synaps 0.1.4

Terminal-native AI agent runtime — parallel orchestration, reactive subagents, MCP, autonomous supervision
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319

//! Agent prompt resolution — loads agent configs from ~/.synaps-cli/agents/.
//!
//! Resolution order for `resolve_agent_prompt(name)`:
//!   1. `name` contains `/` → treat as file path, read directly
//!   2. `name` contains `:` → `plugin:agent` namespaced lookup
//!      → search `~/.synaps-cli/plugins/<plugin>/skills/*/agents/<agent>.md`
//!   3. bare name → `~/.synaps-cli/agents/<name>.md`
use super::util::expand_path;

/// Returns true if the name component is a safe identifier (no path separators,
/// no `..`, non-empty, only alphanumeric + hyphens + underscores).
fn is_valid_name(s: &str) -> bool {
    !s.is_empty()
        && !s.contains('/')
        && !s.contains('\\')
        && !s.contains("..")
        && s.chars().all(|c| c.is_alphanumeric() || c == '-' || c == '_')
}

/// Resolve an agent name to a system prompt.
pub fn resolve_agent_prompt(name: &str) -> std::result::Result<String, String> {
    // Defense-in-depth: callers should already filter blank names to None, but if
    // one slips through we must not search `~/.synaps-cli/agents/.md` — that path
    // looks valid on disk and produces a confusing error that models retry forever.
    // Reject names that are empty or entirely whitespace/control chars (incl. NUL).
    if name.chars().all(|c| c.is_whitespace() || c.is_control()) {
        return Err(
            "Empty 'agent' parameter. Pass a non-empty agent name, omit the field entirely, \
             or provide 'system_prompt' inline instead.".to_string()
        );
    }

    // 1. File path — name contains '/'
    if name.contains('/') {
        let path = expand_path(name);
        let content = std::fs::read_to_string(&path)
            .map_err(|e| format!("Failed to read agent file '{}': {}", path.display(), e))?;
        return Ok(strip_frontmatter(&content));
    }

    // 2. Namespaced — "plugin:agent" syntax
    if let Some((plugin, agent)) = name.split_once(':') {
        // Validate both sides are safe identifiers
        if !is_valid_name(plugin) || !is_valid_name(agent) {
            return Err(format!(
                "Invalid agent syntax '{}'. Expected 'plugin:agent' where both are \
                 identifiers (alphanumeric, hyphens, underscores).",
                name
            ));
        }
        let plugins_dir = crate::config::base_dir().join("plugins");
        let plugin_dir = plugins_dir.join(plugin);
        if !plugin_dir.is_dir() {
            return Err(format!(
                "Plugin '{}' not found at {}",
                plugin,
                plugin_dir.display()
            ));
        }
        // Verify resolved path is still under plugins_dir (path traversal guard)
        let canonical_plugins = plugins_dir.canonicalize().unwrap_or_else(|_| plugins_dir.clone());
        let canonical_plugin = plugin_dir.canonicalize().unwrap_or_else(|_| plugin_dir.clone());
        if !canonical_plugin.starts_with(&canonical_plugins) {
            return Err(format!("Invalid plugin name: '{}'", plugin));
        }
        return resolve_namespaced_agent(agent, &plugin_dir);
    }

    // 3. Bare name — ~/.synaps-cli/agents/<name>.md
    let agents_dir = crate::config::base_dir().join("agents");
    let agent_path = agents_dir.join(format!("{}.md", name));

    if agent_path.exists() {
        let content = std::fs::read_to_string(&agent_path)
            .map_err(|e| format!("Failed to read agent '{}': {}", agent_path.display(), e))?;
        return Ok(strip_frontmatter(&content));
    }

    Err(format!(
        "Agent '{}' not found. Searched:\n  - {}\n\
         Create the file, pass a system_prompt directly, or use 'plugin:agent' syntax for plugin agents.",
        name,
        agent_path.display()
    ))
}

