mirror of
https://github.com/sipeed/picoclaw.git
synced 2026-05-25 16:00:35 +00:00
lxowalle
2992eccbf0
* feat: add request-scoped context policies Add named turn profiles under agents.defaults so callers can opt into per-request context and tool policies without changing default chat behavior. Profiles can disable history, system context, skill prompts, or tools, and can limit skills/tools with allow lists. Wire profile selection through Pico message payloads, agent turn execution, Web chat selection, and Web visual config. Reject invalid turn profiles before saving config through Web APIs and document the new request context policy behavior. * fix: address turn profile review blockers * feat: simplify request context policy config * fix: suppress tool prompt when turn tools are disabled * fix: enforce turn profile tool restrictions
1176 lines
36 KiB
Go
1176 lines
36 KiB
Go
package agent
|
|
|
|
import (
|
|
"context"
|
|
"os"
|
|
"path/filepath"
|
|
"reflect"
|
|
"strings"
|
|
"testing"
|
|
"time"
|
|
|
|
"github.com/sipeed/picoclaw/pkg/bus"
|
|
"github.com/sipeed/picoclaw/pkg/config"
|
|
"github.com/sipeed/picoclaw/pkg/providers"
|
|
"github.com/sipeed/picoclaw/pkg/tools"
|
|
)
|
|
|
|
type turnProfileCaptureProvider struct {
|
|
messages []providers.Message
|
|
tools []providers.ToolDefinition
|
|
}
|
|
|
|
func (p *turnProfileCaptureProvider) Chat(
|
|
ctx context.Context,
|
|
messages []providers.Message,
|
|
tools []providers.ToolDefinition,
|
|
model string,
|
|
opts map[string]any,
|
|
) (*providers.LLMResponse, error) {
|
|
p.messages = append([]providers.Message(nil), messages...)
|
|
p.tools = append([]providers.ToolDefinition(nil), tools...)
|
|
return &providers.LLMResponse{Content: "profile response"}, nil
|
|
}
|
|
|
|
func (p *turnProfileCaptureProvider) GetDefaultModel() string {
|
|
return "test-model"
|
|
}
|
|
|
|
type turnProfileSideQuestionCaptureProvider struct {
|
|
messages []providers.Message
|
|
}
|
|
|
|
func (p *turnProfileSideQuestionCaptureProvider) Chat(
|
|
ctx context.Context,
|
|
messages []providers.Message,
|
|
tools []providers.ToolDefinition,
|
|
model string,
|
|
opts map[string]any,
|
|
) (*providers.LLMResponse, error) {
|
|
p.messages = append([]providers.Message(nil), messages...)
|
|
return &providers.LLMResponse{Content: "side answer"}, nil
|
|
}
|
|
|
|
func (p *turnProfileSideQuestionCaptureProvider) GetDefaultModel() string {
|
|
return "test-model"
|
|
}
|
|
|
|
func newTurnProfileAgentLoop(
|
|
t *testing.T,
|
|
cfg *config.Config,
|
|
provider *turnProfileCaptureProvider,
|
|
) *AgentLoop {
|
|
t.Helper()
|
|
t.Setenv("PICOCLAW_BUILTIN_SKILLS", t.TempDir())
|
|
if cfg.Agents.Defaults.Workspace == "" {
|
|
cfg.Agents.Defaults.Workspace = t.TempDir()
|
|
}
|
|
if cfg.Agents.Defaults.ModelName == "" {
|
|
cfg.Agents.Defaults.ModelName = "test-model"
|
|
}
|
|
if cfg.Agents.Defaults.MaxTokens == 0 {
|
|
cfg.Agents.Defaults.MaxTokens = 4096
|
|
}
|
|
if cfg.Agents.Defaults.MaxToolIterations == 0 {
|
|
cfg.Agents.Defaults.MaxToolIterations = 10
|
|
}
|
|
return NewAgentLoop(cfg, bus.NewMessageBus(), provider)
|
|
}
|
|
|
|
func writeTurnProfileSkill(t *testing.T, workspace, name, body string) {
|
|
t.Helper()
|
|
dir := filepath.Join(workspace, "skills", name)
|
|
if err := os.MkdirAll(dir, 0o755); err != nil {
|
|
t.Fatalf("mkdir skill: %v", err)
|
|
}
|
|
if err := os.WriteFile(filepath.Join(dir, "SKILL.md"), []byte(body), 0o644); err != nil {
|
|
t.Fatalf("write skill: %v", err)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_DisabledPreservesDefaultHistoryAndPrompt(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: false,
|
|
History: config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeOff,
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &turnProfileCaptureProvider{}
|
|
al := newTurnProfileAgentLoop(t, cfg, provider)
|
|
agent := al.GetRegistry().GetDefaultAgent()
|
|
sessionKey := "agent:default:test-default"
|
|
initialHistory := []providers.Message{
|
|
{Role: "user", Content: "old user"},
|
|
{Role: "assistant", Content: "old assistant"},
|
|
}
|
|
agent.Sessions.SetHistory(sessionKey, initialHistory)
|
|
agent.Sessions.SetSummary(sessionKey, "old summary")
|
|
|
|
got, err := al.runAgentLoop(context.Background(), agent, processOptions{
|
|
SessionKey: sessionKey,
|
|
UserMessage: "new user",
|
|
