ThinkInAIXYZ
diff --git a/‎docs/specs/chat-settings-control/plan.md‎
Lines changed: 122 additions & 0 deletions b/‎docs/specs/chat-settings-control/plan.md‎
Lines changed: 122 additions & 0 deletions
diff --git a/‎docs/specs/chat-settings-control/spec.md‎
Lines changed: 85 additions & 0 deletions b/‎docs/specs/chat-settings-control/spec.md‎
Lines changed: 85 additions & 0 deletions
diff --git a/‎docs/specs/chat-settings-control/tasks.md‎
Lines changed: 31 additions & 0 deletions b/‎docs/specs/chat-settings-control/tasks.md‎
Lines changed: 31 additions & 0 deletions
diff --git a/‎resources/skills/deepchat-settings/SKILL.md‎
Lines changed: 69 additions & 0 deletions b/‎resources/skills/deepchat-settings/SKILL.md‎
Lines changed: 69 additions & 0 deletions
diff --git a/‎src/main/events.ts‎
Lines changed: 5 additions & 0 deletions b/‎src/main/events.ts‎
Lines changed: 5 additions & 0 deletions
@@ -0,0 +1,122 @@
+# Plan: Control Settings via Chat
+
+## Key Decision: Skill-Based Context Control
+
+This feature MUST be described and delivered as a DeepChat skill so that additional instructions/context are only injected when the user actually requests to change DeepChat settings.
+
+- Skill Name (suggested): `deepchat-settings`
+- Activation: Activated via `skill_control` **ONLY** when the user request involves DeepChat settings/preferences.
+- Deactivation: Call `skill_control` after completing the setting change to keep context lean.
+
+## Tool Injection Control (No Skill, No Tools)
+
+Configuration-related tools MUST NOT appear in the LLM tool list (and MUST NOT be mentioned in the system prompt) unless the `deepchat-settings` skill is active.
+
+Implementation intent:
+
+- Define dedicated tools (MCP-format function definitions):
+  - `deepchat_settings_toggle`
+  - `deepchat_settings_set_language`
+  - `deepchat_settings_set_theme`
+  - `deepchat_settings_set_font_size`
+  - `deepchat_settings_open`
+- **DO NOT** expose them through MCP server/tool list UI (avoid being auto-enabled into `enabledMcpTools`).
+- Only inject these tool definitions when:
+  - `deepchat-settings` is enabled for the current conversation, AND
+  - The skill's pre-metadata `allowedTools` includes the tool name.
+
+This requires conversation-scoped tool definition construction:
+
+- Extend tool definition construction context to include `conversationId`.
+- Retrieve `skillsAllowedTools` for that conversation (via `SkillPresenter.getActiveSkillsAllowedTools`).
+- Only conditionally append `deepchat_settings_*` tool definitions when allowed.
+
+## Step 1: Safe Settings Application API (Main Process)
+
+### Entry Point
+
+Implement a narrow, validated application surface in the main process (presenter method or agent tool handler) for:
+
+- Accepting `unknown` input and validating it (Zod-style, similar to `AgentFileSystemHandler`).
+- Using an allowlist of setting IDs.
+- Applying changes by calling existing `ConfigPresenter` methods so existing event broadcasts remain correct.
+- Returning structured results to render confirmation/error messages.
+
+### Allowlisted Settings and Mapping
+
+Toggle settings:
+
+- `soundEnabled` -> `ConfigPresenter.setSoundEnabled(boolean)` (broadcasts: `CONFIG_EVENTS.SOUND_ENABLED_CHANGED`)
+- `copyWithCotEnabled` -> `ConfigPresenter.setCopyWithCotEnabled(boolean)` (broadcasts: `CONFIG_EVENTS.COPY_WITH_COT_CHANGED`)
+
+Enum settings:
+
+- `language` -> `ConfigPresenter.setLanguage(locale)` (broadcasts: `CONFIG_EVENTS.LANGUAGE_CHANGED`)
+- `theme` -> `ConfigPresenter.setTheme('dark' | 'light' | 'system')` (broadcasts: `CONFIG_EVENTS.THEME_CHANGED`)
+- `fontSizeLevel` -> `ConfigPresenter.setSetting('fontSizeLevel', level)` (broadcasts `CONFIG_EVENTS.FONT_SIZE_CHANGED` via special case)
+
+### Validation Rules
+
+- Strict allowlist; reject unknown IDs.
