fix: sync notebook types and add permission demo to main.ts

anthhub · claude · anthhub · commit 2f781ed6a4ed · 2026-04-02T12:33:40.000+08:00
- Update notebook Tool interface with ToolCategory field
- Update notebook PermissionRule with PermissionRuleSource field
- Add category: "builtin" to FileReadTool and BashTool in notebook
- Add permission system demo to main.ts (rules, context, checkPermission)
- main.ts now validates all three type modules: messages, tools, permissions

Co-Authored-By: Claude Opus 4.6 (1M context) &lt;noreply@anthropic.com&gt;
diff --git a/demo/main.ts b/demo/main.ts
@@ -27,6 +27,9 @@ import type {
   ContentBlock,
   Tool,
   AppConfig,
+  PermissionRule,
+  PermissionContext,
+  PermissionDecision,
 } from "./types/index.js";
 
 // ─── 验证类型系统 ────────────────────────────────────────────────────────────
@@ -87,6 +90,48 @@ const apiTool = toolToAPIFormat(readTool);
 // 构建消息历史
 const messages: Message[] = [userMsg, assistantMsg];
 
+// ─── 验证权限系统 ──────────────────────────────────────────────────────────
+
+// 定义权限规则
+const permissionRules: PermissionRule[] = [
+  { toolName: "Read", behavior: "allow", source: "default", reason: "只读操作无风险" },
+  { toolName: "Bash", pattern: "rm -rf", behavior: "deny", source: "default", reason: "危险的删除操作" },
+  { toolName: "Bash", behavior: "ask", source: "default", reason: "Shell 命令可能有副作用" },
+];
+
+// 构建权限上下文
+const permissionCtx: PermissionContext = {
+  mode: "default",
+  cwd: process.cwd(),
+  rules: permissionRules,
+};
+
+// 简单的权限检查函数（模拟真实 Claude Code 的 canUseTool）
+function checkPermission(
+  toolName: string,
+  input: Record<string, unknown>,
+  rules: PermissionRule[]
+): PermissionDecision {
+  for (const rule of rules) {
+    if (rule.toolName !== "*" && rule.toolName !== toolName) continue;
+    if (rule.pattern) {
+      const command = String(input.command ?? "");
+      if (!command.includes(rule.pattern)) continue;
+    }
+    if (rule.behavior === "allow") return { behavior: "allow" };
+    if (rule.behavior === "deny") return { behavior: "deny", message: rule.reason ?? "Denied" };
+    return { behavior: "ask", message: rule.reason ?? "需要确认" };
+  }
+  return { behavior: "ask", message: "默认需要确认" };
+}
+
+// 测试权限检查
+const permTests = [
+  { tool: "Read", input: { file_path: "main.ts" } },
+  { tool: "Bash", input: { command: "ls -la" } },
+  { tool: "Bash", input: { command: "rm -rf /" } },
+];
+
 // ─── 输出验证结果 ─────────────────────────────────────────────────────────
 