DefaultResponse: defaultResponse,
|
|
EnableSummary: false,
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if got != "profile response" {
|
|
t.Fatalf("runAgentLoop() = %q, want profile response", got)
|
|
}
|
|
if len(provider.messages) != 4 {
|
|
t.Fatalf("provider messages len = %d, want system + history + user", len(provider.messages))
|
|
}
|
|
if !reflect.DeepEqual(provider.messages[1:3], initialHistory) {
|
|
t.Fatalf("provider history = %#v, want %#v", provider.messages[1:3], initialHistory)
|
|
}
|
|
if !strings.Contains(provider.messages[0].Content, "CONTEXT_SUMMARY") {
|
|
t.Fatalf("system prompt missing summary in default mode:\n%s", provider.messages[0].Content)
|
|
}
|
|
history := agent.Sessions.GetHistory(sessionKey)
|
|
if len(history) != len(initialHistory)+2 {
|
|
t.Fatalf("history len = %d, want initial + user + assistant", len(history))
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_HistoryOffSuppressesHistoryAndPersistence(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &turnProfileCaptureProvider{}
|
|
al := newTurnProfileAgentLoop(t, cfg, provider)
|
|
agent := al.GetRegistry().GetDefaultAgent()
|
|
sessionKey := "agent:default:test-history-off"
|
|
initialHistory := []providers.Message{
|
|
{Role: "user", Content: "old user"},
|
|
{Role: "assistant", Content: "old assistant"},
|
|
}
|
|
agent.Sessions.SetHistory(sessionKey, initialHistory)
|
|
agent.Sessions.SetSummary(sessionKey, "old summary")
|
|
|
|
_, err := al.runAgentLoop(context.Background(), agent, processOptions{
|
|
SessionKey: sessionKey,
|
|
UserMessage: "new user",
|
|
DefaultResponse: defaultResponse,
|
|
EnableSummary: true,
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if len(provider.messages) != 2 {
|
|
t.Fatalf("provider messages len = %d, want system + current user", len(provider.messages))
|
|
}
|
|
if provider.messages[1].Content != "new user" {
|
|
t.Fatalf("current message = %q, want new user", provider.messages[1].Content)
|
|
}
|
|
if strings.Contains(provider.messages[0].Content, "old summary") {
|
|
t.Fatalf("system prompt includes suppressed summary:\n%s", provider.messages[0].Content)
|
|
}
|
|
history := agent.Sessions.GetHistory(sessionKey)
|
|
if !reflect.DeepEqual(history, initialHistory) {
|
|
t.Fatalf("history = %#v, want unchanged %#v", history, initialHistory)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_ProcessMessageUsesEnabledTurnProfile(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &turnProfileCaptureProvider{}
|
|
al := newTurnProfileAgentLoop(t, cfg, provider)
|
|
|
|
_, err := al.processMessage(context.Background(), bus.InboundMessage{
|
|
Context: bus.InboundContext{
|
|
Channel: "pico",
|
|
ChatID: "pico:sess-1",
|
|
ChatType: "direct",
|
|
SenderID: "pico-user",
|
|
},
|
|
Content: "hello from pico",
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("processMessage() error = %v", err)
|
|
}
|
|
if len(provider.messages) != 2 {
|
|
t.Fatalf("provider messages len = %d, want system + current user", len(provider.messages))
|
|
}
|
|
if provider.messages[1].Content != "hello from pico" {
|
|
t.Fatalf("current message = %q, want hello from pico", provider.messages[1].Content)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_BtwCommandUsesEnabledTurnProfile(t *testing.T) {
|
|
workspace := t.TempDir()
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
Workspace: workspace,
|
|
ModelName: "test-model",
|
|
MaxTokens: 4096,
|
|
MaxToolIterations: 10,
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
},
|
|
},
|
|
},
|
|
ModelList: []*config.ModelConfig{{
|
|
ModelName: "test-model",
|
|
Model: "openai/test-model",
|
|
}},
|
|
}
|
|
t.Setenv("PICOCLAW_BUILTIN_SKILLS", t.TempDir())
|
|
sideProvider := &turnProfileSideQuestionCaptureProvider{}
|
|
al := NewAgentLoop(cfg, bus.NewMessageBus(), &turnProfileCaptureProvider{})
|
|
al.providerFactory = func(mc *config.ModelConfig) (providers.LLMProvider, string, error) {
|
|
return sideProvider, "test-model", nil
|
|
}
|
|
|
|
_, err := al.processMessage(context.Background(), bus.InboundMessage{
|
|
Context: bus.InboundContext{
|
|
Channel: "pico",
|
|
ChatID: "pico:btw",
|
|
ChatType: "direct",
|
|
SenderID: "pico-user",
|
|
},
|
|
Content: "/btw explain privately",
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("processMessage() error = %v", err)
|
|
}
|
|