+- No implicit type conversion in Step 1.
+- Validation per setting:
+  - Booleans: must be boolean type
+  - Enum values: must match allowed set
+  - `fontSizeLevel`: must be integer within supported range (source of truth TBD; may align with `uiSettingsStore` constants)
+  - `language`: must be one of supported locales (reuse support list from config)
+
+### Defense in Depth: Require Skill Activity
+
+Even with controlled tool injection, maintain runtime checks:
+
+- If `deepchat-settings` is **NOT** enabled for the conversation, reject application and return error telling the model/user to activate it.
+- This ensures settings don't accidentally change due to unrelated agent behavior.
+
+## Step 2: Skill Definition (Natural Language Behavior)
+
+### Built-in Skill Artifact
+
+Add `resources/skills/deepchat-settings/SKILL.md`:
+
+- Pre-metadata `description` MUST explicitly state:
+  - This is ONLY for changing DeepChat application settings.
+  - Activate ONLY when user requests setting changes (settings/preferences/theme/language/font/sound/copy COT).
+  - Do NOT activate for OS settings or programming/code settings.
+- Body MUST define:
+  - Supported settings (allowlist) and canonical values.
+  - How to ask clarifying questions when ambiguous.
+  - When to refuse and instead open settings.
+  - Always deactivate after completing setting tasks.
+
+### Disallowed Settings -> Open Settings
+
+For requests involving MCP configuration, prompts, providers, API keys, etc.:
+
+- Do NOT apply via tools.
+- Provide precise instructions telling user where to change them.
+- Open settings window and navigate to relevant section if possible.
+
+Implementation options for opening/navigating settings:
+
+- Use `presenter.windowPresenter.createSettingsWindow()`.
+- Optionally `executeJavaScript` to set localStorage navigation hint that UI can read.
+- Or add dedicated IPC channel from main process -> settings renderer to navigate to tab/section.
+
+## Data Model
+
+Introduce shared request/response types (for Step 1 entry point + tools):
+
+- `ChatSettingId` (union of allowlisted IDs)
+- `ApplyChatSettingRequest` (discriminated union `{ id, value }`)
+- `ApplyChatSettingResult`
+  - `{ ok: true; id; value; previousValue?; appliedAt }`
+  - `{ ok: false; errorCode; message; details? }`
+
+## Testing Strategy
+
+- Main process (Vitest):
+  - Allowlist + validation (reject invalid values, no writes)
+  - Each supported setting maps to correct `ConfigPresenter` method
+  - Skill requirement enforcement works (tool rejects when skill inactive)
+- Renderer/UI (if any navigation hints added):
+  - Settings page navigation handler tests (optional)
@@ -0,0 +1,85 @@
+# Control Settings via Chat
+
+## Overview
+
+Allow users to update a small, safe subset of DeepChat settings via natural language within conversations. Changes MUST be validated, persisted, and take effect immediately. For complex/high-risk settings (e.g., MCP configuration, prompts), the assistant MUST NOT apply changes directly; instead, it should explain where to edit them and automatically open settings (ideally deep-linked to the relevant section).
+
+This specification is intentionally split into two increments:
+
+- **Step 1**: Provide a safe, validated settings application API (main process) that can be called from controlled entry points (renderer UI and/or agent tools) to change settings and trigger live updates.
+- **Step 2**: Deliver natural language behavior as a **DeepChat skill** so that additional context is injected only when relevant.
+
+## Goals
+
+- Allow in-conversation updates to:
+  - Toggle settings: Sound, Copy COT details.
+  - Enum settings: Language, Theme, Font size.
+- Apply changes immediately (current window + relevant other windows).
+- Persist changes to existing configuration store.
+- Keep surface area safe: do not expose arbitrary configuration keys.
+- Use skills to control context:
+  - Settings modification guidance MUST be injected ONLY when user actually requests to change DeepChat settings.
+
+## Non-Goals
+
+- Do NOT allow users to set arbitrary `ConfigPresenter.setSetting(key, value)` keys via chat.
+- Do NOT allow setting sensitive values via chat (API keys, tokens, environment variables, file paths, command arguments).
+- Do NOT implement editing of MCP servers, prompts, providers, or other complex nested config via natural language.