/// Search `plugin_dir/skills/*/agents/<agent>.md` for a matching agent file.
/// Errors if the agent is found in multiple skills (ambiguous).
fn resolve_namespaced_agent(
    agent: &str,
    plugin_dir: &std::path::Path,
) -> std::result::Result<String, String> {
    let skills_dir = plugin_dir.join("skills");
    let entries = std::fs::read_dir(&skills_dir).map_err(|e| {
        format!(
            "No skills directory in plugin at {}: {}",
            plugin_dir.display(),
            e
        )
    })?;

    let mut matches: Vec<std::path::PathBuf> = Vec::new();
    for entry in entries {
        let entry = entry.map_err(|e| format!("Error reading skills dir: {}", e))?;
        let agent_path = entry.path().join("agents").join(format!("{}.md", agent));
        if agent_path.exists() {
            matches.push(agent_path);
        }
    }

    match matches.len() {
        0 => Err(format!(
            "Agent '{}' not found in plugin at {}. Searched skills/*/agents/{}.md",
            agent,
            plugin_dir.display(),
            agent
        )),
        1 => {
            let content = std::fs::read_to_string(&matches[0])
                .map_err(|e| format!("Failed to read agent '{}': {}", matches[0].display(), e))?;
            Ok(strip_frontmatter(&content))
        }
        n => Err(format!(
            "Ambiguous agent '{}': found in {} skills. Use the full path instead.\n  {}",
            agent,
            n,
            matches.iter().map(|p| p.display().to_string()).collect::<Vec<_>>().join("\n  ")
        )),
    }
}

pub(crate) fn strip_frontmatter(content: &str) -> String {
    if let Some(rest) = content.strip_prefix("---") {
        if let Some(end) = rest.find("\n---") {
            // skip past the "\n---" (4 bytes) to get the body
            return rest[end + 4..].trim().to_string();
        }
    }
    content.to_string()
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn resolve_namespaced_agent_finds_plugin_agent() {
        let tmp = tempfile::tempdir().unwrap();
        let agents_dir = tmp
            .path()
            .join("skills")
            .join("bbe")
            .join("agents");
        std::fs::create_dir_all(&agents_dir).unwrap();
        std::fs::write(
            agents_dir.join("sage.md"),
            "---\nname: bbe-sage\ndescription: d\n---\nYou are sage.",
        )
        .unwrap();

        let result = resolve_namespaced_agent("sage", tmp.path());
        assert!(result.is_ok());
        assert_eq!(result.unwrap(), "You are sage.");
    }

    #[test]
    fn resolve_namespaced_agent_not_found() {
        let tmp = tempfile::tempdir().unwrap();
        std::fs::create_dir_all(tmp.path().join("skills")).unwrap();

        let result = resolve_namespaced_agent("nonexistent", tmp.path());
        assert!(result.is_err());
        assert!(result.unwrap_err().contains("not found"));
    }

    #[test]
    fn resolve_namespaced_agent_no_skills_dir() {
        let tmp = tempfile::tempdir().unwrap();
        let result = resolve_namespaced_agent("sage", tmp.path());
        assert!(result.is_err());
        assert!(result.unwrap_err().contains("No skills directory"));
    }

    #[test]
    fn resolve_namespaced_agent_strips_frontmatter() {
        let tmp = tempfile::tempdir().unwrap();
        let agents_dir = tmp.path().join("skills").join("s").join("agents");
        std::fs::create_dir_all(&agents_dir).unwrap();
        std::fs::write(
            agents_dir.join("a.md"),
            "---\nname: x\ndescription: d\n---\nClean body",
        )
        .unwrap();

        let result = resolve_namespaced_agent("a", tmp.path()).unwrap();
        assert_eq!(result, "Clean body");
    }

