fix: require workspace handles for file abilities (#759)

Co-authored-by: homeboy-ci[bot] <266378653+homeboy-ci[bot]@users.noreply.github.com>

Author: chubes4

inc/Abilities/WorkspaceAbilities.php

@@ -263,7 +263,7 @@ private function registerAbilities(): void {
 								'description' => 'Explicitly allow reading from a stale, diverged, detached, or otherwise unsafe primary checkout. Worktree reads are unaffected.',
 							),
 						),
-						'required'   => array( 'path' ),
+						'required'   => array( 'repo', 'path' ),
 					),
 					'output_schema'       => array(
 						'type'       => 'object',
@@ -304,7 +304,7 @@ private function registerAbilities(): void {
 								'description' => 'Explicitly allow listing a stale, diverged, detached, or otherwise unsafe primary checkout. Worktree reads are unaffected.',
 							),
 						),
-						'required'   => array(),
+						'required'   => array( 'repo' ),
 					),
 					'output_schema'       => array(
 						'type'       => 'object',
@@ -369,7 +369,7 @@ private function registerAbilities(): void {
 								'description' => 'Explicitly allow grepping a stale, diverged, detached, or otherwise unsafe primary checkout. Worktree reads are unaffected.',
 							),
 						),
-						'required'   => array( 'pattern' ),
+						'required'   => array( 'repo', 'pattern' ),
 					),
 					'output_schema'       => array(
 						'type'       => 'object',
@@ -575,8 +575,12 @@ private function registerAbilities(): void {
 								'type'        => 'string',
 								'description' => 'File content to write.',
 							),
+							'allow_primary_mutation' => array(
+								'type'        => 'boolean',
+								'description' => 'Permit mutation on the primary checkout (default false). Worktrees are always allowed.',
+							),
 						),
-						'required'   => array( 'path', 'content' ),
+						'required'   => array( 'repo', 'path', 'content' ),
 					),
 					'output_schema'       => array(
 						'type'       => 'object',
@@ -638,8 +642,12 @@ private function registerAbilities(): void {
 								'type'        => 'boolean',
 								'description' => 'Replace all occurrences (default false).',
 							),
+							'allow_primary_mutation' => array(
+								'type'        => 'boolean',
+								'description' => 'Permit mutation on the primary checkout (default false). Worktrees are always allowed.',
+							),
 						),
-						'required'   => array( 'path' ),
+						'required'   => array( 'repo', 'path' ),
 					),
 					'output_schema'       => array(
 						'type'       => 'object',
@@ -951,7 +959,7 @@ private function registerAbilities(): void {
 								'description' => 'Permit mutation on the primary checkout (default false). Worktrees are always allowed.',
 							),
 						),
-						'required'   => array( 'path' ),
+						'required'   => array( 'repo', 'path' ),
 					),
 					'output_schema'       => array(
 						'type'       => 'object',
@@ -2587,9 +2595,13 @@ public static function showRepo( array $input ): array|\WP_Error {
 	 * @return array Result.
 	 */
 	public static function readFile( array $input ): array|\WP_Error {
-		$input     = self::normalize_mounted_workspace_path_input($input, array( 'repo' ));
-		$workspace = new Workspace();
-		$reader    = new WorkspaceReader($workspace);
+		$input        = self::normalize_mounted_workspace_path_input($input, array( 'repo' ));
+		$workspace    = new Workspace();
+		$handle_check = $workspace->require_explicit_workspace_handle($input['repo'] ?? '');
+		if ( is_wp_error($handle_check) ) {
+			return $handle_check;
+		}
+		$reader       = new WorkspaceReader($workspace);
 		if ( RemoteWorkspaceBackend::should_handle() && null !== self::showLocalWorkspaceHandleIfPresent($workspace, (string) ( $input['repo'] ?? '' )) ) {
 			return $reader->read_file(
 				$input['repo'] ?? '',
@@ -2631,9 +2643,13 @@ public static function readFile( array $input ): array|\WP_Error {
 	 * @return array Result.
 	 */
 	public static function listDirectory( array $input ): array|\WP_Error {
-		$input     = self::normalize_mounted_workspace_path_input($input, array( 'repo' ));
-		$workspace = new Workspace();
-		$reader    = new WorkspaceReader($workspace);
+		$input        = self::normalize_mounted_workspace_path_input($input, array( 'repo' ));
+		$workspace    = new Workspace();
+		$handle_check = $workspace->require_explicit_workspace_handle($input['repo'] ?? '');
+		if ( is_wp_error($handle_check) ) {
+			return $handle_check;
+		}
+		$reader       = new WorkspaceReader($workspace);
 		if ( RemoteWorkspaceBackend::should_handle() && null !== self::showLocalWorkspaceHandleIfPresent($workspace, (string) ( $input['repo'] ?? '' )) ) {
 			return $reader->list_directory(
 				$input['repo'] ?? '',
@@ -2666,9 +2682,13 @@ public static function listDirectory( array $input ): array|\WP_Error {
 	 * @return array Result.
 	 */
 	public static function grepFiles( array $input ): array|\WP_Error {
-		$input     = self::normalize_mounted_workspace_path_input($input, array( 'repo' ));
-		$workspace = new Workspace();
-		$reader    = new WorkspaceReader($workspace);
+		$input        = self::normalize_mounted_workspace_path_input($input, array( 'repo' ));
+		$workspace    = new Workspace();
+		$handle_check = $workspace->require_explicit_workspace_handle($input['repo'] ?? '');
+		if ( is_wp_error($handle_check) ) {
+			return $handle_check;
+		}
+		$reader       = new WorkspaceReader($workspace);
 		if ( RemoteWorkspaceBackend::should_handle() && null !== self::showLocalWorkspaceHandleIfPresent($workspace, (string) ( $input['repo'] ?? '' )) ) {
 			return $reader->grep(
 				$input['repo'] ?? '',
@@ -2958,7 +2978,13 @@ public static function removeRepo( array $input ): array|\WP_Error {
 	 * @return array Result.
 	 */
 	public static function writeFile( array $input ): array|\WP_Error {
-		$input = self::normalize_mounted_workspace_path_input($input, array( 'repo' ));
+		$input        = self::normalize_mounted_workspace_path_input($input, array( 'repo' ));
+		$workspace    = new Workspace();
+		$handle_check = $workspace->ensure_workspace_mutation_allowed($input['repo'] ?? '', ! empty($input['allow_primary_mutation']));
+		if ( is_wp_error($handle_check) ) {
+			return $handle_check;
+		}
+
 		if ( RemoteWorkspaceBackend::should_handle() ) {
 			$result = ( new RemoteWorkspaceBackend() )->write_file(
 				$input['repo'] ?? '',
@@ -2968,13 +2994,13 @@ public static function writeFile( array $input ): array|\WP_Error {
 			return self::decorate_remote_workspace_result('write_file', $result);
 		}
 