+- Do NOT change how settings are stored on disk (no migrations in this feature).
+
+## User Stories
+
+- As a user, I can say "turn on sound" and it enables sound immediately.
+- As a user, I can say "copy COT details when copying" and it enables/disables the toggle.
+- As a user, I can say "set language to English" and UI language switches immediately.
+- As a user, I can say "use dark theme" or "follow system theme" and theme updates immediately.
+- As a user, I can say "make text larger" and font size changes immediately.
+- As a user, if I ask "add MCP server" or "edit prompts", the assistant tells me where in settings and opens settings there.
+
+## Acceptance Criteria
+
+### Step 1: Safe Settings Application API (No NLP)
+
+- A main process API exists that accepts restricted, validated requests to change one supported setting.
+- Only allowlisted settings from this specification can be changed via this API.
+- Setting tools are NOT injected into LLM tool list when `deepchat-settings` skill is **NOT** active.
+- On success:
+  - Setting value is persisted (existing underlying storage).
+  - Changes take effect immediately in current renderer.
+  - Cross-window/tab updates happen where existing event flow supports (e.g., theme/language/font size/sound).
+- On failure:
+  - Invalid inputs are rejected with structured, user-presentable errors (no partial writes).
+- API is safe to call with untrusted input (strict validation + allowlist).
+
+### Step 2: Natural Language via Skill (Context Control)
+
+- A built-in skill exists (suggested: `deepchat-settings`) describing this functionality.
+- This skill is NOT intended to remain active by default:
+  - It should activate only when user requests to change DeepChat's own settings.
+  - It should deactivate after setting change is complete.
+- When active, assistant:
+  - Explains user intent, normalizes to canonical values, and calls Step 1 API.
+  - For disallowed/complex settings (MCP, prompts, etc.), provides guidance and opens settings to best-match section.
+
+## Open Questions [NEEDS CLARIFICATION]
+
+1. Skill Mode Availability
+   - Skill prompt injection currently seems tied to `chatMode === 'agent'`. Do we want this feature to work in:
+     - Agent mode only (suggested first increment), OR
+     - Also in chat/ACP agent modes (requires additional work)?
+2. Font Size Representation
+   - Should chat use semantic labels (`small/medium/large`) mapping to `fontSizeLevel`, or accept explicit numeric levels?
+3. Settings Deep Link Targets
+   - What are the canonical settings tab/section IDs we want to support deep-linking to (e.g., `mcp`, `prompts`, `appearance`, `language`)?
+4. UX: Confirm vs Silent Apply
+   - Should assistant always confirm before applying changes, or apply immediately with "undo" capability?
+
+## Security & Privacy Notes
+
+- Step 1 API MUST:
+  - Use an allowlist of setting IDs.
+  - Validate input types and enum ranges.
+  - Avoid any generic "set arbitrary key" functionality.
+- Defense in depth (recommended): Setting tools/entry points should verify the relevant skill is active for the conversation before applying.
+- Step 2 MUST NOT allow indirect privilege escalation:
+  - MUST NOT change file system paths, command arguments, environment variables, or settings that hold secrets via natural language.
@@ -0,0 +1,31 @@
+# Tasks: Control Settings via Chat
+
+## Step 0 - Skill-First Design (Context Control)
+
+1. Draft built-in skill: `resources/skills/deepchat-settings/SKILL.md`.
+2. Ensure pre-metadata `description` explicitly restricts activation to only DeepChat setting changes.
+3. Ensure skill body lists allowlisted settings + safe handling + self-deactivation guidance.
+
+## Step 1 - Safe Settings Application API (Main Process)
+
+1. Add shared types for settings application request/result.
+2. Implement validated application entry point (Zod-style `unknown` parsing).
+3. Implement allowlist mapping to existing `ConfigPresenter` methods:
+   - `soundEnabled`
+   - `copyWithCotEnabled`
+   - `language`
+   - `theme`
+   - `fontSizeLevel`
+4. Implement tool injection control: only include `deepchat_settings_toggle`/`deepchat_settings_set_language`/`deepchat_settings_set_theme`/`deepchat_settings_set_font_size`/`deepchat_settings_open` in tool definitions when `deepchat-settings` is active AND allowed.
+5. Add defense-in-depth control: reject application if `deepchat-settings`` skill is not active for conversation.
