mirror of
https://github.com/Kaelio/ktx.git
synced 2026-06-19 08:28:06 +02:00
394a985d2a
* feat(setup): drop redundant Snowflake schema prompt; fall back to free-text on listSchemas failure Snowflake setup previously asked for a single schema as free text, then ran a multiselect against the discovered schemas — two schema questions back-to-back, with the first being only a session bootstrap. The SDK's `schema` is optional, so the bootstrap step is unnecessary. - Remove the free-text Snowflake schema prompt; only pass `schema` to snowflake-sdk when one is configured. - When `listSchemas()` fails (e.g. role lacks SHOW SCHEMAS), prompt the user for a comma-separated list, persist it as `schema_names`, and use it as both the table-list filter and the multiselect default. Applies to every driver with a scope-discovery spec, not just Snowflake. - Update docs to lead with `schema_names`; keep `schema_name` as a documented single-schema shorthand. * fix(snowflake): keep introspecting when primary-key discovery is denied The PK query joins INFORMATION_SCHEMA.TABLE_CONSTRAINTS and INFORMATION_SCHEMA.KEY_COLUMN_USAGE, which require grants the connection role may not have. Previously a 'SQL compilation error: Object ANALYTICS.INFORMATION_SCHEMA.KEY_COLUMN_USAGE does not exist or not authorized' aborted the entire introspect — schemas, columns, and row counts were all discarded over a missing nice-to-have. Wrap the constraint query in try/catch, log a one-line warning per schema, and return an empty PK map. Columns end up with primaryKey=false; relationship inference still has FK and profiling to fall back on. * fix(scan): unblock relationship discovery on Snowflake Two adjacent bugs prevented the scan's relationship pipeline from producing any joins on a Snowflake warehouse: - relationship-profiling.ts fell through to a default `GROUP_CONCAT` branch for unknown drivers. Snowflake has no GROUP_CONCAT, so every per-table profile query failed with "Unknown function GROUP_CONCAT". Add an explicit Snowflake branch that uses LISTAGG with a literal '\x1f' delimiter (Snowflake requires the delimiter to be a constant, so CHR(31) is rejected). - description-generation.ts destructured `connector.sampleTable` and `connector.sampleColumn` into bare locals, losing the `this` binding when the class-method connectors (Snowflake, Postgres, MySQL) were invoked. Every sample call threw "Cannot read properties of undefined (reading 'assertConnection')" and degraded LLM descriptions to metadata-only prompts. Call the methods through the connector instead. Without these, even after the primary-key probe is allowed to fail softly, the scan ends up with 0 validated relationships and an empty `joins:` block in every shard YAML. * test(scan): cover table-ref helpers * feat(scan): plumb tableScope through live-database introspection port * feat(scan): apply tableScope during metadata fetch * feat(scan): enforce table scope at fetch boundary * feat(scan): pool Snowflake sessions and batch enrichment for faster ingest (#206) * feat(cli): add RSA key-pair auth option to Snowflake setup wizard Extends the interactive Snowflake setup flow with an authentication-method prompt (password vs RSA/JWT key-pair). The RSA branch collects a private-key path (env/file/absolute) and an optional passphrase; the resulting