 console.log("mini-claude - 类型系统验证");
@@ -110,5 +155,13 @@ console.log(`  模型: ${DEFAULT_CONFIG.model}`);
 console.log(`  最大 Token: ${DEFAULT_CONFIG.maxTokens}`);
 console.log(`  权限模式: ${DEFAULT_CONFIG.permissionMode}`);
 console.log();
+console.log(`权限系统 (模式: ${permissionCtx.mode}):`);
+permTests.forEach((tc) => {
+  const decision = checkPermission(tc.tool, tc.input, permissionCtx.rules);
+  const icon = decision.behavior === "allow" ? "✅" : decision.behavior === "deny" ? "🚫" : "❓";
+  const cmd = (tc.input.command ?? tc.input.file_path) as string;
+  console.log(`  ${icon} ${tc.tool}("${cmd}") → ${decision.behavior}`);
+});
+console.log();
 console.log("类型系统验证通过！");
 console.log("下一步: 第 2 章 - 实现 Tool 接口和工具注册表");
diff --git a/notebooks/01-overview.ipynb b/notebooks/01-overview.ipynb
@@ -295,36 +295,7 @@
    "execution_count": null,
    "metadata": {},
    "outputs": [],
-   "source": [
-    "// --- Tool 接口定义 ---\n",
-    "\n",
-    "interface ToolResult {\n",
-    "  content: string;\n",
-    "  isError?: boolean;\n",
-    "}\n",
-    "\n",
-    "interface JSONSchemaProperty {\n",
-    "  type: \"string\" | \"number\" | \"boolean\" | \"array\" | \"object\";\n",
-    "  description?: string;\n",
-    "  enum?: string[];\n",
-    "}\n",
-    "\n",
-    "interface JSONSchema {\n",
-    "  type: \"object\";\n",
-    "  properties: Record<string, JSONSchemaProperty>;\n",
-    "  required?: string[];\n",
-    "}\n",
-    "\n",
-    "interface Tool {\n",
-    "  name: string;\n",
-    "  description: string;\n",
-    "  inputSchema: JSONSchema;\n",
-    "  call(input: Record<string, unknown>): Promise<ToolResult>;\n",
-    "  isReadOnly?: boolean;\n",
-    "}\n",
-    "\n",
-    "console.log(\"✅ Tool 接口定义完成\");"
-   ]
+   "source": "// --- Tool 接口定义 ---\n\ninterface ToolResult {\n  content: string;\n  isError?: boolean;\n}\n\ninterface JSONSchemaProperty {\n  type: \"string\" | \"number\" | \"boolean\" | \"array\" | \"object\";\n  description?: string;\n  enum?: string[];\n}\n\ninterface JSONSchema {\n  type: \"object\";\n  properties: Record<string, JSONSchemaProperty>;\n  required?: string[];\n}\n\n// 工具分类\ntype ToolCategory = \"builtin\" | \"mcp\" | \"skill\";\n\ninterface Tool {\n  name: string;\n  description: string;\n  inputSchema: JSONSchema;\n  call(input: Record<string, unknown>): Promise<ToolResult>;\n  category?: ToolCategory;\n  isReadOnly?: boolean;\n}\n\nconsole.log(\"✅ Tool 接口定义完成\");"
   },
   {
    "cell_type": "markdown",
@@ -340,66 +311,7 @@
    "execution_count": null,
    "metadata": {},
    "outputs": [],
-   "source": [
-    "// 实现一个真正的 FileRead 工具\n",
-    "const FileReadTool: Tool = {\n",
-    "  name: \"Read\",\n",
-    "  description: \"读取指定文件的内容\",\n",
-    "  inputSchema: {\n",
-    "    type: \"object\",\n",
-    "    properties: {\n",
-    "      file_path: { type: \"string\", description: \"文件的路径\" },\n",
-    "    },\n",
-    "    required: [\"file_path\"],\n",
-    "  },\n",
-    "  isReadOnly: true,\n",
-    "  async call(input) {\n",
-    "    try {\n",
-    "      const path = input.file_path as string;\n",
-    "      const content = await Deno.readTextFile(path);\n",
-    "      return { content };\n",
-    "    } catch (e) {\n",
-    "      return { content: `Error: ${e}`, isError: true };\n",
-    "    }\n",
-    "  },\n",
-    "};\n",
-    "\n",
-    "// 实现一个 Bash 工具\n",
-    "const BashTool: Tool = {\n",
-    "  name: \"Bash\",\n",
-    "  description: \"执行 shell 命令\",\n",
-    "  inputSchema: {\n",
-    "    type: \"object\",\n",
-    "    properties: {\n",
-    "      command: { type: \"string\", description: \"要执行的命令\" },\n",
-    "    },\n",
-    "    required: [\"command\"],\n",
-    "  },\n",
-    "  isReadOnly: false,  // shell 命令可能有副作用\n",
-    "  async call(input) {\n",
-    "    try {\n",
-    "      const cmd = new Deno.Command(\"sh\", {\n",
-    "        args: [\"-c\", input.command as string],\n",
-    "        stdout: \"piped\",\n",
-    "        stderr: \"piped\",\n",
-    "      });\n",
-    "      const output = await cmd.output();\n",
-    "      const stdout = new TextDecoder().decode(output.stdout);\n",
-    "      const stderr = new TextDecoder().decode(output.stderr);\n",
-    "      return {\n",
-    "        content: stdout + (stderr ? `\\nSTDERR: ${stderr}` : \"\"),\n",
-    "        isError: !output.success,\n",
-    "      };\n",
-    "    } catch (e) {\n",
-    "      return { content: `Error: ${e}`, isError: true };\n",
-    "    }\n",
-    "  },\n",
-    "};\n",
-    "\n",
-    "console.log(\"✅ FileReadTool 和 BashTool 创建完成\");\n",
-    "console.log(`   Read: ${FileReadTool.description} (只读: ${FileReadTool.isReadOnly})`);\n",
