mirror of
https://github.com/Kaelio/ktx.git
synced 2026-07-01 08:59:39 +02:00
* fix: read semantic sources safely
* test: retarget reindex per-scope error case to a broken manifest
Reading a broken standalone source was made non-fatal in de1f1a8d (it is
surfaced for repair instead of throwing), so the reindex per-scope error
test no longer captured an error. Point it at a corrupt manifest shard,
which is the remaining fatal read failure the per-scope catch must
isolate, and assert the captured error names the offending file.
* fix(sl): decouple semantic-layer file names from warehouse naming rules
The in-file `name:` field is now the sole source identity; the filename is
a derived label that never participates in identity. This removes the
"Unsafe semantic-layer source name" failure class entirely: any warehouse
identifier (Snowflake's uppercase SIGNED_UP, EVENT$LOG, dotted names) can
be read, overlaid, edited, and deleted.
- New `source-files.ts`: one total filename derivation (safe lowercase
names verbatim; otherwise slug + sha256-hash suffix, immune to
case-insensitive-filesystem collisions) and one by-name file resolver.
- Reads resolve by name everywhere; the path-from-name fast path and
`assertSafeSourceName` are gone.
- Writes resolve-then-write: rewrites land on the file that declares the
name (human renames survive); new sources get a derived filename; a
derived path occupied by a different source fails instead of clobbering.
- `readSourceFile` returns null for missing files instead of forcing every
caller to launder IO errors; `deleteSource` distinguishes manifest-backed
sources from not-found instead of silently succeeding.
- `sl_write_source` accepts verbatim warehouse identifiers (snake_case is
now a recommendation for new sources) and rejects sourceName/source.name
mismatches; `sl_edit_source` rejects name-changing edits.
- Ingest projection commits, gate-repair allowlists, and touched-source
derivation use resolved paths / in-file names instead of interpolating
`<connId>/<name>.yaml`.
- Collapsed the five parallel path derivations and duplicated path-token
helpers onto the shared module; dropped dead service methods.
* fix(sl): resolve sources by declared name end-to-end and gate warehouse SQL with the parser-backed validator
- Key broken/renamed semantic-layer files by their recoverable in-file
name (slSourceNameForFile) so mid-edit sources stay reachable under
their real identity in reads, listings, and search
- Derive finalization touched sources from composed-source diffs and
recover deleted files' declared names from the pre-change commit
instead of parsing hash-derived filenames
- Resolve revert/rollback paths against history (listFilesAtCommit) so
human-renamed files are restored where they lived at preHead
- Validate ingest sql_execution through the daemon's sqlglot
validateReadOnly in the connection's dialect, sharing one
driver-to-dialect map (sql-analysis/dialect.ts) across MCP and ingest
- Harden the local read-only SQL backstop: accept leading comments,
reject smuggled second statements, and strip trailing
semicolons/comments before row-limit wrapping
136 lines
5 KiB
TypeScript
136 lines
5 KiB
TypeScript
import { mkdir, mkdtemp, readFile, writeFile } from 'node:fs/promises';
|
|
import { tmpdir } from 'node:os';
|
|
import { join } from 'node:path';
|
|
import { describe, expect, it, vi } from 'vitest';
|
|
import { finalGateRepairPaths, repairFinalGateFailure } from '../../../src/context/ingest/final-gate-repair.js';
|
|
import { FileIngestTraceWriter } from '../../../src/context/ingest/ingest-trace.js';
|
|
|
|
async function makeHarness() {
|
|
const root = await mkdtemp(join(tmpdir(), 'ktx-final-gate-repair-'));
|
|
const workdir = join(root, 'workdir');
|
|
await mkdir(join(workdir, 'wiki/global'), { recursive: true });
|
|
await mkdir(join(workdir, 'semantic-layer/warehouse'), { recursive: true });
|
|
await writeFile(
|
|
join(workdir, 'wiki/global/account-segments.md'),
|
|
'---\nsummary: Account segments\nusage_mode: auto\n---\n\nARR uses `mart_account_segments.total_contract_arr_cents`.\n',
|
|