if len(sideProvider.messages) < 2 {
|
|
t.Fatalf("side question messages len = %d, want system + user", len(sideProvider.messages))
|
|
}
|
|
systemPrompt := sideProvider.messages[0].Content
|
|
blockedSnippets := []string{
|
|
"ALWAYS use tools",
|
|
"When using tools",
|
|
"read_file tool",
|
|
"update " + workspace + "/memory/MEMORY.md",
|
|
}
|
|
for _, snippet := range blockedSnippets {
|
|
if strings.Contains(systemPrompt, snippet) {
|
|
t.Fatalf("side question system prompt includes %q despite tools.mode=off:\n%s", snippet, systemPrompt)
|
|
}
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_BtwCommandDoesNotAddToolFallbackWhenSystemPromptOff(t *testing.T) {
|
|
workspace := t.TempDir()
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
Workspace: workspace,
|
|
ModelName: "test-model",
|
|
MaxTokens: 4096,
|
|
MaxToolIterations: 10,
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
SystemPrompt: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeCustom,
|
|
Allow: []string{"echo_text"},
|
|
},
|
|
},
|
|
},
|
|
},
|
|
ModelList: []*config.ModelConfig{{
|
|
ModelName: "test-model",
|
|
Model: "openai/test-model",
|
|
}},
|
|
}
|
|
t.Setenv("PICOCLAW_BUILTIN_SKILLS", t.TempDir())
|
|
sideProvider := &turnProfileSideQuestionCaptureProvider{}
|
|
al := NewAgentLoop(cfg, bus.NewMessageBus(), &turnProfileCaptureProvider{})
|
|
al.RegisterTool(&echoTextTool{})
|
|
al.providerFactory = func(mc *config.ModelConfig) (providers.LLMProvider, string, error) {
|
|
return sideProvider, "test-model", nil
|
|
}
|
|
|
|
_, err := al.processMessage(context.Background(), bus.InboundMessage{
|
|
Context: bus.InboundContext{
|
|
Channel: "pico",
|
|
ChatID: "pico:btw-system-off",
|
|
ChatType: "direct",
|
|
SenderID: "pico-user",
|
|
},
|
|
Content: "/btw explain privately",
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("processMessage() error = %v", err)
|
|
}
|
|
for _, msg := range sideProvider.messages {
|
|
if msg.Role == "system" && strings.Contains(msg.Content, toolUseSystemPromptRule()) {
|
|
t.Fatalf("side question system prompt includes tool fallback despite no tools:\n%s", msg.Content)
|
|
}
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_BtwHookCannotReenableNativeSearchWhenToolsOff(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
Workspace: t.TempDir(),
|
|
ModelName: "test-model",
|
|
MaxTokens: 4096,
|
|
MaxToolIterations: 10,
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
},
|
|
},
|
|
},
|
|
ModelList: []*config.ModelConfig{{
|
|
ModelName: "test-model",
|
|
Model: "openai/test-model",
|
|
}},
|
|
}
|
|
provider := &nativeSearchCaptureProvider{}
|
|
al := NewAgentLoop(cfg, bus.NewMessageBus(), provider)
|
|
al.providerFactory = func(mc *config.ModelConfig) (providers.LLMProvider, string, error) {
|
|
return provider, "test-model", nil
|
|
}
|
|
if err := al.MountHook(NamedHook("enable-native-search", turnProfileEnableNativeSearchHook{})); err != nil {
|
|
t.Fatalf("MountHook() error = %v", err)
|
|
}
|
|
|
|
_, err := al.processMessage(context.Background(), bus.InboundMessage{
|
|
Context: bus.InboundContext{
|
|
Channel: "pico",
|
|
ChatID: "pico:btw-native-search",
|
|
ChatType: "direct",
|
|
SenderID: "pico-user",
|
|
},
|
|
Content: "/btw search privately",
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("processMessage() error = %v", err)
|
|
}
|
|
if provider.lastOpts["turn_profile_test_hook"] != true {
|
|
t.Fatalf("BeforeLLM hook did not run for /btw: %#v", provider.lastOpts)
|
|
}
|
|
if provider.lastOpts["native_search"] == true {
|
|
t.Fatalf("native_search option enabled by /btw hook despite tools.mode=off: %#v", provider.lastOpts)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_SubTurnInheritsParentToolProfile(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
Workspace: t.TempDir(),
|
|
ModelName: "test-model",
|
|
MaxTokens: 4096,
|
|
MaxToolIterations: 10,
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeCustom,
|
|
Allow: []string{"echo_text"},
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &turnProfileCaptureProvider{}
|
|
al := newTurnProfileAgentLoop(t, cfg, provider)
|
|
al.RegisterTool(&echoTextTool{})
|
|
al.RegisterTool(&echoTextRewrittenTool{})
|
|
agent := al.GetRegistry().GetDefaultAgent()
|
|
profile, ok, err := cfg.Agents.Defaults.ResolveTurnProfile()
|
|
if err != nil {
|
|