-    "console.log(`   Bash: ${BashTool.description} (只读: ${BashTool.isReadOnly})`);"
-   ]
+   "source": "// 实现一个真正的 FileRead 工具\nconst FileReadTool: Tool = {\n  name: \"Read\",\n  description: \"读取指定文件的内容\",\n  inputSchema: {\n    type: \"object\",\n    properties: {\n      file_path: { type: \"string\", description: \"文件的路径\" },\n    },\n    required: [\"file_path\"],\n  },\n  category: \"builtin\" as const,\n  isReadOnly: true,\n  async call(input) {\n    try {\n      const path = input.file_path as string;\n      const content = await Deno.readTextFile(path);\n      return { content };\n    } catch (e) {\n      return { content: `Error: ${e}`, isError: true };\n    }\n  },\n};\n\n// 实现一个 Bash 工具\nconst BashTool: Tool = {\n  name: \"Bash\",\n  description: \"执行 shell 命令\",\n  inputSchema: {\n    type: \"object\",\n    properties: {\n      command: { type: \"string\", description: \"要执行的命令\" },\n    },\n    required: [\"command\"],\n  },\n  category: \"builtin\" as const,\n  isReadOnly: false,  // shell 命令可能有副作用\n  async call(input) {\n    try {\n      const cmd = new Deno.Command(\"sh\", {\n        args: [\"-c\", input.command as string],\n        stdout: \"piped\",\n        stderr: \"piped\",\n      });\n      const output = await cmd.output();\n      const stdout = new TextDecoder().decode(output.stdout);\n      const stderr = new TextDecoder().decode(output.stderr);\n      return {\n        content: stdout + (stderr ? `\\nSTDERR: ${stderr}` : \"\"),\n        isError: !output.success,\n      };\n    } catch (e) {\n      return { content: `Error: ${e}`, isError: true };\n    }\n  },\n};\n\nconsole.log(\"✅ FileReadTool 和 BashTool 创建完成\");\nconsole.log(`   Read: ${FileReadTool.description} (分类: ${FileReadTool.category}, 只读: ${FileReadTool.isReadOnly})`);\nconsole.log(`   Bash: ${BashTool.description} (分类: ${BashTool.category}, 只读: ${BashTool.isReadOnly})`);"
   },
   {
    "cell_type": "code",
@@ -533,36 +445,7 @@
    "execution_count": null,
    "metadata": {},
    "outputs": [],
-   "source": [
-    "// --- 权限类型定义 ---\n",
-    "\n",
-    "type PermissionMode = \"default\" | \"auto\" | \"bypassPermissions\";\n",
-    "type PermissionBehavior = \"allow\" | \"deny\" | \"ask\";\n",
-    "\n",
-    "interface PermissionRule {\n",
-    "  toolName: string;       // \"*\" 匹配所有工具\n",
-    "  pattern?: string;       // 可选的命令模式匹配\n",
-    "  behavior: PermissionBehavior;\n",
-    "  reason?: string;\n",
-    "}\n",
-    "\n",
-    "// 定义一组权限规则\n",
-    "const permissionRules: PermissionRule[] = [\n",
-    "  // 读操作：始终允许\n",
-    "  { toolName: \"Read\", behavior: \"allow\", reason: \"只读操作无风险\" },\n",
-    "  // 危险命令：始终拒绝\n",
-    "  { toolName: \"Bash\", pattern: \"rm -rf\", behavior: \"deny\", reason: \"危险的删除操作\" },\n",
-    "  { toolName: \"Bash\", pattern: \":(){ :|:& };:\", behavior: \"deny\", reason: \"Fork 炸弹\" },\n",
-    "  // 其他 Bash 命令：需要询问用户\n",
-    "  { toolName: \"Bash\", behavior: \"ask\", reason: \"Shell 命令可能有副作用\" },\n",
-    "];\n",
-    "\n",
-    "console.log(\"✅ 权限规则定义完成:\");\n",
-    "for (const rule of permissionRules) {\n",
-    "  const target = rule.pattern ? `${rule.toolName}(${rule.pattern})` : rule.toolName;\n",
-    "  console.log(`  ${rule.behavior.toUpperCase().padEnd(5)} ${target} — ${rule.reason}`);\n",
-    "}"
-   ]
+   "source": "// --- 权限类型定义 ---\n\ntype PermissionMode = \"default\" | \"auto\" | \"bypassPermissions\";\ntype PermissionBehavior = \"allow\" | \"deny\" | \"ask\";\n\n// 权限规则来源\ntype PermissionRuleSource = \"userSettings\" | \"projectSettings\" | \"session\" | \"default\";\n\ninterface PermissionRule {\n  toolName: string;       // \"*\" 匹配所有工具\n  pattern?: string;       // 可选的命令模式匹配\n  behavior: PermissionBehavior;\n  reason?: string;\n  source?: PermissionRuleSource;\n}\n\n// 定义一组权限规则\nconst permissionRules: PermissionRule[] = [\n  // 读操作：始终允许\n  { toolName: \"Read\", behavior: \"allow\", reason: \"只读操作无风险\", source: \"default\" },\n  // 危险命令：始终拒绝\n  { toolName: \"Bash\", pattern: \"rm -rf\", behavior: \"deny\", reason: \"危险的删除操作\", source: \"default\" },\n  { toolName: \"Bash\", pattern: \":(){ :|:& };:\", behavior: \"deny\", reason: \"Fork 炸弹\", source: \"default\" },\n  // 其他 Bash 命令：需要询问用户\n  { toolName: \"Bash\", behavior: \"ask\", reason: \"Shell 命令可能有副作用\", source: \"default\" },\n];\n\nconsole.log(\"✅ 权限规则定义完成:\");\nfor (const rule of permissionRules) {\n  const target = rule.pattern ? `${rule.toolName}(${rule.pattern})` : rule.toolName;\n  console.log(`  ${rule.behavior.toUpperCase().padEnd(5)} ${target} — ${rule.reason} [${rule.source}]`);\n}"
   },
   {
    "cell_type": "code",
@@ -791,4 +674,4 @@
  },
  "nbformat": 4,
  "nbformat_minor": 4
-}
+}