connection config records `authMethod: 'rsa'` with `privateKey` and `passphrase` instead of `password`. * feat(scan): pool Snowflake sessions * fix(scan): reuse structural snapshots and cleanup connectors * feat(scan): parallelize relationship profiling * feat(scan): batch table description generation * docs: document Snowflake ingest concurrency knobs * fix(scan): close Snowflake ingest perf verification gaps * fix(scan): keep batched description failure bounded * feat(scan): dispatch query-history probes by connection driver Extract historic-sql dialect resolution into a shared helper so the status-project readiness check and the local ingest factory agree on which connections enable query history and which probe to run. The status command now picks the postgres/snowflake/bigquery probe based on the connection's driver instead of always reporting against postgres, which previously caused snowflake connections with queryHistory.enabled to surface a misleading "driver is snowflake" failure. Also drops a noisy console.warn from Snowflake primary-key discovery — INFORMATION_SCHEMA.KEY_COLUMN_USAGE is commonly ungranted for read-only roles and the FK + profiling paths handle the empty PK map already. * fix(llm): allow StructuredOutput tool and raise maxTurns for generateObject The Claude Code agent SDK announces an internal pseudo-tool named StructuredOutput in the system/init message whenever outputFormat is set to { type: 'json_schema' }. The runtime's isolation check built its allowedToolIds set only from MCP tool ids and treated StructuredOutput as an unexpected host-injected tool, so every generateObject call threw "Claude Code runtime isolation failed: tools=StructuredOutput ..." and the table-descriptions and relationship-LLM-proposal enrichment stages recorded null output across the board. Whitelist StructuredOutput specifically in generateObject's allowedToolIds — the check also enforces missing_tools symmetry, so generateText and runAgentLoop, which do not see StructuredOutput, must not require it. generateObject also ran with maxTurns: 1, which the model intermittently breached when it emitted thinking text before the structured response. Raised to 5 to give the schema-bound call enough headroom without allowing unbounded loops. The existing tests now exercise the path with an init message that announces StructuredOutput so the regression cannot slip back in. * chore(scripts): add ktx-reset.sh project-cleanup helper Convenience script for repeatable ingest testing: takes a project directory and prunes everything except ktx.yaml and .ktx/secrets/, so the next ktx setup or ktx ingest run starts from a known-clean state.
505 lines
18 KiB
TypeScript
505 lines
18 KiB
TypeScript
import { describe, expect, it, vi } from 'vitest';
|
|
import { z } from 'zod';
|
|
import type { SDKMessage } from '@anthropic-ai/claude-agent-sdk';
|
|
import { ClaudeCodeKtxLlmRuntime, mapClaudeCodeStopReason, runClaudeCodeAuthProbe } from './claude-code-runtime.js';
|
|
|
|
async function* stream(messages: SDKMessage[]): AsyncGenerator<SDKMessage, void> {
|
|
for (const message of messages) {
|
|
yield message;
|
|
}
|
|
}
|
|
|
|
function initMessage(overrides: Partial<Extract<SDKMessage, { type: 'system'; subtype: 'init' }>> = {}): Extract<
|
|
SDKMessage,
|
|
{ type: 'system'; subtype: 'init' }