'utf-8',
|
|
);
|
|
await writeFile(
|
|
join(workdir, 'semantic-layer/warehouse/mart_account_segments.yaml'),
|
|
'name: mart_account_segments\ncolumns: [{name: account_id, type: string}]\njoins: []\nmeasures:\n - name: total_contract_arr\n expr: sum(contract_arr)\n',
|
|
'utf-8',
|
|
);
|
|
const trace = new FileIngestTraceWriter({
|
|
tracePath: join(root, 'trace.jsonl'),
|
|
jobId: 'job-1',
|
|
connectionId: 'warehouse',
|
|
sourceKey: 'metabase',
|
|
runId: 'run-1',
|
|
syncId: 'sync-1',
|
|
level: 'trace',
|
|
});
|
|
return { root, workdir, trace };
|
|
}
|
|
|
|
describe('finalGateRepairPaths', () => {
|
|
it('derives sorted, deduplicated wiki and semantic-layer file paths', () => {
|
|
expect(
|
|
finalGateRepairPaths({
|
|
changedWikiPageKeys: ['account-segments', 'overview', 'account-segments'],
|
|
touchedSlSourcePaths: [
|
|
'semantic-layer/warehouse/mart_account_segments.yaml',
|
|
'semantic-layer/warehouse/orders.yaml',
|
|
'semantic-layer/warehouse/orders.yaml',
|
|
],
|
|
}),
|
|
).toEqual([
|
|
'semantic-layer/warehouse/mart_account_segments.yaml',
|
|
'semantic-layer/warehouse/orders.yaml',
|
|
'wiki/global/account-segments.md',
|
|
'wiki/global/overview.md',
|
|
]);
|
|
});
|
|
});
|
|
|
|
describe('repairFinalGateFailure', () => {
|
|
it('lets the repair agent read gate errors and edit only allowed files', async () => {
|
|
const { workdir, trace } = await makeHarness();
|
|
const agentRunner = {
|
|
runLoop: vi.fn(async (params: any) => {
|
|
const error = await params.toolSet.read_gate_error.execute({});
|
|
expect(error.markdown).toContain('total_contract_arr_cents');
|
|
|
|
const page = await params.toolSet.read_repair_file.execute({
|
|
path: 'wiki/global/account-segments.md',
|
|
});
|
|
expect(page.markdown).toContain('total_contract_arr_cents');
|
|
|
|
await expect(
|
|
params.toolSet.write_repair_file.execute({
|
|
path: 'wiki/global/other.md',
|
|
content: 'not allowed',
|
|
}),
|
|
).rejects.toThrow(/gate repair path not allowed/);
|
|
|
|
await params.toolSet.write_repair_file.execute({
|
|
path: 'wiki/global/account-segments.md',
|
|
content: page.markdown.replace('total_contract_arr_cents', 'total_contract_arr'),
|
|
});
|
|
return { stopReason: 'natural' as const };
|
|
}),
|
|
};
|
|
|
|
const result = await repairFinalGateFailure({
|
|
agentRunner,
|
|
workdir,
|
|
gateError:
|
|
'final artifact gates failed:\naccount-segments: unknown semantic-layer entity mart_account_segments.total_contract_arr_cents',
|
|
allowedPaths: ['wiki/global/account-segments.md'],
|
|
trace,
|
|
repairKind: 'final_artifact_gate',
|
|
maxAttempts: 1,
|
|
stepBudget: 8,
|
|
});
|
|
|
|
expect(result).toEqual({
|
|
status: 'repaired',
|
|
attempts: 1,
|
|
changedPaths: ['wiki/global/account-segments.md'],
|
|
});
|
|
await expect(readFile(join(workdir, 'wiki/global/account-segments.md'), 'utf-8')).resolves.toContain(
|
|
'total_contract_arr',
|
|
);
|
|
await expect(readFile(trace.tracePath, 'utf-8')).resolves.toContain('gate_repair_repaired');
|
|
expect(agentRunner.runLoop).toHaveBeenCalledWith(
|
|
expect.objectContaining({
|
|
modelRole: 'repair',
|
|
stepBudget: 8,
|
|
telemetryTags: expect.objectContaining({
|
|
operationName: 'ingest-isolated-diff-gate-repair',
|
|
repairKind: 'final_artifact_gate',
|
|
}),
|
|
}),
|
|
);
|
|
});
|
|
|
|
it('returns failed when the repair agent edits no allowed file', async () => {
|
|
const { workdir, trace } = await makeHarness();
|
|
const result = await repairFinalGateFailure({
|
|
agentRunner: { runLoop: vi.fn(async () => ({ stopReason: 'natural' as const })) },
|
|
workdir,
|
|
gateError: 'final artifact gates failed:\naccount-segments: unknown semantic-layer entity',
|
|
allowedPaths: ['wiki/global/account-segments.md'],
|
|
trace,
|
|
repairKind: 'final_artifact_gate',
|
|
maxAttempts: 1,
|
|
stepBudget: 8,
|
|
});
|
|
|
|
expect(result).toEqual({
|
|
status: 'failed',
|
|
attempts: 1,
|
|
reason: 'gate repair completed without editing an allowed path',
|
|
});
|
|
await expect(readFile(trace.tracePath, 'utf-8')).resolves.toContain('gate_repair_failed');
|
|
});
|
|
});
|