-		$workspace = new Workspace();
-		$writer    = new WorkspaceWriter($workspace);
+		$writer = new WorkspaceWriter($workspace);
 
 		return $writer->write_file(
 			$input['repo'] ?? '',
 			$input['path'] ?? '',
-			$input['content'] ?? ''
+			$input['content'] ?? '',
+			! empty($input['allow_primary_mutation'])
 		);
 	}
 
@@ -2985,7 +3011,12 @@ public static function writeFile( array $input ): array|\WP_Error {
 	 * @return array Result.
 	 */
 	public static function editFile( array $input ): array|\WP_Error {
-		$input      = self::normalize_mounted_workspace_path_input($input, array( 'repo' ));
+		$input        = self::normalize_mounted_workspace_path_input($input, array( 'repo' ));
+		$workspace    = new Workspace();
+		$handle_check = $workspace->ensure_workspace_mutation_allowed($input['repo'] ?? '', ! empty($input['allow_primary_mutation']));
+		if ( is_wp_error($handle_check) ) {
+			return $handle_check;
+		}
 		$old_string = (string) ( $input['old_string'] ?? $input['search'] ?? $input['old'] ?? '' );
 		$new_string = (string) ( $input['new_string'] ?? $input['replace'] ?? $input['new'] ?? '' );
 
@@ -3008,15 +3039,15 @@ public static function editFile( array $input ): array|\WP_Error {
 			return self::decorate_remote_workspace_result('edit_file', $result);
 		}
 
-		$workspace = new Workspace();
-		$writer    = new WorkspaceWriter($workspace);
+		$writer = new WorkspaceWriter($workspace);
 
 		return $writer->edit_file(
 			$input['repo'] ?? '',
 			$input['path'] ?? '',
 			$old_string,
 			$new_string,
-			! empty($input['replace_all'])
+			! empty($input['replace_all']),
+			! empty($input['allow_primary_mutation'])
 		);
 	}
 

inc/Workspace/WorkspaceCoreUtilities.php

@@ -252,6 +252,63 @@ public function parse_handle( string $handle ): array {
 		);
 	}
 