|
|
> {
|
|
return {
|
|
type: 'system',
|
|
subtype: 'init',
|
|
apiKeySource: 'none' as never, // pragma: allowlist secret
|
|
claude_code_version: '0.3.142',
|
|
cwd: '/tmp/project',
|
|
tools: [],
|
|
mcp_servers: [],
|
|
model: 'claude-sonnet-4-6',
|
|
permissionMode: 'dontAsk',
|
|
slash_commands: [],
|
|
output_style: 'default',
|
|
skills: [],
|
|
plugins: [],
|
|
uuid: '00000000-0000-4000-8000-000000000001',
|
|
session_id: 'session-id',
|
|
...overrides,
|
|
};
|
|
}
|
|
|
|
function resultMessage(overrides: Partial<Extract<SDKMessage, { type: 'result' }>> = {}): Extract<
|
|
SDKMessage,
|
|
{ type: 'result' }
|
|
> {
|
|
return {
|
|
type: 'result',
|
|
subtype: 'success',
|
|
duration_ms: 1,
|
|
duration_api_ms: 1,
|
|
is_error: false,
|
|
num_turns: 1,
|
|
result: 'ok',
|
|
stop_reason: null,
|
|
total_cost_usd: 0,
|
|
usage: {} as never,
|
|
modelUsage: {},
|
|
permission_denials: [],
|
|
errors: [],
|
|
uuid: '00000000-0000-4000-8000-000000000002',
|
|
session_id: 'session-id',
|
|
...overrides,
|
|
} as Extract<SDKMessage, { type: 'result' }>;
|
|
}
|
|
|
|
describe('ClaudeCodeKtxLlmRuntime', () => {
|
|
it('passes isolation options and scrubbed env to text generation', async () => {
|
|
const query = vi.fn((_input: any) => stream([initMessage(), resultMessage({ result: 'hello' })]));
|
|
const runtime = new ClaudeCodeKtxLlmRuntime({
|
|
projectDir: '/tmp/project',
|
|
modelSlots: { default: 'sonnet' },
|
|
query,
|
|
env: { ANTHROPIC_API_KEY: 'sk-ant-test', PATH: '/usr/bin' }, // pragma: allowlist secret
|
|
});
|
|
|
|
await expect(runtime.generateText({ role: 'default', prompt: 'say hello' })).resolves.toBe('hello');
|
|
expect(query).toHaveBeenCalledWith({
|
|
prompt: 'say hello',
|
|
options: expect.objectContaining({
|
|
cwd: '/tmp/project',
|
|
model: 'claude-sonnet-4-6',
|
|
maxTurns: 1,
|
|
settingSources: [],
|
|
skills: [],
|
|
plugins: [],
|
|
tools: [],
|
|
managedSettings: {
|
|
allowManagedMcpServersOnly: true,
|
|
allowedMcpServers: [],
|
|
},
|
|
strictMcpConfig: true,
|
|
allowedTools: [],
|
|
permissionMode: 'dontAsk',
|
|
persistSession: false,
|
|
env: expect.not.objectContaining({ ANTHROPIC_API_KEY: 'sk-ant-test' }),
|
|
}),
|
|
});
|
|
});
|
|
|
|
it('validates structured output with the caller schema and whitelists the SDK StructuredOutput tool', async () => {
|
|
const schema = z.object({ answer: z.string() });
|
|
const query = vi.fn((_input: any) =>
|
|
stream([
|
|
initMessage({ tools: ['StructuredOutput'] }),
|
|
resultMessage({ structured_output: { answer: 'yes' } }),
|
|
]),
|
|
);
|
|
const runtime = new ClaudeCodeKtxLlmRuntime({
|
|
projectDir: '/tmp/project',
|
|
modelSlots: { default: 'sonnet' },
|
|
query,
|
|
env: {},
|
|
});
|
|
|
|
await expect(runtime.generateObject({ role: 'default', prompt: 'json', schema })).resolves.toEqual({ answer: 'yes' });
|
|
expect(query.mock.calls[0][0].options.outputFormat).toMatchObject({
|
|
type: 'json_schema',
|
|
schema: expect.objectContaining({ type: 'object' }),
|
|
});
|
|
});
|
|
|
|
it('registers only exact KTX MCP tool ids and denies non-KTX tools', async () => {
|
|
const query = vi.fn((_input: any) =>
|
|
stream([
|
|
initMessage({ tools: ['mcp__ktx__load_skill'], mcp_servers: [{ name: 'ktx', status: 'connected' }] }),
|
|
{
|
|
type: 'assistant',
|
|
