summaryrefslogtreecommitdiffhomepage
path: root/packages/api/tests/agent-manager.test.ts
diff options
context:
space:
mode:
Diffstat (limited to 'packages/api/tests/agent-manager.test.ts')
-rw-r--r--packages/api/tests/agent-manager.test.ts30
1 files changed, 30 insertions, 0 deletions
diff --git a/packages/api/tests/agent-manager.test.ts b/packages/api/tests/agent-manager.test.ts
index dbbcc65..788106e 100644
--- a/packages/api/tests/agent-manager.test.ts
+++ b/packages/api/tests/agent-manager.test.ts
@@ -472,6 +472,14 @@ vi.mock("@dispatch/core", () => ({
execute: async () => "mock",
};
},
+ createKeyUsageTool(_callbacks: unknown) {
+ return {
+ name: "key_usage",
+ description: "key usage",
+ parameters: { _type: "z.ZodObject", shape: {} },
+ execute: async () => "mock",
+ };
+ },
createSearchCodeTool(_wd: string) {
return {
name: "search_code",
@@ -1568,6 +1576,28 @@ describe("AgentManager", () => {
});
});
+ describe("key_usage permission gate", () => {
+ // The key_usage tool is conditionally useful, so it must be COMPLETELY
+ // absent from the toolset (and thus the model's context) unless
+ // perm_key_usage is explicitly allowed.
+ async function toolsForPerms(tabId: string, perms: Record<string, string>): Promise<string[]> {
+ for (const [k, v] of Object.entries(perms)) setFakeSetting(k, v);
+ const manager = new AgentManager();
+ await manager.processMessage(tabId, "go");
+ return constructedAgents.at(-1)?.toolNames ?? [];
+ }
+
+ it("registers key_usage when perm_key_usage is allowed", async () => {
+ const tools = await toolsForPerms("tab-key-usage-on", { perm_key_usage: "allow" });
+ expect(tools).toContain("key_usage");
+ });
+
+ it("omits key_usage when perm_key_usage is not allowed", async () => {
+ const tools = await toolsForPerms("tab-key-usage-off", {});
+ expect(tools).not.toContain("key_usage");
+ });
+ });
+
// Regression: granted tab-messaging tools must also be ADVERTISED in the
// agent's system prompt. The tools were registered in the API tool payload
// but `buildSystemPrompt` filtered its "You have access to the following