+	/**
+	 * Require file-operation callers to name a workspace handle explicitly.
+	 *
+	 * @param  string $handle Workspace handle from ability input.
+	 * @return array{repo: string, branch_slug: string|null, is_worktree: bool, dir_name: string}|\WP_Error
+	 */
+	public function require_explicit_workspace_handle( string $handle ): array|\WP_Error {
+		$handle = trim($handle);
+		if ( '' === $handle ) {
+			return new \WP_Error(
+				'missing_workspace_handle',
+				'Workspace file operations require an explicit repo/worktree handle; workspace-root access is not allowed.',
+				array( 'status' => 400 )
+			);
+		}
+
+		$parsed = $this->parse_handle($handle);
+		if ( '' === $parsed['dir_name'] || '' === $parsed['repo'] ) {
+			return new \WP_Error(
+				'invalid_workspace_handle',
+				'Workspace file operations require a valid repo/worktree handle; workspace-root access is not allowed.',
+				array( 'status' => 400 )
+			);
+		}
+
+		return $parsed;
+	}
+
+	/**
+	 * Enforce the default read-only policy for primary checkout mutations.
+	 *
+	 * @param  string $handle Workspace handle.
+	 * @param  bool   $allow  Whether primary checkout mutation is explicitly allowed.
+	 * @return array{repo: string, branch_slug: string|null, is_worktree: bool, dir_name: string}|\WP_Error
+	 */
+	public function ensure_workspace_mutation_allowed( string $handle, bool $allow = false, string $allow_guidance = 'Pass allow_primary_mutation=true to operate on it' ): array|\WP_Error {
+		$parsed = $this->require_explicit_workspace_handle($handle);
+		if ( is_wp_error($parsed) ) {
+			return $parsed;
+		}
+
+		if ( $parsed['is_worktree'] || $allow ) {
+			return $parsed;
+		}
+
+		return new \WP_Error(
+			'primary_mutation_blocked',
+			sprintf(
+				'Primary checkout "%s" is read-only by default. %s, or use a worktree handle (e.g. %s@<branch-slug>).',
+				$parsed['repo'],
+				$allow_guidance,
+				$parsed['repo']
+			),
+			array( 'status' => 403 )
+		);
+	}
+
 	/**
 	 * Convert a branch name to a filesystem-safe slug.
 	 *

inc/Workspace/WorkspaceGitOperations.php

@@ -354,7 +354,11 @@ public function delete_path( string $handle, string $path, bool $recursive = fal
 			return WorkspaceAliasResolver::mutation_error($handle, 'delete');
 		}
 
-		$parsed    = $this->parse_handle($handle);
+		$parsed = $this->require_explicit_workspace_handle($handle);
+		if ( is_wp_error($parsed) ) {
+			return $parsed;
+		}
+
 		$repo_name = $parsed['repo'];
 		$repo_path = $this->resolve_repo_path($handle);
 		if ( is_wp_error($repo_path) ) {

inc/Workspace/WorkspaceReader.php

@@ -40,6 +40,11 @@ public function __construct( Workspace $workspace ) {
 	 * @return array{success: bool, content?: string, path?: string, size?: int, lines_read?: int, offset?: int}|\WP_Error
 	 */
 	public function read_file( string $name, string $path, int $max_size = Workspace::MAX_READ_SIZE, ?int $offset = null, ?int $limit = null, bool $allow_stale_primary = false ): array|\WP_Error {
+		$handle_check = $this->workspace->require_explicit_workspace_handle($name);
+		if ( is_wp_error($handle_check) ) {
+			return $handle_check;
+		}
+
 		$policy_error = WorkspaceAliasResolver::read_error_if_disallowed($name, $path);
 		if ( null !== $policy_error ) {
 			return $policy_error;
@@ -150,6 +155,11 @@ public function read_file( string $name, string $path, int $max_size = Workspace
 	 * @return array{success: bool, repo?: string, path?: string, entries?: array}|\WP_Error
 	 */
 	public function list_directory( string $name, ?string $path = null, bool $allow_stale_primary = false ): array|\WP_Error {
+		$handle_check = $this->workspace->require_explicit_workspace_handle($name);
+		if ( is_wp_error($handle_check) ) {
+			return $handle_check;
+		}
+
 		$policy_error = WorkspaceAliasResolver::read_error_if_disallowed($name, $path ?? '');
 		if ( null !== $policy_error ) {
 			return $policy_error;
@@ -250,6 +260,11 @@ function ( $a, $b ) {
 	 * @return array{success: bool, repo?: string, path?: string, pattern?: string, matches?: array, count?: int, truncated?: bool}|\WP_Error
 	 */
 	public function grep( string $name, string $pattern, ?string $path = null, ?string $include_pattern = null, int $max_results = 100, int $context_lines = 0, bool $allow_stale_primary = false ): array|\WP_Error {
+		$handle_check = $this->workspace->require_explicit_workspace_handle($name);
+		if ( is_wp_error($handle_check) ) {
+			return $handle_check;
+		}
+
 		$policy_error = WorkspaceAliasResolver::read_error_if_disallowed($name, $path ?? '');
 		if ( null !== $policy_error ) {
 			return $policy_error;