message: { role: 'assistant', content: [] },
|
|
parent_tool_use_id: null,
|
|
uuid: '00000000-0000-4000-8000-000000000003',
|
|
session_id: 'session-id',
|
|
} as unknown as SDKMessage,
|
|
resultMessage({ subtype: 'error_max_turns', is_error: true }),
|
|
]),
|
|
);
|
|
const runtime = new ClaudeCodeKtxLlmRuntime({
|
|
projectDir: '/tmp/project',
|
|
modelSlots: { default: 'sonnet' },
|
|
query,
|
|
env: {},
|
|
});
|
|
const onStepFinish = vi.fn();
|
|
|
|
await runtime.runAgentLoop({
|
|
modelRole: 'default',
|
|
systemPrompt: 'system',
|
|
userPrompt: 'user',
|
|
toolSet: {
|
|
load_skill: {
|
|
name: 'load_skill',
|
|
description: 'Load skill.',
|
|
inputSchema: z.object({ name: z.string() }),
|
|
execute: async () => ({ markdown: 'loaded' }),
|
|
},
|
|
},
|
|
stepBudget: 1,
|
|
telemetryTags: { operationName: 'test' },
|
|
onStepFinish,
|
|
});
|
|
|
|
const options = query.mock.calls[0][0].options;
|
|
expect(options.allowedTools).toEqual(['mcp__ktx__load_skill']);
|
|
expect(options.managedSettings).toEqual({
|
|
allowManagedMcpServersOnly: true,
|
|
allowedMcpServers: [{ serverName: 'ktx' }],
|
|
});
|
|
expect(options.strictMcpConfig).toBe(true);
|
|
expect(await options.canUseTool('mcp__ktx__load_skill', {}, { signal: new AbortController().signal, toolUseID: '1' })).toEqual({
|
|
behavior: 'allow',
|
|
toolUseID: '1',
|
|
});
|
|
expect(await options.canUseTool('Bash', {}, { signal: new AbortController().signal, toolUseID: '2' })).toMatchObject({
|
|
behavior: 'deny',
|
|
toolUseID: '2',
|
|
});
|
|
expect(onStepFinish).toHaveBeenCalledWith({ stepIndex: 1, stepBudget: 1 });
|
|
});
|
|
|
|
it('treats host-discovered commands skills and agents as non-fatal init metadata for text and auth probe', async () => {
|
|
const hostDiscoveredInit = initMessage({
|
|
slash_commands: ['/help', '/compact', '/clear', '/user-command'],
|
|
skills: ['pdf', 'docx'],
|
|
agents: ['claude', 'Explore', 'general-purpose'],
|
|
});
|
|
const textQuery = vi.fn((_input: any) => stream([hostDiscoveredInit, resultMessage({ result: 'hello' })]));
|
|
const runtime = new ClaudeCodeKtxLlmRuntime({
|
|
projectDir: '/tmp/project',
|
|
modelSlots: { default: 'sonnet' },
|
|
query: textQuery,
|
|
env: { ANTHROPIC_API_KEY: 'sk-ant-test', PATH: '/usr/bin' }, // pragma: allowlist secret
|
|
});
|
|
|
|
await expect(runtime.generateText({ role: 'default', prompt: 'say hello' })).resolves.toBe('hello');
|
|
const textOptions = textQuery.mock.calls[0][0].options;
|
|
expect(textOptions).toMatchObject({
|
|
settingSources: [],
|
|
skills: [],
|
|
plugins: [],
|
|
tools: [],
|
|
managedSettings: {
|
|
allowManagedMcpServersOnly: true,
|
|
allowedMcpServers: [],
|
|
},
|
|
strictMcpConfig: true,
|
|
allowedTools: [],
|
|
permissionMode: 'dontAsk',
|
|
persistSession: false,
|
|
env: expect.not.objectContaining({ ANTHROPIC_API_KEY: 'sk-ant-test' }),
|
|
});
|
|
expect(textOptions.disallowedTools).toEqual(expect.arrayContaining(['Agent', 'Task', 'Bash']));
|
|
expect(await textOptions.canUseTool('Agent', {}, { signal: new AbortController().signal, toolUseID: 'agent' })).toMatchObject({
|
|
behavior: 'deny',
|
|
toolUseID: 'agent',
|
|
});
|
|
expect(await textOptions.canUseTool('Skill', {}, { signal: new AbortController().signal, toolUseID: 'skill' })).toMatchObject({
|
|
behavior: 'deny',
|
|