+6. Add "open settings" helper/tool for unsupported settings (MCP/prompts, etc.), including best-eff-mn navigation.
+7. Add main process tests:
+   - Validation and mapping
+   - Tool definitions only exist when skill active
+   - Skill control enforces rejection when inactive
+
+## Step 2 - UX Behavior (LLM + Skill)
+
+1. Verify skill metadata prompt list clearly enough lists `deepchat-settings` for model to select it.
+2. Ensure skill instructs: activate only when user asks; deactivate after completion.
+3. Add examples of Chinese/English user phrasing in SKILL.md.
@@ -0,0 +1,69 @@
+---
+name: deepchat-settings
+description: DeepChat app settings modification (DeepChat 设置/偏好) skill. Activate ONLY when the user explicitly asks to change DeepChat's own settings/preferences (e.g., theme, language, font size...). Do NOT activate for OS/system settings, editor settings, or other apps.
+allowedTools:
+  - deepchat_settings_toggle
+  - deepchat_settings_set_language
+  - deepchat_settings_set_theme
+  - deepchat_settings_set_font_size
+  - deepchat_settings_open
+---
+
+# DeepChat Settings Modification Skill
+
+Use this skill to safely change DeepChat *application* settings during a conversation.
+
+## Core rules
+
+- Only change settings when the user is asking to change **DeepChat** settings.
+- Use the dedicated settings tools; never attempt arbitrary key/value writes.
+- These tools are intended to be available only when this skill is active; if they are missing, activate this skill via `skill_control`.
+- If the request is ambiguous, ask a clarifying question before applying.
+- For unsupported or high-risk settings (MCP, prompts, providers, API keys, paths): do **not** apply changes; instead explain where to change it and open Settings.
+- After completing the settings task, deactivate this skill via `skill_control` to keep context small.
+
+## Supported settings (initial allowlist)
+
+Toggles:
+
+- `soundEnabled`: enable/disable sound effects.
+- `copyWithCotEnabled`: enable/disable copying COT details.
+
+Enums:
+
+- `language`: DeepChat locale, including `system`, `zh-CN`, `en-US`, `zh-TW`, `zh-HK`, `ko-KR`, `ru-RU`, `ja-JP`, `fr-FR`, `fa-IR`, `pt-BR`, `da-DK`, `he-IL`.
+- `theme`: `dark | light | system`.
+- `fontSizeLevel`: integer level within supported range.
+
+Settings navigation (open-only):
+
+- Use `deepchat_settings_open` only when the request cannot be fulfilled by the settings tools, and avoid calling it if the change is already applied.
+- `section` hints: `common`, `display`, `provider`, `mcp`, `prompt`, `acp`, `skills`, `knowledge-base`, `database`, `shortcut`, `about`.
+
+## Workflow
+
+1. Confirm the user is requesting a DeepChat settings change.
+2. Determine the target setting and the intended value.
+3. If the setting is supported, call the matching tool:
+   - toggles: `deepchat_settings_toggle`
+   - language: `deepchat_settings_set_language`
+   - theme: `deepchat_settings_set_theme`
+   - font size: `deepchat_settings_set_font_size`
+4. Confirm back to the user what changed (include the final value).
+5. If the setting is unsupported, call `deepchat_settings_open` (with `section`) and provide a short pointer to the correct Settings section. Do not call it if the requested change has already been applied.
+6. Deactivate this skill via `skill_control`.
+
+## Examples (activate this skill)
+
+- "把主题改成深色"
+- "Turn off sound effects"
+- "语言改成英文"
+- "复制时不要带 COT"
+- "Open the MCP settings page"
+- "Edit my prompts"
+
+## Examples (do NOT activate this skill)
+
+- "把 Windows 的系统代理改成..."
+- "帮我改 VS Code 的字体"
+- "把电脑的声音关掉"
@@ -106,6 +106,11 @@ export const WINDOW_EVENTS = {
   WINDOW_RESTORED: 'window:restored'
 }
 
+// Settings related events
+export const SETTINGS_EVENTS = {
+  NAVIGATE: 'settings:navigate'
+}
+
 // ollama 相关事件
 export const OLLAMA_EVENTS = {
   PULL_MODEL_PROGRESS: 'ollama:pull-model-progress'