scope-cli 0.9.2

Code intelligence CLI for LLM coding agents — structural navigation, dependency graphs, and semantic search without reading full source files
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101

/// `scope source <symbol>` — fetch full source of a specific symbol.
///
/// Returns the exact source code of the symbol, including its full definition.
/// Only call this when ready to read or edit the implementation.
use anyhow::{bail, Context, Result};
use clap::Args;
use std::path::Path;

use crate::core::graph::Graph;
use crate::output::json::JsonOutput;

/// Arguments for the `scope source` command.
#[derive(Args, Debug)]
pub struct SourceArgs {
    /// Symbol name to fetch source for.
    ///
    /// Examples: processPayment, PaymentService.validateCard
    pub symbol: String,

    /// Output as JSON instead of human-readable format
    #[arg(long, short = 'j')]
    pub json: bool,
}

/// Run the `scope source` command.
pub fn run(args: &SourceArgs, project_root: &Path) -> Result<()> {
    let db_path = project_root.join(".scope").join("graph.db");
    if !db_path.exists() {
        bail!("No index found. Run `scope index` first.");
    }

    let graph = Graph::open(&db_path)?;
    crate::commands::warn_if_stale(&graph, project_root);
    let sym = crate::commands::resolve_symbol(&graph, &args.symbol)?;

    let full_path = project_root.join(&sym.file_path);

    // Defense-in-depth: ensure the resolved path stays inside the project root.
    // A corrupted index could contain path traversal (e.g. "../../etc/passwd").
    let canonical = full_path
        .canonicalize()
        .with_context(|| format!("Could not resolve {}", full_path.display()))?;
    let canonical_root = project_root
        .canonicalize()
        .with_context(|| "Could not resolve project root")?;
    if !canonical.starts_with(&canonical_root) {
        bail!(
            "Path '{}' resolves outside the project root — refusing to read.",
            sym.file_path
        );
    }

    let content = std::fs::read_to_string(&full_path)
        .with_context(|| format!("Could not read {}", full_path.display()))?;

    let lines: Vec<&str> = content.lines().collect();
    let start = (sym.line_start as usize).saturating_sub(1);
    let end = (sym.line_end as usize).min(lines.len());

    if start >= lines.len() || start > end {
        bail!(
            "Symbol '{}' line range {}-{} is out of bounds for {}",
            args.symbol,
            sym.line_start,
            sym.line_end,
            sym.file_path
        );
    }

    let source_lines = &lines[start..end];

    if args.json {
        let data = serde_json::json!({
            "symbol": sym.name,
            "kind": sym.kind,
            "file_path": sym.file_path,
            "line_start": sym.line_start,
            "line_end": sym.line_end,
            "signature": sym.signature,
            "source": source_lines.join("\n"),
        });
        let envelope = JsonOutput {
            command: "source",
            symbol: Some(sym.name.clone()),
            data: &data,
            truncated: false,
            total: 1,
        };
        println!("{}", serde_json::to_string_pretty(&envelope)?);
    } else {
        println!(
            "// {}  {}:{}{}",
            sym.name, sym.file_path, sym.line_start, sym.line_end
        );
        for line in source_lines {
            println!("{}", line);
        }
    }

    Ok(())
}