toolUseID: 'skill',
|
|
});
|
|
expect(
|
|
await textOptions.canUseTool('SlashCommand', {}, { signal: new AbortController().signal, toolUseID: 'slash' }),
|
|
).toMatchObject({
|
|
behavior: 'deny',
|
|
toolUseID: 'slash',
|
|
});
|
|
|
|
const probeQuery = vi.fn((_input: any) => stream([hostDiscoveredInit, resultMessage({ result: 'ok' })]));
|
|
await expect(
|
|
runClaudeCodeAuthProbe({
|
|
projectDir: '/tmp/project',
|
|
model: 'sonnet',
|
|
query: probeQuery,
|
|
env: { ANTHROPIC_AUTH_TOKEN: 'token', HOME: '/Users/test' },
|
|
}),
|
|
).resolves.toEqual({ ok: true });
|
|
expect(probeQuery.mock.calls[0][0].options).toMatchObject({
|
|
settingSources: [],
|
|
skills: [],
|
|
plugins: [],
|
|
tools: [],
|
|
allowedTools: [],
|
|
permissionMode: 'dontAsk',
|
|
persistSession: false,
|
|
env: expect.objectContaining({ HOME: '/Users/test' }),
|
|
});
|
|
expect(probeQuery.mock.calls[0][0].options.env).not.toEqual(
|
|
expect.objectContaining({ ANTHROPIC_AUTH_TOKEN: 'token' }),
|
|
);
|
|
});
|
|
|
|
it('allows host-discovered context during agent loops while requiring exact KTX MCP tools and servers', async () => {
|
|
const query = vi.fn((_input: any) =>
|
|
stream([
|
|
initMessage({
|
|
tools: ['mcp__ktx__load_skill'],
|
|
mcp_servers: [{ name: 'ktx', status: 'connected' }],
|
|
slash_commands: ['/help', '/compact', '/clear'],
|
|
skills: ['memory-agent', 'doc-reader'],
|
|
agents: ['claude', 'Plan', 'Explore'],
|
|
}),
|
|
{
|
|
type: 'assistant',
|
|
message: { role: 'assistant', content: [] },
|
|
parent_tool_use_id: null,
|
|
uuid: '00000000-0000-4000-8000-000000000006',
|
|
session_id: 'session-id',
|
|
} as unknown as SDKMessage,
|
|
resultMessage({ subtype: 'error_max_turns', is_error: true }),
|
|
]),
|
|
);
|
|
const runtime = new ClaudeCodeKtxLlmRuntime({
|
|
projectDir: '/tmp/project',
|
|
modelSlots: { default: 'sonnet' },
|
|
query,
|
|
env: {},
|
|
});
|
|
|
|
await expect(
|
|
runtime.runAgentLoop({
|
|
modelRole: 'default',
|
|
systemPrompt: 'system',
|
|
userPrompt: 'user',
|
|
toolSet: {
|
|
load_skill: {
|
|
name: 'load_skill',
|
|
description: 'Load skill.',
|
|
inputSchema: z.object({ name: z.string() }),
|
|
execute: async () => ({ markdown: 'loaded' }),
|
|
},
|
|
},
|
|
stepBudget: 1,
|
|
telemetryTags: { operationName: 'test' },
|
|
}),
|
|
).resolves.toEqual({ stopReason: 'budget' });
|
|
|
|
const options = query.mock.calls[0][0].options;
|
|
expect(options.allowedTools).toEqual(['mcp__ktx__load_skill']);
|
|
expect(options.managedSettings).toEqual({
|
|
allowManagedMcpServersOnly: true,
|
|
allowedMcpServers: [{ serverName: 'ktx' }],
|
|
});
|
|
expect(options.strictMcpConfig).toBe(true);
|
|
expect(await options.canUseTool('mcp__ktx__load_skill', {}, { signal: new AbortController().signal, toolUseID: '1' })).toEqual({
|
|
behavior: 'allow',
|
|
toolUseID: '1',
|
|
});
|
|
expect(await options.canUseTool('Task', {}, { signal: new AbortController().signal, toolUseID: '2' })).toMatchObject({
|
|
behavior: 'deny',
|
|
toolUseID: '2',
|
|
});
|
|
expect(await options.canUseTool('Skill', {}, { signal: new AbortController().signal, toolUseID: '3' })).toMatchObject({
|
|
behavior: 'deny',
|
|
toolUseID: '3',
|
|
});
|
|
});
|
|
|
|
it('still rejects unexpected tools, missing KTX tools, plugins, and non-KTX MCP servers from init messages', async () => {
