mirror of
https://github.com/larksuite/cli.git
synced 2026-07-07 09:11:44 +08:00
* feat(contentsafety): add extension interface layer with Provider, Alert, and registry Change-Id: Ibeac6366c7201293057bc3b063f75ac34565bcd5 * feat(contentsafety): add normalize utility for JSON type conversion Change-Id: I7d4729a5ddcab2553abc110f8f6ecc88435ae921 * feat(contentsafety): add tree walker and regex scanner Change-Id: I215dad7cf3072711d05e45f7d384162e1f8752d4 * feat(contentsafety): add config loading with lazy creation, default rules, and allowlist matching Change-Id: I75e10df28f1f8d4f433cb2b469a0ff317af3bf70 * feat(contentsafety): add regex provider with config-driven scanning and allowlist Change-Id: I658889b3647cbbbde6881e0c5f7c13887a1eb1d4 * feat(contentsafety): add output core with mode parsing, path normalization, and scan orchestration Change-Id: I1cb9df75f1a4d176d660e2e7a9561314c3787191 * feat(contentsafety): add ScanForSafety entry point and Envelope alert field Change-Id: I5fdb311e1c8d983a35a58667970b9fd3ac729a5c * feat(contentsafety): integrate scanning into shortcut Out() and OutFormat() Change-Id: I33eef1dba14c8a9bd1998857311bdd611f33b916 * feat(contentsafety): integrate scanning into API/service output paths and register provider Change-Id: Ic3981db6c546a19eadea095d82175f92f4783bec * fix(contentsafety): emit stderr notice when lazy-creating default config Change-Id: Ia2491f7a17caceea3125ff9fb58d750dc196d7e7 * style: gofmt factory_default and exitcode Change-Id: I86c5afdfbbdb68d8137f0ca09ef3b5a1139f4b4e * fix(contentsafety): vfs for config I/O, mutex for lazy-create, sort matched rules, emit warn on --output path Change-Id: Ib4982cd54e1bfe0580a0eb03368e6ca818304e1b * fix(contentsafety): isolate scan goroutine errOut to prevent race on timeout Change-Id: Ia5a770d7387ba6d3b7fa318fc5f1384214ea10b7 * fix(contentsafety): deep-normalize typed slices so scanner can walk shortcut data Change-Id: I641e89113d1a2f2285ac6109bd3d7264f5845ea7 * fix(contentsafety): file perms 0600/0700, no result mutation, timeout test, scanTimeout comment Change-Id: Ie45a2e365ee7098e214e94f8871026cc12029d83
110 lines
2.8 KiB
Go
110 lines
2.8 KiB
Go
// Copyright (c) 2026 Lark Technologies Pte. Ltd.
|
|
// SPDX-License-Identifier: MIT
|
|
|
|
package contentsafety
|
|
|
|
import (
|
|
"encoding/json"
|
|
"fmt"
|
|
"io"
|
|
"io/fs"
|
|
"path/filepath"
|
|
"regexp"
|
|
"strings"
|
|
|
|
"github.com/larksuite/cli/internal/vfs"
|
|
)
|
|
|
|
const configFileName = "content-safety.json"
|
|
|
|
type Config struct {
|
|
Allowlist []string
|
|
Rules []rule
|
|
}
|
|
|
|
type rawConfig struct {
|
|
Allowlist []string `json:"allowlist"`
|
|
Rules []rawRule `json:"rules"`
|
|
}
|
|
|
|
type rawRule struct {
|
|
ID string `json:"id"`
|
|
Pattern string `json:"pattern"`
|
|
}
|
|
|
|
func LoadConfig(configDir string) (*Config, error) {
|
|
path := filepath.Join(configDir, configFileName)
|
|
data, err := vfs.ReadFile(path)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("read content-safety config: %w", err)
|
|
}
|
|
var raw rawConfig
|
|
if err := json.Unmarshal(data, &raw); err != nil {
|
|
return nil, fmt.Errorf("parse content-safety config: %w", err)
|
|
}
|
|
rules := make([]rule, 0, len(raw.Rules))
|
|
for _, r := range raw.Rules {
|
|
compiled, err := regexp.Compile(r.Pattern)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("compile rule %q pattern: %w", r.ID, err)
|
|
}
|
|
rules = append(rules, rule{ID: r.ID, Pattern: compiled})
|
|
}
|
|
return &Config{Allowlist: raw.Allowlist, Rules: rules}, nil
|
|
}
|
|
|
|
func EnsureDefaultConfig(configDir string, errOut io.Writer) error {
|
|
path := filepath.Join(configDir, configFileName)
|
|
if _, err := vfs.Stat(path); err == nil {
|
|
return nil
|
|
}
|
|
if err := vfs.MkdirAll(configDir, 0700); err != nil {
|
|
return fmt.Errorf("create config dir: %w", err)
|
|
}
|
|
data, err := json.MarshalIndent(defaultRawConfig(), "", " ")
|
|
if err != nil {
|
|
return fmt.Errorf("marshal default config: %w", err)
|
|
}
|
|
if err := vfs.WriteFile(path, append(data, '\n'), fs.FileMode(0600)); err != nil {
|
|
return err
|
|
}
|
|
fmt.Fprintf(errOut, "notice: created default content-safety config at %s\n", path)
|
|
return nil
|
|
}
|
|
|
|
func defaultRawConfig() rawConfig {
|
|
return rawConfig{
|
|
Allowlist: []string{"all"},
|
|
Rules: []rawRule{
|
|
{
|
|
ID: "instruction_override",
|
|
Pattern: `(?i)ignore\s+(all\s+|any\s+|the\s+)?(previous|prior|above|earlier)\s+(instructions?|prompts?|directives?)`,
|
|
},
|
|
{
|
|
ID: "role_injection",
|
|
Pattern: `(?i)<\s*/?\s*(system|assistant|tool|user|developer)\s*>`,
|
|
},
|
|
{
|
|
ID: "system_prompt_leak",
|
|
Pattern: `(?i)\b(reveal|print|show|output|display|repeat)\s+(your|the|all)\s+(system\s+|initial\s+|original\s+)?(prompt|instructions?|rules?)`,
|
|
},
|
|
{
|
|
ID: "delimiter_smuggle",
|
|
Pattern: `<\|im_(start|end|sep)\|>|<\|endoftext\|>|###\s*(system|assistant|user)\s*:`,
|
|
},
|
|
},
|
|
}
|
|
}
|
|
|
|
func IsAllowlisted(cmdPath string, allowlist []string) bool {
|
|
for _, entry := range allowlist {
|
|
if strings.EqualFold(entry, "all") {
|
|
return true
|
|
}
|
|
if cmdPath == entry || strings.HasPrefix(cmdPath, entry+".") {
|
|
return true
|
|
}
|
|
}
|
|
return false
|
|
}
|