terraphim_hooks 1.16.34

Unified hooks infrastructure for Terraphim AI - knowledge graph-based text replacement and validation
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222

//! Validation types for command and operation validation.
//!
//! Defines core types used across all validation hooks and services.

use serde::{Deserialize, Serialize};
use thiserror::Error;

/// Outcome of a validation operation.
#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)]
#[serde(rename_all = "snake_case")]
pub enum ValidationOutcome {
    /// Validation passed, operation may proceed
    Allow,
    /// Validation passed with warning, operation may proceed
    Warn(String),
    /// Validation failed, operation MUST be blocked
    Block(String),
    /// Validation modified the operation, use modified content
    Modify(String),
}

/// Error type for validation failures.
#[derive(Error, Debug, Clone, Serialize, Deserialize)]
#[error("validation error: {message}")]
pub struct ValidationError {
    /// Human readable error message
    pub message: String,
    /// Optional machine readable error code
    #[serde(skip_serializing_if = "Option::is_none")]
    pub code: Option<String>,
}

/// Result of a validation operation.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ValidationResult {
    /// Final outcome of the validation
    pub outcome: ValidationOutcome,
    /// Original input text that was validated
    pub original: String,
    /// Execution time in milliseconds
    pub duration_ms: u64,
    /// Error information if validation failed internally
    #[serde(skip_serializing_if = "Option::is_none")]
    pub error: Option<ValidationError>,
}

impl ValidationResult {
    /// Create a successful validation result.
    pub fn allow(original: String, duration_ms: u64) -> Self {
        Self {
            outcome: ValidationOutcome::Allow,
            original,
            duration_ms,
            error: None,
        }
    }

    /// Create a validation result with warning.
    pub fn warn(original: String, message: String, duration_ms: u64) -> Self {
        Self {
            outcome: ValidationOutcome::Warn(message),
            original,
            duration_ms,
            error: None,
        }
    }

    /// Create a blocked validation result.
    pub fn block(original: String, reason: String, duration_ms: u64) -> Self {
        Self {
            outcome: ValidationOutcome::Block(reason),
            original,
            duration_ms,
            error: None,
        }
    }

    /// Create a modified validation result.
    pub fn modify(original: String, modified: String, duration_ms: u64) -> Self {
        Self {
            outcome: ValidationOutcome::Modify(modified),
            original,
            duration_ms,
            error: None,
        }
    }

    /// Create a fail-open result when validation fails internally.
    pub fn fail_open(original: String, error: ValidationError, duration_ms: u64) -> Self {
        Self {
            outcome: ValidationOutcome::Allow,
            original,
            duration_ms,
            error: Some(error),
        }
    }

    /// Returns true if this validation passed (Allow or Warn).
    pub fn is_allowed(&self) -> bool {
        !matches!(self.outcome, ValidationOutcome::Block(_))
    }

    /// Returns true if this validation should block execution.
    pub fn should_block(&self) -> bool {
        matches!(self.outcome, ValidationOutcome::Block(_))
    }

    /// Returns true if validation produced a modified result.
    pub fn is_modified(&self) -> bool {
        matches!(self.outcome, ValidationOutcome::Modify(_))
    }

    /// Get the final text after validation.
    pub fn final_text(&self) -> &str {
        match &self.outcome {
            ValidationOutcome::Modify(text) => text,
            _ => &self.original,
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_validation_result_allow() {
        let result = ValidationResult::allow("test command".to_string(), 42);
        assert!(result.is_allowed());
        assert!(!result.should_block());
        assert!(!result.is_modified());
        assert_eq!(result.final_text(), "test command");
        assert_eq!(result.duration_ms, 42);
    }

    #[test]
    fn test_validation_result_warn() {
        let result = ValidationResult::warn(
            "test command".to_string(),
            "deprecated command".to_string(),
            42,
        );
        assert!(result.is_allowed());
        assert!(!result.should_block());
        assert!(!result.is_modified());
        if let ValidationOutcome::Warn(msg) = result.outcome {
            assert_eq!(msg, "deprecated command");
        } else {
            panic!("Expected Warn outcome");
        }
    }

    #[test]
    fn test_validation_result_block() {
        let result = ValidationResult::block(
            "dangerous command".to_string(),
            "command is blacklisted".to_string(),
            42,
        );
        assert!(!result.is_allowed());
        assert!(result.should_block());
        assert!(!result.is_modified());
        if let ValidationOutcome::Block(reason) = result.outcome {
            assert_eq!(reason, "command is blacklisted");
        } else {
            panic!("Expected Block outcome");
        }
    }

    #[test]
    fn test_validation_result_modify() {
        let result =
            ValidationResult::modify("npm install".to_string(), "bun install".to_string(), 42);
        assert!(result.is_allowed());
        assert!(!result.should_block());
        assert!(result.is_modified());
        assert_eq!(result.final_text(), "bun install");
        if let ValidationOutcome::Modify(modified) = result.outcome {
            assert_eq!(modified, "bun install");
        } else {
            panic!("Expected Modify outcome");
        }
    }

    #[test]
    fn test_validation_result_fail_open() {
        let error = ValidationError {
            message: "validation service unavailable".to_string(),
            code: Some("SERVICE_UNAVAILABLE".to_string()),
        };
        let result = ValidationResult::fail_open("test command".to_string(), error, 42);
        assert!(result.is_allowed());
        assert!(!result.should_block());
        assert!(result.error.is_some());
    }

    #[test]
    fn test_validation_result_serde_round_trip() {
        let original = "npm install express";
        let result =
            ValidationResult::modify(original.to_string(), "bun install express".to_string(), 123);

        let json = serde_json::to_string(&result).unwrap();
        let deserialized: ValidationResult = serde_json::from_str(&json).unwrap();

        assert!(deserialized.is_modified());
        assert_eq!(deserialized.original, original);
        assert_eq!(deserialized.final_text(), "bun install express");
        assert_eq!(deserialized.duration_ms, 123);
    }

    #[test]
    fn test_validation_outcome_serialization() {
        let outcome = ValidationOutcome::Allow;
        let json = serde_json::to_string(&outcome).unwrap();
        assert_eq!(json, "\"allow\"");

        let outcome = ValidationOutcome::Block("reason".to_string());
        let json = serde_json::to_string(&outcome).unwrap();
        assert_eq!(json, r#"{"block":"reason"}"#);
    }
}