inc/Workspace/WorkspaceWriter.php

@@ -45,12 +45,14 @@ public function __construct( Workspace $workspace ) {
 	 *
 	 * @param  string $name    Repository directory name.
 	 * @param  string $path    Relative file path within the repo.
-	 * @param  string $content File content to write.
+	 * @param  string $content                File content to write.
+	 * @param  bool   $allow_primary_mutation Permit mutation on a primary checkout.
 	 * @return array{success: bool, path?: string, size?: int, created?: bool}|\WP_Error
 	 */
-	public function write_file( string $name, string $path, string $content ): array|\WP_Error {
-		if ( WorkspaceAliasResolver::is_context_repository($name) ) {
-			return WorkspaceAliasResolver::mutation_error($name, 'write');
+	public function write_file( string $name, string $path, string $content, bool $allow_primary_mutation = false ): array|\WP_Error {
+		$mutation_check = $this->ensure_workspace_mutation_allowed($name, 'write', $allow_primary_mutation);
+		if ( is_wp_error($mutation_check) ) {
+			return $mutation_check;
 		}
 
 		$repo_path = $this->workspace->get_repo_path($name);
@@ -127,12 +129,14 @@ public function write_file( string $name, string $path, string $content ): array
 	 * @param  string $path        Relative file path within the repo.
 	 * @param  string $old_string  Text to find.
 	 * @param  string $new_string  Replacement text.
-	 * @param  bool   $replace_all Replace all occurrences (default false).
+	 * @param  bool   $replace_all            Replace all occurrences (default false).
+	 * @param  bool   $allow_primary_mutation Permit mutation on a primary checkout.
 	 * @return array{success: bool, path?: string, replacements?: int}|\WP_Error
 	 */
-	public function edit_file( string $name, string $path, string $old_string, string $new_string, bool $replace_all = false ): array|\WP_Error {
-		if ( WorkspaceAliasResolver::is_context_repository($name) ) {
-			return WorkspaceAliasResolver::mutation_error($name, 'edit');
+	public function edit_file( string $name, string $path, string $old_string, string $new_string, bool $replace_all = false, bool $allow_primary_mutation = false ): array|\WP_Error {
+		$mutation_check = $this->ensure_workspace_mutation_allowed($name, 'edit', $allow_primary_mutation);
+		if ( is_wp_error($mutation_check) ) {
+			return $mutation_check;
 		}
 
 		$repo_path = $this->workspace->get_repo_path($name);
@@ -234,29 +238,17 @@ public function edit_file( string $name, string $path, string $old_string, strin
 	 * @return array{success: bool, name: string, path: string, changed_files: string[], diff: string, status: string, check_output: string, apply_output: string}|\WP_Error
 	 */
 	public function apply_patch( string $name, string $patch, bool $allow_primary_mutation = false ): array|\WP_Error {
-		if ( WorkspaceAliasResolver::is_context_repository($name) ) {
-			return WorkspaceAliasResolver::mutation_error($name, 'apply-patch');
+		$mutation_check = $this->ensure_workspace_mutation_allowed($name, 'apply-patch', $allow_primary_mutation);
+		if ( is_wp_error($mutation_check) ) {
+			return $mutation_check;
 		}
 
 		$repo_path = $this->workspace->get_repo_path($name);
-		$parsed    = $this->workspace->parse_handle($name);
 
 		if ( ! is_dir($repo_path) ) {
 			return new \WP_Error('repo_not_found', sprintf('Repository "%s" not found in workspace.', $name), array( 'status' => 404 ));
 		}
 
-		if ( empty($parsed['is_worktree']) && ! $allow_primary_mutation ) {
-			return new \WP_Error(
-				'primary_mutation_blocked',
-				sprintf(
-					'Primary checkout "%s" is read-only by default. Pass allow_primary_mutation=true to operate on it, or use a worktree handle (e.g. %s@<branch-slug>).',
-					$parsed['repo'],
-					$parsed['repo']
-				),
-				array( 'status' => 403 )
-			);
-		}
-
 		$patch = str_replace("\r\n", "\n", $patch);
 		if ( '' === trim($patch) ) {
 			return new \WP_Error('empty_patch', 'Patch content is required.', array( 'status' => 400 ));
@@ -348,6 +340,19 @@ public function apply_patch( string $name, string $patch, bool $allow_primary_mu
 		}
 	}
 
+	private function ensure_workspace_mutation_allowed( string $name, string $operation, bool $allow_primary_mutation ): true|\WP_Error {
+		if ( WorkspaceAliasResolver::is_context_repository($name) ) {
+			return WorkspaceAliasResolver::mutation_error($name, $operation);
+		}
+
+		$allowed = $this->workspace->ensure_workspace_mutation_allowed($name, $allow_primary_mutation);
+		if ( is_wp_error($allowed) ) {
+			return $allowed;
+		}
+
+		return true;
+	}
+
 	/**
 	 * @return array<int,array<string,mixed>>
 	 */