Merge pull request #35 from Cai-Tang-www/fork-pr-387-1776830001

Cai-Tang-www · web-flow · commit 7d5710d22807 · 2026-04-22T11:21:54.000+08:00
fix(tools): allow remembered low-risk external write retry
diff --git a/internal/tools/manager.go b/internal/tools/manager.go
@@ -331,21 +331,23 @@ func (m *DefaultManager) Execute(ctx context.Context, input ToolCallInput) (Tool
 		return result, permissionErrorFromDecision(decision)
 	}
 
-	plan, err := m.sandbox.Check(ctx, action)
-	if err != nil {
-		if decision, decisionMatched := resolveSandboxOutsideWriteDecision(input, action, err, m.sessionDecisions); decisionMatched {
-			if decision.Decision != security.DecisionAllow {
-				result := blockedToolResult(input, decision)
-				return result, permissionErrorFromDecision(decision)
+		plan, err := m.sandbox.Check(ctx, action)
+		if err != nil {
+			if decision, decisionMatched := resolveSandboxOutsideWriteDecision(input, action, err, m.sessionDecisions); decisionMatched {
+				if decision.Decision != security.DecisionAllow {
+					result := blockedToolResult(input, decision)
+					return result, permissionErrorFromDecision(decision)
+				}
+				m.auditCapabilityDecision(action, string(security.DecisionAllow), decision.Reason)
+				return m.executor.Execute(ctx, input)
+			} else {
+				result := NewErrorResult(input.Name, "workspace sandbox rejected action", sandboxErrorDetails(action, err), actionMetadata(action))
+				result.ToolCallID = input.ID
+				return result, err
 			}
-		} else {
-			result := NewErrorResult(input.Name, "workspace sandbox rejected action", sandboxErrorDetails(action, err), actionMetadata(action))
-			result.ToolCallID = input.ID
-			return result, err
+		} else if plan != nil {
+			input.WorkspacePlan = plan
 		}
-	} else if plan != nil {
-		input.WorkspacePlan = plan
-	}
 	m.auditCapabilityDecision(action, string(security.DecisionAllow), "")
 
 	return m.executor.Execute(ctx, input)
diff --git a/internal/tools/manager_test.go b/internal/tools/manager_test.go
@@ -453,7 +453,7 @@ func TestDefaultManagerSandboxOutsideWriteSessionMemory(t *testing.T) {
 
 	_, err = manager.Execute(context.Background(), input)
 	if err != nil {
-		t.Fatalf("expected remembered allow retry to pass, got %v", err)
+		t.Fatalf("expected remembered allow retry to execute, got %v", err)
 	}
 	if writeTool.callCount != 1 {
 		t.Fatalf("expected write tool to execute after remembered allow, got %d", writeTool.callCount)

Original file line number	Diff line number	Diff line change
`@@ -453,7 +453,7 @@ func TestDefaultManagerSandboxOutsideWriteSessionMemory(t *testing.T) {`
`453`	`453`
`454`	`454`	`_, err = manager.Execute(context.Background(), input)`
`455`	`455`	`if err != nil {`
`456`		`- t.Fatalf("expected remembered allow retry to pass, got %v", err)`
	`456`	`+ t.Fatalf("expected remembered allow retry to execute, got %v", err)`
`457`	`457`	`}`
`458`	`458`	`if writeTool.callCount != 1 {`
`459`	`459`	`t.Fatalf("expected write tool to execute after remembered allow, got %d", writeTool.callCount)`