t.Fatalf("ResolveTurnProfile() error = %v", err)
|
|
}
|
|
if !ok {
|
|
t.Fatal("ResolveTurnProfile() did not return enabled profile")
|
|
}
|
|
parentOpts := processOptions{
|
|
Dispatch: DispatchRequest{
|
|
SessionKey: "agent:default:test-parent",
|
|
UserMessage: "parent",
|
|
},
|
|
TurnProfile: profile,
|
|
}
|
|
parentTS := newTurnState(agent, parentOpts, turnEventScope{
|
|
turnID: "parent-turn-profile",
|
|
})
|
|
|
|
_, err = spawnSubTurn(context.Background(), al, parentTS, SubTurnConfig{
|
|
Model: "test-model",
|
|
SystemPrompt: "child task",
|
|
Timeout: time.Second,
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("spawnSubTurn() error = %v", err)
|
|
}
|
|
if len(provider.tools) != 1 {
|
|
t.Fatalf("child provider tools len = %d, want 1: %#v", len(provider.tools), provider.tools)
|
|
}
|
|
if provider.tools[0].Function.Name != "echo_text" {
|
|
t.Fatalf("child provider tool = %q, want echo_text", provider.tools[0].Function.Name)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_SystemPromptOffUsesExternalPromptOnly(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
SystemPrompt: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Skills: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &turnProfileCaptureProvider{}
|
|
al := newTurnProfileAgentLoop(t, cfg, provider)
|
|
agent := al.GetRegistry().GetDefaultAgent()
|
|
|
|
_, err := al.runAgentLoop(context.Background(), agent, processOptions{
|
|
SessionKey: "agent:default:test-external-prompt",
|
|
UserMessage: "hello",
|
|
DefaultResponse: defaultResponse,
|
|
SystemPromptOverride: "External prompt only.",
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if len(provider.messages) != 2 {
|
|
t.Fatalf("messages len = %d, want system + user", len(provider.messages))
|
|
}
|
|
if strings.TrimSpace(provider.messages[0].Content) != "External prompt only." {
|
|
t.Fatalf("system prompt = %q, want external only", provider.messages[0].Content)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_SystemPromptOffBlankTurnStillSendsMessage(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
SystemPrompt: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Skills: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &turnProfileCaptureProvider{}
|
|
al := newTurnProfileAgentLoop(t, cfg, provider)
|
|
|
|
_, err := al.runAgentLoop(context.Background(), al.GetRegistry().GetDefaultAgent(), processOptions{
|
|
SessionKey: "agent:default:test-blank-system-off",
|
|
UserMessage: "",
|
|
DefaultResponse: defaultResponse,
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if len(provider.messages) != 1 {
|
|
t.Fatalf(
|
|
"provider messages len = %d, want one blank user message: %#v",
|
|
len(provider.messages),
|
|
provider.messages,
|
|
)
|
|
}
|
|
if provider.messages[0].Role != "user" || provider.messages[0].Content != "" {
|
|
t.Fatalf("provider message = %#v, want blank user message", provider.messages[0])
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_SystemPromptOffAddsToolFallbackWhenToolsVisible(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
SystemPrompt: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Skills: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeCustom,
|
|
Allow: []string{"echo_text"},
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &turnProfileCaptureProvider{}
|
|
al := newTurnProfileAgentLoop(t, cfg, provider)
|
|
al.RegisterTool(&echoTextTool{})
|
|
agent := al.GetRegistry().GetDefaultAgent()
|
|
|
|
_, err := al.runAgentLoop(context.Background(), agent, processOptions{
|
|
SessionKey: "agent:default:test-tool-fallback",
|
|
UserMessage: "hello",
|
|
DefaultResponse: defaultResponse,
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if got := strings.TrimSpace(provider.messages[0].Content); got != toolUseSystemPromptRule() {
|
|
t.Fatalf("fallback prompt = %q, want existing tool rule %q", got, toolUseSystemPromptRule())
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_SkillsOffAndCustomControlCatalogAndActiveSkills(t *testing.T) {
|
|
workspace := t.TempDir()
|
|
writeTurnProfileSkill(
|
|
t,
|
|
workspace,
|
|
"shell",
|
|
"---\ndescription: shell skill\n---\n# shell\n\nUse shell carefully.",
|
|
)
|
|
writeTurnProfileSkill(
|
|
t,
|
|
workspace,
|
|
"paint",
|
|
"---\ndescription: paint skill\n---\n# paint\n\nUse paint vividly.",
|
|
)
|
|