    #[test]
    fn resolve_namespaced_agent_ambiguous_errors() {
        let tmp = tempfile::tempdir().unwrap();
        // Create same agent in two different skills
        let skill1 = tmp.path().join("skills").join("skill-a").join("agents");
        let skill2 = tmp.path().join("skills").join("skill-b").join("agents");
        std::fs::create_dir_all(&skill1).unwrap();
        std::fs::create_dir_all(&skill2).unwrap();
        std::fs::write(skill1.join("sage.md"), "---\nname: sage\n---\nA").unwrap();
        std::fs::write(skill2.join("sage.md"), "---\nname: sage\n---\nB").unwrap();

        let result = resolve_namespaced_agent("sage", tmp.path());
        assert!(result.is_err());
        let err = result.unwrap_err();
        assert!(err.contains("Ambiguous"), "Expected ambiguity error, got: {}", err);
        assert!(err.contains("2 skills"), "Expected '2 skills' in error, got: {}", err);
    }

    #[test]
    fn strip_frontmatter_removes_yaml_header() {
        let input = "---\nname: x\n---\nBody text";
        assert_eq!(strip_frontmatter(input), "Body text");
    }

    #[test]
    fn strip_frontmatter_passes_through_plain_text() {
        assert_eq!(strip_frontmatter("Just text"), "Just text");
    }

    #[test]
    fn strip_frontmatter_unclosed_returns_raw() {
        // Unclosed frontmatter — no closing "---"
        let input = "---\nname: x\nno closing delimiter\nBody";
        assert_eq!(strip_frontmatter(input), input);
    }

    #[test]
    fn is_valid_name_rejects_traversal() {
        assert!(!is_valid_name("../../etc"));
        assert!(!is_valid_name("foo/bar"));
        assert!(!is_valid_name(""));
        assert!(!is_valid_name("foo..bar"));
        assert!(!is_valid_name("foo\\bar"));
    }

    #[test]
    fn is_valid_name_accepts_good_names() {
        assert!(is_valid_name("dev-tools"));
        assert!(is_valid_name("sage"));
        assert!(is_valid_name("my_agent_123"));
        assert!(is_valid_name("BBE"));
    }

    #[test]
    fn resolve_agent_prompt_rejects_blank_name() {
        // Empty string, whitespace, and NUL must all error early — never search disk.
        for name in ["", " ", "  \t  ", "\n", "\u{0}"] {
            let err = resolve_agent_prompt(name).unwrap_err();
            assert!(
                err.contains("Empty 'agent' parameter"),
                "blank name {:?} should produce the empty-agent error, got: {}",
                name,
                err,
            );
            // Critical: the error must NOT mention `agents/.md` — that's the bug
            // signature that caused models to loop with sentinel agent values.
            assert!(
                !err.contains("agents/.md"),
                "blank name {:?} leaked path-search error: {}",
                name,
                err,
            );
        }
    }

    #[test]
    fn test_strip_frontmatter_removes_frontmatter() {
        let content = "---\ntitle: test\ndate: 2023-01-01\n---\nThis is the content.";
        let result = strip_frontmatter(content);
        assert_eq!(result, "This is the content.");
    }

    #[test]
    fn test_strip_frontmatter_without_frontmatter() {
        let content = "This is just plain content.";
        let result = strip_frontmatter(content);
        assert_eq!(result, content);
    }

    #[test]
    fn test_strip_frontmatter_only_opening_delimiter() {
        let content = "---\ntitle: test\nno closing delimiter";
        let result = strip_frontmatter(content);
        assert_eq!(result, content);
    }

    #[test]
    fn test_resolve_agent_prompt_nonexistent() {
        let result = resolve_agent_prompt("definitely_does_not_exist_12345");
        assert!(result.is_err());
        let error = result.unwrap_err();
        assert!(error.contains("Agent 'definitely_does_not_exist_12345' not found"));
    }

    #[test]
    fn test_resolve_agent_prompt_path_not_found() {
        let result = resolve_agent_prompt("/nonexistent/path/agent.md");
        assert!(result.is_err());
        let error = result.unwrap_err();
        assert!(error.contains("Failed to read agent file"));
    }

    #[test]
    fn test_resolve_agent_prompt_blank_rejected_without_agent_lookup() {
        let result = resolve_agent_prompt("");
        assert!(result.is_err());
        let error = result.unwrap_err();
        assert!(error.contains("Empty 'agent' parameter"));
        assert!(!error.contains("agents/.md"));
    }
}