|
|
const query = vi.fn((_input: any) =>
|
|
stream([
|
|
initMessage({
|
|
tools: ['Bash'],
|
|
mcp_servers: [{ name: 'filesystem', status: 'connected' }],
|
|
plugins: [{ name: 'host-plugin', path: '/tmp/plugin' }],
|
|
}),
|
|
resultMessage({ result: 'hello' }),
|
|
]),
|
|
);
|
|
const runtime = new ClaudeCodeKtxLlmRuntime({
|
|
projectDir: '/tmp/project',
|
|
modelSlots: { default: 'sonnet' },
|
|
query,
|
|
env: {},
|
|
});
|
|
|
|
await expect(
|
|
runtime.generateText({
|
|
role: 'default',
|
|
prompt: 'say hello',
|
|
tools: {
|
|
load_skill: {
|
|
name: 'load_skill',
|
|
description: 'Load skill.',
|
|
inputSchema: z.object({ name: z.string() }),
|
|
execute: async () => ({ markdown: 'loaded' }),
|
|
},
|
|
},
|
|
}),
|
|
).rejects.toThrow(
|
|
/Claude Code runtime isolation failed: .*tools=Bash.*missing_tools=mcp__ktx__load_skill.*mcp_servers=filesystem.*plugins=host-plugin/,
|
|
);
|
|
});
|
|
|
|
it('passes scrubbed env to object generation and agent loops', async () => {
|
|
const schema = z.object({ answer: z.string() });
|
|
const objectQuery = vi.fn((_input: any) =>
|
|
stream([
|
|
initMessage({ tools: ['StructuredOutput'] }),
|
|
resultMessage({ structured_output: { answer: 'yes' } }),
|
|
]),
|
|
);
|
|
const objectRuntime = new ClaudeCodeKtxLlmRuntime({
|
|
projectDir: '/tmp/project',
|
|
modelSlots: { default: 'sonnet' },
|
|
query: objectQuery,
|
|
env: { ANTHROPIC_API_KEY: 'sk-ant-test', AWS_PROFILE: 'prod', PATH: '/usr/bin' }, // pragma: allowlist secret
|
|
});
|
|
|
|
await expect(objectRuntime.generateObject({ role: 'default', prompt: 'json', schema })).resolves.toEqual({
|
|
answer: 'yes',
|
|
});
|
|
expect(objectQuery.mock.calls[0][0].options.env).toEqual(expect.objectContaining({ PATH: '/usr/bin' }));
|
|
expect(objectQuery.mock.calls[0][0].options.managedSettings).toEqual({
|
|
allowManagedMcpServersOnly: true,
|
|
allowedMcpServers: [],
|
|
});
|
|
expect(objectQuery.mock.calls[0][0].options.env).not.toEqual(
|
|
expect.objectContaining({ ANTHROPIC_API_KEY: 'sk-ant-test', AWS_PROFILE: 'prod' }), // pragma: allowlist secret
|
|
);
|
|
|
|
const agentQuery = vi.fn((_input: any) =>
|
|
stream([
|
|
initMessage({ tools: ['mcp__ktx__load_skill'], mcp_servers: [{ name: 'ktx', status: 'connected' }] }),
|
|
{
|
|
type: 'assistant',
|
|
message: { role: 'assistant', content: [] },
|
|
parent_tool_use_id: null,
|
|
uuid: '00000000-0000-4000-8000-000000000004',
|
|
session_id: 'session-id',
|
|
} as unknown as SDKMessage,
|
|
resultMessage({ subtype: 'error_max_turns', is_error: true }),
|
|
]),
|
|
);
|
|
const agentRuntime = new ClaudeCodeKtxLlmRuntime({
|
|
projectDir: '/tmp/project',
|
|
modelSlots: { default: 'sonnet' },
|
|
query: agentQuery,
|
|
env: { ANTHROPIC_AUTH_TOKEN: 'token', CLAUDE_CODE_USE_VERTEX: '1', HOME: '/Users/test' },
|
|
});
|
|
|
|
await agentRuntime.runAgentLoop({
|
|
modelRole: 'default',
|
|
systemPrompt: 'system',
|
|
userPrompt: 'user',
|
|
toolSet: {
|
|
load_skill: {
|
|
name: 'load_skill',
|
|
description: 'Load skill.',
|
|
inputSchema: z.object({ name: z.string() }),
|
|
execute: async () => ({ markdown: 'loaded' }),
|
|
},
|
|
},
|
|
stepBudget: 1,
|
|
telemetryTags: { operationName: 'test' },
|
|
});
|
|
expect(agentQuery.mock.calls[0][0].options.env).toEqual(expect.objectContaining({ HOME: '/Users/test' }));