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
Workspace: workspace,
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeOff,
|
|
},
|
|
Skills: config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeOff,
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &turnProfileCaptureProvider{}
|
|
al := newTurnProfileAgentLoop(t, cfg, provider)
|
|
agent := al.GetRegistry().GetDefaultAgent()
|
|
|
|
_, err := al.runAgentLoop(context.Background(), agent, processOptions{
|
|
SessionKey: "agent:default:test-skills-off",
|
|
UserMessage: "hello",
|
|
DefaultResponse: defaultResponse,
|
|
ForcedSkills: []string{"shell"},
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop(no-skills) error = %v", err)
|
|
}
|
|
noSkillsPrompt := provider.messages[0].Content
|
|
if strings.Contains(noSkillsPrompt, "# Skills") ||
|
|
strings.Contains(noSkillsPrompt, "# Active Skills") {
|
|
t.Fatalf("skills-off prompt includes skill context:\n%s", noSkillsPrompt)
|
|
}
|
|
|
|
cfg.Agents.Defaults.TurnProfile.Skills = config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeCustom,
|
|
Allow: []string{"shell"},
|
|
}
|
|
provider = &turnProfileCaptureProvider{}
|
|
al = newTurnProfileAgentLoop(t, cfg, provider)
|
|
agent = al.GetRegistry().GetDefaultAgent()
|
|
|
|
_, err = al.runAgentLoop(context.Background(), agent, processOptions{
|
|
SessionKey: "agent:default:test-skills-custom",
|
|
UserMessage: "hello",
|
|
DefaultResponse: defaultResponse,
|
|
ForcedSkills: []string{"shell", "paint"},
|
|
})
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop(shell-only) error = %v", err)
|
|
}
|
|
customPrompt := provider.messages[0].Content
|
|
if !strings.Contains(customPrompt, "<name>shell</name>") ||
|
|
!strings.Contains(customPrompt, "### Skill: shell") {
|
|
t.Fatalf("custom skills prompt missing allowed shell context:\n%s", customPrompt)
|
|
}
|
|
if strings.Contains(customPrompt, "<name>paint</name>") ||
|
|
strings.Contains(customPrompt, "### Skill: paint") {
|
|
t.Fatalf("custom skills prompt includes disallowed paint context:\n%s", customPrompt)
|
|
}
|
|
}
|
|
|
|
type turnProfileAddToolHook struct{}
|
|
|
|
func (h turnProfileAddToolHook) BeforeLLM(
|
|
ctx context.Context,
|
|
req *LLMHookRequest,
|
|
) (*LLMHookRequest, HookDecision, error) {
|
|
next := req.Clone()
|
|
next.Tools = append(next.Tools, providers.ToolDefinition{
|
|
Type: "function",
|
|
Function: providers.ToolFunctionDefinition{
|
|
Name: "echo_text_rewritten",
|
|
Description: "hook-added tool",
|
|
Parameters: map[string]any{"type": "object"},
|
|
},
|
|
})
|
|
return next, HookDecision{Action: HookActionModify}, nil
|
|
}
|
|
|
|
type turnProfileEnableNativeSearchHook struct{}
|
|
|
|
func (h turnProfileEnableNativeSearchHook) BeforeLLM(
|
|
ctx context.Context,
|
|
req *LLMHookRequest,
|
|
) (*LLMHookRequest, HookDecision, error) {
|
|
next := req.Clone()
|
|
if next.Options == nil {
|
|
next.Options = map[string]any{}
|
|
}
|
|
next.Options["turn_profile_test_hook"] = true
|
|
next.Options["native_search"] = true
|
|
return next, HookDecision{Action: HookActionModify}, nil
|
|
}
|
|
|
|
func (h turnProfileEnableNativeSearchHook) AfterLLM(
|
|
ctx context.Context,
|
|
resp *LLMHookResponse,
|
|
) (*LLMHookResponse, HookDecision, error) {
|
|
return resp, HookDecision{Action: HookActionContinue}, nil
|
|
}
|
|
|
|
type turnProfileRespondToolHook struct{}
|
|
|
|
func (h turnProfileRespondToolHook) BeforeTool(
|
|
ctx context.Context,
|
|
req *ToolCallHookRequest,
|
|
) (*ToolCallHookRequest, HookDecision, error) {
|
|
next := req.Clone()
|
|
next.HookResult = &tools.ToolResult{ForLLM: "hook bypassed profile"}
|
|
return next, HookDecision{Action: HookActionRespond}, nil
|
|
}
|
|
|
|
func (h turnProfileRespondToolHook) AfterTool(
|
|
ctx context.Context,
|
|
result *ToolResultHookResponse,
|
|
) (*ToolResultHookResponse, HookDecision, error) {
|
|
return result, HookDecision{Action: HookActionContinue}, nil
|
|
}
|
|
|
|
type turnProfileToolCallProvider struct {
|
|
calls int
|
|
messages []providers.Message
|
|
}
|
|
|
|
func (p *turnProfileToolCallProvider) Chat(
|
|
ctx context.Context,
|
|
messages []providers.Message,
|
|
tools []providers.ToolDefinition,
|
|
model string,
|
|
opts map[string]any,
|
|
) (*providers.LLMResponse, error) {
|
|
p.calls++
|
|
p.messages = append([]providers.Message(nil), messages...)
