80174acaae
为所有工具插件添加沙箱拦截层,防止危险的文件访问、Shell命令和Python代码执行。 包含配置文件、核心校验逻辑及31个单元测试。 Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
62 lines
1.6 KiB
Python
62 lines
1.6 KiB
Python
import os
|
|
from typing import List, Literal, Dict
|
|
|
|
from kilostar.plugin.tool_plugin.base_tool import BaseToolData
|
|
|
|
|
|
class EditFileToolData(BaseToolData):
|
|
is_system: bool = True
|
|
action_scope: List[
|
|
Literal[
|
|
"control_node",
|
|
"consciousness_node",
|
|
"regulatory_node",
|
|
"growth_node",
|
|
"",
|
|
]
|
|
] = []
|
|
config_args: Dict[str, str] = {}
|
|
category: str = "system"
|
|
|
|
|
|
async def edit_file(
|
|
file_path: str,
|
|
old_content: str,
|
|
new_content: str,
|
|
) -> str:
|
|
"""通过查找替换的方式编辑文件内容。
|
|
|
|
Args:
|
|
file_path: 文件的路径
|
|
old_content: 要被替换的原始内容片段
|
|
new_content: 替换后的新内容
|
|
|
|
Returns:
|
|
操作结果描述
|
|
"""
|
|
from kilostar.utils.sandbox import validate_path, PathViolation
|
|
|
|
try:
|
|
file_path = validate_path(file_path, write=True)
|
|
except PathViolation as e:
|
|
return f"[Sandbox] {e}"
|
|
|
|
try:
|
|
if not os.path.exists(file_path):
|
|
return f"[Error] 文件不存在: {file_path}"
|
|
|
|
with open(file_path, "r", encoding="utf-8") as f:
|
|
content = f.read()
|
|
|
|
if old_content not in content:
|
|
return f"[Error] 未在文件中找到要替换的内容片段"
|
|
|
|
new_file_content = content.replace(old_content, new_content, 1)
|
|
|
|
with open(file_path, "w", encoding="utf-8") as f:
|
|
f.write(new_file_content)
|
|
|
|
return f"已成功编辑文件: {file_path}"
|
|
except Exception as e:
|
|
return f"[Error] 编辑文件失败: {e}"
|