLI reads from. Default: https://saferskills.ai\n\
     # api_url = \"https://saferskills.ai\"\n\
     \n\
     # Minimum aggregate score (0–100) that installs without a confirm. Default: 90\n\
     # Below this an install warns + asks; red-tier (<40) requires typing the name.\n\
     # Also overridable with SAFERSKILLS_MIN_SCORE.\n\
     # min_score = 90\n\
     \n\
     # Anonymous usage analytics (PostHog). Asked once on first run; stored here.\n\
     # Set false to opt out — also disabled by SAFERSKILLS_NO_TELEMETRY /\n\
     # DO_NOT_TRACK / CI, or forced on with SAFERSKILLS_TELEMETRY=1.\n\
     # (Anonymous install counts are reported automatically; the same opt-out\n\
     # envs above suppress them too.)\n\
     # telemetry = false\n\
     \n\
     # Set true once the one-time first-launch security audit has been offered.\n\
     # Managed by the CLI; you should not need to edit this.\n\
     # audited = false\n"
}

/// Persist the usage-analytics `telemetry` consent to `config.toml`, preserving
/// the commented template + any existing keys (toml_edit). Best-effort: the
/// caller treats a write failure as non-fatal (the choice still applies this run).
pub fn set_telemetry(value: bool) -> Result<(), SsError> {
    let path = config_path();
    let base = fs::read_to_string(&path).unwrap_or_else(|_| default_config_toml().to_string());
    let mut doc = base.parse::<toml_edit::DocumentMut>().unwrap_or_default();
    doc["telemetry"] = toml_edit::value(value);
    ensure_dir()?;
    atomic_write(&path, doc.to_string().as_bytes())
}

/// Persist the one-time first-launch audit flag to `config.toml`, preserving the
/// commented template + any existing keys (toml_edit). Best-effort — the caller
/// treats a write failure as non-fatal (the audit is fail-open).
pub fn set_audited(value: bool) -> Result<(), SsError> {
    let path = config_path();
    let base = fs::read_to_string(&path).unwrap_or_else(|_| default_config_toml().to_string());
    let mut doc = base.parse::<toml_edit::DocumentMut>().unwrap_or_default();
    doc["audited"] = toml_edit::value(value);
    ensure_dir()?;
    atomic_write(&path, doc.to_string().as_bytes())
}

/// Write the default `config.toml` if it does not already exist.
pub fn write_default_config_if_missing() -> Result<(), SsError> {
    let path = config_path();
    if path.exists() {
        return Ok(());
    }
    ensure_dir()?;
    atomic_write(&path, default_config_toml().as_bytes())
        .map_err(|e| SsError::new(ERR_CONFIG_WRITE_FAILED, e.message))
}

/// Atomically write `bytes` to `path`: a `NamedTempFile` in the SAME directory
/// → flush + fsync → atomic rename. The same-directory temp guarantees the
/// rename is atomic (no cross-device copy).
pub fn atomic_write(path: &std::path::Path, bytes: &[u8]) -> Result<(), SsError> {
    let parent = path.parent().unwrap_or_else(|| std::path::Path::new("."));
    fs::create_dir_all(parent).map_err(|e| write_err(path, e))?;

    let mut tmp = tempfile::NamedTempFile::new_in(parent).map_err(|e| write_err(path, e))?;
    tmp.write_all(bytes).map_err(|e| write_err(path, e))?;
    tmp.as_file().sync_all().map_err(|e| write_err(path, e))?;
    tmp.persist(path).map_err(|e| write_err(path, e.error))?;
    Ok(())
}

fn write_err(path: &std::path::Path, e: std::io::Error) -> SsError {
    let exit = if e.kind() == std::io::ErrorKind::PermissionDenied {
        4
    } else {
        1
    };
    SsError::new(
        ERR_STATE_WRITE_FAILED,
        format!("Failed to write {}: {e}", path.display()),
    )
    .with_exit_code(exit)
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn saferskills_dir_honors_env_override() {
        // SAFETY: single-threaded test; we set then read the override.
        std::env::set_var("SAFERSKILLS_DIR", "/tmp/ss-test-dir");
        assert_eq!(saferskills_dir(), PathBuf::from("/tmp/ss-test-dir"));
        std::env::remove_var("SAFERSKILLS_DIR");
    }

    #[test]
    fn config_defaults_resolve_api_base() {
        let cfg = Config::default();
        assert_eq!(cfg.api_base(None), DEFAULT_API_BASE);
        assert_eq!(cfg.api_base(Some("https://x.test/")), "https://x.test");
    }

    #[test]
    fn parse_config_toml() {
        let cfg: Config =
            toml::from_str("api_url = \"https://staging.test\"\nmin_score = 75\n").unwrap();
        assert_eq!(cfg.api_url.as_deref(), Some("https://staging.test"));
        assert_eq!(cfg.min_score, Some(75));
        assert!(cfg.telemetry.is_none()); // unset → not yet chosen (prompted on first run)
    }

    #[test]
    fn min_score_precedence_env_over_config_over_default() {
        // SAFETY: single-threaded test; we set/remove the override around the asserts.
        let default_cfg = Config::default();
        assert_eq!(default_cfg.min_score(), DEFAULT_MIN_SCORE); // default 90

        let configured = Config {
            min_score: Some(50),
            ..Config::default()
        };
        assert_eq!(configured.min_score(), 50); // config beats default

        std::env::set_var("SAFERSKILLS_MIN_SCORE", "70");
        assert_eq!(configured.min_score(), 70); // env beats config
        assert_eq!(default_cfg.min_score(), 70); // env beats default

        // Out-of-range env clamps to 100.
        std::env::set_var("SAFERSKILLS_MIN_SCORE", "150");
        assert_eq!(default_cfg.min_score(), 100);

        // Non-numeric env is ignored (falls through to config/default).
        std::env::set_var("SAFERSKILLS_MIN_SCORE", "high");
        assert_eq!(configured.min_score(), 50);

        std::env::remove_var("SAFERSKILLS_MIN_SCORE");
    }

    #[test]
    fn atomic_write_roundtrip() {
        let dir = tempfile::tempdir().unwrap();
        let path = dir.path().join("nested").join("f.txt");
        atomic_write(&path, b"hello").unwrap();
        assert_eq!(fs::read_to_string(&path).unwrap(), "hello");
        // Idempotent overwrite.
        atomic_write(&path, b"world").unwrap();
        assert_eq!(fs::read_to_string(&path).unwrap(), "world");
    }

    #[test]
    fn default_template_is_all_comments() {
        for line in default_config_toml()
            .lines()
            .filter(|l| !l.trim().is_empty())
        {
            assert!(
                line.trim_start().starts_with('#'),
                "active key in template: {line}"
            );
        }
    }
}