|
|
if p.calls == 1 {
|
|
return &providers.LLMResponse{
|
|
Content: "calling disallowed",
|
|
ToolCalls: []providers.ToolCall{{
|
|
ID: "call_1",
|
|
Name: "echo_text_rewritten",
|
|
Arguments: map[string]any{"text": "blocked"},
|
|
}},
|
|
FinishReason: "tool_calls",
|
|
}, nil
|
|
}
|
|
return &providers.LLMResponse{Content: "done"}, nil
|
|
}
|
|
|
|
func (p *turnProfileToolCallProvider) GetDefaultModel() string {
|
|
return "test-model"
|
|
}
|
|
|
|
func TestTurnProfile_ToolsCustomFiltersProviderToolsAndHookAdditions(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeCustom,
|
|
Allow: []string{"echo_text"},
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &turnProfileCaptureProvider{}
|
|
al := newTurnProfileAgentLoop(t, cfg, provider)
|
|
al.RegisterTool(&echoTextTool{})
|
|
al.RegisterTool(&echoTextRewrittenTool{})
|
|
if err := al.MountHook(NamedHook("add-disallowed-tool", turnProfileAddToolHook{})); err != nil {
|
|
t.Fatalf("MountHook() error = %v", err)
|
|
}
|
|
|
|
_, err := al.runAgentLoop(
|
|
context.Background(),
|
|
al.GetRegistry().GetDefaultAgent(),
|
|
processOptions{
|
|
SessionKey: "agent:default:test-tools-filter",
|
|
UserMessage: "hello",
|
|
DefaultResponse: defaultResponse,
|
|
},
|
|
)
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if len(provider.tools) != 1 {
|
|
t.Fatalf("provider tools len = %d, want 1: %#v", len(provider.tools), provider.tools)
|
|
}
|
|
if provider.tools[0].Function.Name != "echo_text" {
|
|
t.Fatalf("provider tool = %q, want echo_text", provider.tools[0].Function.Name)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_ToolsOffDisablesProviderAndNativeSearchTools(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Tools: config.ToolsConfig{
|
|
Web: config.WebToolsConfig{
|
|
ToolConfig: config.ToolConfig{Enabled: true},
|
|
PreferNative: true,
|
|
},
|
|
},
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
cfg.Agents.Defaults.Workspace = t.TempDir()
|
|
cfg.Agents.Defaults.ModelName = "test-model"
|
|
cfg.Agents.Defaults.MaxTokens = 4096
|
|
cfg.Agents.Defaults.MaxToolIterations = 10
|
|
provider := &nativeSearchCaptureProvider{}
|
|
al := NewAgentLoop(cfg, bus.NewMessageBus(), provider)
|
|
|
|
_, err := al.runAgentLoop(
|
|
context.Background(),
|
|
al.GetRegistry().GetDefaultAgent(),
|
|
processOptions{
|
|
SessionKey: "agent:default:test-tools-off",
|
|
UserMessage: "hello",
|
|
DefaultResponse: defaultResponse,
|
|
},
|
|
)
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if provider.lastOpts["native_search"] == true {
|
|
t.Fatalf("native_search option enabled despite tools.mode=off: %#v", provider.lastOpts)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_ToolsOffSuppressesToolUsePromptRule(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &turnProfileCaptureProvider{}
|
|
al := newTurnProfileAgentLoop(t, cfg, provider)
|
|
al.RegisterTool(&echoTextTool{})
|
|
|
|
_, err := al.runAgentLoop(
|
|
context.Background(),
|
|
al.GetRegistry().GetDefaultAgent(),
|
|
processOptions{
|
|
SessionKey: "agent:default:test-tools-off-prompt",
|
|
UserMessage: "hello",
|
|
DefaultResponse: defaultResponse,
|
|
},
|
|
)
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if len(provider.tools) != 0 {
|
|
t.Fatalf("provider tools len = %d, want 0", len(provider.tools))
|
|
}
|
|
if len(provider.messages) == 0 || provider.messages[0].Role != "system" {
|
|
t.Fatalf("first provider message = %#v, want system prompt", provider.messages)
|
|
}
|
|
if strings.Contains(provider.messages[0].Content, toolUseSystemPromptRule()) ||
|
|
strings.Contains(provider.messages[0].Content, "**ALWAYS use tools**") {
|
|
t.Fatalf("tools-off system prompt still asks the model to use tools:\n%s", provider.messages[0].Content)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_ToolsCustomMissingToolSuppressesToolUsePromptRule(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeCustom,
|
|
Allow: []string{"web_search"},
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &turnProfileCaptureProvider{}
|
|
al := newTurnProfileAgentLoop(t, cfg, provider)
|
|
al.RegisterTool(&echoTextTool{})
|
|
|
|
_, err := al.runAgentLoop(
|
|
context.Background(),
|
|
al.GetRegistry().GetDefaultAgent(),
|
|
processOptions{
|
|
SessionKey: "agent:default:test-tools-custom-missing-prompt",
|
|
UserMessage: "hello",
