secret-agent 0.2.0

A CLI vault that keeps secrets out of AI agent traces
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132

use crate::error::Error;
use crate::sanitize;
use crate::vault::Vault;
use anyhow::{Context, Result};
use once_cell::sync::Lazy;
use regex::Regex;
use std::collections::HashMap;
use std::process::Command;

static PLACEHOLDER_RE: Lazy<Regex> = Lazy::new(|| {
    Regex::new(r"\{\{(\w+)\}\}").expect("invalid placeholder regex")
});

pub fn run(command: &str) -> Result<i32> {
    let vault = Vault::open().context("failed to open vault")?;

    // Parse placeholders from command
    let placeholder_names = parse_placeholders(command);

    if placeholder_names.is_empty() {
        // No secrets needed, just run the command
        return execute_command(command, &HashMap::new());
    }

    // Fetch all required secrets
    let mut secrets = HashMap::new();
    for name in &placeholder_names {
        let value = vault
            .get(name)
            .map_err(|e| match e {
                Error::SecretNotFound(_) => {
                    anyhow::anyhow!("secret '{}' not found in vault", name)
                }
                _ => anyhow::anyhow!("failed to get secret '{}': {}", name, e),
            })?;
        secrets.insert(name.clone(), value);
    }

    // Inject secrets into command
    let injected_command = inject_secrets(command, &secrets);

    // Execute and return exit code
    execute_command(&injected_command, &secrets)
}

fn parse_placeholders(command: &str) -> Vec<String> {
    let names: Vec<String> = PLACEHOLDER_RE
        .captures_iter(command)
        .map(|cap| cap[1].to_string())
        .collect();

    // Deduplicate while preserving order
    let mut seen = std::collections::HashSet::new();
    let unique: Vec<String> = names
        .into_iter()
        .filter(|name| seen.insert(name.clone()))
        .collect();

    unique
}

fn inject_secrets(command: &str, secrets: &HashMap<String, String>) -> String {
    let mut result = command.to_owned();

    for (name, value) in secrets {
        let placeholder = format!("{{{{{}}}}}", name);
        result = result.replace(&placeholder, value);
    }

    result
}

fn execute_command(command: &str, secrets: &HashMap<String, String>) -> Result<i32> {
    let output = Command::new("sh")
        .arg("-c")
        .arg(command)
        .output()
        .context("failed to execute command")?;

    // Sanitize and print stdout
    let stdout = sanitize::sanitize_bytes(&output.stdout, secrets);
    if !stdout.is_empty() {
        print!("{}", stdout);
    }

    // Sanitize and print stderr
    let stderr = sanitize::sanitize_bytes(&output.stderr, secrets);
    if !stderr.is_empty() {
        eprint!("{}", stderr);
    }

    // Return exit code
    Ok(output.status.code().unwrap_or(1))
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_parse_placeholders() {
        let cmd = "curl -H 'Auth: {{API_KEY}}' --data '{{DATA}}'";
        let names = parse_placeholders(cmd);
        assert_eq!(names, vec!["API_KEY", "DATA"]);
    }

    #[test]
    fn test_parse_placeholders_dedupe() {
        let cmd = "echo {{SECRET}} {{SECRET}} {{OTHER}}";
        let names = parse_placeholders(cmd);
        assert_eq!(names, vec!["SECRET", "OTHER"]);
    }

    #[test]
    fn test_parse_placeholders_empty() {
        let cmd = "echo hello world";
        let names = parse_placeholders(cmd);
        assert!(names.is_empty());
    }

    #[test]
    fn test_inject_secrets() {
        let mut secrets = HashMap::new();
        secrets.insert("API_KEY".to_string(), "sk-12345".to_string());
        secrets.insert("HOST".to_string(), "example.com".to_string());

        let cmd = "curl https://{{HOST}}/api -H 'Auth: {{API_KEY}}'";
        let result = inject_secrets(cmd, &secrets);

        assert_eq!(result, "curl https://example.com/api -H 'Auth: sk-12345'");
    }
}