|
|
expect(agentQuery.mock.calls[0][0].options.managedSettings).toEqual({
|
|
allowManagedMcpServersOnly: true,
|
|
allowedMcpServers: [{ serverName: 'ktx' }],
|
|
});
|
|
expect(agentQuery.mock.calls[0][0].options.env).not.toEqual(
|
|
expect.objectContaining({ ANTHROPIC_AUTH_TOKEN: 'token', CLAUDE_CODE_USE_VERTEX: '1' }),
|
|
);
|
|
});
|
|
|
|
it('logs and ignores onStepFinish callback errors', async () => {
|
|
const query = vi.fn((_input: any) =>
|
|
stream([
|
|
initMessage(),
|
|
{
|
|
type: 'assistant',
|
|
message: { role: 'assistant', content: [] },
|
|
parent_tool_use_id: null,
|
|
uuid: '00000000-0000-4000-8000-000000000005',
|
|
session_id: 'session-id',
|
|
} as unknown as SDKMessage,
|
|
resultMessage({ subtype: 'success', terminal_reason: 'completed' }),
|
|
]),
|
|
);
|
|
const logger = {
|
|
debug: vi.fn(),
|
|
log: vi.fn(),
|
|
warn: vi.fn(),
|
|
error: vi.fn(),
|
|
};
|
|
const runtime = new ClaudeCodeKtxLlmRuntime({
|
|
projectDir: '/tmp/project',
|
|
modelSlots: { default: 'sonnet' },
|
|
query,
|
|
env: {},
|
|
logger,
|
|
});
|
|
|
|
await expect(
|
|
runtime.runAgentLoop({
|
|
modelRole: 'default',
|
|
systemPrompt: 'system',
|
|
userPrompt: 'user',
|
|
toolSet: {},
|
|
stepBudget: 1,
|
|
telemetryTags: { operationName: 'test' },
|
|
onStepFinish: async () => {
|
|
throw new Error('callback exploded');
|
|
},
|
|
}),
|
|
).resolves.toEqual({ stopReason: 'natural' });
|
|
expect(logger.warn).toHaveBeenCalledWith(expect.stringContaining('callback exploded'));
|
|
});
|
|
|
|
it('maps max-turn terminal reasons to budget', () => {
|
|
expect(mapClaudeCodeStopReason(resultMessage({ subtype: 'error_max_turns' }))).toBe('budget');
|
|
expect(mapClaudeCodeStopReason(resultMessage({ terminal_reason: 'max_turns' }))).toBe('budget');
|
|
expect(mapClaudeCodeStopReason(resultMessage({ stop_reason: 'max_turns' }))).toBe('budget');
|
|
expect(mapClaudeCodeStopReason(resultMessage({ subtype: 'success', terminal_reason: 'completed' }))).toBe('natural');
|
|
expect(mapClaudeCodeStopReason(resultMessage({ subtype: 'error_during_execution' }))).toBe('error');
|
|
});
|
|
|
|
it('auth probe uses isolation options and a scrubbed env', async () => {
|
|
const query = vi.fn((_input: any) => stream([initMessage(), resultMessage({ result: 'ok' })]));
|
|
|
|
await expect(
|
|
runClaudeCodeAuthProbe({ projectDir: '/tmp/project', model: 'sonnet', query, env: { ANTHROPIC_API_KEY: 'sk-ant-test' } }), // pragma: allowlist secret
|
|
).resolves.toEqual({ ok: true });
|
|
expect(query.mock.calls[0][0].options).toMatchObject({
|
|
settingSources: [],
|
|
skills: [],
|
|
plugins: [],
|
|
tools: [],
|
|
managedSettings: {
|
|
allowManagedMcpServersOnly: true,
|
|
allowedMcpServers: [],
|
|
},
|
|
strictMcpConfig: true,
|
|
allowedTools: [],
|
|
persistSession: false,
|
|
env: expect.not.objectContaining({ ANTHROPIC_API_KEY: 'sk-ant-test' }),
|
|
});
|
|
});
|
|
|
|
it('reports unsupported Claude Code models without framing them as auth failures', async () => {
|
|
await expect(
|
|
runClaudeCodeAuthProbe({
|
|
projectDir: '/tmp/project',
|
|
model: 'gpt-5',
|
|
query: vi.fn(),
|
|
env: {},
|
|
}),
|
|
).resolves.toEqual({
|
|
ok: false,
|
|
message: 'Unsupported Claude Code model "gpt-5". Use sonnet, opus, haiku, or a claude-* model id.',
|
|
});
|
|
});
|
|
});
|