|
|
DefaultResponse: defaultResponse,
|
|
},
|
|
)
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if len(provider.tools) != 0 {
|
|
t.Fatalf("provider tools len = %d, want 0", len(provider.tools))
|
|
}
|
|
if strings.Contains(provider.messages[0].Content, toolUseSystemPromptRule()) ||
|
|
strings.Contains(provider.messages[0].Content, "**ALWAYS use tools**") {
|
|
t.Fatalf(
|
|
"custom profile with no resolved tools still asks the model to use tools:\n%s",
|
|
provider.messages[0].Content,
|
|
)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_ToolsCustomAllowsNativeWebSearch(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Tools: config.ToolsConfig{
|
|
Web: config.WebToolsConfig{
|
|
ToolConfig: config.ToolConfig{Enabled: true},
|
|
PreferNative: true,
|
|
},
|
|
},
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
Workspace: t.TempDir(),
|
|
ModelName: "test-model",
|
|
MaxTokens: 4096,
|
|
MaxToolIterations: 10,
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeCustom,
|
|
Allow: []string{"web_search"},
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &nativeSearchCaptureProvider{}
|
|
al := NewAgentLoop(cfg, bus.NewMessageBus(), provider)
|
|
|
|
_, err := al.runAgentLoop(
|
|
context.Background(),
|
|
al.GetRegistry().GetDefaultAgent(),
|
|
processOptions{
|
|
SessionKey: "agent:default:test-native-web-allowed",
|
|
UserMessage: "search",
|
|
DefaultResponse: defaultResponse,
|
|
},
|
|
)
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if got, _ := provider.lastOpts["native_search"].(bool); !got {
|
|
t.Fatalf("native_search = %#v, want true", provider.lastOpts["native_search"])
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_SystemPromptOffAddsToolFallbackForNativeWebSearch(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Tools: config.ToolsConfig{
|
|
Web: config.WebToolsConfig{
|
|
ToolConfig: config.ToolConfig{Enabled: true},
|
|
PreferNative: true,
|
|
},
|
|
},
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
Workspace: t.TempDir(),
|
|
ModelName: "test-model",
|
|
MaxTokens: 4096,
|
|
MaxToolIterations: 10,
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
SystemPrompt: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Skills: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeCustom,
|
|
Allow: []string{"web_search"},
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &nativeSearchCaptureProvider{}
|
|
al := NewAgentLoop(cfg, bus.NewMessageBus(), provider)
|
|
|
|
_, err := al.runAgentLoop(
|
|
context.Background(),
|
|
al.GetRegistry().GetDefaultAgent(),
|
|
processOptions{
|
|
SessionKey: "agent:default:test-native-web-fallback",
|
|
UserMessage: "search",
|
|
DefaultResponse: defaultResponse,
|
|
},
|
|
)
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if got, _ := provider.lastOpts["native_search"].(bool); !got {
|
|
t.Fatalf("native_search = %#v, want true", provider.lastOpts["native_search"])
|
|
}
|
|
if len(provider.messages) == 0 || provider.messages[0].Content != toolUseSystemPromptRule() {
|
|
t.Fatalf("native-search-only prompt = %#v, want tool fallback", provider.messages)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_BeforeLLMHookCannotReenableNativeSearchWhenToolsOff(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Tools: config.ToolsConfig{
|
|
Web: config.WebToolsConfig{
|
|
ToolConfig: config.ToolConfig{Enabled: true},
|
|
PreferNative: true,
|
|
},
|
|
},
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
Workspace: t.TempDir(),
|
|
ModelName: "test-model",
|
|
MaxTokens: 4096,
|
|
MaxToolIterations: 10,
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &nativeSearchCaptureProvider{}
|
|
al := NewAgentLoop(cfg, bus.NewMessageBus(), provider)
|
|
if err := al.MountHook(NamedHook("enable-native-search", turnProfileEnableNativeSearchHook{})); err != nil {
|
|
t.Fatalf("MountHook() error = %v", err)
|
|
}
|
|
|
|
_, err := al.runAgentLoop(
|
|
context.Background(),
|
|
al.GetRegistry().GetDefaultAgent(),
|
|
processOptions{
|
|
SessionKey: "agent:default:test-native-web-hook-denied",
|
|
UserMessage: "search",
|
|
DefaultResponse: defaultResponse,
|
|
},
|
|
)
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if provider.lastOpts["native_search"] == true {
|
|
t.Fatalf("native_search option enabled by hook despite tools.mode=off: %#v", provider.lastOpts)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_BeforeLLMHookCannotReenableNativeSearchWhenCustomToolsResolveEmpty(
|
|
t *testing.T,
|
|
) {
|
|
cfg := &config.Config{
|
|
Tools: config.ToolsConfig{
|
|
Web: config.WebToolsConfig{
|
|
ToolConfig: config.ToolConfig{Enabled: true},
|
|
PreferNative: true,
|
|
},
|
|
},
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
Workspace: t.TempDir(),
|
|
ModelName: "test-model",
|
|
MaxTokens: 4096,
|
|
MaxToolIterations: 10,
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeCustom,
|
|
Allow: []string{"missing_tool"},
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &nativeSearchCaptureProvider{}
|
|
al := NewAgentLoop(cfg, bus.NewMessageBus(), provider)
|
|
if err := al.MountHook(NamedHook("enable-native-search", turnProfileEnableNativeSearchHook{})); err != nil {
|
|
t.Fatalf("MountHook() error = %v", err)
|
|
}
|
|
|
|
_, err := al.runAgentLoop(
|
|
context.Background(),
|
|
al.GetRegistry().GetDefaultAgent(),
|
|
processOptions{
|
|
SessionKey: "agent:default:test-native-web-hook-custom-empty",
|
|
UserMessage: "search",
|
|
DefaultResponse: defaultResponse,
|
|
},
|
|
)
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if provider.lastOpts["native_search"] == true {
|
|
t.Fatalf(
|
|
"native_search option enabled by hook despite no resolved tools: %#v",
|
|
provider.lastOpts,
|
|
)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_ToolExecutionRejectsDisallowedToolCalls(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeCustom,
|
|
Allow: []string{"echo_text"},
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &turnProfileToolCallProvider{}
|
|
al := NewAgentLoop(cfg, bus.NewMessageBus(), provider)
|
|
al.RegisterTool(&echoTextTool{})
|
|
al.RegisterTool(&echoTextRewrittenTool{})
|
|
|
|
response, err := al.runAgentLoop(
|
|
context.Background(),
|
|
al.GetRegistry().GetDefaultAgent(),
|
|
processOptions{
|
|
SessionKey: "agent:default:test-tool-exec-deny",
|
|
UserMessage: "run tool",
|
|
DefaultResponse: defaultResponse,
|
|
},
|
|
)
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
if response != "done" {
|
|
t.Fatalf("response = %q, want done", response)
|
|
}
|
|
if provider.calls != 2 {
|
|
t.Fatalf("provider calls = %d, want 2", provider.calls)
|
|
}
|
|
var foundDeniedResult bool
|
|
for _, msg := range provider.messages {
|
|
if msg.Role == "tool" &&
|
|
strings.Contains(msg.Content, "not allowed by the active turn profile") {
|
|
foundDeniedResult = true
|
|
break
|
|
}
|
|
}
|
|
if !foundDeniedResult {
|
|
t.Fatalf("second provider call did not include denied tool result: %#v", provider.messages)
|
|
}
|
|
}
|
|
|
|
func TestTurnProfile_BeforeToolRespondCannotBypassDisallowedTool(t *testing.T) {
|
|
cfg := &config.Config{
|
|
Agents: config.AgentsConfig{
|
|
Defaults: config.AgentDefaults{
|
|
TurnProfile: config.TurnProfileConfig{
|
|
Enabled: true,
|
|
History: config.TurnProfileBlock{Mode: config.TurnProfileModeOff},
|
|
Tools: config.TurnProfileBlock{
|
|
Mode: config.TurnProfileModeCustom,
|
|
Allow: []string{"echo_text"},
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
provider := &turnProfileToolCallProvider{}
|
|
al := NewAgentLoop(cfg, bus.NewMessageBus(), provider)
|
|
al.RegisterTool(&echoTextTool{})
|
|
al.RegisterTool(&echoTextRewrittenTool{})
|
|
if err := al.MountHook(NamedHook("respond-tool", turnProfileRespondToolHook{})); err != nil {
|
|
t.Fatalf("MountHook() error = %v", err)
|
|
}
|
|
|
|
_, err := al.runAgentLoop(
|
|
context.Background(),
|
|
al.GetRegistry().GetDefaultAgent(),
|
|
processOptions{
|
|
SessionKey: "agent:default:test-tool-hook-respond-denied",
|
|
UserMessage: "run tool",
|
|
DefaultResponse: defaultResponse,
|
|
},
|
|
)
|
|
if err != nil {
|
|
t.Fatalf("runAgentLoop() error = %v", err)
|
|
}
|
|
var foundDeniedResult bool
|
|
for _, msg := range provider.messages {
|
|
if msg.Role != "tool" {
|
|
continue
|
|
}
|
|
if strings.Contains(msg.Content, "hook bypassed profile") {
|
|
t.Fatalf("hook respond result bypassed turn profile: %#v", provider.messages)
|
|
}
|
|
if strings.Contains(msg.Content, "not allowed by the active turn profile") {
|
|
foundDeniedResult = true
|
|
}
|
|
}
|
|
if !foundDeniedResult {
|
|
t.Fatalf("second provider call did not include denied tool result: %#v", provider.messages)
|
|
}
|
|
}
|